From 37a96825808da9c086b4c78beac242f3a4629fdc Mon Sep 17 00:00:00 2001 From: DashlordBetaGouvBot Date: Sun, 1 Dec 2024 19:41:49 +0000 Subject: [PATCH] chore: report update --- report.json | 356614 ++++++++++++++++++++++++------------------------- 1 file changed, 177080 insertions(+), 179534 deletions(-) diff --git a/report.json b/report.json index 95af8f69cc5..cc81b34e79e 100644 --- a/report.json +++ b/report.json @@ -176,7 +176,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T20:04:07Z", + "up_since": "2024-11-30T12:04:17Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -187,8 +187,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T01:48:47Z", - "next_check_at": "2024-11-24T01:49:46Z", + "last_check_at": "2024-12-01T02:01:04Z", + "next_check_at": "2024-12-01T02:02:03Z", "created_at": "2024-01-15T13:37:41Z", "mute_until": null, "favicon_url": "https://annuaire-entreprises.data.gouv.fr/favicon.ico", @@ -196,7 +196,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:44:51Z", + "tested_at": "2024-12-01T02:00:08Z", "expires_at": "2025-01-13T12:20:37Z", "valid": true, "error": null @@ -205,11 +205,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 184, - "connection": 128, - "handshake": 133, - "response": 176, - "total": 621 + "namelookup": 170, + "connection": 120, + "handshake": 126, + "response": 166, + "total": 582 } }, "uptimeGrade": "A", @@ -589,7 +589,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", @@ -757,7 +757,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "1732412925" + "finding": "1733018438" }, { "id": "HSTS_time", @@ -1341,7 +1341,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "102" } ], "thirdparties": { @@ -1361,7 +1361,7 @@ "value": "1", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1732414650, + "expires": 1733020127, "size": 17, "httpOnly": false, "secure": false, @@ -1373,10 +1373,10 @@ }, { "name": "_pk_id.145.4c08", - "value": "ad524ba541394f0e.1732412850.", + "value": "b271cf66fea0a923.1733018328.", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1766368050, + "expires": 1766973528, "size": 43, "httpOnly": false, "secure": false, @@ -1388,10 +1388,10 @@ }, { "name": "annuaire-entreprises-user-session-2", - "value": "Fe26.2*1*ab780a9f9d20d383b2f709dd153a7e1f635c70aa61784c4346ba843405bfeb59*RYWS8H1sUQgK0vMefhMaxQ*9jHNTlubPBDWLRPL6iQbdul4AoI6i5gD75fE1RgpBAq6aIDUJaCGiU65QhykPDU4*1733017649653*82a4d1322f3cf231a94d836c91effda1666d96427e8e21a7875bb4de96c3be72*7Rvk-NpZ-cbFohXx9ihjcQCErevNcu14F8QKyMKdrH4~2", + "value": "Fe26.2*1*7d448f48f7677cd43cd4939acdc27ff6da9e10c9a836fce635fdf81a82235377*YNJysK406UM4jJNJRTJylw*GmwgD-di2fpTgMEnjHGXNAVteSnsI9vy0aSp8XLf6YYVP_PYV0c5cFIJyhvVGKr4*1733623126699*9c1759e14dba7803df11152819078479605d906cdb86e526e9eaab33448db960*WVb8hRXFW3UXlhQSIVXy2ryGMKSvmPt7W748h1uMGM0~2", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1733017589.759312, + "expires": 1733623066.817857, "size": 321, "httpOnly": true, "secure": true, @@ -1403,10 +1403,10 @@ }, { "name": "bln_challengejs", - "value": "VTwHz-jk4A_XDE1aZucNN0JGjaHEmXbomqo61PaoSIu9-NyzyrK2JWepoa0PTqtHzlWZFEhKdkBSIO5eUewOFxTH3gOMKDjRpgDdczqUNL72_hAA4CFaumEkp8FIubo2ktoQWoiH8TLqEx_1SYF5VyL_mzEhj_kVKMEV53ek48l8swx2YYSGxZeCQsF-2GwDQ592KLUaZxgyo75IwTwm3U1w90PSczJMsr38-H_NlkceHnYuKFPcFE-9v4hCZmtZvr3dFUw0Nj5swJoIg4wpyrMCabW7hrwrrzau2vDnRMarK6r8OCLvaN6aQmihvbnv", + "value": "h8OoQF8aZ4_iMU07rK42fnW3IYWNtZTfo5ELA7Nx3oJACMnTnMVdL8ldg0Cs_vAMhQkSzu3NWbO7w6Zx0qbe8EZkIDhmCYo1zD48egPe_tVqmbxrZe0mZpFK898Ze0K2sTXsPZl2gyNygeV19jpLezrJyOWhaZg3lp78Z19QEI3PHFTvZW6mB6R8j66OjsckGNkIS6LWVO-cnk7qk7VFoo-cMSl5ySDD_Up8JIbGUKx5wOpCIXpASDlItkBtP6zewBNBfzRZuz4sXkGNYr36K1cpw4d0hJeHTzBKCV3ItjPeBxYFYWmntU8zguY8gDHD", "domain": ".data.gouv.fr", "path": "/", - "expires": 1732413749.553864, + "expires": 1733019226.569605, "size": 335, "httpOnly": false, "secure": true, @@ -1419,21 +1419,25 @@ ], "headers": { "accept-ranges": "bytes", + "access-control-allow-methods": "GET", + "access-control-allow-origin": "https://annuaire-entreprises.data.gouv.fr", + "access-control-max-age": "86400", "age": "0", "annuaire-entreprises-instance-number": "03", "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://stats.data.gouv.fr/; worker-src 'self' blob:; style-src 'self' 'unsafe-inline'; img-src 'self' data:; frame-src 'self' https://stats.data.gouv.fr/ https://plugins.crisp.chat/; connect-src 'self' https://stats.data.gouv.fr/ https://errors.data.gouv.fr/ https://bodacc-datadila.opendatasoft.com/ https://data.economie.gouv.fr/ https://journal-officiel-datadila.opendatasoft.com/ https://api-lannuaire.service-public.fr/ https://data.culture.gouv.fr/ https://data.inpi.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.data.gouv.fr/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 01:47:29 GMT", + "date": "Sun, 01 Dec 2024 01:58:46 GMT", "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"image\", ; rel=preload; as=\"image\", ; rel=preload; as=\"image\", ; rel=preload; as=\"image\", ; rel=preload; as=\"image\"", "referrer-policy": "origin-when-cross-origin", - "set-cookie": "annuaire-entreprises-user-session-2=Fe26.2*1*ab780a9f9d20d383b2f709dd153a7e1f635c70aa61784c4346ba843405bfeb59*RYWS8H1sUQgK0vMefhMaxQ*9jHNTlubPBDWLRPL6iQbdul4AoI6i5gD75fE1RgpBAq6aIDUJaCGiU65QhykPDU4*1733017649653*82a4d1322f3cf231a94d836c91effda1666d96427e8e21a7875bb4de96c3be72*7Rvk-NpZ-cbFohXx9ihjcQCErevNcu14F8QKyMKdrH4~2; Max-Age=604740; Path=/; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "annuaire-entreprises-user-session-2=Fe26.2*1*7d448f48f7677cd43cd4939acdc27ff6da9e10c9a836fce635fdf81a82235377*YNJysK406UM4jJNJRTJylw*GmwgD-di2fpTgMEnjHGXNAVteSnsI9vy0aSp8XLf6YYVP_PYV0c5cFIJyhvVGKr4*1733623126699*9c1759e14dba7803df11152819078479605d906cdb86e526e9eaab33448db960*WVb8hRXFW3UXlhQSIVXy2ryGMKSvmPt7W748h1uMGM0~2; Max-Age=604740; Path=/; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=31536000, max-age=31536000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff, nosniff", + "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Next.js", - "x-varnish": "781855466", + "x-varnish": "230528639", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -1495,7 +1499,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.138", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -1582,7 +1586,7 @@ { "requestedUrl": "https://annuaire-entreprises.data.gouv.fr/", "finalUrl": "https://annuaire-entreprises.data.gouv.fr/", - "fetchTime": "2024-11-24T01:47:04.912Z", + "fetchTime": "2024-12-01T01:58:19.871Z", "runWarnings": [], "categories": { "performance": { @@ -1593,7 +1597,7 @@ "snapshot" ], "id": "performance", - "score": 0.82 + "score": 0.78 }, "accessibility": { "title": "Accessibility", @@ -1645,53 +1649,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5893, + "numericValue": 5626, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1923, - "firstMeaningfulPaint": 1923, - "largestContentfulPaint": 3003, - "interactive": 5893, - "speedIndex": 1923, - "totalBlockingTime": 328, - "maxPotentialFID": 309, + "firstContentfulPaint": 2276, + "firstMeaningfulPaint": 2276, + "largestContentfulPaint": 3298, + "interactive": 5626, + "speedIndex": 2370, + "totalBlockingTime": 367, + "maxPotentialFID": 335, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 440735426, + "observedTimeOriginTs": 427415159, "observedNavigationStart": 0, - "observedNavigationStartTs": 440735426, - "observedFirstPaint": 544, - "observedFirstPaintTs": 441279429, - "observedFirstContentfulPaint": 544, - "observedFirstContentfulPaintTs": 441279429, - "observedFirstContentfulPaintAllFrames": 544, - "observedFirstContentfulPaintAllFramesTs": 441279429, - "observedFirstMeaningfulPaint": 544, - "observedFirstMeaningfulPaintTs": 441279429, - "observedLargestContentfulPaint": 544, - "observedLargestContentfulPaintTs": 441279429, - "observedLargestContentfulPaintAllFrames": 544, - "observedLargestContentfulPaintAllFramesTs": 441279429, - "observedTraceEnd": 3345, - "observedTraceEndTs": 444080347, - "observedLoad": 792, - "observedLoadTs": 441527223, - "observedDomContentLoaded": 438, - "observedDomContentLoadedTs": 441173913, + "observedNavigationStartTs": 427415159, + "observedFirstPaint": 722, + "observedFirstPaintTs": 428136667, + "observedFirstContentfulPaint": 722, + "observedFirstContentfulPaintTs": 428136667, + "observedFirstContentfulPaintAllFrames": 722, + "observedFirstContentfulPaintAllFramesTs": 428136667, + "observedFirstMeaningfulPaint": 722, + "observedFirstMeaningfulPaintTs": 428136667, + "observedLargestContentfulPaint": 722, + "observedLargestContentfulPaintTs": 428136667, + "observedLargestContentfulPaintAllFrames": 722, + "observedLargestContentfulPaintAllFramesTs": 428136667, + "observedTraceEnd": 3669, + "observedTraceEndTs": 431084476, + "observedLoad": 992, + "observedLoadTs": 428407429, + "observedDomContentLoaded": 614, + "observedDomContentLoadedTs": 428029466, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 546, - "observedFirstVisualChangeTs": 441281426, - "observedLastVisualChange": 546, - "observedLastVisualChangeTs": 441281426, - "observedSpeedIndex": 547, - "observedSpeedIndexTs": 441282348 + "observedFirstVisualChange": 734, + "observedFirstVisualChangeTs": 428149159, + "observedLastVisualChange": 734, + "observedLastVisualChangeTs": 428149159, + "observedSpeedIndex": 734, + "observedSpeedIndexTs": 428149540 }, { "lcpInvalidated": false @@ -1710,22 +1714,22 @@ "items": [ { "numRequests": 51, - "numScripts": 19, - "numStylesheets": 6, + "numScripts": 20, + "numStylesheets": 5, "numFonts": 3, - "numTasks": 1057, - "numTasksOver10ms": 7, + "numTasks": 1089, + "numTasksOver10ms": 4, "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.8659999999999997, - "throughput": 9516920.579025684, - "maxRtt": 100.23, - "maxServerLatency": 120.53699999999999, - "totalByteWeight": 564169, - "totalTaskTime": 323.83099999999934, - "mainDocumentTransferSize": 2129 + "rtt": 9.381, + "throughput": 7068724.560476673, + "maxRtt": 144.211, + "maxServerLatency": 171.16599999999997, + "totalByteWeight": 577870, + "totalTaskTime": 326.88999999999896, + "mainDocumentTransferSize": 2131 } ] } @@ -1828,15 +1832,15 @@ "width": 1920, "height": 1080, "url": "https://annuaire-entreprises.data.gouv.fr", - "size": 1114.778, - "nodes": 352, + "size": 1124.926, + "nodes": 348, "requests": 67, "grade": "C", "score": 64, "ges": 1.72, "water": 2.58, "ecoindex_version": "5.4.2", - "date": "2024-11-24 01:43:59.643494", + "date": "2024-12-01 01:55:18.032816", "page_type": "website" } ], @@ -1860,7 +1864,7 @@ "cookiesCount": 4, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.82, + "lighthouse_performance": 0.78, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -2100,7 +2104,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T12:34:57Z", + "up_since": "2024-11-27T06:09:01Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -2111,8 +2115,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T01:51:14Z", - "next_check_at": "2024-11-24T01:56:13Z", + "last_check_at": "2024-12-01T02:05:47Z", + "next_check_at": "2024-12-01T02:10:46Z", "created_at": "2021-04-22T19:48:51Z", "mute_until": null, "favicon_url": "https://acceslibre.beta.gouv.fr/static/img/favicon.f67248f8d5b7.ico", @@ -2120,20 +2124,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:36:20Z", + "tested_at": "2024-12-01T01:55:47Z", "expires_at": "2025-01-04T13:16:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.555, + "apdex": 0.573, "timings": { "redirect": 0, - "namelookup": 153, - "connection": 227, - "handshake": 165, - "response": 606, - "total": 1151 + "namelookup": 205, + "connection": 112, + "handshake": 118, + "response": 618, + "total": 1052 } }, "uptimeGrade": "A", @@ -2166,77 +2170,77 @@ "testssl": [ { "id": "service", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -2244,7 +2248,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -2252,7 +2256,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -2260,7 +2264,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -2268,7 +2272,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -2276,7 +2280,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -2284,490 +2288,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-10-06 13:16" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-01-04 13:16" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732412925" + "finding": "1733018444" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-fsp63CzmpmRJnAQMzdTR4A=='" + "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-v32EOLXHPIAmcJNed7+tYg=='" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -2775,7 +2779,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -2784,7 +2788,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -2793,7 +2797,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -2802,7 +2806,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -2811,7 +2815,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -2819,7 +2823,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -2828,7 +2832,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -2837,7 +2841,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -2846,7 +2850,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -2855,14 +2859,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -2871,7 +2875,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -2880,7 +2884,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -2889,7 +2893,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -2898,7 +2902,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -2907,7 +2911,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -2916,7 +2920,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -2925,7 +2929,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -2934,7 +2938,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -2943,7 +2947,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -2952,392 +2956,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3345,7 +3349,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3353,7 +3357,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3361,7 +3365,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3369,7 +3373,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -3377,7 +3381,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -3385,490 +3389,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-10-06 13:16" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-01-04 13:16" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732412979" + "finding": "1733018547" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-mZDvKak9xhLfXMxv6BVnlg=='" + "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-zn+4peFR+5VszBCAOh/1Kw=='" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -3876,7 +3880,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -3885,7 +3889,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -3894,7 +3898,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -3903,7 +3907,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -3912,7 +3916,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -3920,7 +3924,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -3929,7 +3933,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -3938,7 +3942,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -3947,7 +3951,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -3956,14 +3960,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -3972,7 +3976,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -3981,7 +3985,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -3990,7 +3994,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -3999,7 +4003,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -4008,7 +4012,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -4017,7 +4021,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -4026,7 +4030,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -4035,7 +4039,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -4044,7 +4048,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -4053,392 +4057,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -4446,7 +4450,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -4454,7 +4458,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -4462,7 +4466,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -4470,7 +4474,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -4478,7 +4482,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -4486,490 +4490,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-10-06 13:16" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-01-04 13:16" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732413033" + "finding": "1733018651" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-ScUY/vmI/j57iF18T/SnFg=='" + "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-UyHSwV/mNByK5ACb5aXFYw=='" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -4977,7 +4981,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -4986,7 +4990,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -4995,7 +4999,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -5004,7 +5008,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -5013,7 +5017,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -5021,7 +5025,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -5030,7 +5034,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -5039,7 +5043,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -5048,7 +5052,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -5057,14 +5061,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -5073,7 +5077,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -5082,7 +5086,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -5091,7 +5095,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -5100,7 +5104,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -5109,7 +5113,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -5118,7 +5122,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -5127,7 +5131,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -5136,7 +5140,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -5145,7 +5149,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -5154,392 +5158,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/109.232.236.90", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -5547,7 +5551,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -5555,7 +5559,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -5563,7 +5567,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -5571,7 +5575,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -5579,7 +5583,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -5587,490 +5591,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-10-06 13:16" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-01-04 13:16" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732413086" + "finding": "1733018753" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-yp3elXzYdze82sqNmVVIlQ=='" + "finding": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-Qlymo/RWtiuTA9Z1MxCnZQ=='" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -6078,7 +6082,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -6087,7 +6091,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -6096,7 +6100,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -6105,7 +6109,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -6114,7 +6118,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -6122,7 +6126,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -6131,7 +6135,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -6140,7 +6144,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -6149,7 +6153,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -6158,14 +6162,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -6174,7 +6178,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -6183,7 +6187,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -6192,7 +6196,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -6201,7 +6205,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -6210,7 +6214,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -6219,7 +6223,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -6228,7 +6232,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -6237,7 +6241,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -6246,7 +6250,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -6255,325 +6259,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "218" + "finding": "417" } ], "thirdparties": { @@ -6593,7 +6597,7 @@ "value": "1", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1732414665, + "expires": 1733020145, "size": 15, "httpOnly": false, "secure": false, @@ -6605,10 +6609,10 @@ }, { "name": "_pk_id.3.c7e8", - "value": "d630bf85e843b0e8.1732412865.", + "value": "dd1349c728ad1423.1733018345.", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1766368065, + "expires": 1766973545, "size": 41, "httpOnly": false, "secure": false, @@ -6620,10 +6624,10 @@ }, { "name": "csrftoken", - "value": "ET6QLDCX5p9n2b08afqH827tA3KMMqbT", + "value": "bDax86H73CeWAVMyHsjLqQF79wPzG9yS", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1763862464.136464, + "expires": 1764467943.62576, "size": 41, "httpOnly": false, "secure": true, @@ -6637,22 +6641,22 @@ "headers": { "content-encoding": "gzip", "content-language": "en", - "content-security-policy": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-Ckzzf2g7eiCzO2uAnhRzfA=='", + "content-security-policy": "default-src 'self' data: *.mapbox.com *.gouv.fr *.incubateur.net acceslibre.matomo.cloud *.tile.openstreetmap.org client.crisp.chat image.crisp.chat storage.crisp.chat game.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat *.acceslibre.info 'nonce-50aUQQUXVg5Ugn4gFidrOg=='", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 01:47:44 GMT", + "date": "Sun, 01 Dec 2024 01:59:03 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=ET6QLDCX5p9n2b08afqH827tA3KMMqbT; expires=Sun, 23 Nov 2025 01:47:44 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=bDax86H73CeWAVMyHsjLqQF79wPzG9yS; expires=Sun, 30 Nov 2025 01:59:03 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin, Accept-Language", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "da6c63b1-09df-498b-b5e4-8344ec552bd9" + "x-request-id": "1b8e49a2-f98a-43ad-9c67-e58dd3406f91" }, "endpoints": [ { "hostname": "acceslibre.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "5.104.101.30", "geoip": { "continent": { "code": "EU", @@ -6740,7 +6744,7 @@ "name": "Sentry", "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, - "version": "8.36.0", + "version": "8.40.0", "icon": "Sentry.svg", "website": "https://sentry.io/", "cpe": null, @@ -6860,24 +6864,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "ovhcloud", "name": "OVHcloud", @@ -6901,6 +6887,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "pwa", "name": "PWA", @@ -6927,7 +6931,7 @@ { "requestedUrl": "https://acceslibre.beta.gouv.fr/", "finalUrl": "https://acceslibre.beta.gouv.fr/", - "fetchTime": "2024-11-24T01:47:17.949Z", + "fetchTime": "2024-12-01T01:58:35.436Z", "runWarnings": [], "categories": { "performance": { @@ -6938,7 +6942,7 @@ "snapshot" ], "id": "performance", - "score": 0.61 + "score": 0.6 }, "accessibility": { "title": "Accessibility", @@ -6990,53 +6994,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4748, + "numericValue": 4659, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4748, - "firstMeaningfulPaint": 4748, - "largestContentfulPaint": 8137, - "interactive": 4748, - "speedIndex": 4805, + "firstContentfulPaint": 4659, + "firstMeaningfulPaint": 4659, + "largestContentfulPaint": 8190, + "interactive": 4659, + "speedIndex": 5321, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.005095458984375, - "cumulativeLayoutShiftMainFrame": 0.005095458984375, - "totalCumulativeLayoutShift": 0.005095458984375, + "cumulativeLayoutShift": 0.04318033854166666, + "cumulativeLayoutShiftMainFrame": 0.04318033854166666, + "totalCumulativeLayoutShift": 0.04318033854166666, "observedTimeOrigin": 0, - "observedTimeOriginTs": 443868429, + "observedTimeOriginTs": 409299311, "observedNavigationStart": 0, - "observedNavigationStartTs": 443868429, - "observedFirstPaint": 1385, - "observedFirstPaintTs": 445253877, - "observedFirstContentfulPaint": 1385, - "observedFirstContentfulPaintTs": 445253877, - "observedFirstContentfulPaintAllFrames": 1385, - "observedFirstContentfulPaintAllFramesTs": 445253877, - "observedFirstMeaningfulPaint": 1385, - "observedFirstMeaningfulPaintTs": 445253877, - "observedLargestContentfulPaint": 1385, - "observedLargestContentfulPaintTs": 445253877, - "observedLargestContentfulPaintAllFrames": 1385, - "observedLargestContentfulPaintAllFramesTs": 445253877, - "observedTraceEnd": 4383, - "observedTraceEndTs": 448251469, - "observedLoad": 1701, - "observedLoadTs": 445569885, - "observedDomContentLoaded": 1373, - "observedDomContentLoadedTs": 445241575, - "observedCumulativeLayoutShift": 0.005095458984375, - "observedCumulativeLayoutShiftMainFrame": 0.005095458984375, - "observedTotalCumulativeLayoutShift": 0.005095458984375, - "observedFirstVisualChange": 1397, - "observedFirstVisualChangeTs": 445265429, - "observedLastVisualChange": 1697, - "observedLastVisualChangeTs": 445565429, - "observedSpeedIndex": 1406, - "observedSpeedIndexTs": 445274688 + "observedNavigationStartTs": 409299311, + "observedFirstPaint": 1803, + "observedFirstPaintTs": 411101839, + "observedFirstContentfulPaint": 1803, + "observedFirstContentfulPaintTs": 411101839, + "observedFirstContentfulPaintAllFrames": 1803, + "observedFirstContentfulPaintAllFramesTs": 411101839, + "observedFirstMeaningfulPaint": 1803, + "observedFirstMeaningfulPaintTs": 411101839, + "observedLargestContentfulPaint": 1803, + "observedLargestContentfulPaintTs": 411101839, + "observedLargestContentfulPaintAllFrames": 1803, + "observedLargestContentfulPaintAllFramesTs": 411101839, + "observedTraceEnd": 5348, + "observedTraceEndTs": 414647179, + "observedLoad": 2493, + "observedLoadTs": 411791900, + "observedDomContentLoaded": 1804, + "observedDomContentLoadedTs": 411103630, + "observedCumulativeLayoutShift": 0.04318033854166666, + "observedCumulativeLayoutShiftMainFrame": 0.04318033854166666, + "observedTotalCumulativeLayoutShift": 0.04318033854166666, + "observedFirstVisualChange": 1800, + "observedFirstVisualChangeTs": 411099311, + "observedLastVisualChange": 2417, + "observedLastVisualChangeTs": 411716311, + "observedSpeedIndex": 1816, + "observedSpeedIndexTs": 411115388 }, { "lcpInvalidated": false @@ -7054,23 +7058,23 @@ "type": "debugdata", "items": [ { - "numRequests": 38, + "numRequests": 40, "numScripts": 4, "numStylesheets": 1, "numFonts": 3, - "numTasks": 20, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 0, - "throughput": 28362381.953392413, - "maxRtt": 87.089, - "maxServerLatency": 49.088, - "totalByteWeight": 1907473, - "totalTaskTime": 3629.794, - "mainDocumentTransferSize": 8069 + "numTasks": 33, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 8.428, + "throughput": 15831634.352377798, + "maxRtt": 138.275, + "maxServerLatency": 29.72499999999999, + "totalByteWeight": 1931026, + "totalTaskTime": 8.559, + "mainDocumentTransferSize": 8181 } ] } @@ -7173,15 +7177,15 @@ "width": 1920, "height": 1080, "url": "https://acceslibre.beta.gouv.fr", - "size": 2091.263, - "nodes": 291, - "requests": 39, + "size": 2115.852, + "nodes": 302, + "requests": 41, "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, + "score": 68, + "ges": 1.64, + "water": 2.46, "ecoindex_version": "5.4.2", - "date": "2024-11-24 01:44:03.571872", + "date": "2024-12-01 01:55:23.545183", "page_type": null } ], @@ -7191,7 +7195,7 @@ }, "summary": { "httpGrade": "B+", - "apdex": 0.555, + "apdex": 0.573, "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", @@ -7205,7 +7209,7 @@ "cookiesCount": 3, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.61, + "lighthouse_performance": 0.6, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -7490,10 +7494,10 @@ "url": "https://aidantsconnect.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.589, + "uptime": 99.736, "down": false, "down_since": null, - "up_since": "2024-11-18T11:26:21Z", + "up_since": "2024-11-28T13:01:52Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -7504,8 +7508,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T01:51:54Z", - "next_check_at": "2024-11-24T01:56:53Z", + "last_check_at": "2024-12-01T02:00:41Z", + "next_check_at": "2024-12-01T02:05:39Z", "created_at": "2021-04-22T19:49:02Z", "mute_until": null, "favicon_url": "https://aidantsconnect.beta.gouv.fr/static/images/favicons/favicon-32x32.png", @@ -7513,20 +7517,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:12:07Z", + "tested_at": "2024-12-01T01:35:51Z", "expires_at": "2025-01-04T01:05:45Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.859, + "apdex": 0.728, "timings": { "redirect": 0, - "namelookup": 244, - "connection": 138, + "namelookup": 354, + "connection": 139, "handshake": 143, - "response": 401, - "total": 925 + "response": 508, + "total": 1143 } }, "uptimeGrade": "A", @@ -7904,7 +7908,7 @@ "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -8058,14 +8062,14 @@ "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732412971" + "finding": "1733018442" }, { "id": "HSTS_time", @@ -8135,7 +8139,7 @@ "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-d1DP9rFLzl1MTgkORqyU2w=='" + "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-lz0y1BDJC7jWkXyRq2WCwA=='" }, { "id": "Referrer-Policy", @@ -8651,1100 +8655,6 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, - { - "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2024-10-06 01:05" - }, - { - "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2025-01-04 01:05" - }, - { - "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1732413073" - }, - { - "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-RTcAJ2xOiTX0lVwgNz290A=='" - }, - { - "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "strict-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=59126599AF7C805639C3824349AFFE188DA8226D59D843E5D63EB5D650244762" - }, - { - "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS max-age is too short" - }, { "id": "service", "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", @@ -10092,7 +9002,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -10253,7 +9163,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732413174" + "finding": "1733018546" }, { "id": "HSTS_time", @@ -10323,7 +9233,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-lwhf0q7RCv/qIq5PF1zH3A=='" + "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-8ZXj+r1HxSBRYe3Y0WIx/w=='" }, { "id": "Referrer-Policy", @@ -10839,1106 +9749,12 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, - { - "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2024-10-06 01:05" - }, - { - "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2025-01-04 01:05" - }, - { - "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732413277" - }, - { - "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "MEDIUM", - "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-k3k61CMepV7K4MM25tMFVQ=='" - }, - { - "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "strict-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=59126599AF7C805639C3824349AFFE188DA8226D59D843E5D63EB5D650244762" - }, - { - "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS max-age is too short" - }, { "id": "scanTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "411" + "finding": "211" } ], "thirdparties": { @@ -12010,7 +9826,7 @@ "value": "1", "domain": "aidantsconnect.beta.gouv.fr", "path": "/", - "expires": 1732414657, + "expires": 1733020129, "size": 16, "httpOnly": false, "secure": false, @@ -12022,10 +9838,10 @@ }, { "name": "_pk_id.98.2d29", - "value": "399a30c080a0371b.1732412857.", + "value": "a6ed50bdd2c60154.1733018330.", "domain": "aidantsconnect.beta.gouv.fr", "path": "/", - "expires": 1766368057, + "expires": 1766973530, "size": 42, "httpOnly": false, "secure": false, @@ -12038,16 +9854,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-fqHVd8+MJNMS3nmtdiGohg=='", + "content-security-policy": "style-src-attr 'unsafe-hashes' 'sha256-I/4Jcdrg5KNFrU0X4p2nNmjeGh9aI+9ac0cUllI5SwY=' 'sha256-vYd+FsML43MBXhP+pXOhW9h0Cdq43hkCe4Im/yyvhss='; object-src 'none'; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css; connect-src 'self' https://stats.beta.gouv.fr/matomo.php https://stats.beta.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.2/dist/stimulus.umd.js https://unpkg.com/stimulus@3.2.2/dist/stimulus.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/piwik.js 'nonce-f/5Y9HsduOUR0Rve07yu0A=='", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 01:47:35 GMT", + "date": "Sun, 01 Dec 2024 01:58:47 GMT", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=60", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "4f805f11-7511-45b0-b09a-9564b38f8237" + "x-request-id": "07f420cf-5ff1-4510-bf0e-745691ac2fca" }, "endpoints": [ { @@ -12108,7 +9924,7 @@ }, { "hostname": "unpkg.com", - "ip": "104.17.246.203", + "ip": "104.17.249.203", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -12128,19 +9944,8 @@ }, { "hostname": "forms.sbc29.com", - "ip": "217.74.111.254", + "ip": "185.75.141.218", "geoip": { - "city": { - "geoname_id": 2985034, - "names": { - "de": "Puteaux", - "en": "Puteaux", - "fr": "Puteaux", - "ja": "ピュトー", - "ru": "Пюто", - "zh-CN": "皮托" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -12171,14 +9976,11 @@ } }, "location": { - "accuracy_radius": 200, - "latitude": 48.88, - "longitude": 2.2454, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "92800" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -12193,37 +9995,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 3013657, - "iso_code": "92", - "names": { - "de": "Hauts-de-Seine", - "en": "Hauts-de-Seine", - "es": "Altos de Sena", - "fr": "Hauts-de-Seine", - "ja": "オー=ド=セーヌ県", - "pt-BR": "Altos do Sena", - "ru": "О-де-Сен", - "zh-CN": "上塞纳省" - } - } - ] + } } } ] @@ -12372,7 +10144,7 @@ { "requestedUrl": "https://aidantsconnect.beta.gouv.fr/", "finalUrl": "https://aidantsconnect.beta.gouv.fr/", - "fetchTime": "2024-11-24T01:47:10.151Z", + "fetchTime": "2024-12-01T01:58:21.801Z", "runWarnings": [], "categories": { "performance": { @@ -12383,7 +10155,7 @@ "snapshot" ], "id": "performance", - "score": 0.8 + "score": 0.79 }, "accessibility": { "title": "Accessibility", @@ -12435,53 +10207,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2667, + "numericValue": 2670, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2667, - "firstMeaningfulPaint": 2667, - "largestContentfulPaint": 3988, - "interactive": 2667, - "speedIndex": 4688, + "firstContentfulPaint": 2670, + "firstMeaningfulPaint": 2670, + "largestContentfulPaint": 3993, + "interactive": 2670, + "speedIndex": 5129, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.012508821275499134, "cumulativeLayoutShiftMainFrame": 0.012508821275499134, "totalCumulativeLayoutShift": 0.012508821275499134, "observedTimeOrigin": 0, - "observedTimeOriginTs": 394581751, + "observedTimeOriginTs": 400208569, "observedNavigationStart": 0, - "observedNavigationStartTs": 394581751, - "observedFirstPaint": 1637, - "observedFirstPaintTs": 396218569, - "observedFirstContentfulPaint": 1637, - "observedFirstContentfulPaintTs": 396218569, - "observedFirstContentfulPaintAllFrames": 1637, - "observedFirstContentfulPaintAllFramesTs": 396218569, - "observedFirstMeaningfulPaint": 1637, - "observedFirstMeaningfulPaintTs": 396218569, - "observedLargestContentfulPaint": 1747, - "observedLargestContentfulPaintTs": 396328615, - "observedLargestContentfulPaintAllFrames": 1747, - "observedLargestContentfulPaintAllFramesTs": 396328615, - "observedTraceEnd": 5038, - "observedTraceEndTs": 399619566, - "observedLoad": 2572, - "observedLoadTs": 397153695, - "observedDomContentLoaded": 1781, - "observedDomContentLoadedTs": 396362254, + "observedNavigationStartTs": 400208569, + "observedFirstPaint": 1796, + "observedFirstPaintTs": 402004745, + "observedFirstContentfulPaint": 1796, + "observedFirstContentfulPaintTs": 402004745, + "observedFirstContentfulPaintAllFrames": 1796, + "observedFirstContentfulPaintAllFramesTs": 402004745, + "observedFirstMeaningfulPaint": 1796, + "observedFirstMeaningfulPaintTs": 402004745, + "observedLargestContentfulPaint": 1905, + "observedLargestContentfulPaintTs": 402113730, + "observedLargestContentfulPaintAllFrames": 1905, + "observedLargestContentfulPaintAllFramesTs": 402113730, + "observedTraceEnd": 5407, + "observedTraceEndTs": 405615135, + "observedLoad": 2926, + "observedLoadTs": 403134675, + "observedDomContentLoaded": 1923, + "observedDomContentLoadedTs": 402131156, "observedCumulativeLayoutShift": 0.012508821275499134, "observedCumulativeLayoutShiftMainFrame": 0.012508821275499134, "observedTotalCumulativeLayoutShift": 0.012508821275499134, - "observedFirstVisualChange": 1635, - "observedFirstVisualChangeTs": 396216751, - "observedLastVisualChange": 2635, - "observedLastVisualChangeTs": 397216751, - "observedSpeedIndex": 2289, - "observedSpeedIndexTs": 396870458 + "observedFirstVisualChange": 1808, + "observedFirstVisualChangeTs": 402016569, + "observedLastVisualChange": 3025, + "observedLastVisualChangeTs": 403233569, + "observedSpeedIndex": 2602, + "observedSpeedIndexTs": 402810720 }, { "lcpInvalidated": false @@ -12503,19 +10275,19 @@ "numScripts": 14, "numStylesheets": 7, "numFonts": 4, - "numTasks": 38, + "numTasks": 40, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.7019999999999995, - "throughput": 6365812.415226752, - "maxRtt": 159.914, - "maxServerLatency": 311.369, - "totalByteWeight": 666134, - "totalTaskTime": 5.264999999999999, - "mainDocumentTransferSize": 9100 + "rtt": 1.5899999999999999, + "throughput": 5619213.494923347, + "maxRtt": 159.66, + "maxServerLatency": 312.91799999999995, + "totalByteWeight": 697152, + "totalTaskTime": 3.440999999999998, + "mainDocumentTransferSize": 9101 } ] } @@ -12612,15 +10384,15 @@ "width": 1920, "height": 1080, "url": "https://aidantsconnect.beta.gouv.fr", - "size": 819.266, + "size": 850.028, "nodes": 380, "requests": 46, "grade": "C", - "score": 70, - "ges": 1.6, - "water": 2.4, + "score": 69, + "ges": 1.62, + "water": 2.43, "ecoindex_version": "5.4.2", - "date": "2024-11-24 01:44:08.398044", + "date": "2024-12-01 01:55:19.775975", "page_type": null } ], @@ -12630,9 +10402,9 @@ }, "summary": { "httpGrade": "B-", - "apdex": 0.859, + "apdex": 0.728, "apdexGrade": "F", - "uptime": 99.589, + "uptime": 99.736, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -12644,7 +10416,7 @@ "cookiesCount": 2, "trackersGrade": "C", "trackersCount": 8, - "lighthouse_performance": 0.8, + "lighthouse_performance": 0.79, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -12928,10 +10700,10 @@ "url": "https://aides-territoires.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 98.792, + "uptime": 98.923, "down": false, "down_since": null, - "up_since": "2024-11-22T00:10:28Z", + "up_since": "2024-11-30T00:12:50Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -12942,8 +10714,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:07:42Z", - "next_check_at": "2024-11-24T02:12:41Z", + "last_check_at": "2024-12-01T02:15:24Z", + "next_check_at": "2024-12-01T02:20:23Z", "created_at": "2021-04-22T19:49:15Z", "mute_until": null, "favicon_url": "https://aides-territoires.beta.gouv.fr/build/images/favicon/favicon.e6f2ba2a.ico", @@ -12951,24 +10723,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:52:48Z", + "tested_at": "2024-12-01T01:45:33Z", "expires_at": "2025-01-01T20:24:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.931, + "apdex": 0.962, "timings": { "redirect": 0, - "namelookup": 324, - "connection": 141, - "handshake": 147, - "response": 358, - "total": 970 + "namelookup": 284, + "connection": 126, + "handshake": 134, + "response": 349, + "total": 892 } }, "uptimeGrade": "B", - "apdexGrade": "F" + "apdexGrade": "D" }, "nmap": { "host": "aides-territoires.beta.gouv.fr", @@ -13342,7 +11114,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", @@ -13496,14 +11268,14 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732413815" + "finding": "1733019263" }, { "id": "HSTS_time", @@ -13594,14 +11366,14 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "X-Content-Security-Policy", "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "Permissions-Policy", @@ -14133,77 +11905,77 @@ }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -14211,7 +11983,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -14219,7 +11991,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -14227,7 +11999,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -14235,7 +12007,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -14243,7 +12015,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -14251,525 +12023,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-10-03 20:24" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-01-01 20:24" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732413916" + "finding": "1733019316" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options_multiple", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple X-Frame-Options headers. Using first header: DENY" }, { "id": "X-Frame-Options", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "X-Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "Permissions-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "geolocation=(self), microphone=(self), sync-xhr=(self), fullscreen=(self)" }, { "id": "X-XSS-Protection", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-referrer, strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -14777,7 +12549,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -14786,7 +12558,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -14795,7 +12567,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -14804,7 +12576,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -14813,7 +12585,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -14821,7 +12593,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -14830,7 +12602,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -14839,7 +12611,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -14848,7 +12620,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -14857,14 +12629,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -14873,7 +12645,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -14882,7 +12654,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -14891,7 +12663,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -14900,7 +12672,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -14909,7 +12681,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -14918,7 +12690,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -14927,7 +12699,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -14936,7 +12708,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -14945,7 +12717,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -14954,392 +12726,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -15347,7 +13119,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -15355,7 +13127,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -15363,7 +13135,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -15371,7 +13143,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -15379,7 +13151,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -15387,525 +13159,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-10-03 20:24" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-01-01 20:24" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732414017" + "finding": "1733019372" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options_multiple", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "Multiple X-Frame-Options headers. Using first header: DENY" }, { "id": "X-Frame-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "X-Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "Permissions-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "geolocation=(self), microphone=(self), sync-xhr=(self), fullscreen=(self)" }, { "id": "X-XSS-Protection", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-referrer, strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -15913,7 +13685,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -15922,7 +13694,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -15931,7 +13703,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -15940,7 +13712,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -15949,7 +13721,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -15957,7 +13729,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -15966,7 +13738,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -15975,7 +13747,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -15984,7 +13756,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -15993,14 +13765,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -16009,7 +13781,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -16018,7 +13790,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -16027,7 +13799,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -16036,7 +13808,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -16045,7 +13817,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -16054,7 +13826,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -16063,7 +13835,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -16072,7 +13844,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -16081,7 +13853,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -16090,392 +13862,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -16483,7 +14255,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -16491,7 +14263,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -16499,7 +14271,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -16507,7 +14279,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -16515,7 +14287,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -16523,525 +14295,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-10-03 20:24" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-01-01 20:24" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732414119" + "finding": "1733019426" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options_multiple", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple X-Frame-Options headers. Using first header: DENY" }, { "id": "X-Frame-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "X-Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" + "finding": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr" }, { "id": "Permissions-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "geolocation=(self), microphone=(self), sync-xhr=(self), fullscreen=(self)" }, { "id": "X-XSS-Protection", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-referrer, strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -17049,7 +14821,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -17058,7 +14830,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -17067,7 +14839,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -17076,7 +14848,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -17085,7 +14857,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -17093,7 +14865,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -17102,7 +14874,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -17111,7 +14883,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -17120,7 +14892,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -17129,14 +14901,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -17145,7 +14917,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -17154,7 +14926,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -17163,7 +14935,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -17172,7 +14944,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -17181,7 +14953,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -17190,7 +14962,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -17199,7 +14971,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -17208,7 +14980,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -17217,7 +14989,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -17226,325 +14998,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "410" + "finding": "221" } ], "thirdparties": { @@ -17563,11 +15335,19 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-de-leau-adour-garonne_logo.png.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-francaise-de-developpement_logo.png.webp" + }, + { + "type": "unknown", + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-de-leau-rhone-mediterranee-corse_logo.png.webp" + }, + { + "type": "unknown", + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/blog_thumb_desktop/blog/eucf-1-1725887992.png.webp" }, { "type": "brevo", - "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=fe87b4e7-f0b9-42be-b065-02a73022d26f&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Aides%20Territoires&sib_name=Aides%20Territoires&ma_referrer=&ma_path=%2F", + "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=3a609e18-5616-4717-96d2-74eedb8eb0f2&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Aides%20Territoires&sib_name=Aides%20Territoires&ma_referrer=&ma_path=%2F", "details": { "id": "brevo", "message": "Ensure your TOS notify the Brevo usage" @@ -17575,23 +15355,19 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-de-leau-loire-bretagne_logo.jpeg.webp" - }, - { - "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/blog_thumb_desktop/blog/eucf-1-1725887992.png.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-bio_logo.jpg.webp" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/program_thumb_mini/programs/eit-manufacturing_logo.png.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/program_thumb_mini/programs/france-ruralites_logo.png.webp" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/cerema_logo.jpg.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/ademe_logo.png.webp" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/bpi-france_logo.png.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/region-occitanie_logo.png.webp" }, { "type": "unknown", @@ -17599,11 +15375,7 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/program_thumb_mini/programs/france-ruralites_logo.png.webp" - }, - { - "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/backer_thumb/backers/agence-de-leau-rhone-mediterranee-corse_logo.png.webp" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/imagine/program_thumb_mini/programs/eit-manufacturing_logo.png.webp" } ], "cookies": [ @@ -17612,7 +15384,7 @@ "value": "1", "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1732415502, + "expires": 1733020988, "size": 16, "httpOnly": false, "secure": false, @@ -17624,10 +15396,10 @@ }, { "name": "_pk_id.67.6088", - "value": "3f594b5322c1a0bc.1732413703.", + "value": "4aaac13dab94c6a7.1733019189.", "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1766368903, + "expires": 1766974389, "size": 42, "httpOnly": false, "secure": false, @@ -17639,10 +15411,10 @@ }, { "name": "sib_cuid", - "value": "fe87b4e7-f0b9-42be-b065-02a73022d26f", + "value": "3a609e18-5616-4717-96d2-74eedb8eb0f2", "domain": ".aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1748131302, + "expires": 1748736788, "size": 44, "httpOnly": false, "secure": false, @@ -17653,7 +15425,7 @@ }, { "name": "PHPSESSID", - "value": "cc1c51b845b6edbb2ce2686d80f35054", + "value": "f037fb5acc2d485647962a0a2dc25d82", "domain": "aides-territoires.beta.gouv.fr", "path": "/", "expires": -1, @@ -17670,26 +15442,26 @@ "headers": { "cache-control": "max-age=0, must-revalidate, private", "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr", + "content-security-policy": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 02:01:41 GMT", - "expires": "Sun, 24 Nov 2024 02:01:41 GMT", - "link": "; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\",; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\",; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\"", + "date": "Sun, 01 Dec 2024 02:13:07 GMT", + "expires": "Sun, 01 Dec 2024 02:13:07 GMT", + "link": "; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"script\"; defer,; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\",; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\",; rel=\"preload\"; as=\"style\"; rel=\"stylesheet\"", "permissions-policy": "geolocation=(self), microphone=(self), sync-xhr=(self), fullscreen=(self)", "referrer-policy": "no-referrer, strict-origin-when-cross-origin", - "set-cookie": "PHPSESSID=cc1c51b845b6edbb2ce2686d80f35054; path=/; secure; httponly; samesite=lax", + "set-cookie": "PHPSESSID=f037fb5acc2d485647962a0a2dc25d82; path=/; secure; httponly; samesite=lax", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", - "x-content-security-policy": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-L4FycbCOo0KpOBpP+Vs3jJggrgjsYel1vFnsjqSlTOg='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr", + "x-content-security-policy": "default-src 'self' https://in-automate.brevo.com https://stats.beta.gouv.fr http://aides-territoires.beta.gouv.fr https://aides-territoires.beta.gouv.fr; base-uri 'self'; block-all-mixed-content; font-src 'self' https://fonts.gstatic.com/; frame-ancestors 'self' https://aides-territoires-stage.s3.fr-par.scw.cloud https://aides-territoires-prod.s3.fr-par.scw.cloud; frame-src https://stats.data.gouv.fr; img-src 'self' data: https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud https://a.forte.tiles.quaidorsay.fr https://b.forte.tiles.quaidorsay.fr https://c.forte.tiles.quaidorsay.fr https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; media-src 'self' https://aides-territoires-prod.s3.fr-par.scw.cloud https://aides-territoires-stage.s3.fr-par.scw.cloud; object-src 'none'; script-src 'self' https://sibautomation.com https://stats.beta.gouv.fr/ 'sha256-67wAW3E0oSoOuw0okhSLQ7otokOuKflAseQWMwxClzI=' 'sha256-mzCfKtjtKqQ7MIc84zRZ99WZXcdUOI9IhVQNdr2emaI=' 'sha256-f3VypiVFBXjJCi7K50h/QOxlVinoectVz8z3rDQYNPc=' 'sha256-J3qDgnk8b7TVH4vvp7osU9Rt9SDcVYOyNgSF9VyH86g='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline' https://stats.beta.gouv.fr", "x-content-type-options": "nosniff", "x-frame-options": "DENY\ndeny", - "x-request-id": "3fdae8e5-935d-4d5a-8b70-dbb69c4abf71", + "x-request-id": "4762fa39-5593-4961-980a-0806709d704e", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "aides-territoires.beta.gouv.fr", - "ip": "148.253.75.120", + "ip": "5.104.101.30", "geoip": { "continent": { "code": "EU", @@ -17745,7 +15517,7 @@ }, { "hostname": "aides-territoires-prod.s3.fr-par.scw.cloud", - "ip": "51.159.62.20", + "ip": "51.159.62.19", "geoip": { "city": { "geoname_id": 2988507, @@ -18119,7 +15891,7 @@ { "requestedUrl": "https://aides-territoires.beta.gouv.fr/", "finalUrl": "https://aides-territoires.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:01:13.596Z", + "fetchTime": "2024-12-01T02:12:42.748Z", "runWarnings": [], "categories": { "performance": { @@ -18130,7 +15902,7 @@ "snapshot" ], "id": "performance", - "score": 0.69 + "score": 0.79 }, "accessibility": { "title": "Accessibility", @@ -18182,53 +15954,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5753, + "numericValue": 5393, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4042, - "firstMeaningfulPaint": 4042, - "largestContentfulPaint": 4325, - "interactive": 5753, - "speedIndex": 5251, - "totalBlockingTime": 99, - "maxPotentialFID": 211, - "cumulativeLayoutShift": 0.010510698954264323, - "cumulativeLayoutShiftMainFrame": 0.010510698954264323, - "totalCumulativeLayoutShift": 0.010510698954264323, + "firstContentfulPaint": 3096, + "firstMeaningfulPaint": 3096, + "largestContentfulPaint": 3326, + "interactive": 5393, + "speedIndex": 4203, + "totalBlockingTime": 70, + "maxPotentialFID": 160, + "cumulativeLayoutShift": 0.12503435346815323, + "cumulativeLayoutShiftMainFrame": 0.12503435346815323, + "totalCumulativeLayoutShift": 0.12503435346815323, "observedTimeOrigin": 0, - "observedTimeOriginTs": 478130807, + "observedTimeOriginTs": 391459511, "observedNavigationStart": 0, - "observedNavigationStartTs": 478130807, - "observedFirstPaint": 1288, - "observedFirstPaintTs": 479419124, - "observedFirstContentfulPaint": 1288, - "observedFirstContentfulPaintTs": 479419124, - "observedFirstContentfulPaintAllFrames": 1288, - "observedFirstContentfulPaintAllFramesTs": 479419124, - "observedFirstMeaningfulPaint": 1288, - "observedFirstMeaningfulPaintTs": 479419124, - "observedLargestContentfulPaint": 1288, - "observedLargestContentfulPaintTs": 479419124, - "observedLargestContentfulPaintAllFrames": 1288, - "observedLargestContentfulPaintAllFramesTs": 479419124, - "observedTraceEnd": 4845, - "observedTraceEndTs": 482975672, - "observedLoad": 2214, - "observedLoadTs": 480345278, - "observedDomContentLoaded": 1371, - "observedDomContentLoadedTs": 479502200, - "observedCumulativeLayoutShift": 0.010510698954264323, - "observedCumulativeLayoutShiftMainFrame": 0.010510698954264323, - "observedTotalCumulativeLayoutShift": 0.010510698954264323, - "observedFirstVisualChange": 1300, - "observedFirstVisualChangeTs": 479430807, - "observedLastVisualChange": 1899, - "observedLastVisualChangeTs": 480029807, - "observedSpeedIndex": 1317, - "observedSpeedIndexTs": 479448155 + "observedNavigationStartTs": 391459511, + "observedFirstPaint": 818, + "observedFirstPaintTs": 392277135, + "observedFirstContentfulPaint": 818, + "observedFirstContentfulPaintTs": 392277135, + "observedFirstContentfulPaintAllFrames": 818, + "observedFirstContentfulPaintAllFramesTs": 392277135, + "observedFirstMeaningfulPaint": 818, + "observedFirstMeaningfulPaintTs": 392277135, + "observedLargestContentfulPaint": 818, + "observedLargestContentfulPaintTs": 392277135, + "observedLargestContentfulPaintAllFrames": 818, + "observedLargestContentfulPaintAllFramesTs": 392277135, + "observedTraceEnd": 3780, + "observedTraceEndTs": 395239808, + "observedLoad": 1268, + "observedLoadTs": 392727015, + "observedDomContentLoaded": 890, + "observedDomContentLoadedTs": 392349843, + "observedCumulativeLayoutShift": 0.12503435346815323, + "observedCumulativeLayoutShiftMainFrame": 0.12503435346815323, + "observedTotalCumulativeLayoutShift": 0.12503435346815323, + "observedFirstVisualChange": 824, + "observedFirstVisualChangeTs": 392283511, + "observedLastVisualChange": 1441, + "observedLastVisualChangeTs": 392900511, + "observedSpeedIndex": 844, + "observedSpeedIndexTs": 392303141 }, { "lcpInvalidated": false @@ -18246,23 +16018,23 @@ "type": "debugdata", "items": [ { - "numRequests": 77, - "numScripts": 13, + "numRequests": 64, + "numScripts": 17, "numStylesheets": 3, "numFonts": 5, - "numTasks": 1858, + "numTasks": 1646, "numTasksOver10ms": 8, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasksOver25ms": 5, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 8.636, - "throughput": 8885455.707187617, - "maxRtt": 141.856, - "maxServerLatency": 132.212, - "totalByteWeight": 1052910, - "totalTaskTime": 545.6649999999946, - "mainDocumentTransferSize": 67682 + "rtt": 1.4729999999999999, + "throughput": 12191651.295271333, + "maxRtt": 87.35000000000001, + "maxServerLatency": 121.75300000000001, + "totalByteWeight": 1029904, + "totalTaskTime": 498.2779999999952, + "mainDocumentTransferSize": 67786 } ] } @@ -18315,7 +16087,7 @@ "link": "https://aides-territoires.beta.gouv.fr/", "repository": "https://github.com/MTES-MCT/aides-territoires-symfony", "contact": "aides-territoires@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0APour%20pr%C3%A8s%20de%2035%20000%20communes%20et%201%20260%20regroupements%20de%20communes%20fran%C3%A7aises%2C%20acc%C3%A9der%20%C3%A0%20des%20aides%20en%20financement%20et%20en%20ing%C3%A9nierie%20est%20essentiel%2C%20car%20sans%20aide%2C%20il%20n%E2%80%99y%20a%20pas%20de%20projets%20d%E2%80%99am%C3%A9nagement%20de%20territoire.%20C%E2%80%99est%20surtout%20un%20v%C3%A9ritable%20casse-t%C3%AAte%20en%20raison%20de%20la%20myriade%20d%E2%80%99aides%20disponibles%2C%20puisqu%E2%80%99on%20en%20recense%20plus%20de%20300%20types%2C%20qui%20rel%C3%A8vent%20de%20diff%C3%A9rents%20niveaux%2C%20r%C3%A9gional%2C%20national%2C%20et%20m%C3%AAme%20europ%C3%A9en%20%3A%20comment%20s%E2%80%99y%20retrouver%20dans%20ce%20maquis%20%3F%0A%0ADes%20dispositifs%20de%20veille%20existent%2C%20mais%20ils%20sont%20le%20plus%20souvent%20construits%20de%20mani%C3%A8re%20individuelle%2C%20avec%20des%20outils%20peu%20collaboratifs%20et%20%C3%A0%20la%20visibilit%C3%A9%20limit%C3%A9e%20%28tableur%2C%20liste%20de%20diffusion%2C%20etc%29.%20Ensuite%2C%20il%20faut%20%C3%AAtre%20en%20mesure%20de%20s%C3%A9lectionner%20les%20aides%20les%20plus%20adapt%C3%A9es%20%C3%A0%20son%20projet%20et%20de%20compl%C3%A9ter%20les%20dossiers%20de%20candidature%20ad%20hoc.%20Des%20chefs%20de%20projets%20peuvent%20ainsi%20passer%20plus%20de%20deux%20tiers%20de%20leur%20temps%20%C3%A0%20rechercher%20ces%20fameuses%20aides%E2%80%A6%20alors%20qu%E2%80%99ils%20pourraient%20consacrer%20ce%20temps%20au%20projet%20en%20lui-m%C3%AAme%20%21%0A%0ACeci%20engendre%20des%20situations%20aberrantes%2C%20avec%20des%20doutes%20sur%20l%E2%80%99apport%20r%C3%A9el%20de%20ces%20dispositifs%20%3A%20frustration%20du%20c%C3%B4t%C3%A9%20des%20financeurs%20qui%20n%E2%80%99atteindront%20pas%20leur%20c%C5%93ur%20de%20cible%2C%20et%20lassitude%20des%20collectivit%C3%A9s%2C%20n%E2%80%99ayant%20aucune%20garantie%20quand%20elles%20remplissent%20un%20dossier%2C%20si%20elles%20arrivent%20%C3%A0%20cette%20%C3%A9tape.%0A%0ALe%20travail%20de%20recherche%20d%27aides%2C%20excessivement%20chronophage%2C%20est%20susceptible%20d%E2%80%99accentuer%20les%20in%C3%A9galit%C3%A9s%20entre%20les%20collectivit%C3%A9s%20%3A%20dans%20le%20meilleur%20des%20cas%2C%20elles%20vont%20d%C3%A9dier%20des%20fiches%20de%20poste%20%C3%A0%20ce%20duo%20%C2%AB%20veille-candidature%20%C2%BB%2C%20dans%20le%20pire%20des%20cas%2C%20elles%20renonceront%20%C3%A0%20certaines%20aides%20par%20m%C3%A9connaissance%20ou%20manque%20de%20temps.%20Les%20aides%20ne%20b%C3%A9n%C3%A9ficient%20alors%20qu%27%C3%A0%20celles%20qui%20peuvent%20consacrer%20des%20moyens%20importants%20au%20travail%20de%20veille%2C%20ce%20qui%20renforce%20la%20fracture%20territoriale%20fran%C3%A7aise.%0A%0A%23%23%20Le%20produit%20%3A%20Aides-territoires%0A%0AAides-territoires%20est%20le%20guichet%20unique%20des%20aides%20qui%20rend%20visibles%20et%20lisibles%20tous%20les%20dispositifs%20%C3%A0%20destination%20des%20collectivit%C3%A9s.%20Il%20permet%20%C3%A0%20chaque%20agent%20et%20%C3%A9lu%20local%20d%E2%80%99identifier%20rapidement%20les%20aides%20pertinentes%20en%20effectuant%20une%20recherche%20territorialis%C3%A9e%2C%20sp%C3%A9cifique%20%C3%A0%20sa%20structure%20et%20aux%20th%C3%A9matiques%20de%20son%20projet.%20La%20veille%20est%20%C3%A9galement%20automatisable%20via%20un%20syst%C3%A8me%20d%E2%80%99alertes%20email.%20Une%20cartographie%20des%20aides%20et%20porteurs%20permet%20de%20facilement%20naviguer%20dans%20l%27%C3%A9cosyst%C3%A8me%20propre%20%C3%A0%20son%20d%C3%A9partement.%0A%0APour%20les%20porteurs%20d%E2%80%99aides%2C%20Aides-territoires%20offre%20une%20solution%20cl%C3%A9%20en%20main%20qui%20leur%20permet%20d%E2%80%99ajouter%20des%20dispositifs%2C%20soit%20manuellement%20depuis%20un%20espace%20contributeur%2C%20soit%20via%20un%20flux%20de%20donn%C3%A9es%20%28API%29.%20La%20plateforme%20permet%20de%20d%C3%A9finir%20de%20mani%C3%A8re%20tr%C3%A8s%20granulaire%20la%20cible%20des%20dispositifs%2C%20et%20offre%20%C3%A0%20chaque%20organisme%20porteur%20d%E2%80%99aides%20une%20vitrine%20personnalis%C3%A9e%20et%20des%20indicateurs%20de%20visibilit%C3%A9%20et%20int%C3%A9r%C3%AAt%20des%20collectivit%C3%A9s.%0A%0AAides-territoires%20%C3%A9vite%20le%20re-d%C3%A9veloppement%20de%20plateformes%20par%20chaque%20porteur%20d%E2%80%99aides%20et%20donne%20%C3%A0%20toutes%20les%20collectivit%C3%A9s%20un%20moyen%20efficace%20et%20centralis%C3%A9%20de%20trouver%20les%20aides%20pour%20r%C3%A9aliser%20leurs%20projets.%0A%0A%23%23%20O%C3%B9%20en%20est-on%20%3F%20%0A%0AAides-territoires%20r%C3%A9pertorie%20les%20aides%20pour%20toutes%20les%20th%C3%A9matiques%20de%20projets%20locaux%20%28transition%20%C3%A9nerg%C3%A9tique%2C%20d%C3%A9veloppement%20%C3%A9conomique%2C%20mobilit%C3%A9%2C%20etc.%29.%20De%20m%C3%AAme%2C%20la%20plateforme%20couvre%20tous%20les%20territoires%20fran%C3%A7ais%2C%20en%20m%C3%A9tropole%20comme%20en%20outre-mer.%0A%0AAides-territoires%20est%20structur%C3%A9e%20selon%20deux%20profils%20d%27utilisateurs%20%3A%0A%0A%2A%20%2B%2B%20L%E2%80%99offre%20%28financements%2C%20aides%20en%20ing%C3%A9nierie%29%2B%2B%20%C3%A9mane%20de%20nombreux%20acteurs%20%3A%20les%20directions%20g%C3%A9n%C3%A9rales%20des%20minist%C3%A8res%3B%20les%20agences%20plac%C3%A9es%20sous%20la%20tutelle%20de%20l%27%C3%89tat%20%3B%20les%20collectivit%C3%A9s%20territoriales%20porteuses%20d%27aides%20%3B%20les%20structures%20locales%20de%20l%27ing%C3%A9nierie%3B%20%20les%20fondations%20priv%C3%A9es%2C%20etc.%0A%0ADes%20espaces%20privil%C3%A9gi%C3%A9s%20de%20diffusion%20des%20informations%20%28portails%2C%20pages%20programmes%2C%20articles%20blog%20%29%20permettent%20de%20valoriser%20des%20aides%20et%20programmes%20d%27aides%20%28%20ex%3A%20le%20Fonds%20Vert%20%29%20%0A%0A%2A%20%20%2B%2BLa%20demande%2B%2B%20vient%20des%20collectivit%C3%A9s%20et%20plus%20particuli%C3%A8rement%20des%20agents%20en%20charge%20de%20la%20veille%20sur%20les%20aides%20mais%20%C3%A9galement%20de%20leurs%20partenaires%20locaux%20%28associations%2C%20%C3%A9tablissements%20publics%29%20et%20de%20structures%20accompagnantes%20%28DDT%2C%20PETR%2C%20etc.%29%0A%2ALes%20collectivit%C3%A9s%20disposent%20en%20outre%20d%27un%20outil%20collaboratif%20pour%20travailler%20ensemble%20sur%20des%20projets%2C%20partager%20et%20%C3%A9diter%20la%20recherche%20d%27aides%2C%20effectuer%20un%20suivi%20des%20subventions%20demand%C3%A9es%20et%20obtenues%2C%20%20mais%20%C3%A9galement%20communiquer%20sur%20%20ses%20projets%20en%20les%20rendant%20publics%20et%20interagir%20avec%20ses%20pairs%20%28%20en%20suivant%20leurs%20projets%2C%20en%20leur%20sugg%C3%A9rant%20des%20aides%20par%20exemple%29%20%0A%0A%23%23%20Les%20perspectives%0A%0AL%E2%80%99objectif%20est%20de%20consolider%20la%20base%20de%20donn%C3%A9es%20des%20aides%20europ%C3%A9ennes%2C%20nationales%20et%20locales%20disponibles%20sur%20Aides-territoires%2C%20en%20s%E2%80%99appuyant%20sur%20des%20partenariats%20ainsi%20qu%27une%20communaut%C3%A9%20de%20contributeurs%20constitu%C3%A9e%20dans%20les%20administrations%20ci-dessus%20cit%C3%A9es%20dans%20le%20but%20de%20r%C3%A9pondre%20au%20besoin%20d%27exhaustivit%C3%A9%20des%20acteurs%20locaux.%20%28Constitution%20d%27un%20annuaire%20des%20aides%20et%20des%20porteurs%20%26%20d%27une%20cartographie%20dynamique%29%20%0A%0APuis%2C%20en%20capitalisant%20sur%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%2C%20cet%20outil%20permettra%20de%20les%20r%C3%A9utiliser%20%28%2ADites-le%20nous%20une%20fois%2A%29%20pour%20faciliter%20le%20remplissage%20des%20dossiers.%20Le%20pr%C3%A9-remplissage%20est%20actuellement%20test%C3%A9%20avec%20les%20d%C3%A9marches%20du%20Fonds%20Vert.%20%0A%0AEnfin%2C%20d%C3%A9ploiement%20des%20fonctionnalit%C3%A9s%20collaboratives", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0APour%20pr%C3%A8s%20de%2035%20000%20communes%20et%201%20260%20regroupements%20de%20communes%20fran%C3%A7aises%2C%20acc%C3%A9der%20%C3%A0%20des%20aides%20en%20financement%20et%20en%20ing%C3%A9nierie%20est%20essentiel%2C%20car%20sans%20aide%2C%20il%20n%E2%80%99y%20a%20pas%20de%20projets%20d%E2%80%99am%C3%A9nagement%20de%20territoire.%20C%E2%80%99est%20surtout%20un%20v%C3%A9ritable%20casse-t%C3%AAte%20en%20raison%20de%20la%20myriade%20d%E2%80%99aides%20disponibles%2C%20puisqu%E2%80%99on%20en%20recense%20plus%20de%20300%20types%2C%20qui%20rel%C3%A8vent%20de%20diff%C3%A9rents%20niveaux%20%3A%20r%C3%A9gional%2C%20national%2C%20et%20m%C3%AAme%20europ%C3%A9en.%20Comment%20s%E2%80%99y%20retrouver%20dans%20ce%20maquis%20%3F%0A%0ADes%20dispositifs%20de%20veille%20existent%2C%20mais%20ils%20sont%20le%20plus%20souvent%20construits%20de%20mani%C3%A8re%20individuelle%2C%20avec%20des%20outils%20peu%20collaboratifs%20et%20%C3%A0%20la%20visibilit%C3%A9%20limit%C3%A9e%20%28tableur%2C%20liste%20de%20diffusion%2C%20etc%29.%20Ensuite%2C%20il%20faut%20%C3%AAtre%20en%20mesure%20de%20s%C3%A9lectionner%20les%20aides%20les%20plus%20adapt%C3%A9es%20%C3%A0%20son%20projet%20et%20de%20compl%C3%A9ter%20les%20dossiers%20de%20candidature%20ad%20hoc.%20Des%20chefs%20de%20projets%20peuvent%20ainsi%20passer%20plus%20de%20deux%20tiers%20de%20leur%20temps%20%C3%A0%20rechercher%20ces%20fameuses%20aides%E2%80%A6%20alors%20qu%E2%80%99ils%20pourraient%20consacrer%20ce%20temps%20au%20projet%20en%20lui-m%C3%AAme%20%21%0A%0ACeci%20engendre%20des%20situations%20aberrantes%2C%20avec%20des%20doutes%20sur%20l%E2%80%99apport%20r%C3%A9el%20de%20ces%20dispositifs%20%3A%20frustration%20du%20c%C3%B4t%C3%A9%20des%20financeurs%20qui%20n%E2%80%99atteindront%20pas%20leur%20c%C5%93ur%20de%20cible%2C%20et%20lassitude%20des%20collectivit%C3%A9s%2C%20n%E2%80%99ayant%20aucune%20garantie%20quand%20elles%20remplissent%20un%20dossier%2C%20si%20elles%20arrivent%20%C3%A0%20cette%20%C3%A9tape.%0A%0ALe%20travail%20de%20recherche%20d%27aides%2C%20excessivement%20chronophage%2C%20est%20susceptible%20d%E2%80%99accentuer%20les%20in%C3%A9galit%C3%A9s%20entre%20les%20collectivit%C3%A9s%20%3A%20dans%20le%20meilleur%20des%20cas%2C%20elles%20vont%20d%C3%A9dier%20des%20fiches%20de%20poste%20%C3%A0%20ce%20duo%20%C2%AB%20veille-candidature%20%C2%BB%2C%20dans%20le%20pire%20des%20cas%2C%20elles%20renonceront%20%C3%A0%20certaines%20aides%20par%20m%C3%A9connaissance%20ou%20manque%20de%20temps.%20Les%20aides%20ne%20b%C3%A9n%C3%A9ficient%20alors%20qu%27%C3%A0%20celles%20qui%20peuvent%20consacrer%20des%20moyens%20importants%20au%20travail%20de%20veille%2C%20ce%20qui%20renforce%20la%20fracture%20territoriale%20fran%C3%A7aise.%0A%0A%23%23%20Le%20produit%20%3A%20Aides-territoires%0A%0AAides-territoires%20est%20le%20guichet%20unique%20des%20aides%20qui%20rend%20visibles%20et%20lisibles%20tous%20les%20dispositifs%20%C3%A0%20destination%20des%20collectivit%C3%A9s.%20Il%20permet%20%C3%A0%20chaque%20agent%20et%20%C3%A9lu%20local%20d%E2%80%99identifier%20rapidement%20les%20aides%20pertinentes%20en%20effectuant%20une%20recherche%20territorialis%C3%A9e%2C%20sp%C3%A9cifique%20%C3%A0%20sa%20structure%20et%20aux%20th%C3%A9matiques%20de%20son%20projet.%20La%20veille%20est%20%C3%A9galement%20automatisable%20via%20un%20syst%C3%A8me%20d%E2%80%99alertes%20email.%20Une%20cartographie%20des%20aides%20et%20porteurs%20permet%20de%20facilement%20naviguer%20dans%20l%27%C3%A9cosyst%C3%A8me%20propre%20%C3%A0%20son%20d%C3%A9partement.%0A%0APour%20les%20porteurs%20d%E2%80%99aides%2C%20Aides-territoires%20offre%20une%20solution%20cl%C3%A9%20en%20main%20qui%20leur%20permet%20d%E2%80%99ajouter%20des%20dispositifs%2C%20soit%20manuellement%20depuis%20un%20espace%20contributeur%2C%20soit%20via%20un%20flux%20de%20donn%C3%A9es%20%28API%29.%20La%20plateforme%20permet%20de%20d%C3%A9finir%20de%20mani%C3%A8re%20tr%C3%A8s%20granulaire%20la%20cible%20des%20dispositifs%2C%20et%20offre%20%C3%A0%20chaque%20organisme%20porteur%20d%E2%80%99aides%20une%20vitrine%20personnalis%C3%A9e%20et%20des%20indicateurs%20de%20visibilit%C3%A9%20et%20int%C3%A9r%C3%AAt%20des%20collectivit%C3%A9s.%0A%0AAides-territoires%20%C3%A9vite%20le%20re-d%C3%A9veloppement%20de%20plateformes%20par%20chaque%20porteur%20d%E2%80%99aides%20et%20donne%20%C3%A0%20toutes%20les%20collectivit%C3%A9s%20un%20moyen%20efficace%20et%20centralis%C3%A9%20de%20trouver%20les%20aides%20pour%20r%C3%A9aliser%20leurs%20projets.%0A%0A%23%23%20O%C3%B9%20en%20est-on%20%3F%20%0A%0AAides-territoires%20r%C3%A9pertorie%20les%20aides%20pour%20toutes%20les%20th%C3%A9matiques%20de%20projets%20locaux%20%28transition%20%C3%A9nerg%C3%A9tique%2C%20d%C3%A9veloppement%20%C3%A9conomique%2C%20mobilit%C3%A9%2C%20etc.%29.%20De%20m%C3%AAme%2C%20la%20plateforme%20couvre%20tous%20les%20territoires%20fran%C3%A7ais%2C%20en%20m%C3%A9tropole%20comme%20en%20outre-mer.%0A%0AAides-territoires%20est%20structur%C3%A9e%20selon%20deux%20profils%20d%27utilisateurs%20%3A%0A%0A-%20%2A%2AL%E2%80%99offre%20%28financements%2C%20aides%20en%20ing%C3%A9nierie%29%2A%2A%20%C3%A9mane%20de%20nombreux%20acteurs%20%3A%20les%20directions%20g%C3%A9n%C3%A9rales%20des%20minist%C3%A8res%2C%20les%20agences%20plac%C3%A9es%20sous%20la%20tutelle%20de%20l%27%C3%89tat%2C%20les%20collectivit%C3%A9s%20territoriales%20porteuses%20d%27aides%2C%20les%20structures%20locales%20de%20l%27ing%C3%A9nierie%2C%20les%20fondations%20priv%C3%A9es%2C%20etc.%0A%0ADes%20espaces%20privil%C3%A9gi%C3%A9s%20de%20diffusion%20des%20informations%20%28portails%2C%20pages%20programmes%2C%20articles%20blog%29%20permettent%20de%20valoriser%20des%20aides%20et%20programmes%20d%27aides%20%28ex%3A%20le%20Fonds%20Vert%29.%0A%0A-%20%2A%2ALa%20demande%20d%27aides%2A%2A%20vient%20des%20collectivit%C3%A9s%20et%20plus%20particuli%C3%A8rement%20des%20agents%20en%20charge%20de%20la%20veille%20sur%20les%20dispositifs%20d%27appui%20mais%20%C3%A9galement%20de%20leurs%20partenaires%20locaux%20%28associations%2C%20%C3%A9tablissements%20publics%29%20et%20de%20structures%20accompagnantes%20%28DDT%2C%20PETR%2C%20etc.%29%0A%0ALes%20collectivit%C3%A9s%20disposent%20en%20outre%20d%27un%20outil%20collaboratif%20pour%20travailler%20ensemble%20sur%20des%20projets%2C%20partager%20et%20%C3%A9diter%20la%20recherche%20d%27aides%2C%20effectuer%20un%20suivi%20des%20subventions%20demand%C3%A9es%20et%20obtenues%2C%20mais%20%C3%A9galement%20communiquer%20sur%20leurs%20projets%20en%20les%20rendant%20publics%20et%20interagir%20avec%20leurs%20pairs%20%28en%20suivant%20leurs%20projets%2C%20en%20leur%20sugg%C3%A9rant%20des%20aides%20par%20exemple%29.%0A%0A%23%23%20Les%20perspectives%0A%0AL%E2%80%99objectif%20est%20de%20consolider%20la%20base%20de%20donn%C3%A9es%20des%20aides%20europ%C3%A9ennes%2C%20nationales%20et%20locales%20disponibles%20sur%20Aides-territoires%2C%20en%20s%E2%80%99appuyant%20sur%20des%20partenariats%20ainsi%20qu%27une%20communaut%C3%A9%20de%20contributeurs%20constitu%C3%A9e%20dans%20les%20administrations%20cit%C3%A9es%20ci-dessus%20dans%20le%20but%20de%20r%C3%A9pondre%20au%20besoin%20d%27exhaustivit%C3%A9%20des%20acteurs%20locaux.%20%28constitution%20d%27un%20annuaire%20des%20aides%20et%20des%20porteurs%20%26%20d%27une%20cartographie%20dynamique%29.%0A%0APuis%2C%20en%20capitalisant%20sur%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%2C%20cet%20outil%20permettra%20de%20les%20r%C3%A9utiliser%20%28%2ADites-le%20nous%20une%20fois%2A%29%20pour%20faciliter%20le%20remplissage%20des%20dossiers.%20Le%20pr%C3%A9-remplissage%20est%20actuellement%20test%C3%A9%20avec%20les%20d%C3%A9marches%20du%20Fonds%20Vert.%20", "events": [], "phases": [ { @@ -18330,6 +16102,7 @@ } ], "sponsors": [ + "anct", "dgaln", "dhup", "mctrct", @@ -18346,7 +16119,7 @@ "incubator": { "data": { "type": "incubator", - "id": "mtes" + "id": "anct" } } } @@ -18356,15 +16129,15 @@ "width": 1920, "height": 1080, "url": "https://aides-territoires.beta.gouv.fr", - "size": 2488.425, + "size": 2190.824, "nodes": 1171, - "requests": 62, + "requests": 64, "grade": "E", "score": 36, "ges": 2.28, "water": 3.42, "ecoindex_version": "5.4.2", - "date": "2024-11-24 01:58:01.785190", + "date": "2024-12-01 02:09:44.822505", "page_type": "website" } ], @@ -18374,9 +16147,9 @@ }, "summary": { "httpGrade": "B+", - "apdex": 0.931, - "apdexGrade": "F", - "uptime": 98.792, + "apdex": 0.962, + "apdexGrade": "D", + "uptime": 98.923, "uptimeGrade": "B", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -18388,7 +16161,7 @@ "cookiesCount": 4, "trackersGrade": "F", "trackersCount": 13, - "lighthouse_performance": 0.69, + "lighthouse_performance": 0.79, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -18670,10 +16443,10 @@ "url": "https://api.apprentissage.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.976, + "uptime": 99.242, "down": false, "down_since": null, - "up_since": "2024-11-24T00:31:31Z", + "up_since": "2024-11-30T03:56:44Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -18685,8 +16458,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:06:19Z", - "next_check_at": "2024-11-24T02:07:19Z", + "last_check_at": "2024-12-01T02:17:06Z", + "next_check_at": "2024-12-01T02:18:06Z", "created_at": "2024-06-30T01:19:26Z", "mute_until": null, "favicon_url": "https://api.apprentissage.beta.gouv.fr/_next/static/media/favicon.8c087985.ico", @@ -18694,20 +16467,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:57:24Z", + "tested_at": "2024-12-01T02:11:08Z", "expires_at": "2025-02-02T22:31:38Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.246, + "apdex": 0.949, "timings": { - "redirect": 698, + "redirect": 782, "namelookup": 0, "connection": 0, "handshake": 0, - "response": 2025, - "total": 2724 + "response": 474, + "total": 1256 } }, "uptimeGrade": "A", @@ -18727,549 +16500,555 @@ "vulnerabilities": [ { "cvss": "10.0", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" }, { "cvss": "10.0", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" }, { "cvss": "9.8", - "id": "CVE-2023-38408", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2023-38408" }, { "cvss": "9.8", - "id": "CVE-2023-28531", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2023-28531" }, { "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" }, { "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" }, { "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" }, { "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" }, { "cvss": "9.8", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" }, { "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" }, { "cvss": "8.1", - "id": "PACKETSTORM:179290", "is_exploit": "true", - "type": "packetstorm" + "type": "packetstorm", + "id": "PACKETSTORM:179290" }, { "cvss": "8.1", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" }, { "cvss": "8.1", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" }, { "cvss": "8.1", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" }, { "cvss": "8.1", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" }, { "cvss": "8.1", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" }, { "cvss": "8.1", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" }, { "cvss": "8.1", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" }, { "cvss": "8.1", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" }, { "cvss": "8.1", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" }, { "cvss": "8.1", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" }, { "cvss": "8.1", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" }, { "cvss": "8.1", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" }, { "cvss": "8.1", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" }, { "cvss": "8.1", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" }, { "cvss": "8.1", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" }, { "cvss": "8.1", - "id": "D1E049F1-393E-552D-80D1-675022B26911", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "D1E049F1-393E-552D-80D1-675022B26911" }, { "cvss": "8.1", - "id": "CVE-2024-6387", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2024-6387" }, { "cvss": "8.1", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" }, { "cvss": "8.1", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" }, { "cvss": "8.1", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" }, { "cvss": "8.1", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" }, { "cvss": "8.1", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" }, { "cvss": "8.1", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960" }, { "cvss": "8.1", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" }, { "cvss": "8.1", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" }, { "cvss": "8.1", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043" }, { "cvss": "8.1", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" }, { "cvss": "8.1", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" }, { "cvss": "8.1", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" }, { "cvss": "8.1", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" }, { "cvss": "8.1", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" }, { "cvss": "8.1", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" }, { "cvss": "8.1", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" }, { "cvss": "8.1", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" }, { "cvss": "8.1", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" }, { "cvss": "8.1", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" }, { "cvss": "8.1", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" }, { "cvss": "8.1", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" }, { "cvss": "8.1", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" }, { "cvss": "8.1", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" }, { "cvss": "8.1", - "id": "6FD8F914-B663-533D-8866-23313FD37804", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "6FD8F914-B663-533D-8866-23313FD37804" }, { "cvss": "8.1", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" }, { "cvss": "8.1", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" }, { "cvss": "8.1", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" }, { "cvss": "8.1", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" }, { "cvss": "8.1", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" }, { "cvss": "8.1", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" }, { "cvss": "8.1", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" }, { "cvss": "8.1", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" }, { "cvss": "8.1", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" }, { "cvss": "8.1", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891" }, { "cvss": "8.1", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" }, { "cvss": "8.1", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "452ADB71-199C-561E-B949-FCDE6288B925" }, { "cvss": "8.1", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" }, { "cvss": "8.1", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" }, { "cvss": "8.1", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" }, { "cvss": "8.1", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" }, { "cvss": "8.1", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" }, { "cvss": "8.1", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" }, { "cvss": "8.1", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" }, { "cvss": "8.1", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" }, { "cvss": "8.1", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" }, { "cvss": "8.1", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" }, { "cvss": "8.1", - "id": "1337DAY-ID-39674", "is_exploit": "true", - "type": "zdt" + "type": "zdt", + "id": "1337DAY-ID-39674" }, { "cvss": "8.1", - "id": "11F020AC-F907-5606-8805-0516E06160EE", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992" }, { "cvss": "8.1", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "11F020AC-F907-5606-8805-0516E06160EE" }, { "cvss": "8.1", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" }, { "cvss": "8.1", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" }, { "cvss": "8.1", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" }, { "cvss": "8.1", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" + }, + { + "cvss": "8.1", + "is_exploit": "true", + "type": "githubexploit", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" }, { "cvss": "7.5", - "id": "SSV:92579", "is_exploit": "true", - "type": "seebug" + "type": "seebug", + "id": "SSV:92579" }, { "cvss": "7.5", - "id": "PACKETSTORM:173661", "is_exploit": "true", - "type": "packetstorm" + "type": "packetstorm", + "id": "PACKETSTORM:173661" }, { "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" }, { "cvss": "7.5", - "id": "1337DAY-ID-26576", "is_exploit": "true", - "type": "zdt" + "type": "zdt", + "id": "1337DAY-ID-26576" }, { "cvss": "6.5", - "id": "CVE-2023-51385", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2023-51385" }, { "cvss": "5.9", - "id": "CVE-2023-48795", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2023-48795" }, { "cvss": "5.5", - "id": "CVE-2023-51384", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2023-51384" }, { "cvss": "0.0", - "id": "PACKETSTORM:140261", "is_exploit": "true", - "type": "packetstorm" + "type": "packetstorm", + "id": "PACKETSTORM:140261" }, { "cvss": "0.0", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" }, { "cvss": "0.0", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" } ] } @@ -19657,7 +17436,7 @@ "ip": "api.apprentissage.beta.gouv.fr/54.38.65.110", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -19818,7 +17597,7 @@ "ip": "api.apprentissage.beta.gouv.fr/54.38.65.110", "port": "443", "severity": "INFO", - "finding": "1732413943" + "finding": "1733019406" }, { "id": "HSTS_time", @@ -20395,7 +18174,7 @@ "ip": "api.apprentissage.beta.gouv.fr/54.38.65.110", "port": "443", "severity": "INFO", - "finding": "52" + "finding": "51" } ], "thirdparties": { @@ -20420,9 +18199,9 @@ "headers": { "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests; worker-src 'self' 'nonce-ZGFiMTY1OWUtMDE0Zi00ZTUxLTg5NGMtY2QwYzg5NzQyMGZj' 'strict-dynamic';", + "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests; worker-src 'self' 'nonce-ZDE1NWRiNjQtNDMwNC00Y2Y4LThmZDktOTQwYTZlODQ3ZjE5' 'strict-dynamic';", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 02:04:22 GMT", + "date": "Sun, 01 Dec 2024 02:15:34 GMT", "referrer-policy": "no-referrer-when-downgrade", "set-cookie": "i18n-locale=en; Path=/; Secure; SameSite=strict", "strict-transport-security": "max-age=31536000; includeSubdomains", @@ -20521,6 +18300,24 @@ ], "rootPath": true }, + { + "slug": "magento", + "name": "Magento", + "description": "Magento is an open-source ecommerce platform written in PHP.", + "confidence": 100, + "version": null, + "icon": "Magento.svg", + "website": "https://magento.com", + "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, { "slug": "sentry", "name": "Sentry", @@ -20555,6 +18352,23 @@ } ] }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, { "slug": "php", "name": "PHP", @@ -20776,7 +18590,7 @@ { "requestedUrl": "https://api.apprentissage.beta.gouv.fr/", "finalUrl": "https://api.apprentissage.beta.gouv.fr/fr", - "fetchTime": "2024-11-24T02:03:50.624Z", + "fetchTime": "2024-12-01T02:15:08.937Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://api.apprentissage.beta.gouv.fr/) was redirected to https://api.apprentissage.beta.gouv.fr/fr. Try testing the second URL directly." ], @@ -20789,7 +18603,7 @@ "snapshot" ], "id": "performance", - "score": 0.77 + "score": 0.8 }, "accessibility": { "title": "Accessibility", @@ -20841,53 +18655,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6891, + "numericValue": 7031, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1937, - "firstMeaningfulPaint": 1937, - "largestContentfulPaint": 2612, - "interactive": 6891, - "speedIndex": 7280, - "totalBlockingTime": 293, - "maxPotentialFID": 283, + "firstContentfulPaint": 1887, + "firstMeaningfulPaint": 1887, + "largestContentfulPaint": 2637, + "interactive": 7031, + "speedIndex": 3601, + "totalBlockingTime": 387, + "maxPotentialFID": 291, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 441153851, + "observedTimeOriginTs": 339792552, "observedNavigationStart": 0, - "observedNavigationStartTs": 441153851, - "observedFirstPaint": 3589, - "observedFirstPaintTs": 444743106, - "observedFirstContentfulPaint": 3589, - "observedFirstContentfulPaintTs": 444743106, - "observedFirstContentfulPaintAllFrames": 3589, - "observedFirstContentfulPaintAllFramesTs": 444743106, - "observedFirstMeaningfulPaint": 3589, - "observedFirstMeaningfulPaintTs": 444743106, - "observedLargestContentfulPaint": 3589, - "observedLargestContentfulPaintTs": 444743106, - "observedLargestContentfulPaintAllFrames": 3589, - "observedLargestContentfulPaintAllFramesTs": 444743106, - "observedTraceEnd": 7086, - "observedTraceEndTs": 448239736, - "observedLoad": 4347, - "observedLoadTs": 445501044, - "observedDomContentLoaded": 3581, - "observedDomContentLoadedTs": 444734570, + "observedNavigationStartTs": 339792552, + "observedFirstPaint": 934, + "observedFirstPaintTs": 340726273, + "observedFirstContentfulPaint": 934, + "observedFirstContentfulPaintTs": 340726273, + "observedFirstContentfulPaintAllFrames": 934, + "observedFirstContentfulPaintAllFramesTs": 340726273, + "observedFirstMeaningfulPaint": 934, + "observedFirstMeaningfulPaintTs": 340726273, + "observedLargestContentfulPaint": 934, + "observedLargestContentfulPaintTs": 340726273, + "observedLargestContentfulPaintAllFrames": 934, + "observedLargestContentfulPaintAllFramesTs": 340726273, + "observedTraceEnd": 4139, + "observedTraceEndTs": 343931775, + "observedLoad": 1474, + "observedLoadTs": 341266825, + "observedDomContentLoaded": 925, + "observedDomContentLoadedTs": 340717130, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 3595, - "observedFirstVisualChangeTs": 444748851, - "observedLastVisualChange": 4211, - "observedLastVisualChangeTs": 445364851, - "observedSpeedIndex": 3601, - "observedSpeedIndexTs": 444755042 + "observedFirstVisualChange": 943, + "observedFirstVisualChangeTs": 340735552, + "observedLastVisualChange": 1210, + "observedLastVisualChangeTs": 341002552, + "observedSpeedIndex": 949, + "observedSpeedIndexTs": 340741870 }, { "lcpInvalidated": false @@ -20905,23 +18719,23 @@ "type": "debugdata", "items": [ { - "numRequests": 80, + "numRequests": 81, "numScripts": 47, "numStylesheets": 4, "numFonts": 3, - "numTasks": 1714, - "numTasksOver10ms": 5, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 1626, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 84.903, - "throughput": 9044538.977263773, - "maxRtt": 85.324, - "maxServerLatency": 137.39, - "totalByteWeight": 925145, - "totalTaskTime": 414.99099999999873, - "mainDocumentTransferSize": 34353 + "rtt": 84.375, + "throughput": 10307509.511006085, + "maxRtt": 87.416, + "maxServerLatency": 87.299, + "totalByteWeight": 924434, + "totalTaskTime": 513.9019999999983, + "mainDocumentTransferSize": 34352 } ] } @@ -20972,15 +18786,15 @@ "width": 1920, "height": 1080, "url": "https://api.apprentissage.beta.gouv.fr", - "size": 1270.514, - "nodes": 277, - "requests": 89, + "size": 1267.917, + "nodes": 265, + "requests": 90, "grade": "C", "score": 62, "ges": 1.76, "water": 2.64, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:00:43.051840", + "date": "2024-12-01 02:11:54.882958", "page_type": null } ], @@ -20990,9 +18804,9 @@ }, "summary": { "httpGrade": "B+", - "apdex": 0.246, + "apdex": 0.949, "apdexGrade": "F", - "uptime": 99.976, + "uptime": 99.242, "uptimeGrade": "A", "nmapGrade": "F", "nmapOpenPortsCount": 3, @@ -21004,7 +18818,7 @@ "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.77, + "lighthouse_performance": 0.8, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -21266,10 +19080,10 @@ "url": "https://aplus.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.978, + "uptime": 99.977, "down": false, "down_since": null, - "up_since": "2024-11-20T09:22:09Z", + "up_since": "2024-11-30T11:18:59Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -21281,8 +19095,8 @@ "slack_compatible:4124784183", "slack_compatible:3773906685" ], - "last_check_at": "2024-11-24T02:08:26Z", - "next_check_at": "2024-11-24T02:13:26Z", + "last_check_at": "2024-12-01T02:19:58Z", + "next_check_at": "2024-12-01T02:24:58Z", "created_at": "2021-04-22T19:49:24Z", "mute_until": null, "favicon_url": "https://aplus.beta.gouv.fr/assets/images/bb24f2cd5ff2ee1dbcb59efcd02c83a8-favicon.png", @@ -21290,7 +19104,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:43:27Z", + "tested_at": "2024-12-01T02:05:01Z", "expires_at": "2025-01-18T09:10:59Z", "valid": true, "error": null @@ -21299,11 +19113,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 186, - "connection": 155, - "handshake": 163, - "response": 168, - "total": 672 + "namelookup": 151, + "connection": 129, + "handshake": 139, + "response": 141, + "total": 559 } }, "uptimeGrade": "A", @@ -21683,7 +19497,7 @@ "ip": "aplus.beta.gouv.fr/162.19.110.237", "port": "443", "severity": "OK", - "finding": "55 >= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", @@ -21844,7 +19658,7 @@ "ip": "aplus.beta.gouv.fr/162.19.110.237", "port": "443", "severity": "INFO", - "finding": "1732414155" + "finding": "1733019596" }, { "id": "HSTS_time", @@ -22449,7 +20263,7 @@ "ip": "aplus.beta.gouv.fr/162.19.110.237", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "67" } ], "thirdparties": { @@ -22460,7 +20274,7 @@ "value": "1", "domain": ".aplus.beta.gouv.fr", "path": "/", - "expires": 1732415872, + "expires": 1733021325, "size": 17, "httpOnly": false, "secure": false, @@ -22472,10 +20286,10 @@ }, { "name": "_pk_id.111.c207", - "value": "cf546374cdae79c4.1732414073.", + "value": "faf67a4daacd2f21.1733019526.", "domain": ".aplus.beta.gouv.fr", "path": "/", - "expires": 1766369273, + "expires": 1766974726, "size": 43, "httpOnly": false, "secure": false, @@ -22487,10 +20301,10 @@ }, { "name": "PLAY_SESSION", - "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjY5NTljZTFkNjkyOWFlOWM5NjY1OTM1NmFmMzM1ZGEwNTVkZjU4Y2MtMTczMjQxNDA3MDg4My1kZDljMGE2NzBiMTMxNmMzMTk4ZWIxN2MifSwiZXhwIjoxNzM1MDA2MDcwLCJuYmYiOjE3MzI0MTQwNzAsImlhdCI6MTczMjQxNDA3MH0.O4pFj_oMqdqvGyTcGleCwWZ99OfDxJNByuXfxFXmp3k", + "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjJhMjAwNTBkNmUyZDRiZGZmYTI1NzM2N2U0ZTYzYTMwMDU1OGVhYWItMTczMzAxOTUyNDY3MC0zYjM1OWU4N2JiNzRhYmIxYWJiNDc2ZmIifSwiZXhwIjoxNzM1NjExNTI0LCJuYmYiOjE3MzMwMTk1MjQsImlhdCI6MTczMzAxOTUyNH0.eEBRoCsgT3wxK_cTdfIpEPLoSCfY-b-XVNWtAhBcKO4", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1735006070.940853, + "expires": 1735611524.716932, "size": 284, "httpOnly": true, "secure": true, @@ -22505,9 +20319,9 @@ "content-length": "20195", "content-security-policy": "base-uri 'none'; img-src 'self' data: stats.beta.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.beta.gouv.fr; script-src 'self' stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr; object-src 'none'; default-src 'none'; font-src 'self'; frame-ancestors 'self'", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 02:07:50 GMT", + "date": "Sun, 01 Dec 2024 02:18:44 GMT", "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin", - "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjY5NTljZTFkNjkyOWFlOWM5NjY1OTM1NmFmMzM1ZGEwNTVkZjU4Y2MtMTczMjQxNDA3MDg4My1kZDljMGE2NzBiMTMxNmMzMTk4ZWIxN2MifSwiZXhwIjoxNzM1MDA2MDcwLCJuYmYiOjE3MzI0MTQwNzAsImlhdCI6MTczMjQxNDA3MH0.O4pFj_oMqdqvGyTcGleCwWZ99OfDxJNByuXfxFXmp3k; Max-Age=2592000; Expires=Tue, 24 Dec 2024 02:07:50 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", + "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjJhMjAwNTBkNmUyZDRiZGZmYTI1NzM2N2U0ZTYzYTMwMDU1OGVhYWItMTczMzAxOTUyNDY3MC0zYjM1OWU4N2JiNzRhYmIxYWJiNDc2ZmIifSwiZXhwIjoxNzM1NjExNTI0LCJuYmYiOjE3MzMwMTk1MjQsImlhdCI6MTczMzAxOTUyNH0.eEBRoCsgT3wxK_cTdfIpEPLoSCfY-b-XVNWtAhBcKO4; Max-Age=2592000; Expires=Tue, 31 Dec 2024 02:18:44 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", "strict-transport-security": "max-age=31536000; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "DENY", @@ -22718,7 +20532,7 @@ { "requestedUrl": "https://aplus.beta.gouv.fr/", "finalUrl": "https://aplus.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:07:27.204Z", + "fetchTime": "2024-12-01T02:18:20.247Z", "runWarnings": [], "categories": { "performance": { @@ -22729,7 +20543,7 @@ "snapshot" ], "id": "performance", - "score": 0.93 + "score": 0.92 }, "accessibility": { "title": "Accessibility", @@ -22781,53 +20595,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5303, + "numericValue": 5491, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1897, - "firstMeaningfulPaint": 3247, - "largestContentfulPaint": 2347, - "interactive": 5303, - "speedIndex": 2187, - "totalBlockingTime": 133, - "maxPotentialFID": 181, + "firstContentfulPaint": 1885, + "firstMeaningfulPaint": 3235, + "largestContentfulPaint": 2335, + "interactive": 5491, + "speedIndex": 2007, + "totalBlockingTime": 155, + "maxPotentialFID": 156, "cumulativeLayoutShift": 0.000128326416015625, "cumulativeLayoutShiftMainFrame": 0.000128326416015625, "totalCumulativeLayoutShift": 0.000128326416015625, "observedTimeOrigin": 0, - "observedTimeOriginTs": 459064319, + "observedTimeOriginTs": 436542579, "observedNavigationStart": 0, - "observedNavigationStartTs": 459064319, - "observedFirstPaint": 755, - "observedFirstPaintTs": 459819301, - "observedFirstContentfulPaint": 755, - "observedFirstContentfulPaintTs": 459819301, - "observedFirstContentfulPaintAllFrames": 755, - "observedFirstContentfulPaintAllFramesTs": 459819301, - "observedFirstMeaningfulPaint": 1004, - "observedFirstMeaningfulPaintTs": 460068800, - "observedLargestContentfulPaint": 755, - "observedLargestContentfulPaintTs": 459819301, - "observedLargestContentfulPaintAllFrames": 755, - "observedLargestContentfulPaintAllFramesTs": 459819301, - "observedTraceEnd": 3856, - "observedTraceEndTs": 462920032, - "observedLoad": 1439, - "observedLoadTs": 460503386, - "observedDomContentLoaded": 997, - "observedDomContentLoadedTs": 460061190, + "observedNavigationStartTs": 436542579, + "observedFirstPaint": 644, + "observedFirstPaintTs": 437186642, + "observedFirstContentfulPaint": 644, + "observedFirstContentfulPaintTs": 437186642, + "observedFirstContentfulPaintAllFrames": 644, + "observedFirstContentfulPaintAllFramesTs": 437186642, + "observedFirstMeaningfulPaint": 865, + "observedFirstMeaningfulPaintTs": 437407411, + "observedLargestContentfulPaint": 644, + "observedLargestContentfulPaintTs": 437186642, + "observedLargestContentfulPaintAllFrames": 644, + "observedLargestContentfulPaintAllFramesTs": 437186642, + "observedTraceEnd": 3603, + "observedTraceEndTs": 440145909, + "observedLoad": 1202, + "observedLoadTs": 437744600, + "observedDomContentLoaded": 859, + "observedDomContentLoadedTs": 437402053, "observedCumulativeLayoutShift": 0.000128326416015625, "observedCumulativeLayoutShiftMainFrame": 0.000128326416015625, "observedTotalCumulativeLayoutShift": 0.000128326416015625, - "observedFirstVisualChange": 767, - "observedFirstVisualChangeTs": 459831319, - "observedLastVisualChange": 1017, - "observedLastVisualChangeTs": 460081319, - "observedSpeedIndex": 860, - "observedSpeedIndexTs": 459924269 + "observedFirstVisualChange": 656, + "observedFirstVisualChangeTs": 437198579, + "observedLastVisualChange": 873, + "observedLastVisualChangeTs": 437415579, + "observedSpeedIndex": 737, + "observedSpeedIndexTs": 437279841 }, { "lcpInvalidated": false @@ -22849,19 +20663,19 @@ "numScripts": 4, "numStylesheets": 7, "numFonts": 3, - "numTasks": 769, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasks": 731, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.631, - "throughput": 15681219.030657848, - "maxRtt": 108.203, - "maxServerLatency": 97.23000000000002, - "totalByteWeight": 1620309, - "totalTaskTime": 184.67999999999952, - "mainDocumentTransferSize": 21137 + "rtt": 84.471, + "throughput": 18828775.909404077, + "maxRtt": 87.427, + "maxServerLatency": 84.72899999999998, + "totalByteWeight": 1621939, + "totalTaskTime": 241.78599999999918, + "mainDocumentTransferSize": 21138 } ] } @@ -22955,7 +20769,7 @@ "width": 1920, "height": 1080, "url": "https://aplus.beta.gouv.fr", - "size": 1654.407, + "size": 1654.579, "nodes": 153, "requests": 27, "grade": "B", @@ -22963,7 +20777,7 @@ "ges": 1.44, "water": 2.16, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:04:28.752615", + "date": "2024-12-01 02:15:21.397560", "page_type": null } ], @@ -22975,7 +20789,7 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.978, + "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -22987,7 +20801,7 @@ "cookiesCount": 3, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.93, + "lighthouse_performance": 0.92, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -23182,7 +20996,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-19T12:41:56Z", + "up_since": "2024-11-27T12:58:47Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -23194,8 +21008,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:17:46Z", - "next_check_at": "2024-11-24T02:22:45Z", + "last_check_at": "2024-12-01T02:31:45Z", + "next_check_at": "2024-12-01T02:36:44Z", "created_at": "2021-04-22T19:50:09Z", "mute_until": null, "favicon_url": "https://app.pix.fr/favicon.ico", @@ -23203,7 +21017,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:07:50Z", + "tested_at": "2024-12-01T02:31:45Z", "expires_at": "2025-10-03T21:59:59Z", "valid": true, "error": null @@ -23212,11 +21026,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 35, + "namelookup": 43, "connection": 92, "handshake": 101, - "response": 95, - "total": 324 + "response": 96, + "total": 332 } }, "uptimeGrade": "A", @@ -23249,77 +21063,77 @@ "testssl": [ { "id": "service", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -23327,7 +21141,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -23335,7 +21149,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -23343,7 +21157,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -23351,7 +21165,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -23359,7 +21173,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -23367,483 +21181,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "RSA 3072 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "D60AB50FC69A48D5D95FA95C06A760BB" }, { "id": "cert_serialNumberLen", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "47094499B0B87B129DAB15A62BD38AC6A9EFFF66" }, { "id": "cert_fingerprintSHA256", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "46EA35FCF27DAE7EE87CD03B7F22596C62F9D183FF2E3442A0F4ECFBBF5D5096" }, { "id": "cert", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "pix.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "pix.fr" }, { "id": "cert_subjectAltName", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "orga.pix.fr certif.pix.org pix.org app.pix.org app.pix.fr certif.pix.fr admin.pix.org pix.fr orga.pix.org admin.pix.fr" }, { "id": "cert_trust", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "Ok via SAN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", - "finding": "313 >= 60 days" + "finding": "306 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2024-10-03 22:00" }, { "id": "cert_notAfter", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "2025-10-03 21:59" }, { "id": "cert_extlifeSpan", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", - "finding": "1732414756" + "finding": "1733020229" }, { "id": "HSTS_time", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -23851,7 +21665,7 @@ }, { "id": "heartbleed", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -23860,7 +21674,7 @@ }, { "id": "CCS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -23869,7 +21683,7 @@ }, { "id": "ticketbleed", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -23878,7 +21692,7 @@ }, { "id": "ROBOT", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -23887,7 +21701,7 @@ }, { "id": "secure_renego", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -23895,7 +21709,7 @@ }, { "id": "secure_client_renego", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -23904,7 +21718,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -23913,7 +21727,7 @@ }, { "id": "BREACH", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -23922,7 +21736,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -23931,14 +21745,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -23947,7 +21761,7 @@ }, { "id": "FREAK", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -23956,7 +21770,7 @@ }, { "id": "DROWN", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -23965,7 +21779,7 @@ }, { "id": "DROWN_hint", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -23974,7 +21788,7 @@ }, { "id": "LOGJAM", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -23983,7 +21797,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -23992,7 +21806,7 @@ }, { "id": "BEAST", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -24001,7 +21815,7 @@ }, { "id": "LUCKY13", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -24010,7 +21824,7 @@ }, { "id": "winshock", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -24019,7 +21833,7 @@ }, { "id": "RC4", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -24028,325 +21842,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "app.pix.fr/185.179.149.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "104" } ], "thirdparties": { @@ -24365,7 +22179,7 @@ }, { "type": "unknown", - "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=116124&h=2&m=18&s=14&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=94946710236fdd30&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=dHTm8J&pf_net=0&pf_srv=97&pf_tfr=1&pf_dm1=571&pf_dm2=556&pf_onl=1" + "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=331751&h=2&m=28&s=50&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=a039371258a1578d&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=jnh3Xu&pf_net=0&pf_srv=174&pf_tfr=0&pf_dm1=990&pf_dm2=856&pf_onl=1" } ], "cookies": [ @@ -24374,7 +22188,7 @@ "value": "fr-FR", "domain": ".pix.fr", "path": "/", - "expires": 1763950693.240409, + "expires": 1764556128.862862, "size": 11, "httpOnly": false, "secure": false, @@ -24386,10 +22200,10 @@ }, { "name": "visit_baleen_ACM-655d43", - "value": "CJ6NlQVTcLb-4_DeUuXAGXx6gYDwFksLkK5DgE8_EAoEcoDZjt9JB3h-dhnP74G7ln_zXlIq1oQdPekGA9HVSldzFJ3AcCuol1PCf8S_7m9wTR73jGGTByRBjFUAhCGiLP9fjXUt1bqGmQf93QXwvMEOxf6lmOoTUmdYSji5GmeEvcJHcKQ40s22M8uHuW6geAxkzo1SrLo38drZWMp268WTVWgITXSgdTroTFqSCll4FkDlLZzpGyMbcytbt7CLfZWR1rE306BaWHS0Ad6WTS5FrcH9_qMMKYkFoi6drqJREw-VuifLDYIt3KUeBqTx", + "value": "ICiHnaW6byWCVTWaHri5kguwxp4AodGXpw2l0DfREiUh0pNls_uEqE4CRJ4m8OpdRjXB2ew8Mkz2e5xDqkxosJFMJY1Wlwq0CNqmj3LD7Mp8vFaKdc3YRDaJOsN1awyQteTXjOIdPY79MnahJN3dCFoqb3f8wI0GtdJzWsfEBQVCtmEevcWPsQ6-wFmXNYfuFQs_2PhJShbvez5jt9TykbRmm5BZl8XJQvt3EL5PUkltd4rWvKICo2ODs7PAPcyaipp6suNjhzRzFVo6Zl8r29emTEDOazNVY6Ng_pBD9jGNY20GFmTTPs56-JOT9gbb", "domain": ".pix.fr", "path": "/", - "expires": 1732415592.255751, + "expires": 1733021027.226946, "size": 343, "httpOnly": false, "secure": true, @@ -24407,24 +22221,24 @@ "content-encoding": "gzip", "content-security-policy-report-only": "style-src 'self' 'unsafe-inline'; img-src 'self' https: data:; font-src 'self'; frame-src *.pix.fr data:; connect-src 'self' analytics.pix.fr; script-src 'self' analytics.pix.fr 'sha256-zzl6AXEYNbODqut4N1s48ebXWb9C1EcejDmXsYvw5uQ='; report-uri https://csp-report.pix.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 02:18:12 GMT", - "etag": "W/\"673f3f88-1096\"", - "expires": "Sun, 24 Nov 2024 02:18:11 GMT", - "last-modified": "Thu, 21 Nov 2024 14:11:20 GMT", + "date": "Sun, 01 Dec 2024 02:28:47 GMT", + "etag": "W/\"67484932-1096\"", + "expires": "Sun, 01 Dec 2024 02:28:46 GMT", + "last-modified": "Thu, 28 Nov 2024 10:42:58 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536001; includeSubDomains; preload", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "62356680a038dcb054d13aae4c90d82a", + "x-request-id": "fc7b415ca7a04e058cb6fb7703c2d6af", "x-robots-tag": "noindex", - "x-varnish": "831528556", + "x-varnish": "878833813", "x-xss-protection": "1" }, "endpoints": [ { "hostname": "app.pix.fr", - "ip": "185.179.149.158", + "ip": "185.231.167.158", "geoip": { "continent": { "code": "EU", @@ -24480,7 +22294,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.122.95", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -24699,7 +22513,7 @@ { "requestedUrl": "https://app.pix.fr/", "finalUrl": "https://app.pix.fr/", - "fetchTime": "2024-11-24T02:17:48.063Z", + "fetchTime": "2024-12-01T02:28:20.328Z", "runWarnings": [], "categories": { "performance": { @@ -24762,53 +22576,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8424, + "numericValue": 8970, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1763, - "firstMeaningfulPaint": 3115, - "largestContentfulPaint": 2854, - "interactive": 8424, - "speedIndex": 2356, - "totalBlockingTime": 579, - "maxPotentialFID": 256, + "firstContentfulPaint": 2337, + "firstMeaningfulPaint": 4075, + "largestContentfulPaint": 2337, + "interactive": 8970, + "speedIndex": 3625, + "totalBlockingTime": 549, + "maxPotentialFID": 261, "cumulativeLayoutShift": 0.0002882766723632812, "cumulativeLayoutShiftMainFrame": 0.0002882766723632812, "totalCumulativeLayoutShift": 0.0002882766723632812, "observedTimeOrigin": 0, - "observedTimeOriginTs": 691171044, + "observedTimeOriginTs": 499699948, "observedNavigationStart": 0, - "observedNavigationStartTs": 691171044, - "observedFirstPaint": 464, - "observedFirstPaintTs": 691635237, - "observedFirstContentfulPaint": 464, - "observedFirstContentfulPaintTs": 691635237, - "observedFirstContentfulPaintAllFrames": 464, - "observedFirstContentfulPaintAllFramesTs": 691635237, - "observedFirstMeaningfulPaint": 1136, - "observedFirstMeaningfulPaintTs": 692307537, - "observedLargestContentfulPaint": 464, - "observedLargestContentfulPaintTs": 691635237, - "observedLargestContentfulPaintAllFrames": 464, - "observedLargestContentfulPaintAllFramesTs": 691635237, - "observedTraceEnd": 3588, - "observedTraceEndTs": 694759066, - "observedLoad": 1192, - "observedLoadTs": 692363035, - "observedDomContentLoaded": 747, - "observedDomContentLoadedTs": 691917987, + "observedNavigationStartTs": 499699948, + "observedFirstPaint": 674, + "observedFirstPaintTs": 500374220, + "observedFirstContentfulPaint": 674, + "observedFirstContentfulPaintTs": 500374220, + "observedFirstContentfulPaintAllFrames": 674, + "observedFirstContentfulPaintAllFramesTs": 500374220, + "observedFirstMeaningfulPaint": 1961, + "observedFirstMeaningfulPaintTs": 501660832, + "observedLargestContentfulPaint": 674, + "observedLargestContentfulPaintTs": 500374220, + "observedLargestContentfulPaintAllFrames": 674, + "observedLargestContentfulPaintAllFramesTs": 500374220, + "observedTraceEnd": 4427, + "observedTraceEndTs": 504126938, + "observedLoad": 1960, + "observedLoadTs": 501660061, + "observedDomContentLoaded": 1229, + "observedDomContentLoadedTs": 500929074, "observedCumulativeLayoutShift": 0.0002882766723632812, "observedCumulativeLayoutShiftMainFrame": 0.0002882766723632812, "observedTotalCumulativeLayoutShift": 0.0002882766723632812, - "observedFirstVisualChange": 467, - "observedFirstVisualChangeTs": 691638044, - "observedLastVisualChange": 1134, - "observedLastVisualChangeTs": 692305044, - "observedSpeedIndex": 1043, - "observedSpeedIndexTs": 692213644 + "observedFirstVisualChange": 680, + "observedFirstVisualChangeTs": 500379948, + "observedLastVisualChange": 1963, + "observedLastVisualChangeTs": 501662948, + "observedSpeedIndex": 1683, + "observedSpeedIndexTs": 501383111 }, { "lcpInvalidated": false @@ -24830,19 +22644,19 @@ "numScripts": 4, "numStylesheets": 4, "numFonts": 5, - "numTasks": 756, - "numTasksOver10ms": 8, - "numTasksOver25ms": 5, + "numTasks": 745, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.567, - "throughput": 22851457.702936802, - "maxRtt": 85.059, - "maxServerLatency": 14.918999999999997, - "totalByteWeight": 1665220, - "totalTaskTime": 405.7689999999989, - "mainDocumentTransferSize": 2161 + "rtt": 9.008, + "throughput": 12272910.882944014, + "maxRtt": 148.74, + "maxServerLatency": 28.880999999999997, + "totalByteWeight": 1671055, + "totalTaskTime": 354.1609999999996, + "mainDocumentTransferSize": 2160 } ] } @@ -24941,7 +22755,7 @@ "width": 1920, "height": 1080, "url": "https://app.pix.fr", - "size": 1686.024, + "size": 1691.356, "nodes": 74, "requests": 26, "grade": "A", @@ -24949,7 +22763,7 @@ "ges": 1.38, "water": 2.07, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:14:51.109984", + "date": "2024-12-01 02:25:19.034238", "page_type": null } ], @@ -25167,7 +22981,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-20T05:10:57Z", + "up_since": "2024-11-29T22:32:32Z", "error": null, "period": 120, "apdex_t": 0.5, @@ -25180,8 +22994,8 @@ "slack_compatible:4124784183", "slack_compatible:3529617075" ], - "last_check_at": "2024-11-24T02:24:42Z", - "next_check_at": "2024-11-24T02:26:42Z", + "last_check_at": "2024-12-01T02:30:25Z", + "next_check_at": "2024-12-01T02:32:24Z", "created_at": "2021-04-15T08:59:36Z", "mute_until": null, "favicon_url": null, @@ -25189,7 +23003,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:08:43Z", + "tested_at": "2024-12-01T02:12:28Z", "expires_at": "2025-01-04T12:54:08Z", "valid": true, "error": null @@ -25199,10 +23013,10 @@ "timings": { "redirect": 0, "namelookup": 4, - "connection": 130, - "handshake": 135, - "response": 171, - "total": 440 + "connection": 100, + "handshake": 105, + "response": 141, + "total": 349 } }, "uptimeGrade": "A", @@ -25440,7 +23254,7 @@ "ip": "audioconf.numerique.gouv.fr/185.231.164.135", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -25580,7 +23394,7 @@ "ip": "audioconf.numerique.gouv.fr/185.231.164.135", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -25748,7 +23562,7 @@ "ip": "audioconf.numerique.gouv.fr/185.231.164.135", "port": "443", "severity": "INFO", - "finding": "1732415010" + "finding": "1733020207" }, { "id": "HSTS_time", @@ -26339,7 +24153,7 @@ "ip": "audioconf.numerique.gouv.fr/185.231.164.135", "port": "443", "severity": "INFO", - "finding": "98" + "finding": "55" } ], "thirdparties": { @@ -26356,11 +24170,11 @@ "cookies": [ { "name": "connect.sid", - "value": "s%3AkAi0rRzVP0w2heOREDoZBaSC5GsO235d.A39Vk2fXHo%2F57Pbl673DiNTUjU3MwlucmfV9TOF9D24", + "value": "s%3AJe2xLPDKqm8WDLGYuS3I3sNtL6Ob3o5h.2aXpwu8Rt65xg4SCVVfZa7VfHJHARIMOc77Uf9f2Td0", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1732415201.833691, - "size": 93, + "expires": 1733020436.798355, + "size": 91, "httpOnly": true, "secure": false, "session": false, @@ -26371,10 +24185,10 @@ }, { "name": "sc-sticky-session", - "value": "t5ae7eUk9uMkT6ynxoaZreYlVYl3HmkGiDFYnF2QvshaAbkEyk8zItrEOdTiQ4cDA4F5+WMuN8LHbmrD5J2STg==", + "value": "QOLVqxsuAVsn//8uc4rz/Z+k7eYlrE1uyQAoLHwMk/FnB1Z58CrvV7Sx9xyZqT3vglqDbPfPdbJKSjRG3Ds0fw==", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1732501301.833749, + "expires": 1733106536.798411, "size": 105, "httpOnly": true, "secure": true, @@ -26386,11 +24200,11 @@ }, { "name": "bln_challengejs", - "value": "FHX4Xe7ys1y6AnKibr8zJBiVvAuRA6bkgDFcFRMW5rBbz8DrytaqCuhq0XYv0dWldMpotKaiyuaMt-vJs6J51djnUARVl6XgcqL9RTXRlzt35n4VR5XCOWOPPDqMX45GaKVa0SJ23IIAKpRJHS6aiUFz19j5rlM6fiW-rr2XsnRkrIrKzu3nPKC4HfFdOM4cI-o1mA9zxbFkrVNM4FYndojf64RTi32e1GODs7N3TfrTGXrS7a3H27W171R_GlFStg2C78jc42RyTJ07A5VZmIYkrLRs8h2-5xZki_qpOirTkC-1r0WEXOck7lnNbEyy", + "value": "43i10F0bxVGQsMZNEhJrbTgwhzTGJfmuCjaV5aqkAPISK6sq9LNZ4qXOROIUXGdhX2rSWkXG_prvTic4JYaHGABkXvKF2PG_rV7pa4xJScKwGKVKwIEdMdDHz3OGsFLxZNmsFEa11qiaVPaGg8CZWczSGUZ4fYrCHSRMcEGX9uu4fgbieo--z0HQxoeO8xU1QiBwKOvBmP38ILDUvhJrNXavw4FRa5ylzc1cVVCwzysu2bi1H56_Gt1Z9hmN_Doo_7gLC7hSVwVUNmeamBOuzrugoSANVgCVQe_WA3H5VGQ", "domain": ".numerique.gouv.fr", "path": "/", - "expires": 1732415801.662342, - "size": 335, + "expires": 1733021036.689588, + "size": 314, "httpOnly": false, "secure": true, "session": false, @@ -26405,17 +24219,17 @@ "age": "0", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 02:21:41 GMT", - "etag": "W/\"7cf2-PPeT03QAKcLb3wIOGK4rsHRtlvQ\"", + "date": "Sun, 01 Dec 2024 02:28:56 GMT", + "etag": "W/\"7ccf-O7yibjcw8JX2I3xVNqL2R8kSs1g\"", "referrer-policy": "origin-when-cross-origin", - "set-cookie": "connect.sid=s%3AkAi0rRzVP0w2heOREDoZBaSC5GsO235d.A39Vk2fXHo%2F57Pbl673DiNTUjU3MwlucmfV9TOF9D24; Path=/; Expires=Sun, 24 Nov 2024 02:26:41 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=t5ae7eUk9uMkT6ynxoaZreYlVYl3HmkGiDFYnF2QvshaAbkEyk8zItrEOdTiQ4cDA4F5+WMuN8LHbmrD5J2STg==; Expires=Mon, 25-Nov-24 02:21:41 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "set-cookie": "connect.sid=s%3AJe2xLPDKqm8WDLGYuS3I3sNtL6Ob3o5h.2aXpwu8Rt65xg4SCVVfZa7VfHJHARIMOc77Uf9f2Td0; Path=/; Expires=Sun, 01 Dec 2024 02:33:56 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=QOLVqxsuAVsn//8uc4rz/Z+k7eYlrE1uyQAoLHwMk/FnB1Z58CrvV7Sx9xyZqT3vglqDbPfPdbJKSjRG3Ds0fw==; Expires=Mon, 02-Dec-24 02:28:56 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Express", - "x-request-id": "b7188cf9ea78881c635edde2970203e4", - "x-varnish": "9742992", + "x-request-id": "2f4792cc6d0f968a716eda03699a1473", + "x-varnish": "7478184", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -26477,7 +24291,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.217.12.138", + "ip": "142.251.163.95", "geoip": { "continent": { "code": "NA", @@ -26605,7 +24419,7 @@ { "requestedUrl": "https://audioconf.numerique.gouv.fr/", "finalUrl": "https://audioconf.numerique.gouv.fr/", - "fetchTime": "2024-11-24T02:21:14.190Z", + "fetchTime": "2024-12-01T02:28:33.111Z", "runWarnings": [], "categories": { "performance": { @@ -26616,7 +24430,7 @@ "snapshot" ], "id": "performance", - "score": 0.9 + "score": 0.93 }, "accessibility": { "title": "Accessibility", @@ -26668,53 +24482,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2575, + "numericValue": 2359, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2575, - "firstMeaningfulPaint": 2575, - "largestContentfulPaint": 2858, - "interactive": 2575, - "speedIndex": 2575, + "firstContentfulPaint": 2359, + "firstMeaningfulPaint": 2359, + "largestContentfulPaint": 2586, + "interactive": 2359, + "speedIndex": 2359, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.09053716500600179, "cumulativeLayoutShiftMainFrame": 0.09053716500600179, "totalCumulativeLayoutShift": 0.09053716500600179, "observedTimeOrigin": 0, - "observedTimeOriginTs": 505014352, + "observedTimeOriginTs": 521672253, "observedNavigationStart": 0, - "observedNavigationStartTs": 505014352, - "observedFirstPaint": 723, - "observedFirstPaintTs": 505737257, - "observedFirstContentfulPaint": 723, - "observedFirstContentfulPaintTs": 505737257, - "observedFirstContentfulPaintAllFrames": 723, - "observedFirstContentfulPaintAllFramesTs": 505737257, - "observedFirstMeaningfulPaint": 723, - "observedFirstMeaningfulPaintTs": 505737257, - "observedLargestContentfulPaint": 723, - "observedLargestContentfulPaintTs": 505737257, - "observedLargestContentfulPaintAllFrames": 723, - "observedLargestContentfulPaintAllFramesTs": 505737257, - "observedTraceEnd": 3437, - "observedTraceEndTs": 508451670, - "observedLoad": 971, - "observedLoadTs": 505984958, - "observedDomContentLoaded": 767, - "observedDomContentLoadedTs": 505781841, + "observedNavigationStartTs": 521672253, + "observedFirstPaint": 428, + "observedFirstPaintTs": 522100127, + "observedFirstContentfulPaint": 428, + "observedFirstContentfulPaintTs": 522100127, + "observedFirstContentfulPaintAllFrames": 428, + "observedFirstContentfulPaintAllFramesTs": 522100127, + "observedFirstMeaningfulPaint": 428, + "observedFirstMeaningfulPaintTs": 522100127, + "observedLargestContentfulPaint": 428, + "observedLargestContentfulPaintTs": 522100127, + "observedLargestContentfulPaintAllFrames": 428, + "observedLargestContentfulPaintAllFramesTs": 522100127, + "observedTraceEnd": 2995, + "observedTraceEndTs": 524667210, + "observedLoad": 580, + "observedLoadTs": 522252051, + "observedDomContentLoaded": 460, + "observedDomContentLoadedTs": 522132155, "observedCumulativeLayoutShift": 0.09053716500600179, "observedCumulativeLayoutShiftMainFrame": 0.09053716500600179, "observedTotalCumulativeLayoutShift": 0.09053716500600179, - "observedFirstVisualChange": 732, - "observedFirstVisualChangeTs": 505746352, - "observedLastVisualChange": 998, - "observedLastVisualChangeTs": 506012352, - "observedSpeedIndex": 764, - "observedSpeedIndexTs": 505778435 + "observedFirstVisualChange": 440, + "observedFirstVisualChangeTs": 522112253, + "observedLastVisualChange": 723, + "observedLastVisualChangeTs": 522395253, + "observedSpeedIndex": 462, + "observedSpeedIndexTs": 522134280 }, { "lcpInvalidated": false @@ -26736,19 +24550,19 @@ "numScripts": 1, "numStylesheets": 6, "numFonts": 3, - "numTasks": 1020, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 1023, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 9.508000000000001, - "throughput": 6569328.805350987, - "maxRtt": 142.477, - "maxServerLatency": 30.602999999999987, - "totalByteWeight": 358113, - "totalTaskTime": 225.2079999999981, - "mainDocumentTransferSize": 2154 + "rtt": 2.177, + "throughput": 11351848.107476214, + "maxRtt": 78.84800000000001, + "maxServerLatency": 18.810999999999993, + "totalByteWeight": 357911, + "totalTaskTime": 150.19600000000003, + "mainDocumentTransferSize": 2158 } ] } @@ -26800,7 +24614,7 @@ "width": 1920, "height": 1080, "url": "https://audioconf.numerique.gouv.fr", - "size": 423.33, + "size": 423.311, "nodes": 354, "requests": 22, "grade": "B", @@ -26808,7 +24622,7 @@ "ges": 1.44, "water": 2.16, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:18:02.896839", + "date": "2024-12-01 02:25:37.612153", "page_type": null } ], @@ -26832,7 +24646,7 @@ "cookiesCount": 3, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.9, + "lighthouse_performance": 0.93, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -27024,7 +24838,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-18T20:15:36Z", + "up_since": "2024-11-26T20:35:15Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -27036,8 +24850,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:23:01Z", - "next_check_at": "2024-11-24T02:27:59Z", + "last_check_at": "2024-12-01T02:32:57Z", + "next_check_at": "2024-12-01T02:37:56Z", "created_at": "2021-01-11T11:57:59Z", "mute_until": null, "favicon_url": "https://beta.gouv.fr/assets/images/favicons/favicon.ico", @@ -27045,7 +24859,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:23:02Z", + "tested_at": "2024-12-01T01:58:11Z", "expires_at": "2025-02-12T07:34:49Z", "valid": true, "error": null @@ -27054,11 +24868,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 102, - "connection": 108, - "handshake": 113, - "response": 111, - "total": 434 + "namelookup": 126, + "connection": 132, + "handshake": 138, + "response": 137, + "total": 533 } }, "uptimeGrade": "A", @@ -27289,7 +25103,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -27436,7 +25250,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -27597,7 +25411,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732414988" + "finding": "1733020358" }, { "id": "HSTS_time", @@ -28355,7 +26169,7 @@ "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -28502,7 +26316,7 @@ "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -28663,7 +26477,7 @@ "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732415047" + "finding": "1733020416" }, { "id": "HSTS_time", @@ -29237,7 +27051,7 @@ "value": "1", "domain": "beta.gouv.fr", "path": "/", - "expires": 1732416691, + "expires": 1733022076, "size": 15, "httpOnly": false, "secure": false, @@ -29249,10 +27063,10 @@ }, { "name": "_pk_id.1.968e", - "value": "764a1c01dd456960.1732414891.", + "value": "12892c128d27e289.1733020277.", "domain": "beta.gouv.fr", "path": "/", - "expires": 1766370091, + "expires": 1766975477, "size": 41, "httpOnly": false, "secure": false, @@ -29266,11 +27080,11 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 02:21:30 GMT", - "etag": "W/\"673f82d1-9ecc\"", - "last-modified": "Thu, 21 Nov 2024 18:58:25 GMT", + "date": "Sun, 01 Dec 2024 02:31:15 GMT", + "etag": "W/\"67486f45-9ecc\"", + "last-modified": "Thu, 28 Nov 2024 13:25:25 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "f45f15f9-94cb-4682-8968-9e45eb8da17e" + "x-request-id": "10fc4d3a-eed5-42d1-9ecb-bf8e5ef1c72f" }, "endpoints": [ { @@ -29487,7 +27301,7 @@ { "requestedUrl": "https://beta.gouv.fr/", "finalUrl": "https://beta.gouv.fr/", - "fetchTime": "2024-11-24T02:21:05.726Z", + "fetchTime": "2024-12-01T02:30:50.264Z", "runWarnings": [], "categories": { "performance": { @@ -29498,7 +27312,7 @@ "snapshot" ], "id": "performance", - "score": 0.97 + "score": 0.98 }, "accessibility": { "title": "Accessibility", @@ -29550,53 +27364,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2393, + "numericValue": 2276, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1659, - "firstMeaningfulPaint": 1659, - "largestContentfulPaint": 1959, - "interactive": 2393, - "speedIndex": 1863, - "totalBlockingTime": 134, - "maxPotentialFID": 184, + "firstContentfulPaint": 1661, + "firstMeaningfulPaint": 1661, + "largestContentfulPaint": 1961, + "interactive": 2276, + "speedIndex": 1847, + "totalBlockingTime": 62, + "maxPotentialFID": 112, "cumulativeLayoutShift": 0.0035968424479166663, "cumulativeLayoutShiftMainFrame": 0.0035968424479166663, "totalCumulativeLayoutShift": 0.0035968424479166663, "observedTimeOrigin": 0, - "observedTimeOriginTs": 375329290, + "observedTimeOriginTs": 371657544, "observedNavigationStart": 0, - "observedNavigationStartTs": 375329290, - "observedFirstPaint": 719, - "observedFirstPaintTs": 376048632, - "observedFirstContentfulPaint": 719, - "observedFirstContentfulPaintTs": 376048632, - "observedFirstContentfulPaintAllFrames": 719, - "observedFirstContentfulPaintAllFramesTs": 376048632, - "observedFirstMeaningfulPaint": 719, - "observedFirstMeaningfulPaintTs": 376048632, - "observedLargestContentfulPaint": 719, - "observedLargestContentfulPaintTs": 376048632, - "observedLargestContentfulPaintAllFrames": 719, - "observedLargestContentfulPaintAllFramesTs": 376048632, - "observedTraceEnd": 3698, - "observedTraceEndTs": 379027612, - "observedLoad": 1283, - "observedLoadTs": 376611936, - "observedDomContentLoaded": 816, - "observedDomContentLoadedTs": 376145286, + "observedNavigationStartTs": 371657544, + "observedFirstPaint": 704, + "observedFirstPaintTs": 372361519, + "observedFirstContentfulPaint": 704, + "observedFirstContentfulPaintTs": 372361519, + "observedFirstContentfulPaintAllFrames": 704, + "observedFirstContentfulPaintAllFramesTs": 372361519, + "observedFirstMeaningfulPaint": 704, + "observedFirstMeaningfulPaintTs": 372361519, + "observedLargestContentfulPaint": 704, + "observedLargestContentfulPaintTs": 372361519, + "observedLargestContentfulPaintAllFrames": 704, + "observedLargestContentfulPaintAllFramesTs": 372361519, + "observedTraceEnd": 3657, + "observedTraceEndTs": 375315014, + "observedLoad": 1239, + "observedLoadTs": 372896745, + "observedDomContentLoaded": 802, + "observedDomContentLoadedTs": 372459628, "observedCumulativeLayoutShift": 0.0035968424479166663, "observedCumulativeLayoutShiftMainFrame": 0.0035968424479166663, "observedTotalCumulativeLayoutShift": 0.0035968424479166663, - "observedFirstVisualChange": 722, - "observedFirstVisualChangeTs": 376051290, - "observedLastVisualChange": 1355, - "observedLastVisualChangeTs": 376684290, - "observedSpeedIndex": 739, - "observedSpeedIndexTs": 376067957 + "observedFirstVisualChange": 710, + "observedFirstVisualChangeTs": 372367544, + "observedLastVisualChange": 1344, + "observedLastVisualChangeTs": 373001544, + "observedSpeedIndex": 727, + "observedSpeedIndexTs": 372384771 }, { "lcpInvalidated": false @@ -29618,19 +27432,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1636, + "numTasks": 1641, "numTasksOver10ms": 3, - "numTasksOver25ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 101.291, - "throughput": 7333096.199667734, - "maxRtt": 111.20599999999999, - "maxServerLatency": 9.362000000000009, - "totalByteWeight": 582400, - "totalTaskTime": 279.67099999999664, - "mainDocumentTransferSize": 8141 + "rtt": 101.03200000000001, + "throughput": 7600224.97260647, + "maxRtt": 108.15700000000001, + "maxServerLatency": 10.580999999999989, + "totalByteWeight": 584444, + "totalTaskTime": 224.57099999999895, + "mainDocumentTransferSize": 8200 } ] } @@ -29685,7 +27499,7 @@ "width": 1920, "height": 1080, "url": "https://beta.gouv.fr", - "size": 883.326, + "size": 885.092, "nodes": 336, "requests": 43, "grade": "B", @@ -29693,7 +27507,7 @@ "ges": 1.56, "water": 2.34, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:17:59.703243", + "date": "2024-12-01 02:27:51.861499", "page_type": null } ], @@ -29717,7 +27531,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.97, + "lighthouse_performance": 0.98, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -29909,7 +27723,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T02:24:09Z", + "up_since": "2024-11-30T05:04:44Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -29921,8 +27735,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:34:08Z", - "next_check_at": "2024-11-24T02:39:08Z", + "last_check_at": "2024-12-01T02:43:35Z", + "next_check_at": "2024-12-01T02:48:33Z", "created_at": "2021-04-22T19:50:22Z", "mute_until": null, "favicon_url": "https://blog.beta.gouv.fr/assets/images/favicons/favicon.ico", @@ -29930,24 +27744,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:11:46Z", + "tested_at": "2024-12-01T02:28:41Z", "expires_at": "2025-02-12T07:43:45Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.926, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 113, - "connection": 1070, - "handshake": 0, - "response": 119, - "total": 1412 + "namelookup": 127, + "connection": 107, + "handshake": 113, + "response": 109, + "total": 456 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "blog.beta.gouv.fr", @@ -29976,77 +27790,77 @@ "testssl": [ { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30054,7 +27868,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30062,7 +27876,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30070,7 +27884,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30078,7 +27892,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -30086,7 +27900,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -30094,455 +27908,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-11-14 07:43" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-02-12 07:43" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732415494" + "finding": "1733020964" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -30550,7 +28364,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -30559,7 +28373,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -30568,7 +28382,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -30577,7 +28391,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -30586,7 +28400,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -30594,7 +28408,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -30603,7 +28417,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -30612,7 +28426,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -30621,7 +28435,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -30630,14 +28444,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -30646,7 +28460,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -30655,7 +28469,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -30664,7 +28478,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -30673,7 +28487,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -30682,7 +28496,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -30691,7 +28505,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -30700,7 +28514,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -30709,7 +28523,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -30718,7 +28532,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -30727,392 +28541,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31120,7 +28934,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31128,7 +28942,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31136,7 +28950,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31144,7 +28958,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -31152,7 +28966,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -31160,455 +28974,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-11-14 07:43" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-02-12 07:43" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732415546" + "finding": "1733021017" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -31616,7 +29430,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -31625,7 +29439,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -31634,7 +29448,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -31643,7 +29457,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -31652,7 +29466,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -31660,7 +29474,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -31669,7 +29483,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -31678,7 +29492,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -31687,7 +29501,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -31696,14 +29510,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -31712,7 +29526,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -31721,7 +29535,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31730,7 +29544,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31739,7 +29553,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31748,7 +29562,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31757,7 +29571,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -31766,7 +29580,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -31775,7 +29589,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -31784,7 +29598,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -31793,315 +29607,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" @@ -32453,7 +30267,7 @@ "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -32614,7 +30428,7 @@ "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732415599" + "finding": "1733021071" }, { "id": "HSTS_time", @@ -33174,77 +30988,77 @@ }, { "id": "service", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -33252,7 +31066,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -33260,7 +31074,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -33268,7 +31082,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -33276,7 +31090,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -33284,7 +31098,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -33292,455 +31106,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-11-14 07:43" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-02-12 07:43" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732415651" + "finding": "1733021125" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -33748,7 +31562,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -33757,7 +31571,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -33766,7 +31580,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -33775,7 +31589,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -33784,7 +31598,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -33792,7 +31606,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -33801,7 +31615,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -33810,7 +31624,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -33819,7 +31633,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -33828,14 +31642,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -33844,7 +31658,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -33853,7 +31667,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33862,7 +31676,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33871,7 +31685,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33880,7 +31694,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33889,7 +31703,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -33898,7 +31712,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -33907,7 +31721,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -33916,7 +31730,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -33925,325 +31739,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "214" + "finding": "219" } ], "thirdparties": { @@ -34271,7 +32085,7 @@ "value": "1", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1732417248, + "expires": 1733022717, "size": 17, "httpOnly": false, "secure": false, @@ -34283,10 +32097,10 @@ }, { "name": "_pk_id.106.9a49", - "value": "944bd13a53ca3aa0.1732415449.", + "value": "1dedd468daf33abc.1733020917.", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1766370649, + "expires": 1766976117, "size": 43, "httpOnly": false, "secure": false, @@ -34300,16 +32114,16 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 02:30:48 GMT", + "date": "Sun, 01 Dec 2024 02:41:56 GMT", "etag": "W/\"670397d9-669d\"", "last-modified": "Mon, 07 Oct 2024 08:12:09 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "3f1eec5f-8300-4b02-aa11-7c65c710c21b" + "x-request-id": "413f360a-417e-4861-ba2f-cf3f718dcb82" }, "endpoints": [ { "hostname": "blog.beta.gouv.fr", - "ip": "148.253.75.120", + "ip": "5.104.101.30", "geoip": { "continent": { "code": "EU", @@ -34563,7 +32377,7 @@ { "requestedUrl": "https://blog.beta.gouv.fr/", "finalUrl": "https://blog.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:30:25.402Z", + "fetchTime": "2024-12-01T02:41:32.765Z", "runWarnings": [], "categories": { "performance": { @@ -34574,7 +32388,7 @@ "snapshot" ], "id": "performance", - "score": 0.8 + "score": 0.72 }, "accessibility": { "title": "Accessibility", @@ -34626,53 +32440,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5121, + "numericValue": 4841, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1309, - "firstMeaningfulPaint": 5121, - "largestContentfulPaint": 4543, - "interactive": 5121, - "speedIndex": 1797, - "totalBlockingTime": 131, - "maxPotentialFID": 181, - "cumulativeLayoutShift": 0.02255720541212294, - "cumulativeLayoutShiftMainFrame": 0.02255720541212294, - "totalCumulativeLayoutShift": 0.02255720541212294, + "firstContentfulPaint": 1383, + "firstMeaningfulPaint": 4841, + "largestContentfulPaint": 6916, + "interactive": 4841, + "speedIndex": 1505, + "totalBlockingTime": 157, + "maxPotentialFID": 207, + "cumulativeLayoutShift": 0.021878124448988175, + "cumulativeLayoutShiftMainFrame": 0.021878124448988175, + "totalCumulativeLayoutShift": 0.021878124448988175, "observedTimeOrigin": 0, - "observedTimeOriginTs": 363143177, + "observedTimeOriginTs": 386701937, "observedNavigationStart": 0, - "observedNavigationStartTs": 363143177, - "observedFirstPaint": 398, - "observedFirstPaintTs": 363541475, - "observedFirstContentfulPaint": 398, - "observedFirstContentfulPaintTs": 363541475, - "observedFirstContentfulPaintAllFrames": 398, - "observedFirstContentfulPaintAllFramesTs": 363541475, - "observedFirstMeaningfulPaint": 889, - "observedFirstMeaningfulPaintTs": 364032348, - "observedLargestContentfulPaint": 802, - "observedLargestContentfulPaintTs": 363945667, - "observedLargestContentfulPaintAllFrames": 802, - "observedLargestContentfulPaintAllFramesTs": 363945667, - "observedTraceEnd": 3280, - "observedTraceEndTs": 366423205, - "observedLoad": 876, - "observedLoadTs": 364019229, - "observedDomContentLoaded": 544, - "observedDomContentLoadedTs": 363687125, - "observedCumulativeLayoutShift": 0.02255720541212294, - "observedCumulativeLayoutShiftMainFrame": 0.02255720541212294, - "observedTotalCumulativeLayoutShift": 0.02255720541212294, - "observedFirstVisualChange": 408, - "observedFirstVisualChangeTs": 363551177, - "observedLastVisualChange": 1008, - "observedLastVisualChangeTs": 364151177, - "observedSpeedIndex": 536, - "observedSpeedIndexTs": 363679619 + "observedNavigationStartTs": 386701937, + "observedFirstPaint": 475, + "observedFirstPaintTs": 387176704, + "observedFirstContentfulPaint": 475, + "observedFirstContentfulPaintTs": 387176704, + "observedFirstContentfulPaintAllFrames": 475, + "observedFirstContentfulPaintAllFramesTs": 387176704, + "observedFirstMeaningfulPaint": 903, + "observedFirstMeaningfulPaintTs": 387605403, + "observedLargestContentfulPaint": 886, + "observedLargestContentfulPaintTs": 387588198, + "observedLargestContentfulPaintAllFrames": 886, + "observedLargestContentfulPaintAllFramesTs": 387588198, + "observedTraceEnd": 3363, + "observedTraceEndTs": 390064691, + "observedLoad": 965, + "observedLoadTs": 387667406, + "observedDomContentLoaded": 702, + "observedDomContentLoadedTs": 387403984, + "observedCumulativeLayoutShift": 0.021878124448988175, + "observedCumulativeLayoutShiftMainFrame": 0.021878124448988175, + "observedTotalCumulativeLayoutShift": 0.021878124448988175, + "observedFirstVisualChange": 482, + "observedFirstVisualChangeTs": 387183937, + "observedLastVisualChange": 1099, + "observedLastVisualChangeTs": 387800937, + "observedSpeedIndex": 605, + "observedSpeedIndexTs": 387307007 }, { "lcpInvalidated": false @@ -34694,19 +32508,19 @@ "numScripts": 2, "numStylesheets": 2, "numFonts": 4, - "numTasks": 560, + "numTasks": 504, "numTasksOver10ms": 4, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.1550000000000002, - "throughput": 48533801.78485594, - "maxRtt": 87.617, - "maxServerLatency": 85.30100000000002, - "totalByteWeight": 2500328, - "totalTaskTime": 137.88399999999996, - "mainDocumentTransferSize": 7711 + "rtt": 1.2169999999999996, + "throughput": 52994697.44147747, + "maxRtt": 86.83, + "maxServerLatency": 160.841, + "totalByteWeight": 2499793, + "totalTaskTime": 189.67099999999974, + "mainDocumentTransferSize": 7663 } ] } @@ -34751,7 +32565,7 @@ "width": 1920, "height": 1080, "url": "https://blog.beta.gouv.fr", - "size": 2903.1, + "size": 2902.972, "nodes": 243, "requests": 26, "grade": "B", @@ -34759,7 +32573,7 @@ "ges": 1.56, "water": 2.34, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:27:24.850629", + "date": "2024-12-01 02:38:35.003069", "page_type": null } ], @@ -34769,8 +32583,8 @@ }, "summary": { "httpGrade": "C", - "apdex": 0.926, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -34783,7 +32597,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.8, + "lighthouse_performance": 0.72, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -35072,8 +32886,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:38:57Z", - "next_check_at": "2024-11-24T02:43:55Z", + "last_check_at": "2024-12-01T02:41:29Z", + "next_check_at": "2024-12-01T02:46:27Z", "created_at": "2021-04-22T19:50:28Z", "mute_until": null, "favicon_url": "https://camino.beta.gouv.fr/favicon.ico", @@ -35081,7 +32895,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:59:08Z", + "tested_at": "2024-12-01T02:26:35Z", "expires_at": "2025-01-25T09:22:50Z", "valid": true, "error": null @@ -35090,11 +32904,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 69, - "connection": 171, - "handshake": 190, - "response": 175, - "total": 606 + "namelookup": 42, + "connection": 119, + "handshake": 136, + "response": 120, + "total": 417 } }, "uptimeGrade": "A", @@ -35114,549 +32928,555 @@ "vulnerabilities": [ { "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "is_exploit": "true", + "cvss": "10.0", "type": "githubexploit", - "cvss": "10.0" + "is_exploit": "true" }, { "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "is_exploit": "true", + "cvss": "10.0", "type": "githubexploit", - "cvss": "10.0" + "is_exploit": "true" }, { "id": "CVE-2023-38408", - "is_exploit": "false", + "cvss": "9.8", "type": "cve", - "cvss": "9.8" + "is_exploit": "false" }, { "id": "CVE-2023-28531", - "is_exploit": "false", + "cvss": "9.8", "type": "cve", - "cvss": "9.8" + "is_exploit": "false" }, { "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "is_exploit": "true", + "cvss": "9.8", "type": "githubexploit", - "cvss": "9.8" + "is_exploit": "true" }, { "id": "PACKETSTORM:179290", - "is_exploit": "true", + "cvss": "8.1", "type": "packetstorm", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "D1E049F1-393E-552D-80D1-675022B26911", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "CVE-2024-6387", - "is_exploit": "false", + "cvss": "8.1", "type": "cve", - "cvss": "8.1" + "is_exploit": "false" }, { "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "6FD8F914-B663-533D-8866-23313FD37804", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "1337DAY-ID-39674", - "is_exploit": "true", + "cvss": "8.1", "type": "zdt", - "cvss": "8.1" + "is_exploit": "true" + }, + { + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "cvss": "8.1", + "type": "githubexploit", + "is_exploit": "true" }, { "id": "11F020AC-F907-5606-8805-0516E06160EE", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "is_exploit": "true", + "cvss": "8.1", "type": "githubexploit", - "cvss": "8.1" + "is_exploit": "true" }, { "id": "SSV:92579", - "is_exploit": "true", + "cvss": "7.5", "type": "seebug", - "cvss": "7.5" + "is_exploit": "true" }, { "id": "PACKETSTORM:173661", - "is_exploit": "true", + "cvss": "7.5", "type": "packetstorm", - "cvss": "7.5" + "is_exploit": "true" }, { "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true", + "cvss": "7.5", "type": "githubexploit", - "cvss": "7.5" + "is_exploit": "true" }, { "id": "1337DAY-ID-26576", - "is_exploit": "true", + "cvss": "7.5", "type": "zdt", - "cvss": "7.5" + "is_exploit": "true" }, { "id": "CVE-2023-51385", - "is_exploit": "false", + "cvss": "6.5", "type": "cve", - "cvss": "6.5" + "is_exploit": "false" }, { "id": "CVE-2023-48795", - "is_exploit": "false", + "cvss": "5.9", "type": "cve", - "cvss": "5.9" + "is_exploit": "false" }, { "id": "CVE-2023-51384", - "is_exploit": "false", + "cvss": "5.5", "type": "cve", - "cvss": "5.5" + "is_exploit": "false" }, { "id": "PACKETSTORM:140261", - "is_exploit": "true", + "cvss": "0.0", "type": "packetstorm", - "cvss": "0.0" + "is_exploit": "true" }, { "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "is_exploit": "true", + "cvss": "0.0", "type": "githubexploit", - "cvss": "0.0" + "is_exploit": "true" }, { "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "is_exploit": "true", + "cvss": "0.0", "type": "githubexploit", - "cvss": "0.0" + "is_exploit": "true" } ] } @@ -36065,7 +33885,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -36233,7 +34053,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "1732415877" + "finding": "1733021045" }, { "id": "HSTS_time", @@ -36291,6 +34111,13 @@ "severity": "OK", "finding": "DENY" }, + { + "id": "X-Content-Type-Options", + "ip": "camino.beta.gouv.fr/91.134.91.128", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, { "id": "Content-Security-Policy", "ip": "camino.beta.gouv.fr/91.134.91.128", @@ -36838,7 +34665,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "103" + "finding": "59" } ], "thirdparties": { @@ -36849,14 +34676,15 @@ "content-encoding": "gzip", "content-security-policy": "worker-src blob: ; child-src blob: ;default-src 'none'; script-src 'self' https://audience-sites.din.developpement-durable.gouv.fr 'sha256-quOgp+M4pH4TUco5DwHuTMyTY9AY+DOk4jkIMuGgSJs='; style-src 'self'; font-src 'self'; object-src 'self'; frame-src 'self'; connect-src 'self' https://audience-sites.din.developpement-durable.gouv.fr https://openmaptiles.data.gouv.fr https://*.tile.openstreetmap.org https://*.tile.openstreetmap.fr https://geoservices.brgm.fr https://data.geopf.fr https://datacarto.geoguyane.fr https://gisdata.cerema.fr https://services.data.shom.fr; img-src data: 'self' tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org tile.openstreetmap.fr a.tile.openstreetmap.fr b.tile.openstreetmap.fr c.tile.openstreetmap.fr geoservices.brgm.fr data.geopf.fr datacarto.geoguyane.fr gisdata.cerema.fr services.data.shom.fr wmts.geopf.fr; base-uri 'none'; form-action 'self'; frame-ancestors 'none';", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 02:36:15 GMT", - "etag": "W/\"6720bf4d-557\"", - "expires": "Sun, 24 Nov 2024 02:36:15 GMT", - "last-modified": "Tue, 29 Oct 2024 10:56:13 GMT", + "date": "Sun, 01 Dec 2024 02:43:00 GMT", + "etag": "W/\"67448b2a-557\"", + "expires": "Sun, 01 Dec 2024 02:43:00 GMT", + "last-modified": "Mon, 25 Nov 2024 14:35:22 GMT", "permissions-policy": "accelerometer=(), attribution-reporting=(), autoplay=(), browsing-topics=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-prefers-color-scheme=(), ch-prefers-reduced-motion=(), ch-prefers-reduced-transparency=(), ch-rtt=(), ch-save-data=(), ch-ua=(), ch-ua-arch=(), ch-ua-bitness=(), ch-ua-form-factor=(), ch-ua-full-version=(), ch-ua-full-version-list=(), ch-ua-mobile=(), ch-ua-model=(), ch-ua-platform=(), ch-ua-platform-version=(), ch-ua-wow64=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), identity-credentials-get=(), idle-detection=(), interest-cohort=(), join-ad-interest-group=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-aggregation=(), private-state-token-issuance=(), private-state-token-redemption=(), publickey-credentials-get=(), run-ad-auction=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), storage-access=(), sync-xhr=(), unload=(), usb=(), window-management=(), xr-spatial-tracking=()", "referrer-policy": "same-origin", "server": "nginx", "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-xss-protection": "1; mode=block" }, @@ -37028,7 +34856,7 @@ { "requestedUrl": "https://camino.beta.gouv.fr/", "finalUrl": "https://camino.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:35:46.031Z", + "fetchTime": "2024-12-01T02:42:33.646Z", "runWarnings": [], "categories": { "performance": { @@ -37039,7 +34867,7 @@ "snapshot" ], "id": "performance", - "score": 0.25 + "score": 0.33 }, "accessibility": { "title": "Accessibility", @@ -37091,53 +34919,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9784, + "numericValue": 9258, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4580, - "firstMeaningfulPaint": 5181, - "largestContentfulPaint": 9029, - "interactive": 9784, - "speedIndex": 7973, - "totalBlockingTime": 1200, - "maxPotentialFID": 1355, - "cumulativeLayoutShift": 0.1214477081298828, - "cumulativeLayoutShiftMainFrame": 0.1214477081298828, - "totalCumulativeLayoutShift": 0.15952062479654947, + "firstContentfulPaint": 4020, + "firstMeaningfulPaint": 4600, + "largestContentfulPaint": 8487, + "interactive": 9258, + "speedIndex": 6281, + "totalBlockingTime": 1015, + "maxPotentialFID": 1529, + "cumulativeLayoutShift": 0.0674962158203125, + "cumulativeLayoutShiftMainFrame": 0.0674962158203125, + "totalCumulativeLayoutShift": 0.10556913248697916, "observedTimeOrigin": 0, - "observedTimeOriginTs": 401358089, + "observedTimeOriginTs": 343297851, "observedNavigationStart": 0, - "observedNavigationStartTs": 401358089, - "observedFirstPaint": 2480, - "observedFirstPaintTs": 403838052, - "observedFirstContentfulPaint": 2480, - "observedFirstContentfulPaintTs": 403838052, - "observedFirstContentfulPaintAllFrames": 2480, - "observedFirstContentfulPaintAllFramesTs": 403838052, - "observedFirstMeaningfulPaint": 2480, - "observedFirstMeaningfulPaintTs": 403838052, - "observedLargestContentfulPaint": 2880, - "observedLargestContentfulPaintTs": 404238264, - "observedLargestContentfulPaintAllFrames": 2880, - "observedLargestContentfulPaintAllFramesTs": 404238264, - "observedTraceEnd": 7930, - "observedTraceEndTs": 409287716, - "observedLoad": 2576, - "observedLoadTs": 403934263, - "observedDomContentLoaded": 1163, - "observedDomContentLoadedTs": 402521149, - "observedCumulativeLayoutShift": 0.1214477081298828, - "observedCumulativeLayoutShiftMainFrame": 0.1214477081298828, - "observedTotalCumulativeLayoutShift": 0.15952062479654947, - "observedFirstVisualChange": 2492, - "observedFirstVisualChangeTs": 403850089, - "observedLastVisualChange": 6058, - "observedLastVisualChangeTs": 407416089, - "observedSpeedIndex": 3133, - "observedSpeedIndexTs": 404491486 + "observedNavigationStartTs": 343297851, + "observedFirstPaint": 1489, + "observedFirstPaintTs": 344787191, + "observedFirstContentfulPaint": 1489, + "observedFirstContentfulPaintTs": 344787191, + "observedFirstContentfulPaintAllFrames": 1489, + "observedFirstContentfulPaintAllFramesTs": 344787191, + "observedFirstMeaningfulPaint": 1489, + "observedFirstMeaningfulPaintTs": 344787191, + "observedLargestContentfulPaint": 1642, + "observedLargestContentfulPaintTs": 344939811, + "observedLargestContentfulPaintAllFrames": 1642, + "observedLargestContentfulPaintAllFramesTs": 344939811, + "observedTraceEnd": 6547, + "observedTraceEndTs": 349845343, + "observedLoad": 879, + "observedLoadTs": 344177199, + "observedDomContentLoaded": 684, + "observedDomContentLoadedTs": 343981988, + "observedCumulativeLayoutShift": 0.0674962158203125, + "observedCumulativeLayoutShiftMainFrame": 0.0674962158203125, + "observedTotalCumulativeLayoutShift": 0.10556913248697916, + "observedFirstVisualChange": 1488, + "observedFirstVisualChangeTs": 344785851, + "observedLastVisualChange": 4654, + "observedLastVisualChangeTs": 347951851, + "observedSpeedIndex": 1974, + "observedSpeedIndexTs": 345271689 }, { "lcpInvalidated": false @@ -37155,23 +34983,23 @@ "type": "debugdata", "items": [ { - "numRequests": 43, + "numRequests": 42, "numScripts": 3, "numStylesheets": 2, "numFonts": 4, - "numTasks": 1496, - "numTasksOver10ms": 11, - "numTasksOver25ms": 8, - "numTasksOver50ms": 6, - "numTasksOver100ms": 3, + "numTasks": 1422, + "numTasksOver10ms": 7, + "numTasksOver25ms": 5, + "numTasksOver50ms": 3, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0.8350000000000009, - "throughput": 7192464.290033023, - "maxRtt": 178.088, - "maxServerLatency": 29.116000000000014, - "totalByteWeight": 1273249, - "totalTaskTime": 1175.342, - "mainDocumentTransferSize": 2754 + "rtt": 0.8889999999999993, + "throughput": 13977047.639202995, + "maxRtt": 103.95599999999999, + "maxServerLatency": 32.89500000000001, + "totalByteWeight": 1273242, + "totalTaskTime": 858.7269999999969, + "mainDocumentTransferSize": 2775 } ] } @@ -37265,15 +35093,15 @@ "width": 1920, "height": 1080, "url": "https://camino.beta.gouv.fr", - "size": 1982.299, + "size": 1983.006, "nodes": 790, - "requests": 42, + "requests": 43, "grade": "D", "score": 50, "ges": 2, "water": 3, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:32:35.453147", + "date": "2024-12-01 02:39:34.765278", "page_type": null } ], @@ -37297,7 +35125,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.25, + "lighthouse_performance": 0.33, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -37517,7 +35345,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-21T05:36:59Z", + "up_since": "2024-11-28T11:22:41Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -37528,8 +35356,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:43:57Z", - "next_check_at": "2024-11-24T02:48:57Z", + "last_check_at": "2024-12-01T02:50:38Z", + "next_check_at": "2024-12-01T02:55:36Z", "created_at": "2021-04-22T19:50:37Z", "mute_until": null, "favicon_url": "https://carbure.beta.gouv.fr/favicon.ico", @@ -37537,7 +35365,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T01:59:09Z", + "tested_at": "2024-12-01T02:25:46Z", "expires_at": "2025-01-05T11:26:39Z", "valid": true, "error": null @@ -37546,11 +35374,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 121, - "connection": 117, - "handshake": 121, - "response": 121, - "total": 480 + "namelookup": 194, + "connection": 152, + "handshake": 158, + "response": 157, + "total": 661 } }, "uptimeGrade": "A", @@ -37583,77 +35411,77 @@ "testssl": [ { "id": "service", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -37661,7 +35489,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -37669,7 +35497,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -37677,7 +35505,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -37685,7 +35513,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -37693,7 +35521,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -37701,483 +35529,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-10-07 11:26" }, { "id": "cert_notAfter", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-05 11:26" }, { "id": "cert_extlifeSpan", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732415933" + "finding": "1733021218" }, { "id": "HSTS_time", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr www.data.gouv.fr https://*.tile.openstreetmap.org/" }, { "id": "Referrer-Policy", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "Cache-Control", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=60, public" }, { "id": "banner_reverseproxy", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -38185,7 +36013,7 @@ }, { "id": "heartbleed", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -38194,7 +36022,7 @@ }, { "id": "CCS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -38203,7 +36031,7 @@ }, { "id": "ticketbleed", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -38212,7 +36040,7 @@ }, { "id": "ROBOT", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -38221,7 +36049,7 @@ }, { "id": "secure_renego", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -38229,7 +36057,7 @@ }, { "id": "secure_client_renego", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -38238,7 +36066,7 @@ }, { "id": "CRIME_TLS", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -38247,7 +36075,7 @@ }, { "id": "BREACH", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -38256,7 +36084,7 @@ }, { "id": "POODLE_SSL", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -38265,14 +36093,14 @@ }, { "id": "fallback_SCSV", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -38281,7 +36109,7 @@ }, { "id": "FREAK", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -38290,7 +36118,7 @@ }, { "id": "DROWN", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38299,7 +36127,7 @@ }, { "id": "DROWN_hint", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38308,7 +36136,7 @@ }, { "id": "LOGJAM", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38317,7 +36145,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38326,7 +36154,7 @@ }, { "id": "BEAST", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -38335,7 +36163,7 @@ }, { "id": "LUCKY13", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -38344,7 +36172,7 @@ }, { "id": "winshock", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -38353,7 +36181,7 @@ }, { "id": "RC4", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -38362,392 +36190,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carbure.beta.gouv.fr/185.21.194.105", + "ip": "carbure.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38755,7 +36583,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38763,7 +36591,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38771,7 +36599,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38779,7 +36607,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38787,7 +36615,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38795,483 +36623,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-10-07 11:26" }, { "id": "cert_notAfter", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-01-05 11:26" }, { "id": "cert_extlifeSpan", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732416028" + "finding": "1733021271" }, { "id": "HSTS_time", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr www.data.gouv.fr https://*.tile.openstreetmap.org/" }, { "id": "Referrer-Policy", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "Cache-Control", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=60, public" }, { "id": "banner_reverseproxy", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -39279,7 +37107,7 @@ }, { "id": "heartbleed", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -39288,7 +37116,7 @@ }, { "id": "CCS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -39297,7 +37125,7 @@ }, { "id": "ticketbleed", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -39306,7 +37134,7 @@ }, { "id": "ROBOT", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -39315,7 +37143,7 @@ }, { "id": "secure_renego", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -39323,7 +37151,7 @@ }, { "id": "secure_client_renego", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -39332,7 +37160,7 @@ }, { "id": "CRIME_TLS", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -39341,7 +37169,7 @@ }, { "id": "BREACH", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -39350,7 +37178,7 @@ }, { "id": "POODLE_SSL", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -39359,14 +37187,14 @@ }, { "id": "fallback_SCSV", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -39375,7 +37203,7 @@ }, { "id": "FREAK", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -39384,7 +37212,7 @@ }, { "id": "DROWN", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -39393,7 +37221,7 @@ }, { "id": "DROWN_hint", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -39402,7 +37230,7 @@ }, { "id": "LOGJAM", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -39411,7 +37239,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -39420,7 +37248,7 @@ }, { "id": "BEAST", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -39429,7 +37257,7 @@ }, { "id": "LUCKY13", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -39438,7 +37266,7 @@ }, { "id": "winshock", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -39447,7 +37275,7 @@ }, { "id": "RC4", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -39456,315 +37284,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carbure.beta.gouv.fr/80.247.12.255", + "ip": "carbure.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" @@ -40116,7 +37944,7 @@ "ip": "carbure.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -40277,7 +38105,7 @@ "ip": "carbure.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732416123" + "finding": "1733021324" }, { "id": "HSTS_time", @@ -40865,77 +38693,77 @@ }, { "id": "service", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40943,7 +38771,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40951,7 +38779,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40959,7 +38787,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40967,7 +38795,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40975,7 +38803,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40983,483 +38811,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-10-07 11:26" }, { "id": "cert_notAfter", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-01-05 11:26" }, { "id": "cert_extlifeSpan", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732416218" + "finding": "1733021377" }, { "id": "HSTS_time", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr www.data.gouv.fr https://*.tile.openstreetmap.org/" }, { "id": "Referrer-Policy", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "Cache-Control", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=60, public" }, { "id": "banner_reverseproxy", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -41467,7 +39295,7 @@ }, { "id": "heartbleed", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -41476,7 +39304,7 @@ }, { "id": "CCS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -41485,7 +39313,7 @@ }, { "id": "ticketbleed", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -41494,7 +39322,7 @@ }, { "id": "ROBOT", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -41503,7 +39331,7 @@ }, { "id": "secure_renego", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -41511,7 +39339,7 @@ }, { "id": "secure_client_renego", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -41520,7 +39348,7 @@ }, { "id": "CRIME_TLS", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -41529,7 +39357,7 @@ }, { "id": "BREACH", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -41538,7 +39366,7 @@ }, { "id": "POODLE_SSL", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -41547,14 +39375,14 @@ }, { "id": "fallback_SCSV", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -41563,7 +39391,7 @@ }, { "id": "FREAK", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -41572,7 +39400,7 @@ }, { "id": "DROWN", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41581,7 +39409,7 @@ }, { "id": "DROWN_hint", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41590,7 +39418,7 @@ }, { "id": "LOGJAM", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41599,7 +39427,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41608,7 +39436,7 @@ }, { "id": "BEAST", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -41617,7 +39445,7 @@ }, { "id": "LUCKY13", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -41626,7 +39454,7 @@ }, { "id": "winshock", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -41635,7 +39463,7 @@ }, { "id": "RC4", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -41644,325 +39472,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "carbure.beta.gouv.fr/148.253.96.193", + "ip": "carbure.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "386" + "finding": "216" } ], "thirdparties": { @@ -41970,10 +39798,10 @@ "cookies": [ { "name": "csrftoken", - "value": "T6BcSpnXiNSDIck5KIyxKyKJPWv32mHu", + "value": "H2OrVVcjjD888Zq7i8ZaoMKSIEb07zRS", "domain": "carbure.beta.gouv.fr", "path": "/", - "expires": 1763865426.943734, + "expires": 1764470747.866078, "size": 41, "httpOnly": false, "secure": true, @@ -41987,24 +39815,24 @@ "headers": { "cache-control": "max-age=60, public", "content-encoding": "gzip", - "content-length": "536", + "content-length": "538", "content-security-policy": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr www.data.gouv.fr https://*.tile.openstreetmap.org/", "content-type": "text/html; charset=\"utf-8\"", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 02:37:05 GMT", - "etag": "\"6720e135-448\"", - "last-modified": "Tue, 29 Oct 2024 14:20:53 GMT", + "date": "Sun, 01 Dec 2024 02:45:46 GMT", + "etag": "\"6746eb44-448\"", + "last-modified": "Wed, 27 Nov 2024 10:49:56 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "10328abc-3ce4-4c96-85a4-26dded840f70" + "x-request-id": "03cb095a-c033-48bc-9ee7-eefa974d8c68" }, "endpoints": [ { "hostname": "carbure.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -42259,7 +40087,7 @@ { "requestedUrl": "https://carbure.beta.gouv.fr/", "finalUrl": "https://carbure.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:36:38.890Z", + "fetchTime": "2024-12-01T02:45:22.683Z", "runWarnings": [], "categories": { "performance": { @@ -42328,47 +40156,47 @@ "type": "debugdata", "items": [ { - "firstContentfulPaint": 2554, + "firstContentfulPaint": 2629, "firstMeaningfulPaint": 3229, "largestContentfulPaint": 3004, "interactive": 3229, - "speedIndex": 3726, + "speedIndex": 3198, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.13096527014838324, - "cumulativeLayoutShiftMainFrame": 0.13096527014838324, - "totalCumulativeLayoutShift": 0.13096527014838324, + "cumulativeLayoutShift": 0.14844230567084418, + "cumulativeLayoutShiftMainFrame": 0.14844230567084418, + "totalCumulativeLayoutShift": 0.14844230567084418, "observedTimeOrigin": 0, - "observedTimeOriginTs": 431470043, + "observedTimeOriginTs": 397573593, "observedNavigationStart": 0, - "observedNavigationStartTs": 431470043, - "observedFirstPaint": 867, - "observedFirstPaintTs": 432336727, - "observedFirstContentfulPaint": 1244, - "observedFirstContentfulPaintTs": 432713906, - "observedFirstContentfulPaintAllFrames": 1244, - "observedFirstContentfulPaintAllFramesTs": 432713906, - "observedFirstMeaningfulPaint": 1651, - "observedFirstMeaningfulPaintTs": 433120739, - "observedLargestContentfulPaint": 1418, - "observedLargestContentfulPaintTs": 432887939, - "observedLargestContentfulPaintAllFrames": 1418, - "observedLargestContentfulPaintAllFramesTs": 432887939, - "observedTraceEnd": 4492, - "observedTraceEndTs": 435961665, - "observedLoad": 1829, - "observedLoadTs": 433298910, - "observedDomContentLoaded": 1176, - "observedDomContentLoadedTs": 432646382, - "observedCumulativeLayoutShift": 0.13096527014838324, - "observedCumulativeLayoutShiftMainFrame": 0.13096527014838324, - "observedTotalCumulativeLayoutShift": 0.13096527014838324, - "observedFirstVisualChange": 1362, - "observedFirstVisualChangeTs": 432832043, - "observedLastVisualChange": 1795, - "observedLastVisualChangeTs": 433265043, - "observedSpeedIndex": 1654, - "observedSpeedIndexTs": 433124341 + "observedNavigationStartTs": 397573593, + "observedFirstPaint": 664, + "observedFirstPaintTs": 398237714, + "observedFirstContentfulPaint": 942, + "observedFirstContentfulPaintTs": 398515670, + "observedFirstContentfulPaintAllFrames": 942, + "observedFirstContentfulPaintAllFramesTs": 398515670, + "observedFirstMeaningfulPaint": 1199, + "observedFirstMeaningfulPaintTs": 398773063, + "observedLargestContentfulPaint": 1050, + "observedLargestContentfulPaintTs": 398623631, + "observedLargestContentfulPaintAllFrames": 1050, + "observedLargestContentfulPaintAllFramesTs": 398623631, + "observedTraceEnd": 4184, + "observedTraceEndTs": 401758017, + "observedLoad": 1179, + "observedLoadTs": 398753025, + "observedDomContentLoaded": 792, + "observedDomContentLoadedTs": 398365827, + "observedCumulativeLayoutShift": 0.14844230567084418, + "observedCumulativeLayoutShiftMainFrame": 0.14844230567084418, + "observedTotalCumulativeLayoutShift": 0.14844230567084418, + "observedFirstVisualChange": 1010, + "observedFirstVisualChangeTs": 398583593, + "observedLastVisualChange": 1293, + "observedLastVisualChangeTs": 398866593, + "observedSpeedIndex": 1207, + "observedSpeedIndexTs": 398780715 }, { "lcpInvalidated": false @@ -42390,19 +40218,19 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 3, - "numTasks": 36, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 133.113, - "throughput": 8958901.2783043, - "maxRtt": 139.62900000000002, - "maxServerLatency": 4.2620000000000005, - "totalByteWeight": 965367, - "totalTaskTime": 3.1409999999999987, - "mainDocumentTransferSize": 996 + "numTasks": 16, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 81.34700000000001, + "throughput": 15173439.133961169, + "maxRtt": 86.49600000000001, + "maxServerLatency": 4.75800000000001, + "totalByteWeight": 969452, + "totalTaskTime": 3879.8759999999997, + "mainDocumentTransferSize": 998 } ] } @@ -42490,7 +40318,7 @@ "width": 1920, "height": 1080, "url": "https://carbure.beta.gouv.fr", - "size": 986.26, + "size": 990.355, "nodes": 158, "requests": 31, "grade": "B", @@ -42498,7 +40326,7 @@ "ges": 1.4, "water": 2.1, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:33:34.419938", + "date": "2024-12-01 02:42:22.265645", "page_type": null } ], @@ -42726,10 +40554,10 @@ "url": "https://cartobio.agencebio.org", "alias": null, "last_status": 200, - "uptime": 99.971, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-22T10:17:42Z", + "up_since": "2024-11-27T12:21:44Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -42740,8 +40568,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T02:47:41Z", - "next_check_at": "2024-11-24T02:48:40Z", + "last_check_at": "2024-12-01T02:58:42Z", + "next_check_at": "2024-12-01T02:59:42Z", "created_at": "2024-01-15T13:37:41Z", "mute_until": null, "favicon_url": "https://cartobio.agencebio.org/assets/logo-agence-bio-Cdaw3v-R.png", @@ -42749,20 +40577,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:45:42Z", + "tested_at": "2024-12-01T02:50:43Z", "expires_at": "2025-01-29T20:49:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.854, + "apdex": 0.813, "timings": { "redirect": 0, - "namelookup": 20, - "connection": 8, - "handshake": 15, - "response": 384, - "total": 427 + "namelookup": 21, + "connection": 10, + "handshake": 17, + "response": 461, + "total": 508 } }, "uptimeGrade": "A", @@ -42813,77 +40641,77 @@ "testssl": [ { "id": "service", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -42891,7 +40719,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -42899,7 +40727,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -42907,7 +40735,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -42915,7 +40743,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -42923,7 +40751,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -42931,525 +40759,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (59)" }, { "id": "cert_notBefore", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "2024-10-31 20:49" }, { "id": "cert_notAfter", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2025-01-29 20:49" }, { "id": "cert_extlifeSpan", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "http://c.pki.goog/we1/-wlfVjh9dJg.crl" }, { "id": "cert_ocspURL", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "http://o.pki.goog/s/we1/m88" }, { "id": "OCSP_stapling", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "WE1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "WE1 <-- GTS Root R4" }, { "id": "intermediate_cert <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "2023-11-15 03:43" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "1732416450" + "finding": "1733021842" }, { "id": "HSTS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=2685&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3005&recv_bytes=739&delivery_rate=1129746&cwnd=252&unsent_bytes=0&cid=a542c23cd032e030&ts=295&x=0'" + "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=8513&min_rtt=8410&rtt_var=2438&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3005&recv_bytes=739&delivery_rate=339595&cwnd=209&unsent_bytes=0&cid=ff6527ec6960ab35&ts=185&x=0'" }, { "id": "banner_application", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -43457,7 +41285,7 @@ }, { "id": "heartbleed", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -43466,7 +41294,7 @@ }, { "id": "CCS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -43475,7 +41303,7 @@ }, { "id": "ticketbleed", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -43484,7 +41312,7 @@ }, { "id": "ROBOT", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -43493,7 +41321,7 @@ }, { "id": "secure_renego", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -43501,7 +41329,7 @@ }, { "id": "secure_client_renego", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -43510,7 +41338,7 @@ }, { "id": "CRIME_TLS", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -43519,7 +41347,7 @@ }, { "id": "BREACH", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -43528,7 +41356,7 @@ }, { "id": "POODLE_SSL", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -43537,14 +41365,14 @@ }, { "id": "fallback_SCSV", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -43553,7 +41381,7 @@ }, { "id": "FREAK", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -43562,7 +41390,7 @@ }, { "id": "DROWN", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -43571,7 +41399,7 @@ }, { "id": "DROWN_hint", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -43580,7 +41408,7 @@ }, { "id": "LOGJAM", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -43589,7 +41417,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -43598,7 +41426,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -43607,7 +41435,7 @@ }, { "id": "BEAST", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -43616,7 +41444,7 @@ }, { "id": "LUCKY13", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -43625,7 +41453,7 @@ }, { "id": "winshock", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -43634,7 +41462,7 @@ }, { "id": "RC4", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -43643,1115 +41471,413 @@ }, { "id": "clientsimulation-android_60", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "cartobio.agencebio.org/172.64.80.1", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, - { - "id": "scanTime", - "ip": "cartobio.agencebio.org/172.64.80.1", - "port": "443", - "severity": "INFO", - "finding": "42" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "no-cache", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e7611e22a10a242-ORD", - "content-encoding": "br", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 02:46:39 GMT", - "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Tue, 05 Nov 2024 09:25:13 GMT", - "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=tWbsLNPBTgWqx%2FNB2WPZ%2Fri%2FGFlFaaNUEiZ8qTS7744gBOZZfG2OxYnAwCKdZ%2BRBQWknqL9xPbSJShqNqYMExRjbfbnRcUDR0hEwsEhO6K0WWELfXRiHKbHTnMu%2BhB0xDBbw34U6LS2q\"}],\"group\":\"cf-nel\",\"max_age\":604800}", - "server": "cloudflare", - "server-timing": "cfL4;desc=\"?proto=TCP&rtt=7208&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2872&recv_bytes=1063&delivery_rate=1579646&cwnd=253&unsent_bytes=0&cid=73ecb44f808490aa&ts=117&x=0\"", - "vary": "Accept-Encoding" - }, - "endpoints": [ - { - "hostname": "cartobio.agencebio.org", - "ip": "172.64.80.1", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://cartobio.agencebio.org/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", - "confidence": 100, - "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", - "cpe": null, - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://cartobio.agencebio.org/", - "finalUrl": "https://cartobio.agencebio.org/", - "fetchTime": "2024-11-24T02:46:15.229Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.53 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.93 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.77 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6825, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 6825, - "firstMeaningfulPaint": 6825, - "largestContentfulPaint": 13229, - "interactive": 6825, - "speedIndex": 6825, - "totalBlockingTime": 126, - "maxPotentialFID": 122, - "cumulativeLayoutShift": 0.004181966145833333, - "cumulativeLayoutShiftMainFrame": 0.004181966145833333, - "totalCumulativeLayoutShift": 0.004181966145833333, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 463531172, - "observedNavigationStart": 0, - "observedNavigationStartTs": 463531172, - "observedFirstPaint": 610, - "observedFirstPaintTs": 464141206, - "observedFirstContentfulPaint": 610, - "observedFirstContentfulPaintTs": 464141206, - "observedFirstContentfulPaintAllFrames": 610, - "observedFirstContentfulPaintAllFramesTs": 464141206, - "observedFirstMeaningfulPaint": 610, - "observedFirstMeaningfulPaintTs": 464141206, - "observedLargestContentfulPaint": 610, - "observedLargestContentfulPaintTs": 464141206, - "observedLargestContentfulPaintAllFrames": 610, - "observedLargestContentfulPaintAllFramesTs": 464141206, - "observedTraceEnd": 3194, - "observedTraceEndTs": 466725466, - "observedLoad": 867, - "observedLoadTs": 464397715, - "observedDomContentLoaded": 432, - "observedDomContentLoadedTs": 463962965, - "observedCumulativeLayoutShift": 0.004181966145833333, - "observedCumulativeLayoutShiftMainFrame": 0.004181966145833333, - "observedTotalCumulativeLayoutShift": 0.004181966145833333, - "observedFirstVisualChange": 616, - "observedFirstVisualChangeTs": 464147172, - "observedLastVisualChange": 1066, - "observedLastVisualChangeTs": 464597172, - "observedSpeedIndex": 626, - "observedSpeedIndexTs": 464157600 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 46, - "numScripts": 16, - "numStylesheets": 3, - "numFonts": 3, - "numTasks": 1069, - "numTasksOver10ms": 6, - "numTasksOver25ms": 2, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 98.316, - "throughput": 95342981.03042687, - "maxRtt": 104.02900000000001, - "maxServerLatency": 8.333000000000013, - "totalByteWeight": 1987198, - "totalTaskTime": 280.25499999999784, - "mainDocumentTransferSize": 1272 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://cartobio.agencebio.org/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://cartobio.agencebio.org/mentions-legales" - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "cartobio", - "type": "startup", - "attributes": { - "name": "CartoBio", - "pitch": "Ouvrir, enrichir et partager les données parcellaires de l’agriculture biologique", - "stats_url": "https://cartobio.agencebio.org/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#CartoBio", - "link": "https://cartobio.agencebio.org", - "repository": "https://github.com/AgenceBio/cartobio-front", - "contact": "cartobio@agencebio.org", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ACartoBio%20r%C3%A9pond%20%C3%A0%20un%20probl%C3%A8me%20aupr%C3%A8s%20de%20diff%C3%A9rents%20acteurs.%0A%0A%2A%2ALe%20grand%20public%2C%20la%20recherche%2A%2A%20%3A%20absence%20d%E2%80%99informations%20g%C3%A9ographiques%20pour%20mener%20%C3%A0%20bien%20des%20programmes%20de%20recherche%20et%20de%20politiques%20publiques.%0ACes%20informations%20sont%20par%20exemple%20n%C3%A9cessaires%20pour%20r%C3%A9aliser%20des%20%C3%A9tudes%20pouss%C3%A9es%20sur%20l%E2%80%99impact%20du%20bio%20sur%20la%20sant%C3%A9%2C%20l%E2%80%99environnement%20%28qualit%C3%A9%20de%20l%E2%80%99eau%2C%20biodiversit%C3%A9%29%20et%20l%E2%80%99adaptation%20des%20politiques%20agricoles%20locales.%0A%0A%2A%2AL%E2%80%99administration%2A%2A%20%3A%20au%20niveau%20national%2C%20le%20MASA%20souhaite%20se%20baser%20sur%20des%20donn%C3%A9es%20g%C3%A9ographiques%20pour%20fiabiliser%20le%20paiement%20des%20aides%20PAC%20bio.%20Au%20niveau%20territorial%2C%20les%20DDT%20font%20face%20%C3%A0%20des%20risques%20juridiques%20et%20au%20caract%C3%A8re%20chronophage%20des%20d%C3%A9cisions%20qui%20concernent%20les%20aides%20PAC%20bio.%0A%0A%2A%2ALes%20organismes%20de%20certification%2A%2A%20%3A%20ils%20regrettent%20l%E2%80%99absence%20de%20supports%20g%C3%A9ographiques%20pour%20%C3%A9tablir%20les%20certificats%20et%20les%20attestations%20de%20productions%20v%C3%A9g%C3%A9tales.%20Cela%20se%20traduit%20par%20une%20surcharge%20de%20travail%20lors%20des%20audits%2C%20ainsi%20que%20pendant%20les%20p%C3%A9riodes%20de%20t%C3%A9l%C3%A9d%C3%A9claration%20et%20d%E2%80%99instruction%20des%20aides%20PAC.%0A%0A%2A%2ALes%20agriculteurs%20et%20agricultrices%2A%2A%20%3A%20ils%20sont%20confront%C3%A9s%20%C3%A0%20la%20recopie%20r%C3%A9guli%C3%A8re%20des%20m%C3%AAmes%20informations%2C%20ce%20qui%20est%20chronophage%20et%20fastidieux%20pour%20eux.%0A%0A%23%23%20La%20solution%20apport%C3%A9e%0A%0ACartoBio%20constitue%20et%20diffuse%20des%20donn%C3%A9es%20g%C3%A9ographiques%20du%20parcellaire%20bio%20%3B%20certifi%C3%A9es%20et%20interop%C3%A9rables%20entre%20les%20acteurs%20de%20la%20certification%20en%20agriculture%20biologique.%0A%0ACela%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20%C3%A0%20destination%20d%E2%80%99agriculteurs%2C%20d%E2%80%99agricultrices%20et%20des%20employ%C3%A9s%20d%E2%80%99organismes%20de%20certification%20en%20agriculture%20biologique.%20Elle%20se%20synchronise%20%C3%A0%20plusieurs%20sources%20de%20donn%C3%A9es%20g%C3%A9ographiques%20pour%20%C3%A9viter%20la%20recopie%20d%E2%80%99information%20%28%C3%A9diteurs%20de%20logiciels%20agricoles%2C%20T%C3%A9l%C3%A9PAC%2C%20nCVI%E2%80%A6%29%20et%20favoriser%20leur%20diffusion%20%28instructions%20des%20aides%20PAC%2C%20observatoires%20bio%2C%20autres%20aides%E2%80%A6%29.%0A%0AConcernant%20la%20diffusion%20au%20plus%20grand%20nombre%2C%20CartoBio%20met%20%C3%A0%20disposition%20un%20jeu%20de%20donn%C3%A9es%20anonymis%C3%A9es%20en%20Open%20Data.%0A%0A%23%23%20Les%20partenaires%0A%0ACartoBio%20est%20initi%C3%A9%20et%20port%C3%A9%20par%20l%E2%80%99Agence%20Bio%20et%20l%E2%80%99Institut%20Nationale%20de%20l%E2%80%99Origine%20et%20de%20la%20Qualit%C3%A9%20%28INAO%29.%0A%0ALe%20projet%20est%20soutenu%20par%20la%20Direction%20du%20Num%C3%A9rique%20%28DINUM%29%2C%20le%20Minist%C3%A8re%20de%20l%E2%80%99Agriculture%20et%20de%20la%20Souverainet%C3%A9%20Alimentaire%20%28MASA%29%20et%20le%20Minist%C3%A8re%20de%20la%20Transition%20%C3%89cologique%20et%20de%20la%20Coh%C3%A9sion%20des%20Territoires%20%28MTECT%29.%0ALe%20projet%20est%20soutenu%20financi%C3%A8rement%20par%20l%E2%80%99Office%20Fran%C3%A7ais%20de%20la%20Biodiversit%C3%A9%20%28OFB%29%20dans%20le%20cadre%20du%20Plan%20Ecophyto.%0A%0ACollaboration%20avec%20l%E2%80%99Agence%20des%20Services%20et%20Paiement%20%28ASP%29%20qui%20%C3%A9ditent%20les%20logiciels%20T%C3%A9l%C3%A9PAC%20et%20ISIS%20%3B%20les%20Douanes%20qui%20%C3%A9ditent%20le%20Casier%20Viticole%20Informatis%C3%A9%20%28nCVI%29%20%3B%20les%20Directions%20D%C3%A9partementales%20des%20Territoires%20%28DDT%29%20%3B%20les%20Organismes%20Certificateurs%20%3B%20les%20acteurs%20du%20monde%20agricole%20%28Cerfrance%2C%20Chambres%20d%27agriculture%2C%20syndicats%20agricoles%E2%80%A6%29%20%3B%20les%20%C3%A9diteurs%20de%20logiciels%20agricoles%20%28Geofolia%2C%20MesParcelles%2C%20%E2%80%A6%29.%0A%0A%23%23%20La%20Strat%C3%A9gie%0A%0ACartoBio%20s%E2%80%99appuie%20sur%20la%20collaboration%20avec%20les%20Organismes%20Certificateurs%20pour%20constituer%20sa%20base%20de%20donn%C3%A9es%20g%C3%A9ographique.%20Nous%20nous%20basons%20sur%20l%E2%80%99annualit%C3%A9%20du%20contr%C3%B4le%20bio%20pour%20atteindre%20un%20parcellaire%20complet%20d%E2%80%99ici%20la%20fin%20de%20la%20campagne%20PAC%202024.%0A%0AAfin%20d%E2%80%99%C3%A9viter%20la%20recopie%20de%20donn%C3%A9es%2C%20CartoBio%20cherche%20%C3%A0%20se%20connecter%20%C3%A0%20tous%20les%20services%20contenant%20de%20l%E2%80%99information%20g%C3%A9ographique%20utilis%C3%A9s%20par%20les%20agriculteurs%20%E2%80%94%20des%20r%C3%A9f%C3%A9rences%20cadastrales%20textuelles%20du%20nCVI%20jusqu%E2%80%99aux%20d%C3%A9coupes%20pr%C3%A9cises%20des%20outils%20de%20gestion%20de%20parcellaires.%0A%0AEnfin%2C%20concernant%20le%20jeu%20de%20donn%C3%A9es%20en%20open%20data%2C%20il%20est%20aujourd%E2%80%99hui%20disponible%20au%20t%C3%A9l%C3%A9chargement%20dans%20sa%20version%20brute%20sur%20%3Ca%20href%3D%22https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2F616d6531c2951bbe8bd97771%2F%22%20target%3D%22_blank%22%3EData.gouv%3C%2Fa%3E.%20L%E2%80%99objectif%20est%20de%20rendre%20les%20donn%C3%A9es%20intelligibles%20pour%20tous%20via%20la%20cr%C3%A9ation%20d%E2%80%99une%20interface%20de%20visualisation.%0A%0A%23%23%20Historique%20du%20projet%0A%0ACartoBio%20a%20%C3%A9t%C3%A9%20initialement%20propos%C3%A9%20par%20l%E2%80%99Agence%20Bio%20%26%20INAO%20aupr%C3%A8s%20du%20programme%20Entrepreneur%20d%E2%80%99Int%C3%A9r%C3%AAt%20G%C3%A9n%C3%A9ral%20%28EIG%29%2C%20avant%20d%E2%80%99%C3%AAtre%20incub%C3%A9%20par%20la%20DINUM%20sous%20le%20programme%20Beta.gouv.fr.%0A%3Ca%20href%3D%22https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Fcartobio%2F%22%20target%3D%22_blank%22%3ED%C3%A9couvrir%20le%20d%C3%A9fi%20EIG%202019%3C%2Fa%3E%0A%0ALa%20premi%C3%A8re%20version%20du%20projet%20est%20d%E2%80%99abord%20destin%C3%A9e%20uniquement%20aux%20Organismes%20de%20Certification%2C%20comme%20un%20outil%20suppl%C3%A9mentaire%20de%20pr%C3%A9paration%20de%20leur%20contr%C3%B4le.%20L%E2%80%99impact%20n%E2%80%99a%20pas%20%C3%A9t%C3%A9%20concluant%2C%20expliqu%C3%A9%20par%20un%20manque%20de%20prise%20en%20main%20de%20l%E2%80%99outil%20par%20les%20utilisateurs.%0A%0AEn%202021%2C%20le%20projet%20est%20red%C3%A9velopp%C3%A9%20en%20%C3%A9troite%20collaboration%20avec%20le%20MASA%20et%20le%20Cebio%20dans%20le%20cadre%20des%20aides%20PAC%20Bio.%20CartoBio%20vise%20%C3%A0%20remplacer%20l%27attestation%20de%20production%20v%C3%A9g%C3%A9tale%2C%20et%20d%E2%80%99anticiper%20l%E2%80%99augmentation%20du%20nombre%20d%E2%80%99engagements%20en%20bio.%0A%0ALe%20projet%20est%20r%C3%A9int%C3%A9gr%C3%A9%20au%20sein%20de%20l%E2%80%99Agence%20Bio%20depuis%20juillet%202024.%0A%0AVous%20%C3%AAtes%20int%C3%A9ress%C3%A9.e%20par%20le%20projet%20%3F%0A%3Ca%20href%3D%22mailto%3Acartobio%40beta.gouv.fr%3FSubject%3DCartobio%2520m%27int%C3%A9resse%2520%21%22%3EContactez-nous%20%21%3C%2Fa%3E%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-12-19", - "end": "" - }, - { - "name": "construction", - "start": "2019-12-19", - "end": "" - }, - { - "name": "acceleration", - "start": "2023-05-01", - "end": "" - }, - { - "name": "transfer", - "start": "2024-06-10", - "end": "" - }, - { - "name": "success", - "start": "2024-07-27", - "end": "" - } - ], - "sponsors": [ - "agence-bio" - ], - "thematiques": [ - "Agriculture" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/cartobio-agencebio-org/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "agriculture" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://cartobio.agencebio.org", - "size": 2037.65, - "nodes": 249, - "requests": 33, - "grade": "B", - "score": 72, - "ges": 1.56, - "water": 2.34, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:43:16.403485", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "D", - "apdex": 0.854, - "apdexGrade": "F", - "uptime": 99.971, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-29T20:49:00.000Z", - "testsslGrade": "B", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.53, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.93, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.77, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://catalogue.apprentissage.beta.gouv.fr", - "category": "mission-apprentissage", - "betaId": "catalogue-apprentissage", - "tags": [ - "apprentissage" - ], - "http": { - "url": "https://catalogue.apprentissage.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 13 Oct 2024 02:39:40 GMT", - "grade": "C-", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "cache-control": "max-age=0", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 13 Oct 2024 02:39:39 GMT", - "etag": "W/\"2a4-191d60989b8\"", - "last-modified": "Mon, 09 Sep 2024 09:07:15 GMT", - "server": "nginx", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload;", - "transfer-encoding": "chunked", - "vary": "Origin" - }, - "scan_id": 56779014, - "score": 45, - "start_time": "Sun, 13 Oct 2024 02:39:37 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "https://http-observatory.security.mozilla.org", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://catalogue-apprentissage.intercariforef.org/", - "redirects": true, - "route": [ - "http://catalogue.apprentissage.beta.gouv.fr/", - "https://catalogue-apprentissage.intercariforef.org/" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload;", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "2oba", - "url": "https://catalogue.apprentissage.beta.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 96.742, - "down": false, - "down_since": null, - "up_since": "2024-11-20T16:40:56Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [ - "lan", - "mia", - "sin", - "tok", - "syd" - ], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T02:52:49Z", - "next_check_at": "2024-11-24T02:57:47Z", - "created_at": "2021-04-22T19:50:49Z", - "mute_until": null, - "favicon_url": "https://catalogue-apprentissage.intercariforef.org/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T02:12:58Z", - "expires_at": "2025-02-20T07:48:09Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 231, - "namelookup": 17, - "connection": 38, - "handshake": 44, - "response": 41, - "total": 370 - } - }, - "uptimeGrade": "D", - "apdexGrade": "A" - }, - "nmap": { - "host": "catalogue.apprentissage.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Apache", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "product": "Apache", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44759,7 +41885,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44767,7 +41893,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44775,7 +41901,7 @@ }, { "id": "cipherlist_LOW", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44783,7 +41909,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -44791,457 +41917,541 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (59)" }, { "id": "cert_notBefore", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "2024-11-22 07:48" + "finding": "2024-10-31 20:49" }, { "id": "cert_notAfter", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "OK", - "finding": "2025-02-20 07:48" + "severity": "MEDIUM", + "finding": "2025-01-29 20:49" }, { "id": "cert_extlifeSpan", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/-wlfVjh9dJg.crl" }, { "id": "cert_ocspURL", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/m88" }, { "id": "OCSP_stapling", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIICnzCCAiWgAwIBAgIQf/MZd5csIkp2FV0TttaF4zAKBggqhkjOPQQDAzBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjQwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARvzTr+Z1dHTCEDhUDCR127WEcPQMFcF4XGGTfn1XzthkubgdnXGhOlCgP4mMTG6J7/EFmPLCaY9eYmJbsPAvpWo4H+MIH7MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUkHeSNWfE/6jMqeZ72YB5e8yT+TgwHwYDVR0jBBgwFoAUgEzW63T/STaj1dj8tT7FavCUHYwwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzAChhhodHRwOi8vaS5wa2kuZ29vZy9yNC5jcnQwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2MucGtpLmdvb2cvci9yNC5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwCgYIKoZIzj0EAwMDaAAwZQIxAOcCq1HW90OVznX+0RGU1cxAQXomvtgM8zItPZCuFQ8jSBJSjz5keROv9aYsAm5VsQIwJonMaAFi54mrfhfoFNZEfuNMSQ6/bIBiNLiyoX46FohQvKeIoJ99cx7sUkFN7uJW\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" + }, + { + "id": "intermediate_cert <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "1732416724" + "finding": "1733021886" }, { "id": "HSTS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "Apache" + "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=8577&min_rtt=8569&rtt_var=2424&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3006&recv_bytes=739&delivery_rate=332093&cwnd=239&unsent_bytes=0&cid=5d5792af04cafa7f&ts=474&x=0'" }, { "id": "banner_application", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "id": "Cache-Control", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "--" }, { "id": "heartbleed", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -45250,7 +42460,7 @@ }, { "id": "CCS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -45259,7 +42469,7 @@ }, { "id": "ticketbleed", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -45268,7 +42478,7 @@ }, { "id": "ROBOT", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -45277,7 +42487,7 @@ }, { "id": "secure_renego", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -45285,7 +42495,7 @@ }, { "id": "secure_client_renego", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -45294,7 +42504,7 @@ }, { "id": "CRIME_TLS", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -45303,16 +42513,16 @@ }, { "id": "BREACH", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -45321,14 +42531,14 @@ }, { "id": "fallback_SCSV", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -45337,7 +42547,7 @@ }, { "id": "FREAK", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -45346,7 +42556,7 @@ }, { "id": "DROWN", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -45355,16 +42565,16 @@ }, { "id": "DROWN_hint", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=258F216E0170B0E150C1D4505FCD9EA5ABA8F3E17EFA8201A63A7A44DEE447E6" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -45373,34 +42583,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, + { + "id": "BEAST_CBC_TLS1", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" + }, { "id": "BEAST", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -45409,7 +42628,7 @@ }, { "id": "RC4", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -45418,534 +42637,384 @@ }, { "id": "clientsimulation-android_60", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "82" }, { "id": "overall_grade", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "OK", - "finding": "A" + "severity": "MEDIUM", + "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "cartobio.agencebio.org/172.67.210.31", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "grade_cap_reason_3", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "53" + "finding": "90" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/main.5cb94fb5.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/css/main.86d0e63d.css" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/auth/current-session" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/839.cbd93a25.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/786.ab731ee5.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/254.910020ed.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/422.b4e08f86.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/429.db72707b.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/css/40.b7e050cf.chunk.css" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/40.9c2c73e3.chunk.js" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/alert" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/etablissements/count?query=%7B%22published%22%3Atrue%7D" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Logo_RCO_png.dd7be48b7ee64ab7f5eb.png" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Bold.b7d17a6c3a93e3a1957d.woff2" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Regular.96357e2569e591ec1ed0.woff2" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Bold.b7d17a6c3a93e3a1957d.woff2" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Regular.96357e2569e591ec1ed0.woff2" - }, - { - "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/formations/count?query=%7B%22published%22%3Atrue%7D" - } - ], + "trackers": [], "cookies": [], "headers": { - "cache-control": "max-age=0", - "content-encoding": "gzip", + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "no-cache", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eafcddc5a9bf7a9-LAX", + "content-encoding": "br", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 02:51:01 GMT", - "etag": "W/\"2a4-191d60989b8\"", - "last-modified": "Mon, 09 Sep 2024 09:07:15 GMT", - "server": "nginx", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload;", - "vary": "Origin" + "date": "Sun, 01 Dec 2024 02:56:27 GMT", + "expires": "Thu, 01 Jan 1970 00:00:01 GMT", + "last-modified": "Tue, 05 Nov 2024 09:25:13 GMT", + "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=5b0pHWgvv%2FUD3ZAkwh%2BgBJtiO5z%2BJNYytRPYu2CH6EOV2yp5kHjjSAt37MY2AlrnDAiQXic%2BziAY7CI5n7o48mez8bdpN9AC6H43FRGGQoVc81s%2FK%2B2cfjhSgljZRcFyEt7r7hWVhYz9\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "server": "cloudflare", + "server-timing": "cfL4;desc=\"?proto=TCP&rtt=8333&min_rtt=8295&rtt_var=2354&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2854&recv_bytes=1063&delivery_rate=344303&cwnd=215&unsent_bytes=0&cid=54d5a6f4f2251d0c&ts=179&x=0\"", + "vary": "Accept-Encoding" }, "endpoints": [ { - "hostname": "catalogue.apprentissage.beta.gouv.fr", - "ip": "185.31.40.11", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "catalogue-apprentissage.intercariforef.org", - "ip": "195.214.226.147", + "hostname": "cartobio.agencebio.org", + "ip": "104.21.16.54", "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } } } @@ -45954,26 +43023,96 @@ }, "wappalyzer": { "urls": { - "https://catalogue.apprentissage.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://catalogue.apprentissage.beta.gouv.fr/ (https://catalogue.apprentissage.beta.gouv.fr/)" + "https://cartobio.agencebio.org/": { + "status": 200 } }, "technologies": [ { - "slug": "apache-http-server", - "name": "Apache HTTP Server", - "description": "Apache is a free and open-source cross-platform web server software.", + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", "confidence": 100, "version": null, - "icon": "Apache.svg", - "website": "https://httpd.apache.org/", - "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true @@ -45984,12 +43123,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://catalogue.apprentissage.beta.gouv.fr/", - "finalUrl": "https://catalogue-apprentissage.intercariforef.org/", - "fetchTime": "2024-11-24T02:50:36.355Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://catalogue.apprentissage.beta.gouv.fr/) was redirected to https://catalogue-apprentissage.intercariforef.org/. Try testing the second URL directly." - ], + "requestedUrl": "https://cartobio.agencebio.org/", + "finalUrl": "https://cartobio.agencebio.org/", + "fetchTime": "2024-12-01T02:55:51.263Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -45999,7 +43136,7 @@ "snapshot" ], "id": "performance", - "score": 0.56 + "score": 0.53 }, "accessibility": { "title": "Accessibility", @@ -46010,7 +43147,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.91 + "score": 0.93 }, "best-practices": { "title": "Best Practices", @@ -46031,7 +43168,7 @@ "snapshot" ], "id": "seo", - "score": 0.87 + "score": 0.77 }, "pwa": { "title": "PWA", @@ -46051,53 +43188,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4282, + "numericValue": 6750, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2690, - "firstMeaningfulPaint": 2690, - "largestContentfulPaint": 5461, - "interactive": 4282, - "speedIndex": 4920, - "totalBlockingTime": 357, - "maxPotentialFID": 192, - "cumulativeLayoutShift": 0.220240291595459, - "cumulativeLayoutShiftMainFrame": 0.220240291595459, - "totalCumulativeLayoutShift": 0.220240291595459, + "firstContentfulPaint": 6750, + "firstMeaningfulPaint": 6750, + "largestContentfulPaint": 13032, + "interactive": 6750, + "speedIndex": 6750, + "totalBlockingTime": 124, + "maxPotentialFID": 123, + "cumulativeLayoutShift": 0.003833713107638889, + "cumulativeLayoutShiftMainFrame": 0.003833713107638889, + "totalCumulativeLayoutShift": 0.003833713107638889, "observedTimeOrigin": 0, - "observedTimeOriginTs": 400322202, + "observedTimeOriginTs": 428339099, "observedNavigationStart": 0, - "observedNavigationStartTs": 400322202, - "observedFirstPaint": 1963, - "observedFirstPaintTs": 402285637, - "observedFirstContentfulPaint": 1963, - "observedFirstContentfulPaintTs": 402285637, - "observedFirstContentfulPaintAllFrames": 1963, - "observedFirstContentfulPaintAllFramesTs": 402285637, - "observedFirstMeaningfulPaint": 1963, - "observedFirstMeaningfulPaintTs": 402285637, - "observedLargestContentfulPaint": 1963, - "observedLargestContentfulPaintTs": 402285637, - "observedLargestContentfulPaintAllFrames": 1963, - "observedLargestContentfulPaintAllFramesTs": 402285637, - "observedTraceEnd": 4525, - "observedTraceEndTs": 404847120, - "observedLoad": 1491, - "observedLoadTs": 401813010, - "observedDomContentLoaded": 1440, - "observedDomContentLoadedTs": 401762369, - "observedCumulativeLayoutShift": 0.220240291595459, - "observedCumulativeLayoutShiftMainFrame": 0.220240291595459, - "observedTotalCumulativeLayoutShift": 0.220240291595459, - "observedFirstVisualChange": 1961, - "observedFirstVisualChangeTs": 402283202, - "observedLastVisualChange": 2095, - "observedLastVisualChangeTs": 402417202, - "observedSpeedIndex": 1971, - "observedSpeedIndexTs": 402293241 + "observedNavigationStartTs": 428339099, + "observedFirstPaint": 864, + "observedFirstPaintTs": 429203250, + "observedFirstContentfulPaint": 864, + "observedFirstContentfulPaintTs": 429203250, + "observedFirstContentfulPaintAllFrames": 864, + "observedFirstContentfulPaintAllFramesTs": 429203250, + "observedFirstMeaningfulPaint": 864, + "observedFirstMeaningfulPaintTs": 429203250, + "observedLargestContentfulPaint": 901, + "observedLargestContentfulPaintTs": 429240536, + "observedLargestContentfulPaintAllFrames": 901, + "observedLargestContentfulPaintAllFramesTs": 429240536, + "observedTraceEnd": 3599, + "observedTraceEndTs": 431937855, + "observedLoad": 1265, + "observedLoadTs": 429603901, + "observedDomContentLoaded": 673, + "observedDomContentLoadedTs": 429012377, + "observedCumulativeLayoutShift": 0.003833713107638889, + "observedCumulativeLayoutShiftMainFrame": 0.003833713107638889, + "observedTotalCumulativeLayoutShift": 0.003833713107638889, + "observedFirstVisualChange": 877, + "observedFirstVisualChangeTs": 429216099, + "observedLastVisualChange": 1310, + "observedLastVisualChangeTs": 429649099, + "observedSpeedIndex": 889, + "observedSpeedIndexTs": 429228497 }, { "lcpInvalidated": false @@ -46115,23 +43252,23 @@ "type": "debugdata", "items": [ { - "numRequests": 20, - "numScripts": 7, - "numStylesheets": 2, - "numFonts": 2, - "numTasks": 368, - "numTasksOver10ms": 9, - "numTasksOver25ms": 6, - "numTasksOver50ms": 1, + "numRequests": 46, + "numScripts": 16, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 1091, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 84.602, - "throughput": 8135566.797752392, - "maxRtt": 89.09400000000001, - "maxServerLatency": 127.39699999999999, - "totalByteWeight": 809017, - "totalTaskTime": 304.7379999999994, - "mainDocumentTransferSize": 613 + "rtt": 139.087, + "throughput": 62582282.86497441, + "maxRtt": 143.85, + "maxServerLatency": 7.308000000000021, + "totalByteWeight": 1987715, + "totalTaskTime": 300.7339999999974, + "mainDocumentTransferSize": 1291 } ] } @@ -46147,11 +43284,11 @@ "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://catalogue.apprentissage.beta.gouv.fr/accessibilite" + "declarationUrl": "https://cartobio.agencebio.org/accessibilite" }, "declaration-rgpd": [ { @@ -46161,7 +43298,7 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://catalogue.apprentissage.beta.gouv.fr/mentions-legales" + "declarationUrl": "https://cartobio.agencebio.org/mentions-legales" }, { "slug": "pc", @@ -46173,44 +43310,59 @@ } ], "betagouv": { - "id": "catalogue-apprentissage", + "id": "cartobio", "type": "startup", "attributes": { - "name": "Catalogue des formations en apprentissage", - "pitch": "Renforcer la collecte et la visibilité des formations en apprentissage", - "stats_url": "https://catalogue.apprentissage.beta.gouv.fr/stats", - "link": "https://catalogue.apprentissage.beta.gouv.fr/", - "repository": "https://github.com/mission-apprentissage/catalogue-apprentissage", - "contact": "catalogue@apprentissage.beta.gouv.fr", - "content_url_encoded_markdown": "Cr%C3%A9%C3%A9%20pour%20organiser%20la%20collecte%20des%20formations%20en%20apprentissage%2C%20le%20catalogue%20des%20formations%20en%20apprentissage%20permet%20de%20rendre%20plus%20visibles%20les%20offres%20aupr%C3%A8s%20des%20jeunes%20et%20des%20employeurs.%0A%0A%23%23%20Le%20constat%0A%0AIl%20n%E2%80%99existe%20pas%20de%20processus%20assurant%20le%20recensement%20des%20formations%20en%20apprentissage%2C%20qui%20est%20pourtant%20un%20pr%C3%A9alable%20%C3%A0%20une%20information%20claire%20et%20exhaustive%20des%20jeunes%20et%20des%20entreprises.%0A%0AChaque%20partie-prenante%20%28r%C3%A9gion%2C%20OPCO%2C%20site%20d%E2%80%99orientation%20des%20jeunes%29%20peut%20interpeller%20les%20CFA%20dans%20le%20d%C3%A9sordre%2C%20sans%20format%20homog%C3%A8ne%20des%20donn%C3%A9es%20et%20en%20perturbant%20les%20CFA%20qui%20ne%20savent%20plus%20%C3%A0%20qui%20r%C3%A9pondre.%0A%0A%23%23%20La%20solution%0A%0AUn%20catalogue%20des%20offres%20de%20formation%20en%20apprentissage%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%2C%20pour%20%C3%AAtre%20un%20outil%20unique%20de%20recensement%20de%20l%E2%80%99ensemble%20des%20formations%20propos%C3%A9es.%20Il%20est%20accessible%20%C3%A0%20tous%20et%20peut%20%C3%AAtre%20utilis%C3%A9%20par%20les%20acteurs%20de%20l%E2%80%99orientation%20et%20de%20l%E2%80%99insertion%20des%20jeunes%2C%20ainsi%20que%20consomm%C3%A9%20par%20les%20plateformes%20et%20portails%20qui%20exposent%20des%20informations%20relatives%20%C3%A0%20l%E2%80%99apprentissage.%20Il%20permet%20d%E2%80%99assurer%20une%20pleine%20visibilit%C3%A9%20des%20offres%20de%20formation%20en%20apprentissage%20pour%20%3A%0A1.%20Mieux%20informer%20les%20jeunes%20et%20les%20employeurs%20int%C3%A9ress%C3%A9s%20par%20cette%20voie%20de%20formation%20et%20notamment%20les%20utilisateurs%20des%20outils%20d%E2%80%99affectation%20du%20minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%20%28Parcoursup%29%20et%20de%20l%E2%80%99%C3%89ducation%20nationale%20%28Affelnet%29%20%3B%0A2.%20Saisir%20le%20dynamisme%20des%20CFA%20dans%20le%20nouveau%20cadre%20pos%C3%A9%20par%20la%20loi%20pour%20la%20libert%C3%A9%20de%20choisir%20son%20avenir%20professionnel%2C%20qui%20favorise%20l%27actualisation%20continue%20de%20l%27offre%20de%20formation%20%3B%0A3.%20Am%C3%A9liorer%20la%20qualit%C3%A9%20de%20la%20description%20des%20formations%20et%20des%20%C3%A9tablissements%20et%20assurer%20la%20fiabilit%C3%A9%20des%20informations%20%3B%0A4.%20Simplifier%20les%20d%C3%A9marches%20pour%20tous%20les%20acteurs%20et%20notamment%20pour%20les%20personnels%20des%20CFA%2C%20en%20automatisant%20une%20partie%20du%20recensement%20et%20en%20publiant%20un%20catalogue%20ouvert%2C%20accessible%20%C3%A0%20toutes%20les%20institutions%20concourant%20%C3%A0%20l%27orientation%20des%20jeunes.%0A%0ALe%20catalogue%20des%20formations%20peut%20%C3%AAtre%20consult%C3%A9%20sur%20https%3A%2F%2Fcatalogue.apprentissage.beta.gouv.fr%2F%0AVous%20pouvez%20%C3%A9galement%20acc%C3%A9der%20%C3%A0%20la%20documentation%20d%C3%A9taill%C3%A9e%20concernant%20la%20collecte%20de%20l%27offre%20de%20formation%20en%20Apprentissage%20r%C3%A9alis%C3%A9e%20par%20la%20Mission%20ici%20%3A%20https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fcatalogue%2F%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20La%20mise%20en%20visibilit%C3%A9%20d%E2%80%99une%20offre%20de%20formation%20en%20apprentissage%20compl%C3%A8te%20et%20interconnect%C3%A9e%20permet%20d%27augmenter%20le%20nombre%20%28et%20le%20bon%20enregistrement%29%20des%20v%C5%93ux%20en%20apprentissage%20%3B%0A-%20Un%20processus%20partag%C3%A9%20de%20collecte%20et%20un%20format%20homog%C3%A8ne%20facilitent%20la%20mise%20en%20contact%20avec%20les%20CFA%20%3B%0A-%20Un%20catalogue%20ouvert%20est%20%C2%AB%20consommable%20%C2%BB%20%C3%A0%20travers%20les%20principaux%20outils%20num%C3%A9riques%20d%E2%80%99orientation%20%28sites%20de%20l%E2%80%99%C3%89tat%20ou%20de%20ses%20op%C3%A9rateurs%20ou%20des%20r%C3%A9gions%20ou%20d%E2%80%99associations%20ou%20d%E2%80%99entreprises%20priv%C3%A9es%29%20par%20tous%20les%20jeunes%2C%20les%20prescripteurs%2C%20les%20employeurs%2C%E2%80%A6%0A", + "name": "CartoBio", + "pitch": "Ouvrir, enrichir et partager les données parcellaires de l’agriculture biologique", + "stats_url": "https://cartobio.agencebio.org/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#CartoBio", + "link": "https://cartobio.agencebio.org", + "repository": "https://github.com/AgenceBio/cartobio-front", + "contact": "cartobio@agencebio.org", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ACartoBio%20r%C3%A9pond%20%C3%A0%20un%20probl%C3%A8me%20aupr%C3%A8s%20de%20diff%C3%A9rents%20acteurs.%0A%0A%2A%2ALe%20grand%20public%2C%20la%20recherche%2A%2A%20%3A%20absence%20d%E2%80%99informations%20g%C3%A9ographiques%20pour%20mener%20%C3%A0%20bien%20des%20programmes%20de%20recherche%20et%20de%20politiques%20publiques.%0ACes%20informations%20sont%20par%20exemple%20n%C3%A9cessaires%20pour%20r%C3%A9aliser%20des%20%C3%A9tudes%20pouss%C3%A9es%20sur%20l%E2%80%99impact%20du%20bio%20sur%20la%20sant%C3%A9%2C%20l%E2%80%99environnement%20%28qualit%C3%A9%20de%20l%E2%80%99eau%2C%20biodiversit%C3%A9%29%20et%20l%E2%80%99adaptation%20des%20politiques%20agricoles%20locales.%0A%0A%2A%2AL%E2%80%99administration%2A%2A%20%3A%20au%20niveau%20national%2C%20le%20MASA%20souhaite%20se%20baser%20sur%20des%20donn%C3%A9es%20g%C3%A9ographiques%20pour%20fiabiliser%20le%20paiement%20des%20aides%20PAC%20bio.%20Au%20niveau%20territorial%2C%20les%20DDT%20font%20face%20%C3%A0%20des%20risques%20juridiques%20et%20au%20caract%C3%A8re%20chronophage%20des%20d%C3%A9cisions%20qui%20concernent%20les%20aides%20PAC%20bio.%0A%0A%2A%2ALes%20organismes%20de%20certification%2A%2A%20%3A%20ils%20regrettent%20l%E2%80%99absence%20de%20supports%20g%C3%A9ographiques%20pour%20%C3%A9tablir%20les%20certificats%20et%20les%20attestations%20de%20productions%20v%C3%A9g%C3%A9tales.%20Cela%20se%20traduit%20par%20une%20surcharge%20de%20travail%20lors%20des%20audits%2C%20ainsi%20que%20pendant%20les%20p%C3%A9riodes%20de%20t%C3%A9l%C3%A9d%C3%A9claration%20et%20d%E2%80%99instruction%20des%20aides%20PAC.%0A%0A%2A%2ALes%20agriculteurs%20et%20agricultrices%2A%2A%20%3A%20ils%20sont%20confront%C3%A9s%20%C3%A0%20la%20recopie%20r%C3%A9guli%C3%A8re%20des%20m%C3%AAmes%20informations%2C%20ce%20qui%20est%20chronophage%20et%20fastidieux%20pour%20eux.%0A%0A%23%23%20La%20solution%20apport%C3%A9e%0A%0ACartoBio%20constitue%20et%20diffuse%20des%20donn%C3%A9es%20g%C3%A9ographiques%20du%20parcellaire%20bio%20%3B%20certifi%C3%A9es%20et%20interop%C3%A9rables%20entre%20les%20acteurs%20de%20la%20certification%20en%20agriculture%20biologique.%0A%0ACela%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20%C3%A0%20destination%20d%E2%80%99agriculteurs%2C%20d%E2%80%99agricultrices%20et%20des%20employ%C3%A9s%20d%E2%80%99organismes%20de%20certification%20en%20agriculture%20biologique.%20Elle%20se%20synchronise%20%C3%A0%20plusieurs%20sources%20de%20donn%C3%A9es%20g%C3%A9ographiques%20pour%20%C3%A9viter%20la%20recopie%20d%E2%80%99information%20%28%C3%A9diteurs%20de%20logiciels%20agricoles%2C%20T%C3%A9l%C3%A9PAC%2C%20nCVI%E2%80%A6%29%20et%20favoriser%20leur%20diffusion%20%28instructions%20des%20aides%20PAC%2C%20observatoires%20bio%2C%20autres%20aides%E2%80%A6%29.%0A%0AConcernant%20la%20diffusion%20au%20plus%20grand%20nombre%2C%20CartoBio%20met%20%C3%A0%20disposition%20un%20jeu%20de%20donn%C3%A9es%20anonymis%C3%A9es%20en%20Open%20Data.%0A%0A%23%23%20Les%20partenaires%0A%0ACartoBio%20est%20initi%C3%A9%20et%20port%C3%A9%20par%20l%E2%80%99Agence%20Bio%20et%20l%E2%80%99Institut%20Nationale%20de%20l%E2%80%99Origine%20et%20de%20la%20Qualit%C3%A9%20%28INAO%29.%0A%0ALe%20projet%20est%20soutenu%20par%20la%20Direction%20du%20Num%C3%A9rique%20%28DINUM%29%2C%20le%20Minist%C3%A8re%20de%20l%E2%80%99Agriculture%20et%20de%20la%20Souverainet%C3%A9%20Alimentaire%20%28MASA%29%20et%20le%20Minist%C3%A8re%20de%20la%20Transition%20%C3%89cologique%20et%20de%20la%20Coh%C3%A9sion%20des%20Territoires%20%28MTECT%29.%0ALe%20projet%20est%20soutenu%20financi%C3%A8rement%20par%20l%E2%80%99Office%20Fran%C3%A7ais%20de%20la%20Biodiversit%C3%A9%20%28OFB%29%20dans%20le%20cadre%20du%20Plan%20Ecophyto.%0A%0ACollaboration%20avec%20l%E2%80%99Agence%20des%20Services%20et%20Paiement%20%28ASP%29%20qui%20%C3%A9ditent%20les%20logiciels%20T%C3%A9l%C3%A9PAC%20et%20ISIS%20%3B%20les%20Douanes%20qui%20%C3%A9ditent%20le%20Casier%20Viticole%20Informatis%C3%A9%20%28nCVI%29%20%3B%20les%20Directions%20D%C3%A9partementales%20des%20Territoires%20%28DDT%29%20%3B%20les%20Organismes%20Certificateurs%20%3B%20les%20acteurs%20du%20monde%20agricole%20%28Cerfrance%2C%20Chambres%20d%27agriculture%2C%20syndicats%20agricoles%E2%80%A6%29%20%3B%20les%20%C3%A9diteurs%20de%20logiciels%20agricoles%20%28Geofolia%2C%20MesParcelles%2C%20%E2%80%A6%29.%0A%0A%23%23%20La%20Strat%C3%A9gie%0A%0ACartoBio%20s%E2%80%99appuie%20sur%20la%20collaboration%20avec%20les%20Organismes%20Certificateurs%20pour%20constituer%20sa%20base%20de%20donn%C3%A9es%20g%C3%A9ographique.%20Nous%20nous%20basons%20sur%20l%E2%80%99annualit%C3%A9%20du%20contr%C3%B4le%20bio%20pour%20atteindre%20un%20parcellaire%20complet%20d%E2%80%99ici%20la%20fin%20de%20la%20campagne%20PAC%202024.%0A%0AAfin%20d%E2%80%99%C3%A9viter%20la%20recopie%20de%20donn%C3%A9es%2C%20CartoBio%20cherche%20%C3%A0%20se%20connecter%20%C3%A0%20tous%20les%20services%20contenant%20de%20l%E2%80%99information%20g%C3%A9ographique%20utilis%C3%A9s%20par%20les%20agriculteurs%20%E2%80%94%20des%20r%C3%A9f%C3%A9rences%20cadastrales%20textuelles%20du%20nCVI%20jusqu%E2%80%99aux%20d%C3%A9coupes%20pr%C3%A9cises%20des%20outils%20de%20gestion%20de%20parcellaires.%0A%0AEnfin%2C%20concernant%20le%20jeu%20de%20donn%C3%A9es%20en%20open%20data%2C%20il%20est%20aujourd%E2%80%99hui%20disponible%20au%20t%C3%A9l%C3%A9chargement%20dans%20sa%20version%20brute%20sur%20%3Ca%20href%3D%22https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2F616d6531c2951bbe8bd97771%2F%22%20target%3D%22_blank%22%3EData.gouv%3C%2Fa%3E.%20L%E2%80%99objectif%20est%20de%20rendre%20les%20donn%C3%A9es%20intelligibles%20pour%20tous%20via%20la%20cr%C3%A9ation%20d%E2%80%99une%20interface%20de%20visualisation.%0A%0A%23%23%20Historique%20du%20projet%0A%0ACartoBio%20a%20%C3%A9t%C3%A9%20initialement%20propos%C3%A9%20par%20l%E2%80%99Agence%20Bio%20%26%20INAO%20aupr%C3%A8s%20du%20programme%20Entrepreneur%20d%E2%80%99Int%C3%A9r%C3%AAt%20G%C3%A9n%C3%A9ral%20%28EIG%29%2C%20avant%20d%E2%80%99%C3%AAtre%20incub%C3%A9%20par%20la%20DINUM%20sous%20le%20programme%20Beta.gouv.fr.%0A%3Ca%20href%3D%22https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Fcartobio%2F%22%20target%3D%22_blank%22%3ED%C3%A9couvrir%20le%20d%C3%A9fi%20EIG%202019%3C%2Fa%3E%0A%0ALa%20premi%C3%A8re%20version%20du%20projet%20est%20d%E2%80%99abord%20destin%C3%A9e%20uniquement%20aux%20Organismes%20de%20Certification%2C%20comme%20un%20outil%20suppl%C3%A9mentaire%20de%20pr%C3%A9paration%20de%20leur%20contr%C3%B4le.%20L%E2%80%99impact%20n%E2%80%99a%20pas%20%C3%A9t%C3%A9%20concluant%2C%20expliqu%C3%A9%20par%20un%20manque%20de%20prise%20en%20main%20de%20l%E2%80%99outil%20par%20les%20utilisateurs.%0A%0AEn%202021%2C%20le%20projet%20est%20red%C3%A9velopp%C3%A9%20en%20%C3%A9troite%20collaboration%20avec%20le%20MASA%20et%20le%20Cebio%20dans%20le%20cadre%20des%20aides%20PAC%20Bio.%20CartoBio%20vise%20%C3%A0%20remplacer%20l%27attestation%20de%20production%20v%C3%A9g%C3%A9tale%2C%20et%20d%E2%80%99anticiper%20l%E2%80%99augmentation%20du%20nombre%20d%E2%80%99engagements%20en%20bio.%0A%0ALe%20projet%20est%20r%C3%A9int%C3%A9gr%C3%A9%20au%20sein%20de%20l%E2%80%99Agence%20Bio%20depuis%20juillet%202024.%0A%0AVous%20%C3%AAtes%20int%C3%A9ress%C3%A9.e%20par%20le%20projet%20%3F%0A%3Ca%20href%3D%22mailto%3Acartobio%40beta.gouv.fr%3FSubject%3DCartobio%2520m%27int%C3%A9resse%2520%21%22%3EContactez-nous%20%21%3C%2Fa%3E%0A", "events": [], "phases": [ + { + "name": "investigation", + "start": "2019-12-19", + "end": "" + }, + { + "name": "construction", + "start": "2019-12-19", + "end": "" + }, + { + "name": "acceleration", + "start": "2023-05-01", + "end": "" + }, { "name": "transfer", - "start": "2020-07-01", - "end": "2021-03-31" + "start": "2024-06-10", + "end": "" }, { "name": "success", - "start": "2022-07-01", + "start": "2024-07-27", "end": "" } ], "sponsors": [ - "menjs", - "mesr", - "mtei", - "mtfp" + "agence-bio" ], - "thematiques": [], - "dashlord_url": "https://dashlord.incubateur.net/url/catalogue-apprentissage-beta-gouv-fr/", + "thematiques": [ + "Agriculture" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/cartobio-agencebio-org/", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mission-apprentissage" + "id": "agriculture" } } } @@ -46219,160 +43371,109 @@ { "width": 1920, "height": 1080, - "url": "https://catalogue.apprentissage.beta.gouv.fr", - "size": 839.884, - "nodes": 211, - "requests": 19, - "grade": "A", - "score": 81, - "ges": 1.38, - "water": 2.07, + "url": "https://cartobio.agencebio.org", + "size": 2037.582, + "nodes": 249, + "requests": 34, + "grade": "B", + "score": 72, + "ges": 1.56, + "water": 2.34, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:47:19.530218", + "date": "2024-12-01 02:52:37.605593", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": false + "detected": true }, "summary": { - "httpGrade": "C-", - "apdex": 1, - "apdexGrade": "A", - "uptime": 96.742, - "uptimeGrade": "D", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "httpGrade": "D", + "apdex": 0.813, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-20T07:48:00.000Z", - "testsslGrade": "A", + "testsslExpireDate": "2025-01-29T20:49:00.000Z", + "testsslGrade": "B", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 19, - "lighthouse_performance": 0.56, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.53, "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.91, + "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.87, - "lighthouse_seoGrade": "A", + "lighthouse_seo": 0.77, + "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", + "budgetPageGrade": "A", "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "F", - "ecoindexGrade": "A", - "dsfrGrade": "F" + "ecoindexGrade": "B", + "dsfrGrade": "A" } }, { "404": null, - "url": "https://connect.inclusion.beta.gouv.fr", - "betaId": "inclusion.connect", - "category": "gip-inclusion", + "url": "https://catalogue.apprentissage.beta.gouv.fr", + "category": "mission-apprentissage", + "betaId": "catalogue-apprentissage", + "tags": [ + "apprentissage" + ], "http": { - "url": "https://connect.inclusion.beta.gouv.fr", + "url": "https://catalogue.apprentissage.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:44:53 GMT", - "grade": "A+", + "end_time": "Sun, 13 Oct 2024 02:39:40 GMT", + "grade": "C-", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Length": "2745", - "Content-Security-Policy": "default-src 'self'; font-src 'self'; style-src 'self'; object-src 'none'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-vx9VStfXfg+bpcNVvbo9nw=='; base-uri 'none'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 02:44:52 GMT", - "Referrer-Policy": "same-origin", - "Sozu-Id": "01JAKX0CBFETZD1MH3Z5QB16FM", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", - "Vary": "Cookie, Accept-Encoding, origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY" + "cache-control": "max-age=0", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 13 Oct 2024 02:39:39 GMT", + "etag": "W/\"2a4-191d60989b8\"", + "last-modified": "Mon, 09 Sep 2024 09:07:15 GMT", + "server": "nginx", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload;", + "transfer-encoding": "chunked", + "vary": "Origin" }, - "scan_id": 57048139, - "score": 110, - "start_time": "Sun, 20 Oct 2024 02:44:51 GMT", + "scan_id": 56779014, + "score": 45, + "start_time": "Sun, 13 Oct 2024 02:39:37 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, + "tests_failed": 4, + "tests_passed": 6, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "base-uri": [ - "'none'" - ], - "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "*.sentry.io", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "'self'" - ], - "frame-ancestors": [ - "https://monportailpro.francetravail.fr", - "https://mesapplicationspro.francetravail.fr", - "https://*.cwportailconseiller.francetravail.fr", - "https://cwportailconseiller.francetravail.fr" - ], - "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "data:", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "https://js.sentry-cdn.com", - "'nonce-vx9vstfxfg+bpcnvvbo9nw=='", - "https://browser.sentry-cdn.com", - "'self'" - ], - "style-src": [ - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-no-unsafe", - "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", - "score_modifier": 5 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -46391,54 +43492,54 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": null, + "acao": "https://http-observatory.security.mozilla.org", "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://connect.inclusion.beta.gouv.fr/", + "destination": "https://catalogue-apprentissage.intercariforef.org/", "redirects": true, "route": [ - "http://connect.inclusion.beta.gouv.fr/", - "https://connect.inclusion.beta.gouv.fr/" + "http://catalogue.apprentissage.beta.gouv.fr/", + "https://catalogue-apprentissage.intercariforef.org/" ], - "status_code": 200 + "status_code": 301 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "same-origin", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000; includeSubDomains", + "data": "max-age=31536000; includeSubDomains; preload;", "includeSubDomains": true, "max-age": 31536000, - "preload": false, + "preload": true, "preloaded": false }, "pass": true, @@ -46450,39 +43551,34 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://js.sentry-cdn.com/d9163858ff954fc9a789fcb17662e1d2.min.js": { - "crossorigin": "anonymous", - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -46498,230 +43594,158 @@ } }, "updownio": { - "token": "brc0", - "url": "https://connect.inclusion.beta.gouv.fr", - "alias": null, + "token": "2oba", + "url": "https://catalogue.apprentissage.beta.gouv.fr", + "alias": "", "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-22T09:35:27Z", + "up_since": "2024-11-27T22:40:06Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, "published": true, - "disabled_locations": [], + "disabled_locations": [ + "lan", + "mia", + "sin", + "tok", + "syd" + ], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:08:12Z", - "next_check_at": "2024-11-24T03:09:11Z", - "created_at": "2024-01-15T13:37:42Z", + "last_check_at": "2024-12-01T02:55:21Z", + "next_check_at": "2024-12-01T03:00:21Z", + "created_at": "2021-04-22T19:50:49Z", "mute_until": null, - "favicon_url": "https://connect.inclusion.beta.gouv.fr/static/img/favicon.e07fec80ee42.ico", + "favicon_url": "https://catalogue-apprentissage.intercariforef.org/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:03:15Z", - "expires_at": "2025-01-20T13:21:22Z", + "tested_at": "2024-12-01T02:35:27Z", + "expires_at": "2025-02-20T07:48:09Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 0, - "namelookup": 333, - "connection": 113, - "handshake": 118, - "response": 122, - "total": 685 + "redirect": 218, + "namelookup": 14, + "connection": 38, + "handshake": 41, + "response": 40, + "total": 352 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "connect.inclusion.beta.gouv.fr", + "host": "catalogue.apprentissage.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "986", + "closed_ports": "998", "open_ports": [ { "service": { "name": "http", + "product": "Apache", "id": "80", "vulnerabilities": [] } }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, { "service": { "name": "https", + "product": "Apache", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "product": "Postfix smtpd", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -46729,7 +43753,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -46737,7 +43761,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -46745,7 +43769,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -46753,7 +43777,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -46761,7 +43785,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -46769,498 +43793,449 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "id": "cipherorder_TLSv1_2", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 7200 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "2024-10-22 13:21" + "finding": "2024-11-22 07:48" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "2025-01-20 13:21" + "finding": "2025-02-20 07:48" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "1732417060" + "finding": "1733021927" }, { - "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "id": "HSTS", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Apache" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-jlCN02MZ0d6/HzchobUXEQ=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "id": "security_headers", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -47269,7 +44244,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -47278,16 +44253,16 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -47296,7 +44271,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -47304,16 +44279,16 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -47322,16 +44297,16 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -47340,14 +44315,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -47356,7 +44331,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -47365,7 +44340,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -47374,16 +44349,16 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=258F216E0170B0E150C1D4505FCD9EA5ABA8F3E17EFA8201A63A7A44DEE447E6" }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -47392,7 +44367,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -47401,7 +44376,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -47410,7 +44385,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -47419,7 +44394,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -47428,7 +44403,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -47437,385 +44412,1309 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" }, { - "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "id": "grade_cap_reason_1", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "id": "scanTime", + "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "59" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/main.5cb94fb5.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/css/main.86d0e63d.css" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/auth/current-session" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/839.cbd93a25.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/786.ab731ee5.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/254.910020ed.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/422.b4e08f86.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/429.db72707b.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/css/40.b7e050cf.chunk.css" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/40.9c2c73e3.chunk.js" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/alert" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/etablissements/count?query=%7B%22published%22%3Atrue%7D" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Logo_RCO_png.dd7be48b7ee64ab7f5eb.png" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Bold.b7d17a6c3a93e3a1957d.woff2" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Regular.96357e2569e591ec1ed0.woff2" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Bold.b7d17a6c3a93e3a1957d.woff2" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/static/media/Marianne-Regular.96357e2569e591ec1ed0.woff2" + }, + { + "type": "unknown", + "url": "https://catalogue-apprentissage.intercariforef.org/api/v1/entity/formations/count?query=%7B%22published%22%3Atrue%7D" + } + ], + "cookies": [], + "headers": { + "cache-control": "max-age=0", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 02:57:39 GMT", + "etag": "W/\"2a4-191d60989b8\"", + "last-modified": "Mon, 09 Sep 2024 09:07:15 GMT", + "server": "nginx", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload;", + "vary": "Origin" }, - { - "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "not offered" + "endpoints": [ + { + "hostname": "catalogue.apprentissage.beta.gouv.fr", + "ip": "185.31.40.11", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "catalogue-apprentissage.intercariforef.org", + "ip": "195.214.226.147", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://catalogue.apprentissage.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://catalogue.apprentissage.beta.gouv.fr/ (https://catalogue.apprentissage.beta.gouv.fr/)" + } }, + "technologies": [ + { + "slug": "apache-http-server", + "name": "Apache HTTP Server", + "description": "Apache is a free and open-source cross-platform web server software.", + "confidence": 100, + "version": null, + "icon": "Apache.svg", + "website": "https://httpd.apache.org/", + "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, + "requestedUrl": "https://catalogue.apprentissage.beta.gouv.fr/", + "finalUrl": "https://catalogue-apprentissage.intercariforef.org/", + "fetchTime": "2024-12-01T02:57:14.261Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://catalogue.apprentissage.beta.gouv.fr/) was redirected to https://catalogue-apprentissage.intercariforef.org/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.54 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.91 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.87 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4462, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2744, + "firstMeaningfulPaint": 2744, + "largestContentfulPaint": 5560, + "interactive": 4462, + "speedIndex": 5120, + "totalBlockingTime": 384, + "maxPotentialFID": 197, + "cumulativeLayoutShift": 0.22222612380981446, + "cumulativeLayoutShiftMainFrame": 0.22222612380981446, + "totalCumulativeLayoutShift": 0.22222612380981446, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 446039595, + "observedNavigationStart": 0, + "observedNavigationStartTs": 446039595, + "observedFirstPaint": 2059, + "observedFirstPaintTs": 448098875, + "observedFirstContentfulPaint": 2059, + "observedFirstContentfulPaintTs": 448098875, + "observedFirstContentfulPaintAllFrames": 2059, + "observedFirstContentfulPaintAllFramesTs": 448098875, + "observedFirstMeaningfulPaint": 2059, + "observedFirstMeaningfulPaintTs": 448098875, + "observedLargestContentfulPaint": 2059, + "observedLargestContentfulPaintTs": 448098875, + "observedLargestContentfulPaintAllFrames": 2059, + "observedLargestContentfulPaintAllFramesTs": 448098875, + "observedTraceEnd": 4645, + "observedTraceEndTs": 450684500, + "observedLoad": 1625, + "observedLoadTs": 447665047, + "observedDomContentLoaded": 1607, + "observedDomContentLoadedTs": 447646647, + "observedCumulativeLayoutShift": 0.22222612380981446, + "observedCumulativeLayoutShiftMainFrame": 0.22222612380981446, + "observedTotalCumulativeLayoutShift": 0.22222612380981446, + "observedFirstVisualChange": 2059, + "observedFirstVisualChangeTs": 448098595, + "observedLastVisualChange": 2192, + "observedLastVisualChangeTs": 448231595, + "observedSpeedIndex": 2068, + "observedSpeedIndexTs": 448107408 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 20, + "numScripts": 7, + "numStylesheets": 2, + "numFonts": 2, + "numTasks": 372, + "numTasksOver10ms": 7, + "numTasksOver25ms": 5, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 103.21900000000001, + "throughput": 8651245.965396145, + "maxRtt": 105.497, + "maxServerLatency": 145.11599999999999, + "totalByteWeight": 809246, + "totalTaskTime": 304.3689999999995, + "mainDocumentTransferSize": 613 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://catalogue.apprentissage.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not offered" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://catalogue.apprentissage.beta.gouv.fr/mentions-legales" }, { - "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not offered" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "catalogue-apprentissage", + "type": "startup", + "attributes": { + "name": "Catalogue des formations en apprentissage", + "pitch": "Renforcer la collecte et la visibilité des formations en apprentissage", + "stats_url": "https://catalogue.apprentissage.beta.gouv.fr/stats", + "link": "https://catalogue.apprentissage.beta.gouv.fr/", + "repository": "https://github.com/mission-apprentissage/catalogue-apprentissage", + "contact": "catalogue@apprentissage.beta.gouv.fr", + "content_url_encoded_markdown": "Cr%C3%A9%C3%A9%20pour%20organiser%20la%20collecte%20des%20formations%20en%20apprentissage%2C%20le%20catalogue%20des%20formations%20en%20apprentissage%20permet%20de%20rendre%20plus%20visibles%20les%20offres%20aupr%C3%A8s%20des%20jeunes%20et%20des%20employeurs.%0A%0A%23%23%20Le%20constat%0A%0AIl%20n%E2%80%99existe%20pas%20de%20processus%20assurant%20le%20recensement%20des%20formations%20en%20apprentissage%2C%20qui%20est%20pourtant%20un%20pr%C3%A9alable%20%C3%A0%20une%20information%20claire%20et%20exhaustive%20des%20jeunes%20et%20des%20entreprises.%0A%0AChaque%20partie-prenante%20%28r%C3%A9gion%2C%20OPCO%2C%20site%20d%E2%80%99orientation%20des%20jeunes%29%20peut%20interpeller%20les%20CFA%20dans%20le%20d%C3%A9sordre%2C%20sans%20format%20homog%C3%A8ne%20des%20donn%C3%A9es%20et%20en%20perturbant%20les%20CFA%20qui%20ne%20savent%20plus%20%C3%A0%20qui%20r%C3%A9pondre.%0A%0A%23%23%20La%20solution%0A%0AUn%20catalogue%20des%20offres%20de%20formation%20en%20apprentissage%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%2C%20pour%20%C3%AAtre%20un%20outil%20unique%20de%20recensement%20de%20l%E2%80%99ensemble%20des%20formations%20propos%C3%A9es.%20Il%20est%20accessible%20%C3%A0%20tous%20et%20peut%20%C3%AAtre%20utilis%C3%A9%20par%20les%20acteurs%20de%20l%E2%80%99orientation%20et%20de%20l%E2%80%99insertion%20des%20jeunes%2C%20ainsi%20que%20consomm%C3%A9%20par%20les%20plateformes%20et%20portails%20qui%20exposent%20des%20informations%20relatives%20%C3%A0%20l%E2%80%99apprentissage.%20Il%20permet%20d%E2%80%99assurer%20une%20pleine%20visibilit%C3%A9%20des%20offres%20de%20formation%20en%20apprentissage%20pour%20%3A%0A1.%20Mieux%20informer%20les%20jeunes%20et%20les%20employeurs%20int%C3%A9ress%C3%A9s%20par%20cette%20voie%20de%20formation%20et%20notamment%20les%20utilisateurs%20des%20outils%20d%E2%80%99affectation%20du%20minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%20%28Parcoursup%29%20et%20de%20l%E2%80%99%C3%89ducation%20nationale%20%28Affelnet%29%20%3B%0A2.%20Saisir%20le%20dynamisme%20des%20CFA%20dans%20le%20nouveau%20cadre%20pos%C3%A9%20par%20la%20loi%20pour%20la%20libert%C3%A9%20de%20choisir%20son%20avenir%20professionnel%2C%20qui%20favorise%20l%27actualisation%20continue%20de%20l%27offre%20de%20formation%20%3B%0A3.%20Am%C3%A9liorer%20la%20qualit%C3%A9%20de%20la%20description%20des%20formations%20et%20des%20%C3%A9tablissements%20et%20assurer%20la%20fiabilit%C3%A9%20des%20informations%20%3B%0A4.%20Simplifier%20les%20d%C3%A9marches%20pour%20tous%20les%20acteurs%20et%20notamment%20pour%20les%20personnels%20des%20CFA%2C%20en%20automatisant%20une%20partie%20du%20recensement%20et%20en%20publiant%20un%20catalogue%20ouvert%2C%20accessible%20%C3%A0%20toutes%20les%20institutions%20concourant%20%C3%A0%20l%27orientation%20des%20jeunes.%0A%0ALe%20catalogue%20des%20formations%20peut%20%C3%AAtre%20consult%C3%A9%20sur%20https%3A%2F%2Fcatalogue.apprentissage.beta.gouv.fr%2F%0AVous%20pouvez%20%C3%A9galement%20acc%C3%A9der%20%C3%A0%20la%20documentation%20d%C3%A9taill%C3%A9e%20concernant%20la%20collecte%20de%20l%27offre%20de%20formation%20en%20Apprentissage%20r%C3%A9alis%C3%A9e%20par%20la%20Mission%20ici%20%3A%20https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fcatalogue%2F%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20La%20mise%20en%20visibilit%C3%A9%20d%E2%80%99une%20offre%20de%20formation%20en%20apprentissage%20compl%C3%A8te%20et%20interconnect%C3%A9e%20permet%20d%27augmenter%20le%20nombre%20%28et%20le%20bon%20enregistrement%29%20des%20v%C5%93ux%20en%20apprentissage%20%3B%0A-%20Un%20processus%20partag%C3%A9%20de%20collecte%20et%20un%20format%20homog%C3%A8ne%20facilitent%20la%20mise%20en%20contact%20avec%20les%20CFA%20%3B%0A-%20Un%20catalogue%20ouvert%20est%20%C2%AB%20consommable%20%C2%BB%20%C3%A0%20travers%20les%20principaux%20outils%20num%C3%A9riques%20d%E2%80%99orientation%20%28sites%20de%20l%E2%80%99%C3%89tat%20ou%20de%20ses%20op%C3%A9rateurs%20ou%20des%20r%C3%A9gions%20ou%20d%E2%80%99associations%20ou%20d%E2%80%99entreprises%20priv%C3%A9es%29%20par%20tous%20les%20jeunes%2C%20les%20prescripteurs%2C%20les%20employeurs%2C%E2%80%A6%0A", + "events": [], + "phases": [ + { + "name": "transfer", + "start": "2020-07-01", + "end": "2021-03-31" + }, + { + "name": "success", + "start": "2022-07-01", + "end": "" + } + ], + "sponsors": [ + "menjs", + "mesr", + "mtei", + "mtfp" + ], + "thematiques": [], + "dashlord_url": "https://dashlord.incubateur.net/url/catalogue-apprentissage-beta-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mission-apprentissage" + } + } + } + }, + "ecoindex": [ { - "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered" + "width": 1920, + "height": 1080, + "url": "https://catalogue.apprentissage.beta.gouv.fr", + "size": 840.122, + "nodes": 211, + "requests": 19, + "grade": "A", + "score": 81, + "ges": 1.38, + "water": 2.07, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 02:54:05.207834", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C-", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-20T07:48:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 19, + "lighthouse_performance": 0.54, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.91, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.87, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://connect.inclusion.beta.gouv.fr", + "betaId": "inclusion.connect", + "category": "gip-inclusion", + "http": { + "url": "https://connect.inclusion.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 02:44:53 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Length": "2745", + "Content-Security-Policy": "default-src 'self'; font-src 'self'; style-src 'self'; object-src 'none'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-vx9VStfXfg+bpcNVvbo9nw=='; base-uri 'none'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 02:44:52 GMT", + "Referrer-Policy": "same-origin", + "Sozu-Id": "01JAKX0CBFETZD1MH3Z5QB16FM", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", + "Vary": "Cookie, Accept-Encoding, origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY" }, - { - "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered with final" + "scan_id": 57048139, + "score": 110, + "start_time": "Sun, 20 Oct 2024 02:44:51 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'none'" + ], + "connect-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "*.sentry.io", + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "'self'" + ], + "frame-ancestors": [ + "https://monportailpro.francetravail.fr", + "https://mesapplicationspro.francetravail.fr", + "https://*.cwportailconseiller.francetravail.fr", + "https://cwportailconseiller.francetravail.fr" + ], + "img-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "data:", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "https://js.sentry-cdn.com", + "'nonce-vx9vstfxfg+bpcnvvbo9nw=='", + "https://browser.sentry-cdn.com", + "'self'" + ], + "style-src": [ + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://connect.inclusion.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://connect.inclusion.beta.gouv.fr/", + "https://connect.inclusion.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://js.sentry-cdn.com/d9163858ff954fc9a789fcb17662e1d2.min.js": { + "crossorigin": "anonymous", + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "brc0", + "url": "https://connect.inclusion.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.981, + "down": false, + "down_since": null, + "up_since": "2024-11-30T00:15:13Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T03:12:57Z", + "next_check_at": "2024-12-01T03:13:57Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://connect.inclusion.beta.gouv.fr/static/img/favicon.e07fec80ee42.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T03:12:59Z", + "expires_at": "2025-01-20T13:21:22Z", + "valid": true, + "error": null }, - { - "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 374, + "connection": 120, + "handshake": 123, + "response": 129, + "total": 746 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "connect.inclusion.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -47823,7 +45722,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -47831,7 +45730,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -47839,7 +45738,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -47847,7 +45746,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -47855,7 +45754,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -47863,490 +45762,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732417115" + "finding": "1733022151" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-5r96LO0xxqgDIHDjECt8Mw=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-HGcjhnzKzdlR7SAkWIzhbw=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -48354,7 +46253,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -48363,7 +46262,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -48372,7 +46271,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -48381,7 +46280,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -48390,7 +46289,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -48398,7 +46297,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -48407,7 +46306,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -48416,7 +46315,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -48425,7 +46324,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -48434,14 +46333,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -48450,7 +46349,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -48459,7 +46358,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -48468,7 +46367,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -48477,7 +46376,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -48486,7 +46385,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -48495,7 +46394,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -48504,7 +46403,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -48513,7 +46412,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -48522,7 +46421,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -48531,385 +46430,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48917,7 +46816,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48925,7 +46824,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48933,7 +46832,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48941,7 +46840,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -48949,7 +46848,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -48957,490 +46856,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISAwxfqq1JpFlu1a7t3FzTLJN1MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIyMTMyMTIzWhcNMjUwMTIwMTMyMTIyWjApMScwJQYDVQQDEx5jb25uZWN0LmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrHXhaH6mfJeLbjOwTrGEJ8mb4Mlnzq5dA0fSVh4VMYsETrZeTIweD7s6uG1eTY90OvjdWyGkCIM9sjgy80VPDTYcywUXeRvHklblvbsVbT5h0PC5ugqFAI2vYaIjRZbeVV/4pLGfvwbMDLKZeunIhCOE/k2VLTXx1sjxIMxtefs5sMG44+C8ldIfn3GrsSOXa4zlLjG+BMYczDhDWm7Ey9HiroX7jEt1JDZkqWZYY45MrjTsBii4BHTZVJaN6nXgGSfxq4m3/3BnFL7VyvyNJIwIQa1GEmHbpyFYXoLWQHU20Zfvmfpl1UQHJuWXPTdyQop3s3l/NFPaOoA8hiKvAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG69wOB1Ogbhvgm6J7vYB6O2khowMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGStJk6uwAABAMARzBFAiAkmLYcl+Zoe2BBg4dl+BmIeZyc84qG2j38TIeIFezwTAIhAKDAHn0oqzcIYmJ+/BNA+wDx8b2ooxT+zlX/l5R9TnHyAHcAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGStJk6/QAABAMASDBGAiEAk1f0t0wsgsq1YkWPk7aIXavZ8m/QEH/Vv4PVheuV46YCIQDBuBotLdCtIHpfXalqnt6tUy7RdisuQc2sGyhRepxgZzANBgkqhkiG9w0BAQsFAAOCAQEAEo5nODMIZ4yiyuH5pRaGYw5opW6EP2+8HcHPGEHFlPQ6+eYCMBrHk67TE2cH9vtHAFGkPxR5x4QwUcWNu+luVf0a3xADLoc/DLIGRE4mQ90bMrxs3MSajykGvbOSGF32OM/suHU+I/jHJMisRF9gtJ1W6KL5CGR1/Lw2nHt1mO2moqYPlQpG8aNEsZK8EskD0y4Vs1uMCTSvzzwUntLtqT56LlGL82bWn+rI9rhE/NVAK502iAIieBhsXLhUrZWeA/uNfySDAUTIWjJN4W05VYAamiL05mGW0GHO6vrAP6JfXyP0usCm2gFt8zaGRalXviYSu3zsiQg+iOdYGHAu7w==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732417205" + "finding": "1733022206" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-oYEJp8y4eeZiQc7aBpRlmQ=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-/A701/pnNCD4s/nNqGt9Ag=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -49448,7 +47347,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -49457,7 +47356,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -49466,7 +47365,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -49475,7 +47374,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -49484,7 +47383,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -49492,7 +47391,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -49501,7 +47400,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -49510,7 +47409,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -49519,7 +47418,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -49528,14 +47427,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -49544,7 +47443,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -49553,7 +47452,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49562,7 +47461,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49571,7 +47470,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49580,7 +47479,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49589,7 +47488,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -49598,7 +47497,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -49607,7 +47506,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -49616,7 +47515,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -49625,385 +47524,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50011,7 +47910,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50019,7 +47918,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50027,7 +47926,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50035,7 +47934,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -50043,7 +47942,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -50051,490 +47950,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISAwxfqq1JpFlu1a7t3FzTLJN1MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIyMTMyMTIzWhcNMjUwMTIwMTMyMTIyWjApMScwJQYDVQQDEx5jb25uZWN0LmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrHXhaH6mfJeLbjOwTrGEJ8mb4Mlnzq5dA0fSVh4VMYsETrZeTIweD7s6uG1eTY90OvjdWyGkCIM9sjgy80VPDTYcywUXeRvHklblvbsVbT5h0PC5ugqFAI2vYaIjRZbeVV/4pLGfvwbMDLKZeunIhCOE/k2VLTXx1sjxIMxtefs5sMG44+C8ldIfn3GrsSOXa4zlLjG+BMYczDhDWm7Ey9HiroX7jEt1JDZkqWZYY45MrjTsBii4BHTZVJaN6nXgGSfxq4m3/3BnFL7VyvyNJIwIQa1GEmHbpyFYXoLWQHU20Zfvmfpl1UQHJuWXPTdyQop3s3l/NFPaOoA8hiKvAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG69wOB1Ogbhvgm6J7vYB6O2khowMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGStJk6uwAABAMARzBFAiAkmLYcl+Zoe2BBg4dl+BmIeZyc84qG2j38TIeIFezwTAIhAKDAHn0oqzcIYmJ+/BNA+wDx8b2ooxT+zlX/l5R9TnHyAHcAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGStJk6/QAABAMASDBGAiEAk1f0t0wsgsq1YkWPk7aIXavZ8m/QEH/Vv4PVheuV46YCIQDBuBotLdCtIHpfXalqnt6tUy7RdisuQc2sGyhRepxgZzANBgkqhkiG9w0BAQsFAAOCAQEAEo5nODMIZ4yiyuH5pRaGYw5opW6EP2+8HcHPGEHFlPQ6+eYCMBrHk67TE2cH9vtHAFGkPxR5x4QwUcWNu+luVf0a3xADLoc/DLIGRE4mQ90bMrxs3MSajykGvbOSGF32OM/suHU+I/jHJMisRF9gtJ1W6KL5CGR1/Lw2nHt1mO2moqYPlQpG8aNEsZK8EskD0y4Vs1uMCTSvzzwUntLtqT56LlGL82bWn+rI9rhE/NVAK502iAIieBhsXLhUrZWeA/uNfySDAUTIWjJN4W05VYAamiL05mGW0GHO6vrAP6JfXyP0usCm2gFt8zaGRalXviYSu3zsiQg+iOdYGHAu7w==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732417259" + "finding": "1733022262" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-tHHy+RZTLAsVMf29Z3WJ/g=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-E/cL625cJpnr7g0fQB/nCQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -50542,7 +48441,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -50551,7 +48450,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -50560,7 +48459,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -50569,7 +48468,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -50578,7 +48477,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -50586,7 +48485,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -50595,7 +48494,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -50604,7 +48503,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -50613,7 +48512,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -50622,14 +48521,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -50638,7 +48537,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -50647,7 +48546,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -50656,7 +48555,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -50665,7 +48564,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -50674,7 +48573,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -50683,7 +48582,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -50692,7 +48591,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -50701,7 +48600,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -50710,7 +48609,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -50719,385 +48618,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51105,7 +49004,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51113,7 +49012,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51121,7 +49020,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51129,7 +49028,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51137,7 +49036,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51145,490 +49044,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1732417314" + "finding": "1733022317" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-85HQ19M//glXE4F2JZNUNg=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-GVwWi80Ngq24ze8roxsv2A=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -51636,7 +49535,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -51645,7 +49544,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -51654,7 +49553,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -51663,7 +49562,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -51672,7 +49571,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -51680,7 +49579,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -51689,7 +49588,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -51698,7 +49597,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -51707,7 +49606,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -51716,14 +49615,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -51732,7 +49631,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -51741,7 +49640,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51750,7 +49649,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51759,7 +49658,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -51768,7 +49667,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -51777,7 +49676,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -51786,7 +49685,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -51795,7 +49694,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -51804,7 +49703,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -51813,385 +49712,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52199,7 +50098,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52207,7 +50106,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52215,7 +50114,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52223,7 +50122,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52231,7 +50130,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52239,490 +50138,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISAwxfqq1JpFlu1a7t3FzTLJN1MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIyMTMyMTIzWhcNMjUwMTIwMTMyMTIyWjApMScwJQYDVQQDEx5jb25uZWN0LmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrHXhaH6mfJeLbjOwTrGEJ8mb4Mlnzq5dA0fSVh4VMYsETrZeTIweD7s6uG1eTY90OvjdWyGkCIM9sjgy80VPDTYcywUXeRvHklblvbsVbT5h0PC5ugqFAI2vYaIjRZbeVV/4pLGfvwbMDLKZeunIhCOE/k2VLTXx1sjxIMxtefs5sMG44+C8ldIfn3GrsSOXa4zlLjG+BMYczDhDWm7Ey9HiroX7jEt1JDZkqWZYY45MrjTsBii4BHTZVJaN6nXgGSfxq4m3/3BnFL7VyvyNJIwIQa1GEmHbpyFYXoLWQHU20Zfvmfpl1UQHJuWXPTdyQop3s3l/NFPaOoA8hiKvAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG69wOB1Ogbhvgm6J7vYB6O2khowMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGStJk6uwAABAMARzBFAiAkmLYcl+Zoe2BBg4dl+BmIeZyc84qG2j38TIeIFezwTAIhAKDAHn0oqzcIYmJ+/BNA+wDx8b2ooxT+zlX/l5R9TnHyAHcAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGStJk6/QAABAMASDBGAiEAk1f0t0wsgsq1YkWPk7aIXavZ8m/QEH/Vv4PVheuV46YCIQDBuBotLdCtIHpfXalqnt6tUy7RdisuQc2sGyhRepxgZzANBgkqhkiG9w0BAQsFAAOCAQEAEo5nODMIZ4yiyuH5pRaGYw5opW6EP2+8HcHPGEHFlPQ6+eYCMBrHk67TE2cH9vtHAFGkPxR5x4QwUcWNu+luVf0a3xADLoc/DLIGRE4mQ90bMrxs3MSajykGvbOSGF32OM/suHU+I/jHJMisRF9gtJ1W6KL5CGR1/Lw2nHt1mO2moqYPlQpG8aNEsZK8EskD0y4Vs1uMCTSvzzwUntLtqT56LlGL82bWn+rI9rhE/NVAK502iAIieBhsXLhUrZWeA/uNfySDAUTIWjJN4W05VYAamiL05mGW0GHO6vrAP6JfXyP0usCm2gFt8zaGRalXviYSu3zsiQg+iOdYGHAu7w==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732417368" + "finding": "1733022372" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-dZ3hiP7gcXdJuBrmrbj8VA=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-OegBSGR/7/oVoBw9uua+Yg=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -52730,7 +50629,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -52739,7 +50638,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -52748,7 +50647,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -52757,7 +50656,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -52766,7 +50665,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -52774,7 +50673,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -52783,7 +50682,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -52792,7 +50691,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -52801,7 +50700,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -52810,14 +50709,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -52826,7 +50725,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -52835,7 +50734,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -52844,7 +50743,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -52853,7 +50752,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -52862,7 +50761,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -52871,7 +50770,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -52880,7 +50779,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -52889,7 +50788,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -52898,7 +50797,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -52907,385 +50806,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -53293,7 +51192,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -53301,7 +51200,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -53309,7 +51208,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -53317,7 +51216,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -53325,7 +51224,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -53333,490 +51232,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732417422" + "finding": "1733022428" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-luOMg3KauB5TfW6yAEpbvA=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-sy3DRkd853sX9nMkWsgRDQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -53824,7 +51723,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -53833,7 +51732,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -53842,7 +51741,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -53851,7 +51750,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -53860,7 +51759,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -53868,7 +51767,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -53877,7 +51776,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -53886,7 +51785,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -53895,7 +51794,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -53904,14 +51803,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -53920,7 +51819,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -53929,7 +51828,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -53938,7 +51837,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -53947,7 +51846,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -53956,7 +51855,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -53965,7 +51864,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -53974,7 +51873,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -53983,7 +51882,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -53992,7 +51891,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -54001,385 +51900,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.222", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -54387,7 +52286,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -54395,7 +52294,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -54403,7 +52302,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -54411,7 +52310,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -54419,7 +52318,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -54427,490 +52326,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISAwxfqq1JpFlu1a7t3FzTLJN1MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIyMTMyMTIzWhcNMjUwMTIwMTMyMTIyWjApMScwJQYDVQQDEx5jb25uZWN0LmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrHXhaH6mfJeLbjOwTrGEJ8mb4Mlnzq5dA0fSVh4VMYsETrZeTIweD7s6uG1eTY90OvjdWyGkCIM9sjgy80VPDTYcywUXeRvHklblvbsVbT5h0PC5ugqFAI2vYaIjRZbeVV/4pLGfvwbMDLKZeunIhCOE/k2VLTXx1sjxIMxtefs5sMG44+C8ldIfn3GrsSOXa4zlLjG+BMYczDhDWm7Ey9HiroX7jEt1JDZkqWZYY45MrjTsBii4BHTZVJaN6nXgGSfxq4m3/3BnFL7VyvyNJIwIQa1GEmHbpyFYXoLWQHU20Zfvmfpl1UQHJuWXPTdyQop3s3l/NFPaOoA8hiKvAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG69wOB1Ogbhvgm6J7vYB6O2khowMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGStJk6uwAABAMARzBFAiAkmLYcl+Zoe2BBg4dl+BmIeZyc84qG2j38TIeIFezwTAIhAKDAHn0oqzcIYmJ+/BNA+wDx8b2ooxT+zlX/l5R9TnHyAHcAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGStJk6/QAABAMASDBGAiEAk1f0t0wsgsq1YkWPk7aIXavZ8m/QEH/Vv4PVheuV46YCIQDBuBotLdCtIHpfXalqnt6tUy7RdisuQc2sGyhRepxgZzANBgkqhkiG9w0BAQsFAAOCAQEAEo5nODMIZ4yiyuH5pRaGYw5opW6EP2+8HcHPGEHFlPQ6+eYCMBrHk67TE2cH9vtHAFGkPxR5x4QwUcWNu+luVf0a3xADLoc/DLIGRE4mQ90bMrxs3MSajykGvbOSGF32OM/suHU+I/jHJMisRF9gtJ1W6KL5CGR1/Lw2nHt1mO2moqYPlQpG8aNEsZK8EskD0y4Vs1uMCTSvzzwUntLtqT56LlGL82bWn+rI9rhE/NVAK502iAIieBhsXLhUrZWeA/uNfySDAUTIWjJN4W05VYAamiL05mGW0GHO6vrAP6JfXyP0usCm2gFt8zaGRalXviYSu3zsiQg+iOdYGHAu7w==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1732417478" + "finding": "1733022483" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-PXaZjKNFOq+34EVO42TtOg=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-2YaFg+sZ6LP69MLLZw6Anw=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -54918,7 +52817,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -54927,7 +52826,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -54936,7 +52835,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -54945,7 +52844,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -54954,7 +52853,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -54962,7 +52861,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -54971,7 +52870,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -54980,7 +52879,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -54989,7 +52888,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -54998,14 +52897,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -55014,7 +52913,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -55023,7 +52922,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -55032,7 +52931,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -55041,7 +52940,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -55050,7 +52949,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -55059,7 +52958,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -55068,7 +52967,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -55077,7 +52976,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -55086,7 +52985,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -55095,385 +52994,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -55481,7 +53380,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -55489,7 +53388,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -55497,7 +53396,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -55505,7 +53404,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -55513,7 +53412,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -55521,490 +53420,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "57 >= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732417532" + "finding": "1733022539" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-8DzJXpFdhpDuZWsFnnPE8g=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-aywtBe25yKAaQSeeUvc+0A=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -56012,7 +53911,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -56021,7 +53920,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -56030,7 +53929,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -56039,7 +53938,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -56048,7 +53947,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -56056,7 +53955,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -56065,7 +53964,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -56074,7 +53973,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -56083,7 +53982,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -56092,14 +53991,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -56108,7 +54007,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -56117,7 +54016,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -56126,7 +54025,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -56135,7 +54034,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -56144,7 +54043,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -56153,7 +54052,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -56162,7 +54061,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -56171,7 +54070,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -56180,7 +54079,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -56189,1909 +54088,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "A+" }, { - "id": "scanTime", + "id": "service", "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "530" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://js.sentry-cdn.com/d9163858ff954fc9a789fcb17662e1d2.min.js" - } - ], - "cookies": [], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-length": "2816", - "content-security-policy": "connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; default-src 'self'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-dxLPc0fdfv1dsctc7/pRDA=='; font-src 'self'; style-src 'self'; base-uri 'none'; object-src 'none'", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 02:56:53 GMT", - "referrer-policy": "same-origin", - "sozu-id": "01JDE1KHBECMCW1S6HC2AYDRTN", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Cookie, Accept-Encoding, origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" + "finding": "HTTP" }, - "endpoints": [ - { - "hostname": "connect.inclusion.beta.gouv.fr", - "ip": "91.208.207.215", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "js.sentry-cdn.com", - "ip": "151.101.2.217", - "geoip": { - "city": { - "geoname_id": 5391959, - "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.7642, - "longitude": -122.3993, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94107" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://connect.inclusion.beta.gouv.fr/": { - "status": 200 - } + { + "id": "pre_128cipher", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": "8.6.2", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "5.3.1", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "zendesk", - "name": "Zendesk", - "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", - "confidence": 100, - "version": null, - "icon": "Zendesk.svg", - "website": "https://zendesk.com", - "cpe": null, - "categories": [ - { - "id": 4, - "slug": "documentation", - "name": "Documentation" - }, - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - }, - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "popper", - "name": "Popper", - "description": "Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.", - "confidence": 100, - "version": null, - "icon": "Popper.svg", - "website": "https://popper.js.org", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://connect.inclusion.beta.gouv.fr/", - "finalUrl": "https://connect.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:56:29.364Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.56 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.75 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.79 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6264, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 6264, - "firstMeaningfulPaint": 6264, - "largestContentfulPaint": 8447, - "interactive": 6264, - "speedIndex": 6264, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.001542003313700358, - "cumulativeLayoutShiftMainFrame": 0.001542003313700358, - "totalCumulativeLayoutShift": 0.001542003313700358, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 463663402, - "observedNavigationStart": 0, - "observedNavigationStartTs": 463663402, - "observedFirstPaint": 937, - "observedFirstPaintTs": 464600689, - "observedFirstContentfulPaint": 937, - "observedFirstContentfulPaintTs": 464600689, - "observedFirstContentfulPaintAllFrames": 937, - "observedFirstContentfulPaintAllFramesTs": 464600689, - "observedFirstMeaningfulPaint": 937, - "observedFirstMeaningfulPaintTs": 464600689, - "observedLargestContentfulPaint": 1022, - "observedLargestContentfulPaintTs": 464685268, - "observedLargestContentfulPaintAllFrames": 1022, - "observedLargestContentfulPaintAllFramesTs": 464685268, - "observedTraceEnd": 3661, - "observedTraceEndTs": 467324072, - "observedLoad": 1173, - "observedLoadTs": 464836445, - "observedDomContentLoaded": 993, - "observedDomContentLoadedTs": 464656865, - "observedCumulativeLayoutShift": 0.001542003313700358, - "observedCumulativeLayoutShiftMainFrame": 0.001542003313700358, - "observedTotalCumulativeLayoutShift": 0.001542003313700358, - "observedFirstVisualChange": 934, - "observedFirstVisualChangeTs": 464597402, - "observedLastVisualChange": 1551, - "observedLastVisualChangeTs": 465214402, - "observedSpeedIndex": 996, - "observedSpeedIndexTs": 464659413 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 24, - "numScripts": 10, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 34, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 5.532, - "throughput": 15847410.410065943, - "maxRtt": 84.815, - "maxServerLatency": 14.460999999999999, - "totalByteWeight": 1670323, - "totalTaskTime": 7.267999999999998, - "mainDocumentTransferSize": 3787 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://connect.inclusion.beta.gouv.fr/accessibility/" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://connect.inclusion.beta.gouv.fr/static/terms/Mentions légales_20230302.def9022097c3.pdf" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://connect.inclusion.beta.gouv.fr/static/terms/Politique_de_confidentialite_v7.f32a1ab28481.pdf" - } - ], - "betagouv": { - "id": "inclusion.connect", - "type": "startup", - "attributes": { - "name": "Inclusion Connect", - "pitch": "Connecter 160 000 professionnels de l’inclusion aux services numériques de leur quotidien, d’une manière simple, sécurisée, efficace.", - "stats_url": "http://stats.inclusion.beta.gouv.fr/public/dashboard/8895a813-68d0-4d3a-a7e3-f71ef0615a52", - "link": "https://connect.inclusion.beta.gouv.fr/", - "repository": "https://github.com/gip-inclusion/inclusion-connect", - "contact": "support@connect.inclusion.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20num%C3%A9riques%20%C3%A0%20destination%20des%20professionnels%20de%20l%E2%80%99inclusion%20se%20multiplient%2C%20et%20avec%20eux%20les%20identifiants%20et%20mots%20de%20passe.%20Pour%20les%20usagers%20cela%20devient%20complexe%20et%20fastidieux%20et%20pr%C3%A9sente%20de%20vrais%20risques%20de%20s%C3%A9curit%C3%A9.%0A%0AC%27est%20donc%20une%20source%20de%20friction%20et%20une%20perte%20de%20temps%20pour%20les%20utilisateurs%20au%20quotidien.%0A%0A%23%23%20Notre%20service%0A%0AAvec%20Inclusion%20Connect%2C%20nous%20simplifions%20la%20gestion%20des%20identifiants%20et%20facilitons%20l%E2%80%99acc%C3%A8s%20au%20num%C3%A9rique%20en%20toute%20s%C3%A9curit%C3%A9%2C%20gr%C3%A2ce%20%C3%A0%20un%20compte%20unique%20bas%C3%A9%20sur%20un%20protocole%20solidement%20%C3%A9prouv%C3%A9%20%28OpenIdConnect%29.%0A%0A%23%23%20Nos%20usagers%0A%0ATous%20les%20professionnels%20de%20l%E2%80%99inclusion.%20Comme%20les%20conseillers%20en%20insertion%20professionnelle%2C%20les%20travailleurs%20sociaux%2C%20les%20r%C3%A9f%C3%A9rents%20uniques%20%28ex%20%3A%20PE%2C%20Cap%20emploi%2C%20CD%2C%20CCAS%2FCIAS%2C%20Missions%20Locales%2C%20associations%20conventionn%C3%A9es%2C%20IAE%2C%20centres%20d%E2%80%99h%C3%A9bergement%2C%20etc.%29%2C%20les%20employeurs%20solidaires%20etc.%0A%0A%23%23%20D%C3%A9ploiement%0A%0A%C3%80%20ce%20jour%2C%20Inclusion%20Connect%20est%20d%C3%A9ploy%C3%A9%20sur%20les%20services%20suivants%20%3A%0A%0A%2A%20Les%20emplois%20de%20l%27inclusion%0A%2A%20DORA%0A%2A%20RDV-solidarit%C3%A9s%20et%20RDV-aide-num%C3%A9rique%0A%2A%20M%EF%BB%BFon%20Suivi%20Social%0A%2A%20L%EF%BB%BFa%20communaut%C3%A9%20de%20l%27inclusion%0A%2A%20L%EF%BB%BFes%20Conseillers%20Num%C3%A9riques%20France%20Service%20%28grands%20r%C3%A9seaux%20et%20structures%29%0A%2A%20Immersion%20facilit%C3%A9e%0A%2A%20Rdv%20Insertion%0A%2A%20Portail%20Emploi%20Lyon%20M%C3%A9tropole%0A%2A%20eva%0A%2A%20Acad%C3%A9mie%20France%20Travail%0A%0AEt%20gr%C3%A2ce%20au%20m%C3%A9canisme%20de%20la%20f%C3%A9d%C3%A9ration%20d%27identit%C3%A9%20les%20agents%20de%20P%C3%B4le%20emploi%20peuvent%20se%20connecter%20avec%20leurs%20identifiants%20NEPTUNE%20via%20Inlcusion%20Connect%20aux%20services%20cit%C3%A9s%20ci-dessus.%0A%0AVoici%20un%20lien%20direct%20vers%20nos%20statistiques%20d%27usage%20%3A%20%5BStatistiques%5D%28http%3A%2F%2Fstats.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F8895a813-68d0-4d3a-a7e3-f71ef0615a52%29%0A", - "events": [], - "phases": [ - { - "name": "acceleration", - "start": "2022-07-01", - "end": "" - } - ], - "sponsors": [ - "francetravail", - "mtei" - ], - "thematiques": [ - "Inclusion numérique" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/connect-inclusion-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "gip-inclusion" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://connect.inclusion.beta.gouv.fr", - "size": 1728.897, - "nodes": 200, - "requests": 24, - "grade": "B", - "score": 77, - "ges": 1.46, - "water": 2.19, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:53:28.041284", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-20T13:21:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.56, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.75, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.79, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://contrat.apprentissage.beta.gouv.fr", - "betaId": "dematapprentissage", - "category": "mission-apprentissage", - "tags": [ - "apprentissage" - ], - "http": { - "url": "https://contrat.apprentissage.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:55:43 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 02:55:42 GMT", - "ETag": "\"rbznad0acj8qy\"", - "Referrer-Policy": "no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "x-nextjs-cache": "HIT" - }, - "scan_id": 57048324, - "score": 80, - "start_time": "Sun, 20 Oct 2024 02:55:41 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "block-all-mixed-content": [ - "'none'" - ], - "connect-src": [ - "https://geo.api.gouv.fr/", - "https://plausible.io", - "https://sentry.apprentissage.beta.gouv.fr", - "'self'" - ], - "default-src": [ - "https://plausible.io", - "'self'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "https://plausible.io", - "'self'" - ], - "img-src": [ - "data:", - "https://www.notion.so", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "https://plausible.io", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "https:", - "'unsafe-inline'", - "*.plausible.io", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://contrat.apprentissage.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://contrat.apprentissage.beta.gouv.fr/", - "https://contrat.apprentissage.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer-when-downgrade", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "8178", - "url": "https://contrat.apprentissage.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T10:10:47Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T02:59:48Z", - "next_check_at": "2024-11-24T03:04:45Z", - "created_at": "2022-09-01T22:02:14Z", - "mute_until": null, - "favicon_url": "https://contrat.apprentissage.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T02:44:53Z", - "expires_at": "2024-12-22T23:31:40Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 264, - "connection": 138, - "handshake": 144, - "response": 146, - "total": 692 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "contrat.apprentissage.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "cvss": "10.0", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "10.0", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "CVE-2023-38408", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "id": "CVE-2023-28531", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "PACKETSTORM:179290", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "CVE-2024-6387", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "8.1", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "1337DAY-ID-39674", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "SSV:92579", - "type": "seebug", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "6.5", - "id": "CVE-2023-51385", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2023-48795", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.5", - "id": "CVE-2023-51384", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "type": "githubexploit", - "is_exploit": "true" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, + "id": "SSLv2", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, { "id": "SSLv3", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -58099,7 +54474,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -58107,7 +54482,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -58115,7 +54490,7 @@ }, { "id": "cipherlist_LOW", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -58123,7 +54498,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -58131,7 +54506,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -58139,497 +54514,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { - "id": "cipher-tls1_2_xc02c", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "id": "cipher-tls1_2_xc030", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipher-tls1_2_xc02b", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "id": "cipher-tls1_2_xc02f", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA384" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "Digital Signature" + "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "04F566621A6586A66D6F6AC8308BB955FF2B" + "finding": "030C5FAAAD49A4596ED5AEEDDC5CD32C9375" }, { "id": "cert_serialNumberLen", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "7AC2EA10066D8FE327F133572FC553C197CDB36C" + "finding": "7B9F8FCD75F83DC5DD6F1A340CE041F9173916E5" }, { "id": "cert_fingerprintSHA256", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "AC76C9DDD84CE449D196126F5F53DB499DA661A6396B1033252228610EE65BAA" + "finding": "26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "cert", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDpTCCAyqgAwIBAgISBPVmYhplhqZtb2rIMIu5Vf8rMAoGCCqGSM49BAMDMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJFNjAeFw0yNDA5MjMyMzMxNDFaFw0yNDEyMjIyMzMxNDBaMC0xKzApBgNVBAMTImNvbnRyYXQuYXBwcmVudGlzc2FnZS5iZXRhLmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQEtMktosynUiyIXzzzLDbp0cGKzCvK/9ykEmOSlwmxJZbPwIEcbcWSPbaRdY0NJzUV3uOMkvsp8Wlw0bdcO3wwo4ICIzCCAh8wDgYDVR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS4fy/hRxavMclg2Cvzoio9qxxArzAfBgNVHSMEGDAWgBSTJ0aYA6lRaI6Y1sRCSNsjv1iU0jBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9lNi5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL2U2LmkubGVuY3Iub3JnLzAtBgNVHREEJjAkgiJjb250cmF0LmFwcHJlbnRpc3NhZ2UuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGSIW+N2gAABAMARjBEAiAUMjRQtuD2ZQSKcAPt/v/DoFvCXxoYyrRvZZjwtxBlZwIgFe8EMXt0ArfjoPMTfyx2+t6UccLfY2XFUy8J/GYJRr0AdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAZIhb47VAAAEAwBHMEUCICQKilzVuMMpACgn4p4ImrY3TrrR2F0JjRVCV6oXSnECAiEA+yZ7V45nshsxJdVIOuTtqqZ1B9GuJ+o5rvYqNp2HakkwCgYIKoZIzj0EAwMDaQAwZgIxAOPo8lsI+aNUTUhuQd0Is1eyzs+KVsIEWyk/oq6QbVOMSMWIq+RU3tpsZwolbpB6TwIxAOB+GrWFY+qRPgTPY41EnCqKd3UMhGIqJTpQGk/EH6EvIWFooyjDHi7zbR1umjYpfg==\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISAwxfqq1JpFlu1a7t3FzTLJN1MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIyMTMyMTIzWhcNMjUwMTIwMTMyMTIyWjApMScwJQYDVQQDEx5jb25uZWN0LmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrHXhaH6mfJeLbjOwTrGEJ8mb4Mlnzq5dA0fSVh4VMYsETrZeTIweD7s6uG1eTY90OvjdWyGkCIM9sjgy80VPDTYcywUXeRvHklblvbsVbT5h0PC5ugqFAI2vYaIjRZbeVV/4pLGfvwbMDLKZeunIhCOE/k2VLTXx1sjxIMxtefs5sMG44+C8ldIfn3GrsSOXa4zlLjG+BMYczDhDWm7Ey9HiroX7jEt1JDZkqWZYY45MrjTsBii4BHTZVJaN6nXgGSfxq4m3/3BnFL7VyvyNJIwIQa1GEmHbpyFYXoLWQHU20Zfvmfpl1UQHJuWXPTdyQop3s3l/NFPaOoA8hiKvAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFG69wOB1Ogbhvgm6J7vYB6O2khowMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGStJk6uwAABAMARzBFAiAkmLYcl+Zoe2BBg4dl+BmIeZyc84qG2j38TIeIFezwTAIhAKDAHn0oqzcIYmJ+/BNA+wDx8b2ooxT+zlX/l5R9TnHyAHcAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGStJk6/QAABAMASDBGAiEAk1f0t0wsgsq1YkWPk7aIXavZ8m/QEH/Vv4PVheuV46YCIQDBuBotLdCtIHpfXalqnt6tUy7RdisuQc2sGyhRepxgZzANBgkqhkiG9w0BAQsFAAOCAQEAEo5nODMIZ4yiyuH5pRaGYw5opW6EP2+8HcHPGEHFlPQ6+eYCMBrHk67TE2cH9vtHAFGkPxR5x4QwUcWNu+luVf0a3xADLoc/DLIGRE4mQ90bMrxs3MSajykGvbOSGF32OM/suHU+I/jHJMisRF9gtJ1W6KL5CGR1/Lw2nHt1mO2moqYPlQpG8aNEsZK8EskD0y4Vs1uMCTSvzzwUntLtqT56LlGL82bWn+rI9rhE/NVAK502iAIieBhsXLhUrZWeA/uNfySDAUTIWjJN4W05VYAamiL05mGW0GHO6vrAP6JfXyP0usCm2gFt8zaGRalXviYSu3zsiQg+iOdYGHAu7w==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "contrat.apprentissage.beta.gouv.fr" + "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "contrat.apprentissage.beta.gouv.fr" + "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "contrat.apprentissage.beta.gouv.fr" + "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 30 days (28)" + "severity": "OK", + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2024-09-23 23:31" + "finding": "2024-10-22 13:21" }, { "id": "cert_notAfter", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-22 23:31" + "severity": "OK", + "finding": "2025-01-20 13:21" }, { "id": "cert_extlifeSpan", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "http://e6.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "E6 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "76E9E288AAFC0E37F4390CBF946AAD997D5C1C901B3CE513D3D8FADBABE2AB85" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "E6 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732417300" + "finding": "1733022594" }, { "id": "HSTS_time", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;" + "finding": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-ftSfSrwvx853T768J4PqrA=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'" }, { "id": "Referrer-Policy", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", - "port": "443", - "severity": "INFO", - "finding": "no-referrer-when-downgrade" - }, - { - "id": "Cache-Control", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "s-maxage=31536000, stale-while-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -58637,7 +55005,7 @@ }, { "id": "heartbleed", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -58646,7 +55014,7 @@ }, { "id": "CCS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -58655,7 +55023,7 @@ }, { "id": "ticketbleed", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -58664,7 +55032,7 @@ }, { "id": "ROBOT", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -58673,7 +55041,7 @@ }, { "id": "secure_renego", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -58681,16 +55049,16 @@ }, { "id": "secure_client_renego", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -58699,16 +55067,16 @@ }, { "id": "BREACH", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -58717,14 +55085,14 @@ }, { "id": "fallback_SCSV", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -58733,7 +55101,7 @@ }, { "id": "FREAK", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -58742,7 +55110,7 @@ }, { "id": "DROWN", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -58751,16 +55119,16 @@ }, { "id": "DROWN_hint", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26A9559392FBE90AAB73C58B82518D18C77C887D57CCDD963ACEF412884A7C2C" }, { "id": "LOGJAM", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -58769,7 +55137,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -58778,7 +55146,7 @@ }, { "id": "BEAST", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -58787,7 +55155,7 @@ }, { "id": "LUCKY13", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -58796,7 +55164,7 @@ }, { "id": "winshock", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -58805,7 +55173,7 @@ }, { "id": "RC4", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -58814,348 +55182,354 @@ }, { "id": "clientsimulation-android_60", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "96" + "finding": "93" }, { "id": "overall_grade", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "99" + "finding": "500" } ], "thirdparties": { - "trackers": [], + "trackers": [ + { + "type": "unknown", + "url": "https://js.sentry-cdn.com/d9163858ff954fc9a789fcb17662e1d2.min.js" + } + ], "cookies": [], "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", + "connection": "keep-alive", "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", + "content-length": "2806", + "content-security-policy": "default-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; base-uri 'none'; font-src 'self'; frame-ancestors https://monportailpro.francetravail.fr https://cwportailconseiller.francetravail.fr https://*.cwportailconseiller.francetravail.fr https://mesapplicationspro.francetravail.fr; object-src 'none'; script-src 'self' https://browser.sentry-cdn.com https://js.sentry-cdn.com https://matomo.inclusion.beta.gouv.fr/ 'nonce-zPSPvl28neB3MCPGLsU6iQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self'", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 03:00:19 GMT", - "etag": "\"1oc4rrhu578ou\"", - "referrer-policy": "no-referrer-when-downgrade", - "strict-transport-security": "max-age=31536000; includeSubdomains", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 03:01:45 GMT", + "referrer-policy": "same-origin", + "sozu-id": "01JE02NFDWKA7NJEJX7EQGW2CG", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Cookie, Accept-Encoding, origin", "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-nextjs-cache": "HIT" + "x-frame-options": "DENY" }, "endpoints": [ { - "hostname": "contrat.apprentissage.beta.gouv.fr", - "ip": "51.77.159.162", + "hostname": "connect.inclusion.beta.gouv.fr", + "ip": "91.208.207.214", "geoip": { "continent": { "code": "EU", @@ -59208,12 +55582,99 @@ } } } + }, + { + "hostname": "js.sentry-cdn.com", + "ip": "151.101.194.217", + "geoip": { + "city": { + "geoname_id": 5391959, + "names": { + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "94107" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } } ] }, "wappalyzer": { "urls": { - "https://contrat.apprentissage.beta.gouv.fr/": { + "https://connect.inclusion.beta.gouv.fr/": { "status": 200 } }, @@ -59237,31 +55698,36 @@ "rootPath": true }, { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" } ] }, { - "slug": "mui", - "name": "MUI", - "description": "MUI(formerly Material UI) is a simple and customisable component library to build faster, beautiful, and more accessible React applications.", + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", "confidence": 100, - "version": null, - "icon": "MUI.svg", - "website": "https://mui.com", - "cpe": null, + "version": "5.3.1", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", "categories": [ { "id": 66, @@ -59272,92 +55738,82 @@ "rootPath": true }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "id": 10, + "slug": "analytics", + "name": "Analytics" } - ] + ], + "rootPath": true }, { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", "confidence": 100, - "version": "13.5.6", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" + "id": 16, + "slug": "security", + "name": "Security" } - ], - "rootPath": true + ] }, { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "slug": "zendesk", + "name": "Zendesk", + "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", "confidence": 100, "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", + "icon": "Zendesk.svg", + "website": "https://zendesk.com", "cpe": null, "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "id": 4, + "slug": "documentation", + "name": "Documentation" }, { - "id": 47, - "slug": "development", - "name": "Development" + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + }, + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" } ], "rootPath": true }, { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true @@ -59381,30 +55837,13 @@ "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, + "slug": "popper", + "name": "Popper", + "description": "Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.", + "confidence": 100, "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", + "icon": "Popper.svg", + "website": "https://popper.js.org", "cpe": null, "categories": [ { @@ -59412,7 +55851,8 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ] + ], + "rootPath": true } ] }, @@ -59420,9 +55860,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://contrat.apprentissage.beta.gouv.fr/", - "finalUrl": "https://contrat.apprentissage.beta.gouv.fr/", - "fetchTime": "2024-11-24T02:59:52.470Z", + "requestedUrl": "https://connect.inclusion.beta.gouv.fr/", + "finalUrl": "https://connect.inclusion.beta.gouv.fr/", + "fetchTime": "2024-12-01T03:01:19.410Z", "runWarnings": [], "categories": { "performance": { @@ -59433,7 +55873,7 @@ "snapshot" ], "id": "performance", - "score": 0.83 + "score": 0.56 }, "accessibility": { "title": "Accessibility", @@ -59444,7 +55884,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -59454,7 +55894,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.75 }, "seo": { "title": "SEO", @@ -59465,7 +55905,7 @@ "snapshot" ], "id": "seo", - "score": 1 + "score": 0.79 }, "pwa": { "title": "PWA", @@ -59485,53 +55925,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3767, + "numericValue": 6262, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1449, - "firstMeaningfulPaint": 1449, - "largestContentfulPaint": 4222, - "interactive": 3767, - "speedIndex": 3172, - "totalBlockingTime": 103, - "maxPotentialFID": 153, - "cumulativeLayoutShift": 0.00484130859375, - "cumulativeLayoutShiftMainFrame": 0.00484130859375, - "totalCumulativeLayoutShift": 0.00484130859375, + "firstContentfulPaint": 6262, + "firstMeaningfulPaint": 6262, + "largestContentfulPaint": 8216, + "interactive": 6262, + "speedIndex": 6262, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.001542003313700358, + "cumulativeLayoutShiftMainFrame": 0.001542003313700358, + "totalCumulativeLayoutShift": 0.001542003313700358, "observedTimeOrigin": 0, - "observedTimeOriginTs": 456320437, + "observedTimeOriginTs": 407552104, "observedNavigationStart": 0, - "observedNavigationStartTs": 456320437, - "observedFirstPaint": 1435, - "observedFirstPaintTs": 457755225, - "observedFirstContentfulPaint": 1435, - "observedFirstContentfulPaintTs": 457755225, - "observedFirstContentfulPaintAllFrames": 1435, - "observedFirstContentfulPaintAllFramesTs": 457755225, - "observedFirstMeaningfulPaint": 1435, - "observedFirstMeaningfulPaintTs": 457755225, - "observedLargestContentfulPaint": 1600, - "observedLargestContentfulPaintTs": 457920547, - "observedLargestContentfulPaintAllFrames": 1600, - "observedLargestContentfulPaintAllFramesTs": 457920547, - "observedTraceEnd": 4181, - "observedTraceEndTs": 460501145, - "observedLoad": 1649, - "observedLoadTs": 457969454, - "observedDomContentLoaded": 498, - "observedDomContentLoadedTs": 456818029, - "observedCumulativeLayoutShift": 0.00484130859375, - "observedCumulativeLayoutShiftMainFrame": 0.00484130859375, - "observedTotalCumulativeLayoutShift": 0.00484130859375, - "observedFirstVisualChange": 1444, - "observedFirstVisualChangeTs": 457764437, - "observedLastVisualChange": 2061, - "observedLastVisualChangeTs": 458381437, - "observedSpeedIndex": 1460, - "observedSpeedIndexTs": 457780521 + "observedNavigationStartTs": 407552104, + "observedFirstPaint": 946, + "observedFirstPaintTs": 408498039, + "observedFirstContentfulPaint": 946, + "observedFirstContentfulPaintTs": 408498039, + "observedFirstContentfulPaintAllFrames": 946, + "observedFirstContentfulPaintAllFramesTs": 408498039, + "observedFirstMeaningfulPaint": 946, + "observedFirstMeaningfulPaintTs": 408498039, + "observedLargestContentfulPaint": 1020, + "observedLargestContentfulPaintTs": 408572453, + "observedLargestContentfulPaintAllFrames": 1020, + "observedLargestContentfulPaintAllFramesTs": 408572453, + "observedTraceEnd": 3675, + "observedTraceEndTs": 411227023, + "observedLoad": 1183, + "observedLoadTs": 408735176, + "observedDomContentLoaded": 1003, + "observedDomContentLoadedTs": 408554722, + "observedCumulativeLayoutShift": 0.001542003313700358, + "observedCumulativeLayoutShiftMainFrame": 0.001542003313700358, + "observedTotalCumulativeLayoutShift": 0.001542003313700358, + "observedFirstVisualChange": 948, + "observedFirstVisualChangeTs": 408500104, + "observedLastVisualChange": 1564, + "observedLastVisualChangeTs": 409116104, + "observedSpeedIndex": 1007, + "observedSpeedIndexTs": 408558990 }, { "lcpInvalidated": false @@ -59549,23 +55989,23 @@ "type": "debugdata", "items": [ { - "numRequests": 40, - "numScripts": 17, + "numRequests": 24, + "numScripts": 10, "numStylesheets": 2, "numFonts": 3, - "numTasks": 1083, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, + "numTasks": 34, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 155.194, - "throughput": 8615161.747994596, - "maxRtt": 155.352, - "maxServerLatency": 17.87699999999998, - "totalByteWeight": 541184, - "totalTaskTime": 244.76599999999826, - "mainDocumentTransferSize": 3745 + "rtt": 5.577, + "throughput": 15833948.116489487, + "maxRtt": 84.744, + "maxServerLatency": 89.49100000000001, + "totalByteWeight": 1670341, + "totalTaskTime": 7.097999999999998, + "mainDocumentTransferSize": 3787 } ] } @@ -59584,62 +56024,64 @@ "grade": "F" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://connect.inclusion.beta.gouv.fr/accessibility/" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, + "mention": "Mentions légales", "maxScore": 0, "score": 0, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://connect.inclusion.beta.gouv.fr/static/terms/Mentions légales_20230302.def9022097c3.pdf" }, { "slug": "pc", - "mention": null, + "mention": "Politique de confidentialité", "maxScore": 0, "score": 0, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://connect.inclusion.beta.gouv.fr/static/terms/Politique_de_confidentialite_v7.f32a1ab28481.pdf" } ], "betagouv": { - "id": "dematapprentissage", + "id": "inclusion.connect", "type": "startup", "attributes": { - "name": "Le contrat d'apprentissage dématérialisé pour les employeurs publics", - "pitch": "Faciliter le processus administratif du dépôt de contrat d'apprentissage pour les employeurs publics", - "stats_url": "https://contrat.apprentissage.beta.gouv.fr/stats", - "link": "https://celia.emploi.gouv.fr/", - "repository": "https://github.com/mission-apprentissage/cerfa", - "contact": "apprentissage@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Constat%0A%0AIl%20n%E2%80%99existe%20qu%E2%80%99une%20version%20papier%20du%20CERFA%20Contrat%20d%E2%80%99apprentissage%20que%20les%20employeurs%20publics%20des%20trois%20fonctions%20publiques%20%3A%20%0A-%20peinent%20%C3%A0%20remplir%20%3B%20%0A-%20doivent%20envoyer%20par%20courrier%20postal%20ou%20par%20courriel%20aux%20DREETS%20%3B%0A%0ALes%20services%20des%20DREETS%2C%20%C3%A0%20r%C3%A9ception%20du%20CERFA%2C%20doivent%20ressaisir%20tous%20les%20%C3%A9l%C3%A9ments%20dans%20leur%20application%2C%20voire%20les%20retourner%20en%20cas%20d%27erreurs%20ou%20d%27incompl%C3%A9tude.%0AEntre%20la%20prise%20en%20charge%20du%20dossier%20par%20un%20agent%20de%20la%20DREETS%20jusqu%E2%80%99au%20d%C3%A9p%C3%B4t%20effectif%20du%20CERFA%2C%20le%20suivi%20du%20dossier%20transmis%20n%E2%80%99est%20pas%20connu%20des%20employeurs.%0A%0ALes%20apprentis%20sont%20parfois%20%C3%A9loign%C3%A9s%20de%20leur%20lieu%20de%20recrutement%20et%20doivent%20revenir%20sur%20place%20pour%20signer%20leur%20contrat.%0A%0A%0A%23%23%20La%20solution%0A%0A-%20Un%20formulaire%20%C3%A0%20saisir%20en%20ligne%20%3A%20la%20compl%C3%A9tude%20est%20guid%C3%A9e%20%28bulles%20d%E2%80%99information%29%20et%20int%C3%A8gre%20des%20contr%C3%B4les%20r%C3%A8glementaire%20et%20de%20coh%C3%A9rence%20et%20des%20r%C3%A9f%C3%A9rentiels%20ad%C3%A9quats%20%28par%20exemple%2C%20code%20INSEE%2C%20code%20postaux%2C%20code%20RNCP%2C%20etc.%29%20%3B%0A-%20L%E2%80%99export%20automatique%20des%20donn%C3%A9es%20dans%20le%20SI%20AGECAP%20%28c%E2%80%99est-%C3%A0-dire%20le%20SI%20d%C3%A9ploy%C3%A9%20r%C3%A9cemment%20dans%20les%20DREETS%20pour%20la%20saisie%20et%20le%20d%C3%A9p%C3%B4t%20des%20contrats%29%2C%20pour%20instruction%20par%20les%20DREETS%20avant%20d%C3%A9p%C3%B4t%20du%20contrat%20%3B%0A-%20La%20mise%20en%20place%20d%E2%80%99une%20signature%20%C3%A9lectronique%20des%20parties%20prenantes%20%28CFA%2C%20employeur%2C%20apprenti%28e%29%29.%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20Limiter%20les%20erreurs%20%3A%20en%20automatisant%20des%20contr%C3%B4les%20de%20coh%C3%A9rence%20et%20des%20contr%C3%B4les%20r%C3%A9glementaires%20%3B%20%0A-%20All%C3%A9ger%20la%20charge%20de%20saisie%20pour%20l%E2%80%99employeur%20et%20l%E2%80%99organisme%20de%20formation%20%3A%20en%20compl%C3%A9tant%20automatiquement%20plusieurs%20champs%20gr%C3%A2ce%20%C3%A0%20une%20seule%20donn%C3%A9e%20saisie%20%3B%0A-%20Fluidifier%20le%20circuit%20li%C3%A9%20au%20d%C3%A9p%C3%B4t%20des%20contrats%20en%20permettant%20une%20saisie%20collaborative%20des%20%C3%A9l%C3%A9ments%20entre%20l%E2%80%99employeur%20public%20et%20l%E2%80%99organisme%20de%20formation%2C%20d%C3%A8s%20que%20l%E2%80%99apprenti%20est%20retenu%2C%20avec%20une%20compl%C3%A9tude%20du%20CERFA%20%3A%20%0A%20%201.%20au%20fur%20et%20%C3%A0%20mesure%20des%20informations%20%C3%A0%20r%C3%A9cup%C3%A9rer%2C%20de%20l%E2%80%99%C3%A9tablissement%20de%20la%20convention%20%0A%20%202.%20et%20d%E2%80%99%C3%A9ventuels%20autres%20documents%20compl%C3%A9mentaires%20%C3%A0%20joindre%20en%20fonction%20des%20cas%20particuliers%20%0A%20%203.%20totale%2C%20gr%C3%A2ce%20%C3%A0%20l%E2%80%99option%20de%20signature%20%C3%A9lectronique%20rendue%20possible%20pour%20les%20parties%0A-%20Suivre%20en%20temps%20r%C3%A9el%20l%E2%80%99examen%20du%20dossier%2C%20afin%20de%20d%C3%A9tecter%20les%20anomalies%20d%C3%A8s%20la%20saisie%20et%20de%20raccourcir%20les%20d%C3%A9lais%20de%20transmission%20du%20contrat%20%3B%0A-%20Gagner%20du%20temps%20pour%20chacun%20des%20agents%20gestionnaires%20des%20DREETS%2C%3A%20l%E2%80%99absence%20de%20ressaisie%20et%20la%20r%C3%A9duction%20des%20contr%C3%B4le%20et%20de%20l%27assistance%20leur%20permettant%20de%20r%C3%A9aliser%20des%20activit%C3%A9s%20%C3%A0%20plus%20forte%20valeur%20ajout%C3%A9e%20%3B%0A-%20Faciliter%20l%E2%80%99%C3%A9tude%20statistique%20autour%20des%20contrats%20d%E2%80%99apprentissage%20de%20la%20fonction%20publique%20en%20recueillant%20et%20en%20traitant%20les%20donn%C3%A9es%20de%20saisie.%0A%0A%0A%0A", + "name": "Inclusion Connect", + "pitch": "Connecter 160 000 professionnels de l’inclusion aux services numériques de leur quotidien, d’une manière simple, sécurisée, efficace.", + "stats_url": "http://stats.inclusion.beta.gouv.fr/public/dashboard/8895a813-68d0-4d3a-a7e3-f71ef0615a52", + "link": "https://connect.inclusion.beta.gouv.fr/", + "repository": "https://github.com/gip-inclusion/inclusion-connect", + "contact": "support@connect.inclusion.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20num%C3%A9riques%20%C3%A0%20destination%20des%20professionnels%20de%20l%E2%80%99inclusion%20se%20multiplient%2C%20et%20avec%20eux%20les%20identifiants%20et%20mots%20de%20passe.%20Pour%20les%20usagers%20cela%20devient%20complexe%20et%20fastidieux%20et%20pr%C3%A9sente%20de%20vrais%20risques%20de%20s%C3%A9curit%C3%A9.%0A%0AC%27est%20donc%20une%20source%20de%20friction%20et%20une%20perte%20de%20temps%20pour%20les%20utilisateurs%20au%20quotidien.%0A%0A%23%23%20Notre%20service%0A%0AAvec%20Inclusion%20Connect%2C%20nous%20simplifions%20la%20gestion%20des%20identifiants%20et%20facilitons%20l%E2%80%99acc%C3%A8s%20au%20num%C3%A9rique%20en%20toute%20s%C3%A9curit%C3%A9%2C%20gr%C3%A2ce%20%C3%A0%20un%20compte%20unique%20bas%C3%A9%20sur%20un%20protocole%20solidement%20%C3%A9prouv%C3%A9%20%28OpenIdConnect%29.%0A%0A%23%23%20Nos%20usagers%0A%0ATous%20les%20professionnels%20de%20l%E2%80%99inclusion.%20Comme%20les%20conseillers%20en%20insertion%20professionnelle%2C%20les%20travailleurs%20sociaux%2C%20les%20r%C3%A9f%C3%A9rents%20uniques%20%28ex%20%3A%20PE%2C%20Cap%20emploi%2C%20CD%2C%20CCAS%2FCIAS%2C%20Missions%20Locales%2C%20associations%20conventionn%C3%A9es%2C%20IAE%2C%20centres%20d%E2%80%99h%C3%A9bergement%2C%20etc.%29%2C%20les%20employeurs%20solidaires%20etc.%0A%0A%23%23%20D%C3%A9ploiement%0A%0A%C3%80%20ce%20jour%2C%20Inclusion%20Connect%20est%20d%C3%A9ploy%C3%A9%20sur%20les%20services%20suivants%20%3A%0A%0A%2A%20Les%20emplois%20de%20l%27inclusion%0A%2A%20DORA%0A%2A%20RDV-solidarit%C3%A9s%20et%20RDV-aide-num%C3%A9rique%0A%2A%20M%EF%BB%BFon%20Suivi%20Social%0A%2A%20L%EF%BB%BFa%20communaut%C3%A9%20de%20l%27inclusion%0A%2A%20L%EF%BB%BFes%20Conseillers%20Num%C3%A9riques%20France%20Service%20%28grands%20r%C3%A9seaux%20et%20structures%29%0A%2A%20Immersion%20facilit%C3%A9e%0A%2A%20Rdv%20Insertion%0A%2A%20Portail%20Emploi%20Lyon%20M%C3%A9tropole%0A%2A%20eva%0A%2A%20Acad%C3%A9mie%20France%20Travail%0A%0AEt%20gr%C3%A2ce%20au%20m%C3%A9canisme%20de%20la%20f%C3%A9d%C3%A9ration%20d%27identit%C3%A9%20les%20agents%20de%20P%C3%B4le%20emploi%20peuvent%20se%20connecter%20avec%20leurs%20identifiants%20NEPTUNE%20via%20Inlcusion%20Connect%20aux%20services%20cit%C3%A9s%20ci-dessus.%0A%0AVoici%20un%20lien%20direct%20vers%20nos%20statistiques%20d%27usage%20%3A%20%5BStatistiques%5D%28http%3A%2F%2Fstats.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F8895a813-68d0-4d3a-a7e3-f71ef0615a52%29%0A", "events": [], "phases": [ { - "name": "transfer", - "start": "2022-02-01", - "end": "2022-06-30" - }, - { - "name": "success", - "start": "2022-07-31", + "name": "acceleration", + "start": "2022-07-01", "end": "" } ], "sponsors": [ - "mtei", - "mtfp" + "francetravail", + "mtei" ], - "thematiques": [], + "thematiques": [ + "Inclusion numérique" + ], + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/connect-inclusion-beta-gouv-fr/", "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mission-apprentissage" + "id": "gip-inclusion" } } } @@ -59648,16 +56090,16 @@ { "width": 1920, "height": 1080, - "url": "https://contrat.apprentissage.beta.gouv.fr", - "size": 596.113, - "nodes": 117, - "requests": 39, - "grade": "A", - "score": 82, - "ges": 1.36, - "water": 2.04, + "url": "https://connect.inclusion.beta.gouv.fr", + "size": 1728.889, + "nodes": 200, + "requests": 24, + "grade": "B", + "score": 77, + "ges": 1.46, + "water": 2.19, "ecoindex_version": "5.4.2", - "date": "2024-11-24 02:56:50.161473", + "date": "2024-12-01 02:58:19.848818", "page_type": null } ], @@ -59666,72 +56108,75 @@ "detected": false }, "summary": { - "httpGrade": "B+", + "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 100, + "uptime": 99.981, "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, + "nmapGrade": "B", + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-22T23:31:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-20T13:21:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.83, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.96, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.56, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", + "lighthouse_best-practices": 0.75, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.79, + "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "B", "dsfrGrade": "F" } }, { "404": null, - "url": "https://chauffage-urbain.beta.gouv.fr", - "category": "mtes", - "betaId": "chauffage-urbain", + "url": "https://contrat.apprentissage.beta.gouv.fr", + "betaId": "dematapprentissage", + "category": "mission-apprentissage", + "tags": [ + "apprentissage" + ], "http": { - "url": "https://chauffage-urbain.beta.gouv.fr", + "url": "https://contrat.apprentissage.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:07:59 GMT", - "grade": "A+", + "end_time": "Sun, 20 Oct 2024 02:55:43 GMT", + "grade": "B+", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://*.hotjar.com;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-b4GFU36HxV/ajsLtGxYpBvVIlonNc0Dz5lk+ZTMKysY=' 'sha256-Ny4QAH1g1FWyqlgrnIVWh1mj+jM8c6SjgqJ2i6c2REU=' 'sha256-8r71P9EINuYzK2mdhvMfZG0nDrKZhY5rvxXNAgVD45g=' 'sha256-/To7QTI1yR8LpZjhrqYdP21zirnpAwwI4s7M8TwKxnI=' 'sha256-/CSSb6w0OrYpmMov6mf2agdZaX5CEjsuUL45DW0yKI4=' 'sha256-cLrFOA9eDIz+hTs9m3AUrlzvroRre9vJ4cvv1ygI/Bw=' 'sha256-cWPc/BJwUWRnFb5b17VxDNk72/ZwL1GOqTQ6dAU/P3E=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://*.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/ https://*.hotjar.com;script-src-attr 'none';style-src 'self' https: 'unsafe-inline' https://*.hotjar.com;upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://data.geopf.fr https://api.mapbox.com/ https://sentry.incubateur.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", + "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 03:07:57 GMT", - "ETag": "\"qxv8wjui1w1lfh\"", + "Date": "Sun, 20 Oct 2024 02:55:42 GMT", + "ETag": "\"rbznad0acj8qy\"", + "Referrer-Policy": "no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", - "X-Powered-By": "Next.js", - "X-Request-ID": "80e303f6-37ba-45fa-9ee7-17cbdcda45d7", - "X-XSS-Protection": "1; mode=block", - "strict-transport-security": "max-age=31536000" + "x-nextjs-cache": "HIT" }, - "scan_id": 57048588, - "score": 100, - "start_time": "Sun, 20 Oct 2024 03:07:55 GMT", + "scan_id": 57048324, + "score": 80, + "start_time": "Sun, 20 Oct 2024 02:55:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -59746,101 +56191,55 @@ "base-uri": [ "'self'" ], + "block-all-mixed-content": [ + "'none'" + ], "connect-src": [ - "https://*.google-analytics.com", - "'self'", - "https://google.com/", - "https://openmaptiles.data.gouv.fr", - "https://openmaptiles.geo.data.gouv.fr", - "https://data.geopf.fr", - "https://openmaptiles.github.io", - "https://*.googletagmanager.com", - "https://stats.beta.gouv.fr", - "https://*.hotjar.io", - "https://*.hotjar.com", - "https://stats.data.gouv.fr", - "https://*.analytics.google.com", - "https://px.ads.linkedin.com", - "wss://*.hotjar.com", - "https://api-adresse.data.gouv.fr/", - "https://cdn.linkedin.oribi.io", - "https://france-chaleur-urbaine.beta.gouv.fr/", - "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", - "https://sentry.incubateur.net", - "https://api.mapbox.com/" + "https://geo.api.gouv.fr/", + "https://plausible.io", + "https://sentry.apprentissage.beta.gouv.fr", + "'self'" ], "default-src": [ + "https://plausible.io", "'self'" ], "font-src": [ - "data:", "https:", - "'self'" - ], - "form-action": [ + "data:", "'self'" ], "frame-ancestors": [ "'self'" ], "frame-src": [ - "https://www.facebook.com/", - "https://www.youtube.com/", - "https://td.doubleclick.net" + "https://plausible.io", + "'self'" ], "img-src": [ "data:", - "https:", + "https://www.notion.so", "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", - "'sha256-b4gfu36hxv/ajsltgxypbvvilonnc0dz5lk+ztmkysy='", - "'self'", - "'sha256-/cssb6w0orypmmov6mf2agdzax5cejsuul45dw0yki4='", - "'sha256-pah6kzhwrs47demjxb9x6pfcgghwaf4bz4nckf/bhiu='", - "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", - "'sha256-5nusiklxgjie3jiclfpyxyzshtqffzm0jthzyypijte='", - "'sha256-3i33qfpfa/plrn/3rrrc4vjbjmkyiuxwq+zfnhiewmo='", - "https://*.googletagmanager.com", - "https://stats.beta.gouv.fr", - "https://*.hotjar.com", - "https://stats.data.gouv.fr", - "https://static.axept.io", - "https://googleads.g.doubleclick.net", - "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", - "'sha256-cwpc/bjwuwrnfb5b17vxdnk72/zwl1goqtq6dau/p3e='", - "'sha256-/to7qti1yr8lpzjhrqydp21zirnpawwi4s7m8twkxni='", - "https://www.gstatic.com/", - "https://connect.facebook.net", - "'sha256-clrfoa9ediz+hts9m3aurlzvrorre9vj4cvv1ygi/bw='", - "'sha256-8r71p9einuyzk2mdhvmfzg0ndrkzhy5rvxxnagvd45g='", - "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", - "https://snap.licdn.com", - "https://www.googleadservices.com", - "https://www.googletagmanager.com", - "'sha256-ksltjybi6uoozfn80t6rova1rbbtp9x8qgpgwhmwbpa='", - "'sha256-ny4qah1g1fwyqlgrnivwh1mj+jm8c6sjgqj2i6c2reu='", - "https://api.mapbox.com/", - "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='" + "'unsafe-inline'", + "https://plausible.io", + "'self'" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'unsafe-inline'", "https:", + "'unsafe-inline'", + "*.plausible.io", "'self'" ], "upgrade-insecure-requests": [ "'none'" - ], - "worker-src": [ - "blob:", - "'self'" ] }, "http": true, @@ -59850,20 +56249,20 @@ "antiClickjacking": true, "defaultNone": false, "insecureBaseUri": false, - "insecureFormAction": false, + "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, - "unsafeInline": false, + "unsafeInline": true, "unsafeInlineStyle": true, "unsafeObjects": false } }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -59896,38 +56295,38 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://france-chaleur-urbaine.beta.gouv.fr", + "destination": "https://contrat.apprentissage.beta.gouv.fr/", "redirects": true, "route": [ - "http://chauffage-urbain.beta.gouv.fr/", - "https://france-chaleur-urbaine.beta.gouv.fr" + "http://contrat.apprentissage.beta.gouv.fr/", + "https://contrat.apprentissage.beta.gouv.fr/" ], - "status_code": 301 + "status_code": 200 }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "no-referrer-when-downgrade", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", - "includeSubDomains": false, + "data": "max-age=31536000; includeSubdomains", + "includeSubDomains": true, "max-age": 31536000, "preload": false, "preloaded": false @@ -59974,24 +56373,24 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "jg21", - "url": "https://chauffage-urbain.beta.gouv.fr", - "alias": "", + "token": "8178", + "url": "https://contrat.apprentissage.beta.gouv.fr", + "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-18T10:17:56Z", + "up_since": "2024-11-25T13:57:08Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -60002,1673 +56401,1234 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:04:47Z", - "next_check_at": "2024-11-24T03:09:46Z", - "created_at": "2021-04-22T19:50:54Z", + "last_check_at": "2024-12-01T03:08:36Z", + "next_check_at": "2024-12-01T03:13:36Z", + "created_at": "2022-09-01T22:02:14Z", "mute_until": null, - "favicon_url": "https://france-chaleur-urbaine.beta.gouv.fr/favicons/favicon.ico", + "favicon_url": "https://contrat.apprentissage.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T02:39:53Z", - "expires_at": "2025-01-31T07:01:37Z", + "tested_at": "2024-12-01T03:08:36Z", + "expires_at": "2025-02-24T00:31:47Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 605, - "namelookup": 305, - "connection": 169, - "handshake": 175, - "response": 179, - "total": 1434 + "redirect": 0, + "namelookup": 278, + "connection": 190, + "handshake": 197, + "response": 198, + "total": 864 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "chauffage-urbain.beta.gouv.fr", + "host": "contrat.apprentissage.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "997", "open_ports": [ { "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "2024-11-02 07:01" - }, - { - "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "2025-01-31 07:01" - }, - { - "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "2" - }, + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "cvss": "10.0", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "10.0", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "CVE-2023-38408", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "CVE-2023-28531", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "PACKETSTORM:179290", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "8.1", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D1E049F1-393E-552D-80D1-675022B26911", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CVE-2024-6387", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "8.1", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6FD8F914-B663-533D-8866-23313FD37804", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "452ADB71-199C-561E-B949-FCDE6288B925", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1337DAY-ID-39674", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "8.1", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "11F020AC-F907-5606-8805-0516E06160EE", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "SSV:92579", + "is_exploit": "true", + "type": "seebug" + }, + { + "cvss": "7.5", + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "6.5", + "id": "CVE-2023-51385", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2023-48795", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.5", + "id": "CVE-2023-51384", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "0.0", + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "0.0", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "0.0", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", + "is_exploit": "true", + "type": "githubexploit" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "service", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "no" + "finding": "HTTP" }, { - "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "pre_128cipher", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "No 128 cipher limit bug" }, { - "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "SSLv2", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "not offered" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "SSLv3", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "severity": "OK", + "finding": "not offered" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS1", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "not offered" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS1_1", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" + "severity": "INFO", + "finding": "not offered" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS1_2", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "finding": "ok > 40 days" + "finding": "offered" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS1_3", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "severity": "OK", + "finding": "offered with final" }, { - "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "ALPN_HTTP2", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "h2" }, { - "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "ALPN", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "http/1.1" }, { - "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_NULL", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_aNULL", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "1732417527" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_EXPORT", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "LOW", + "severity": "OK", + "cwe": "CWE-327", "finding": "not offered" }, { - "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_LOW", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_3DES_IDEA", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_OBSOLETED", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_STRONG_NOFS", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "not offered" }, { - "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipherlist_STRONG_FS", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "offered" }, { - "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipher_order-tls1_2", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" + "finding": "NOT a cipher order configured" }, { - "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipher-tls1_2_xc02c", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipher-tls1_2_xc02b", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" }, { - "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "supportedciphers_TLSv1_2", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cipher_order", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { - "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "FS", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "FS_ciphers", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { - "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "FS_ECDHE_curves", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "prime256v1" }, { - "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS_extensions", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { - "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS_session_ticket", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "severity": "INFO", + "finding": "no -- no lifetime advertised" }, { - "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "SSL_sessionID_support", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "yes" }, { - "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "sessionresumption_ticket", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "not supported" }, { - "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "sessionresumption_ID", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" + "severity": "INFO", + "finding": "supported" }, { - "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "TLS_timestamp", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8F7AA55DE33FE4AB6C4A748115D0940866A02320ABF54ECB2A03D8236471954B" + "finding": "random" }, { - "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "certificate_compression", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "severity": "INFO", + "finding": "none" }, { - "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "clientAuth", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" + "severity": "INFO", + "finding": "none" }, { - "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_numbers", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "severity": "INFO", + "finding": "1" }, { - "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_signatureAlgorithm", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "ECDSA with SHA384" }, { - "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_keySize", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" + "finding": "EC 256 bits (curve P-256)" }, { - "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_keyUsage", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "Digital Signature" }, { - "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_extKeyUsage", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_serialNumber", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "040A3324E2F356D070DC5EA28F9894CE31DE" }, { - "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_serialNumberLen", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "18" }, { - "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_fingerprintSHA1", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "54EE07DCF6F9243B47567E5AE1CBCF8F03D55749" }, { - "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_fingerprintSHA256", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "88053EECAABDCD6AB1DEECD5DAC7C488426A9962153354241BD1B5E31C8C5D41" }, { - "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_commonName", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "contrat.apprentissage.beta.gouv.fr" }, { - "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_commonName_wo_SNI", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "contrat.apprentissage.beta.gouv.fr" }, { - "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_subjectAltName", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "contrat.apprentissage.beta.gouv.fr" }, { - "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_trust", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "Ok via SAN and CN (same w/o SNI)" }, { - "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_chain_of_trust", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "passed." }, { - "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_certificatePolicies_EV", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "no" }, { - "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_expirationStatus", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "No connection" + "severity": "OK", + "finding": "84 >= 30 days" }, { - "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_notBefore", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "2024-11-26 00:31" }, { - "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_notAfter", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "severity": "OK", + "finding": "2025-02-24 00:31" }, { - "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_extlifeSpan", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_eTLS", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "not present" }, { - "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_crlDistributionPoints", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "--" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "id": "cert_ocspURL", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "2024-11-02 07:01" - }, - { - "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "2025-01-31 07:01" - }, - { - "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://e5.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "E5 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "E5 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "1732417576" + "finding": "1733022694" }, { - "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "id": "HSTS_time", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "id": "X-Frame-Options", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "OK", + "finding": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;" + }, + { + "id": "Referrer-Policy", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "INFO", + "finding": "no-referrer-when-downgrade" + }, + { + "id": "Cache-Control", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -61676,7 +57636,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -61685,7 +57645,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -61694,16 +57654,16 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -61712,7 +57672,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -61720,7 +57680,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -61729,7 +57689,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -61738,16 +57698,16 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -61756,14 +57716,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -61772,7 +57732,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -61781,7 +57741,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -61790,16 +57750,16 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8F7AA55DE33FE4AB6C4A748115D0940866A02320ABF54ECB2A03D8236471954B" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -61808,16 +57768,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -61826,7 +57786,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -61835,7 +57795,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -61844,7 +57804,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -61853,399 +57813,1320 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "96" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "HTTP" + "finding": "A+" }, { - "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "id": "scanTime", + "ip": "contrat.apprentissage.beta.gouv.fr/51.77.159.162", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "not offered" + "finding": "79" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; frame-src 'self' https://plausible.io; img-src 'self' https://www.notion.so data: ; object-src 'none'; script-src 'self' https://plausible.io 'unsafe-inline' ; script-src-attr 'none'; style-src 'self' https: https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://geo.api.gouv.fr/ https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 03:10:33 GMT", + "etag": "\"1oc4rrhu578ou\"", + "referrer-policy": "no-referrer-when-downgrade", + "strict-transport-security": "max-age=31536000; includeSubdomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-nextjs-cache": "HIT" }, - { - "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "not offered" + "endpoints": [ + { + "hostname": "contrat.apprentissage.beta.gouv.fr", + "ip": "51.77.159.162", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://contrat.apprentissage.beta.gouv.fr/": { + "status": 200 + } }, - { - "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "mui", + "name": "MUI", + "description": "MUI(formerly Material UI) is a simple and customisable component library to build faster, beautiful, and more accessible React applications.", + "confidence": 100, + "version": null, + "icon": "MUI.svg", + "website": "https://mui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.5.6", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://contrat.apprentissage.beta.gouv.fr/", + "finalUrl": "https://contrat.apprentissage.beta.gouv.fr/", + "fetchTime": "2024-12-01T03:10:09.500Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.85 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 3318, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1448, + "firstMeaningfulPaint": 1448, + "largestContentfulPaint": 4077, + "interactive": 3318, + "speedIndex": 2549, + "totalBlockingTime": 101, + "maxPotentialFID": 151, + "cumulativeLayoutShift": 0.00484130859375, + "cumulativeLayoutShiftMainFrame": 0.00484130859375, + "totalCumulativeLayoutShift": 0.00484130859375, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 410867405, + "observedNavigationStart": 0, + "observedNavigationStartTs": 410867405, + "observedFirstPaint": 1002, + "observedFirstPaintTs": 411869320, + "observedFirstContentfulPaint": 1002, + "observedFirstContentfulPaintTs": 411869320, + "observedFirstContentfulPaintAllFrames": 1002, + "observedFirstContentfulPaintAllFramesTs": 411869320, + "observedFirstMeaningfulPaint": 1002, + "observedFirstMeaningfulPaintTs": 411869320, + "observedLargestContentfulPaint": 1110, + "observedLargestContentfulPaintTs": 411977611, + "observedLargestContentfulPaintAllFrames": 1110, + "observedLargestContentfulPaintAllFramesTs": 411977611, + "observedTraceEnd": 3541, + "observedTraceEndTs": 414408475, + "observedLoad": 1099, + "observedLoadTs": 411966298, + "observedDomContentLoaded": 335, + "observedDomContentLoadedTs": 411202836, + "observedCumulativeLayoutShift": 0.00484130859375, + "observedCumulativeLayoutShiftMainFrame": 0.00484130859375, + "observedTotalCumulativeLayoutShift": 0.00484130859375, + "observedFirstVisualChange": 999, + "observedFirstVisualChangeTs": 411866405, + "observedLastVisualChange": 1616, + "observedLastVisualChangeTs": 412483405, + "observedSpeedIndex": 1015, + "observedSpeedIndexTs": 411882357 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 40, + "numScripts": 17, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 1060, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 100.964, + "throughput": 12976998.85203983, + "maxRtt": 101.45100000000001, + "maxServerLatency": 14.766999999999996, + "totalByteWeight": 539788, + "totalTaskTime": 241.61299999999778, + "mainDocumentTransferSize": 3744 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "dematapprentissage", + "type": "startup", + "attributes": { + "name": "Le contrat d'apprentissage dématérialisé pour les employeurs publics", + "pitch": "Faciliter le processus administratif du dépôt de contrat d'apprentissage pour les employeurs publics", + "stats_url": "https://contrat.apprentissage.beta.gouv.fr/stats", + "link": "https://celia.emploi.gouv.fr/", + "repository": "https://github.com/mission-apprentissage/cerfa", + "contact": "apprentissage@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Constat%0A%0AIl%20n%E2%80%99existe%20qu%E2%80%99une%20version%20papier%20du%20CERFA%20Contrat%20d%E2%80%99apprentissage%20que%20les%20employeurs%20publics%20des%20trois%20fonctions%20publiques%20%3A%20%0A-%20peinent%20%C3%A0%20remplir%20%3B%20%0A-%20doivent%20envoyer%20par%20courrier%20postal%20ou%20par%20courriel%20aux%20DREETS%20%3B%0A%0ALes%20services%20des%20DREETS%2C%20%C3%A0%20r%C3%A9ception%20du%20CERFA%2C%20doivent%20ressaisir%20tous%20les%20%C3%A9l%C3%A9ments%20dans%20leur%20application%2C%20voire%20les%20retourner%20en%20cas%20d%27erreurs%20ou%20d%27incompl%C3%A9tude.%0AEntre%20la%20prise%20en%20charge%20du%20dossier%20par%20un%20agent%20de%20la%20DREETS%20jusqu%E2%80%99au%20d%C3%A9p%C3%B4t%20effectif%20du%20CERFA%2C%20le%20suivi%20du%20dossier%20transmis%20n%E2%80%99est%20pas%20connu%20des%20employeurs.%0A%0ALes%20apprentis%20sont%20parfois%20%C3%A9loign%C3%A9s%20de%20leur%20lieu%20de%20recrutement%20et%20doivent%20revenir%20sur%20place%20pour%20signer%20leur%20contrat.%0A%0A%0A%23%23%20La%20solution%0A%0A-%20Un%20formulaire%20%C3%A0%20saisir%20en%20ligne%20%3A%20la%20compl%C3%A9tude%20est%20guid%C3%A9e%20%28bulles%20d%E2%80%99information%29%20et%20int%C3%A8gre%20des%20contr%C3%B4les%20r%C3%A8glementaire%20et%20de%20coh%C3%A9rence%20et%20des%20r%C3%A9f%C3%A9rentiels%20ad%C3%A9quats%20%28par%20exemple%2C%20code%20INSEE%2C%20code%20postaux%2C%20code%20RNCP%2C%20etc.%29%20%3B%0A-%20L%E2%80%99export%20automatique%20des%20donn%C3%A9es%20dans%20le%20SI%20AGECAP%20%28c%E2%80%99est-%C3%A0-dire%20le%20SI%20d%C3%A9ploy%C3%A9%20r%C3%A9cemment%20dans%20les%20DREETS%20pour%20la%20saisie%20et%20le%20d%C3%A9p%C3%B4t%20des%20contrats%29%2C%20pour%20instruction%20par%20les%20DREETS%20avant%20d%C3%A9p%C3%B4t%20du%20contrat%20%3B%0A-%20La%20mise%20en%20place%20d%E2%80%99une%20signature%20%C3%A9lectronique%20des%20parties%20prenantes%20%28CFA%2C%20employeur%2C%20apprenti%28e%29%29.%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20Limiter%20les%20erreurs%20%3A%20en%20automatisant%20des%20contr%C3%B4les%20de%20coh%C3%A9rence%20et%20des%20contr%C3%B4les%20r%C3%A9glementaires%20%3B%20%0A-%20All%C3%A9ger%20la%20charge%20de%20saisie%20pour%20l%E2%80%99employeur%20et%20l%E2%80%99organisme%20de%20formation%20%3A%20en%20compl%C3%A9tant%20automatiquement%20plusieurs%20champs%20gr%C3%A2ce%20%C3%A0%20une%20seule%20donn%C3%A9e%20saisie%20%3B%0A-%20Fluidifier%20le%20circuit%20li%C3%A9%20au%20d%C3%A9p%C3%B4t%20des%20contrats%20en%20permettant%20une%20saisie%20collaborative%20des%20%C3%A9l%C3%A9ments%20entre%20l%E2%80%99employeur%20public%20et%20l%E2%80%99organisme%20de%20formation%2C%20d%C3%A8s%20que%20l%E2%80%99apprenti%20est%20retenu%2C%20avec%20une%20compl%C3%A9tude%20du%20CERFA%20%3A%20%0A%20%201.%20au%20fur%20et%20%C3%A0%20mesure%20des%20informations%20%C3%A0%20r%C3%A9cup%C3%A9rer%2C%20de%20l%E2%80%99%C3%A9tablissement%20de%20la%20convention%20%0A%20%202.%20et%20d%E2%80%99%C3%A9ventuels%20autres%20documents%20compl%C3%A9mentaires%20%C3%A0%20joindre%20en%20fonction%20des%20cas%20particuliers%20%0A%20%203.%20totale%2C%20gr%C3%A2ce%20%C3%A0%20l%E2%80%99option%20de%20signature%20%C3%A9lectronique%20rendue%20possible%20pour%20les%20parties%0A-%20Suivre%20en%20temps%20r%C3%A9el%20l%E2%80%99examen%20du%20dossier%2C%20afin%20de%20d%C3%A9tecter%20les%20anomalies%20d%C3%A8s%20la%20saisie%20et%20de%20raccourcir%20les%20d%C3%A9lais%20de%20transmission%20du%20contrat%20%3B%0A-%20Gagner%20du%20temps%20pour%20chacun%20des%20agents%20gestionnaires%20des%20DREETS%2C%3A%20l%E2%80%99absence%20de%20ressaisie%20et%20la%20r%C3%A9duction%20des%20contr%C3%B4le%20et%20de%20l%27assistance%20leur%20permettant%20de%20r%C3%A9aliser%20des%20activit%C3%A9s%20%C3%A0%20plus%20forte%20valeur%20ajout%C3%A9e%20%3B%0A-%20Faciliter%20l%E2%80%99%C3%A9tude%20statistique%20autour%20des%20contrats%20d%E2%80%99apprentissage%20de%20la%20fonction%20publique%20en%20recueillant%20et%20en%20traitant%20les%20donn%C3%A9es%20de%20saisie.%0A%0A%0A%0A", + "events": [], + "phases": [ + { + "name": "transfer", + "start": "2022-02-01", + "end": "2022-06-30" + }, + { + "name": "success", + "start": "2022-07-31", + "end": "" + } + ], + "sponsors": [ + "mtei", + "mtfp" + ], + "thematiques": [], + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mission-apprentissage" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://contrat.apprentissage.beta.gouv.fr", + "size": 596.069, + "nodes": 117, + "requests": 39, + "grade": "A", + "score": 82, + "ges": 1.36, + "water": 2.04, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 03:07:10.756922", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-24T00:31:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.85, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://chauffage-urbain.beta.gouv.fr", + "category": "mtes", + "betaId": "chauffage-urbain", + "http": { + "url": "https://chauffage-urbain.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:07:59 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://*.hotjar.com;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-b4GFU36HxV/ajsLtGxYpBvVIlonNc0Dz5lk+ZTMKysY=' 'sha256-Ny4QAH1g1FWyqlgrnIVWh1mj+jM8c6SjgqJ2i6c2REU=' 'sha256-8r71P9EINuYzK2mdhvMfZG0nDrKZhY5rvxXNAgVD45g=' 'sha256-/To7QTI1yR8LpZjhrqYdP21zirnpAwwI4s7M8TwKxnI=' 'sha256-/CSSb6w0OrYpmMov6mf2agdZaX5CEjsuUL45DW0yKI4=' 'sha256-cLrFOA9eDIz+hTs9m3AUrlzvroRre9vJ4cvv1ygI/Bw=' 'sha256-cWPc/BJwUWRnFb5b17VxDNk72/ZwL1GOqTQ6dAU/P3E=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://*.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/ https://*.hotjar.com;script-src-attr 'none';style-src 'self' https: 'unsafe-inline' https://*.hotjar.com;upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://data.geopf.fr https://api.mapbox.com/ https://sentry.incubateur.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 03:07:57 GMT", + "ETag": "\"qxv8wjui1w1lfh\"", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Powered-By": "Next.js", + "X-Request-ID": "80e303f6-37ba-45fa-9ee7-17cbdcda45d7", + "X-XSS-Protection": "1; mode=block", + "strict-transport-security": "max-age=31536000" + }, + "scan_id": 57048588, + "score": 100, + "start_time": "Sun, 20 Oct 2024 03:07:55 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://*.google-analytics.com", + "'self'", + "https://google.com/", + "https://openmaptiles.data.gouv.fr", + "https://openmaptiles.geo.data.gouv.fr", + "https://data.geopf.fr", + "https://openmaptiles.github.io", + "https://*.googletagmanager.com", + "https://stats.beta.gouv.fr", + "https://*.hotjar.io", + "https://*.hotjar.com", + "https://stats.data.gouv.fr", + "https://*.analytics.google.com", + "https://px.ads.linkedin.com", + "wss://*.hotjar.com", + "https://api-adresse.data.gouv.fr/", + "https://cdn.linkedin.oribi.io", + "https://france-chaleur-urbaine.beta.gouv.fr/", + "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", + "https://sentry.incubateur.net", + "https://api.mapbox.com/" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "data:", + "https:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "frame-src": [ + "https://www.facebook.com/", + "https://www.youtube.com/", + "https://td.doubleclick.net" + ], + "img-src": [ + "data:", + "https:", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", + "'sha256-b4gfu36hxv/ajsltgxypbvvilonnc0dz5lk+ztmkysy='", + "'self'", + "'sha256-/cssb6w0orypmmov6mf2agdzax5cejsuul45dw0yki4='", + "'sha256-pah6kzhwrs47demjxb9x6pfcgghwaf4bz4nckf/bhiu='", + "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", + "'sha256-5nusiklxgjie3jiclfpyxyzshtqffzm0jthzyypijte='", + "'sha256-3i33qfpfa/plrn/3rrrc4vjbjmkyiuxwq+zfnhiewmo='", + "https://*.googletagmanager.com", + "https://stats.beta.gouv.fr", + "https://*.hotjar.com", + "https://stats.data.gouv.fr", + "https://static.axept.io", + "https://googleads.g.doubleclick.net", + "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", + "'sha256-cwpc/bjwuwrnfb5b17vxdnk72/zwl1goqtq6dau/p3e='", + "'sha256-/to7qti1yr8lpzjhrqydp21zirnpawwi4s7m8twkxni='", + "https://www.gstatic.com/", + "https://connect.facebook.net", + "'sha256-clrfoa9ediz+hts9m3aurlzvrorre9vj4cvv1ygi/bw='", + "'sha256-8r71p9einuyzk2mdhvmfzg0ndrkzhy5rvxxnagvd45g='", + "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", + "https://snap.licdn.com", + "https://www.googleadservices.com", + "https://www.googletagmanager.com", + "'sha256-ksltjybi6uoozfn80t6rova1rbbtp9x8qgpgwhmwbpa='", + "'sha256-ny4qah1g1fwyqlgrnivwh1mj+jm8c6sjgqj2i6c2reu='", + "https://api.mapbox.com/", + "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "'unsafe-inline'", + "https:", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ], + "worker-src": [ + "blob:", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://france-chaleur-urbaine.beta.gouv.fr", + "redirects": true, + "route": [ + "http://chauffage-urbain.beta.gouv.fr/", + "https://france-chaleur-urbaine.beta.gouv.fr" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "jg21", + "url": "https://chauffage-urbain.beta.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T15:50:25Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T03:15:32Z", + "next_check_at": "2024-12-01T03:20:31Z", + "created_at": "2021-04-22T19:50:54Z", + "mute_until": null, + "favicon_url": "https://france-chaleur-urbaine.beta.gouv.fr/favicons/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T03:00:37Z", + "expires_at": "2025-01-31T07:01:37Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 532, + "namelookup": 294, + "connection": 138, + "handshake": 144, + "response": 144, + "total": 1252 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "chauffage-urbain.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -62253,7 +59134,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -62261,7 +59142,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -62269,7 +59150,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -62277,7 +59158,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -62285,7 +59166,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -62293,441 +59174,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-11-02 07:01" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-01-31 07:01" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732417627" + "finding": "1733022764" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -62735,7 +59616,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -62744,7 +59625,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -62753,7 +59634,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -62762,7 +59643,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -62771,7 +59652,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -62779,7 +59660,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -62788,7 +59669,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -62797,7 +59678,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -62806,7 +59687,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -62815,14 +59696,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -62831,7 +59712,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -62840,7 +59721,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -62849,7 +59730,7 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -62858,7 +59739,7 @@ }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -62867,7 +59748,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -62876,7 +59757,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -62885,7 +59766,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -62894,7 +59775,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -62903,7 +59784,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -62912,399 +59793,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63312,7 +60193,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63320,7 +60201,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63328,7 +60209,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63336,7 +60217,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -63344,7 +60225,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -63352,441 +60233,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-11-02 07:01" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-01-31 07:01" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732417677" + "finding": "1733022814" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -63794,7 +60675,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -63803,7 +60684,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -63812,7 +60693,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -63821,7 +60702,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -63830,7 +60711,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -63838,7 +60719,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -63847,7 +60728,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -63856,7 +60737,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -63865,7 +60746,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -63874,14 +60755,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -63890,7 +60771,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -63899,7 +60780,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -63908,7 +60789,7 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -63917,7 +60798,7 @@ }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -63926,7 +60807,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -63935,7 +60816,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -63944,7 +60825,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -63953,7 +60834,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -63962,7 +60843,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -63971,1259 +60852,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "scanTime", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "id": "service", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "203" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "__Secure-next-auth.callback-url", - "value": "https%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr", - "domain": "france-chaleur-urbaine.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 80, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "__Host-next-auth.csrf-token", - "value": "804431751672ed729b6c0ed6ff74b34e9c8d3221208802609652ddc02f433b3d%7C0bfd11b4f7bca21a3449518c30eeda24cd31b81c1d076e6ff54e3b2b7cf23285", - "domain": "france-chaleur-urbaine.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 158, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://*.hotjar.com;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-b4GFU36HxV/ajsLtGxYpBvVIlonNc0Dz5lk+ZTMKysY=' 'sha256-Ny4QAH1g1FWyqlgrnIVWh1mj+jM8c6SjgqJ2i6c2REU=' 'sha256-8r71P9EINuYzK2mdhvMfZG0nDrKZhY5rvxXNAgVD45g=' 'sha256-/To7QTI1yR8LpZjhrqYdP21zirnpAwwI4s7M8TwKxnI=' 'sha256-/CSSb6w0OrYpmMov6mf2agdZaX5CEjsuUL45DW0yKI4=' 'sha256-cLrFOA9eDIz+hTs9m3AUrlzvroRre9vJ4cvv1ygI/Bw=' 'sha256-cWPc/BJwUWRnFb5b17VxDNk72/ZwL1GOqTQ6dAU/P3E=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://*.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/ https://*.hotjar.com;script-src-attr 'none';style-src 'self' https: 'unsafe-inline' https://*.hotjar.com;upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://data.geopf.fr https://api.mapbox.com/ https://sentry.incubateur.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 03:04:09 GMT", - "etag": "\"g5gaanyn571otp\"", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-powered-by": "Next.js", - "x-request-id": "db3e5384-a14b-4358-a5dc-81b88d4c64e3", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "chauffage-urbain.beta.gouv.fr", - "ip": "5.104.101.30", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://chauffage-urbain.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://chauffage-urbain.beta.gouv.fr/ (https://chauffage-urbain.beta.gouv.fr/)" - } + "finding": "HTTP" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://chauffage-urbain.beta.gouv.fr/", - "finalUrl": "https://france-chaleur-urbaine.beta.gouv.fr/", - "fetchTime": "2024-11-24T03:03:43.161Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://chauffage-urbain.beta.gouv.fr/) was redirected to https://france-chaleur-urbaine.beta.gouv.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.39 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.94 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 12267, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2566, - "firstMeaningfulPaint": 2566, - "largestContentfulPaint": 11220, - "interactive": 12267, - "speedIndex": 4917, - "totalBlockingTime": 867, - "maxPotentialFID": 313, - "cumulativeLayoutShift": 0.02458984375, - "cumulativeLayoutShiftMainFrame": 0.02458984375, - "totalCumulativeLayoutShift": 0.02458984375, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 340589029, - "observedNavigationStart": 0, - "observedNavigationStartTs": 340589029, - "observedFirstPaint": 1052, - "observedFirstPaintTs": 341641192, - "observedFirstContentfulPaint": 1052, - "observedFirstContentfulPaintTs": 341641192, - "observedFirstContentfulPaintAllFrames": 1052, - "observedFirstContentfulPaintAllFramesTs": 341641192, - "observedFirstMeaningfulPaint": 1052, - "observedFirstMeaningfulPaintTs": 341641192, - "observedLargestContentfulPaint": 1518, - "observedLargestContentfulPaintTs": 342107264, - "observedLargestContentfulPaintAllFrames": 1518, - "observedLargestContentfulPaintAllFramesTs": 342107264, - "observedTraceEnd": 4352, - "observedTraceEndTs": 344940615, - "observedLoad": 1946, - "observedLoadTs": 342535344, - "observedDomContentLoaded": 1307, - "observedDomContentLoadedTs": 341896194, - "observedCumulativeLayoutShift": 0.02458984375, - "observedCumulativeLayoutShiftMainFrame": 0.02458984375, - "observedTotalCumulativeLayoutShift": 0.02458984375, - "observedFirstVisualChange": 1063, - "observedFirstVisualChangeTs": 341652029, - "observedLastVisualChange": 1697, - "observedLastVisualChangeTs": 342286029, - "observedSpeedIndex": 1343, - "observedSpeedIndexTs": 341932322 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 91, - "numScripts": 33, - "numStylesheets": 3, - "numFonts": 4, - "numTasks": 2074, - "numTasksOver10ms": 13, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 83.55699999999999, - "throughput": 20432328.578028135, - "maxRtt": 89.368, - "maxServerLatency": 164.016, - "totalByteWeight": 1917012, - "totalTaskTime": 635.4849999999966, - "mainDocumentTransferSize": 17914 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "pre_128cipher", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/mentions-legales" + "id": "SSLv2", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "not offered" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 1, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "chauffage-urbain", - "type": "startup", - "attributes": { - "name": "France Chaleur Urbaine", - "pitch": "Accélérer le raccordement des bâtiments aux réseaux de chaleur", - "stats_url": "https://france-chaleur-urbaine.beta.gouv.fr//stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", - "link": "https://france-chaleur-urbaine.beta.gouv.fr/", - "repository": "https://github.com/betagouv/france-chaleur-urbaine", - "contact": "france-chaleur-urbaine@developpement-durable.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AAlors%20que%20les%20r%C3%A9seaux%20de%20chaleur%20constituent%20un%20mode%20de%20chauffage%20%C3%A9cologique%20et%20%C3%A9conomique%20particuli%C3%A8rement%20adapt%C3%A9%20au%20contexte%20actuel%2C%20ils%20demeurent%20trop%20peu%20connus%20en%20France%20et%20leur%20dynamique%20de%20d%C3%A9veloppement%20n%27est%20pas%20%C3%A0%20la%20hauteur%20des%20objectifs%20fix%C3%A9s%20par%20la%20loi.%0A%0A%23%23%20La%20solution%0A%0AFrance%20Chaleur%20Urbaine%20a%20pour%20objectif%20de%20faire%20conna%C3%AEtre%20les%20r%C3%A9seaux%20de%20chaleur%20au%20plus%20grand%20nombre%2C%20de%20faciliter%20les%20d%C3%A9marches%20de%20raccordement%20en%20assurant%20la%20mise%20en%20relation%20entre%20prospects%20et%20gestionnaires%20des%20r%C3%A9seaux%2C%20et%20de%20mettre%20des%20outils%20%C3%A0%20disposition%20des%20collectivit%C3%A9s%20pour%20les%20aider%20%C3%A0%20d%C3%A9ployer%20leurs%20r%C3%A9seaux.%0A%0AL%27un%20des%20freins%20au%20raccordement%20des%20b%C3%A2timents%20aux%20r%C3%A9seaux%20de%20chaleur%20est%20un%20certain%20manque%20de%20visibilit%C3%A9%20et%20de%20lisibilit%C3%A9%20de%20la%20fili%C3%A8re%2C%20chaque%20r%C3%A9seau%20ayant%20ses%20propres%20caract%C3%A9ristiques%20et%20son%20propre%20gestionnaire.%20France%20Chaleur%20Urbaine%20centralise%20les%20informations%20les%20plus%20utiles%20pour%20envisager%20un%20raccordement.%20De%20plus%2C%20toute%20personne%20qui%20le%20souhaite%20peut%20v%C3%A9rifier%20si%20un%20r%C3%A9seau%20de%20chaleur%20passe%20pr%C3%A8s%20de%20son%20adresse%20et%20d%C3%A9poser%20ses%20coordonn%C3%A9es%20pour%20%C3%AAtre%20mise%20en%20relation%20avec%20le%20gestionnaire%20du%20r%C3%A9seau%20le%20plus%20proche.%20Ce%20dernier%20pourra%20alors%20confirmer%20la%20faisabilit%C3%A9%20du%20raccordement%20et%20fournir%20une%20estimation%20tarifaire.%20Pour%20les%20acteurs%20en%20charge%20de%20la%20gestion%20d%27un%20parc%20de%20b%C3%A2timents%20%28bailleurs%20sociaux%2C%20bureaux%20d%27%C3%A9tude%2C%20groupes%20tertiaires%2C%20...%29%2C%20il%20peut%20%C3%AAtre%20fastidieux%20de%20tester%20une%20%C3%A0%20une%20la%20proximit%C3%A9%20des%20diff%C3%A9rentes%20adresses%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%2C%20ce%20qui%20peut%20constituer%20un%20frein%20suppl%C3%A9mentaire%20pour%20s%27engager%20dans%20cette%20d%C3%A9marche.%20Pour%20r%C3%A9pondre%20%C3%A0%20cette%20probl%C3%A9matique%2C%20France%20Chaleur%20Urbaine%20offre%20la%20possibilit%C3%A9%20d%27effectuer%20des%20tests%20en%20masse%2C%20en%20t%C3%A9l%C3%A9chargeant%20une%20liste%20d%27adresses.%20Enfin%2C%20toujours%20dans%20un%20objectif%20de%20facilitation%2C%20France%20Chaleur%20Urbaine%20met%20des%20outils%20%C3%A0%20disposition%20des%20collectivit%C3%A9s%20et%20exploitants%20pour%20les%20aider%20dans%20le%20d%C3%A9ploiement%20de%20leurs%20r%C3%A9seaux.%20Cela%20passe%20notamment%20par%20une%20cartographie%20interactive%20vers%20laquelle%20les%20collectivit%C3%A9s%20peuvent%20orienter%20leurs%20administr%C3%A9s%20pour%20faire%20conna%C3%AEtre%20leur%20r%C3%A9seau%20de%20chaleur.%20Cette%20cartographie%20rassemble%20%C3%A9galement%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%20%3A%20elle%20permet%20par%20exemple%20d%27identifier%20les%20b%C3%A2timents%20chauff%C3%A9s%20au%20gaz%20ou%20fioul%20collectif%20alors%20m%C3%AAme%20qu%27ils%20se%20situent%20%C3%A0%20proximit%C3%A9%20imm%C3%A9diate%20d%27un%20r%C3%A9seau.%0A%0Ahttps%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2F%0A%0A%23%23%20L%27impact%0A%0AAu%201er%20novembre%202023%2C%20le%20site%20enregistre%20159%20320%20visites%20et%2072%20631%20adresses%20test%C3%A9es%20%28hors%20test%20en%20masse%29.%20Plus%20de%202000%20demandes%20ont%20%C3%A9t%C3%A9%20d%C3%A9pos%C3%A9es%20sur%20le%20site%20%C3%A0%20cette%20date%20et%20environ%20500%20raccordements%20sont%20%C3%A0%20l%27%C3%A9tude.%20Cela%20repr%C3%A9sente%20environ%2028%20000%20tonnes%20de%20CO2%20qui%20seront%20%C3%A9vit%C3%A9es%20chaque%20ann%C3%A9e%20si%20ces%20raccordements%20aboutissent%20%28estimation%29.%0A%0AVia%20la%20fonctionnalit%C3%A9%20permettant%20un%20test%20d%27adresses%20en%20masse%20mise%20en%20place%20d%C3%A9but%20d%C3%A9cembre%202022%2C%20plus%20de%20376%20990%20adresses%20ont%20d%C3%A9j%C3%A0%20%C3%A9t%C3%A9%20test%C3%A9es%20au%201er%20novembre%202023%2C%20par%20des%20bailleurs%20sociaux%2C%20bureaux%20d%27%C3%A9tude%2C%20gestionnaires%20du%20b%C3%A2ti%20%C3%89tat...%0A%0AEnfin%2C%20des%20partenariats%20ont%20%C3%A9t%C3%A9%20%C3%A9tablis%20avec%20une%20centaine%20de%20collectivit%C3%A9s%2C%20et%20la%20cartographie%20compte%20aujourd%27hui%20plus%20de%20640%20r%C3%A9seaux%20sur%20les%20898%20recens%C3%A9s%20en%20France.%20L%27int%C3%A9gralit%C3%A9%20des%20trac%C3%A9s%20ont%20%C3%A9t%C3%A9%20mis%20en%20open%20data%20au%201er%20septembre%202023.%0A%0ALes%20objectifs%20%C3%A0%20juin%202024%20sont%20de%203%20000%20demandes%20et%2036%20000%20tonnes%20de%20CO2%20%C3%A9vit%C3%A9es%20par%20an%2C%20ainsi%20que%20des%20partenariats%20%C3%A9tablis%20avec%20180%20collectivit%C3%A9s.%0A%0Ahttps%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2Fstats%0A%0A%23%23%20En%20d%C3%A9tails%0A%0A%23%23%23%20Encore%20trop%20de%20chauffages%20collectifs%20aux%20%C3%A9nergies%20fossiles%0A%0A%2A%2AFace%20%C3%A0%20l%27urgence%20climatique%2C%20%C3%A0%20la%20flamb%C3%A9e%20du%20prix%20des%20%C3%A9nergies%20et%20aux%20tensions%20relatives%20%C3%A0%20l%27approvisionnement%20en%20%C3%A9nergies%20fossiles%2C%20les%20r%C3%A9seaux%20de%20chaleur%20constituent%20une%20solution%20de%20chauffage%20d%27avenir%20encore%20sous-exploit%C3%A9e.%2A%2A%0A%0AAliment%C3%A9s%20en%20moyenne%20%C3%A0%20plus%20de%2062%20%25%20par%20des%20%C3%A9nergies%20renouvelables%20et%20de%20r%C3%A9cup%C3%A9ration%20locales%2C%20les%20r%C3%A9seaux%20de%20chaleur%20%3A%0A%0A-%20%C3%A9mettent%20deux%20fois%20moins%20de%20gaz%20%C3%A0%20effet%20de%20serre%20qu%E2%80%99un%20chauffage%20gaz%20ou%20fioul%20%3B%0A-%20pr%C3%A9sentent%20des%20prix%20comp%C3%A9titifs%20et%20plus%20stables%20que%20ceux%20des%20autres%20%C3%A9nergies%20%3B%0A-%20offrent%20une%20s%C3%A9curit%C3%A9%20d%27approvisionnement%20avec%20l%27exploitation%20d%27%C3%A9nergies%20locales.%0A%0AMalgr%C3%A9%20ces%20atouts%2C%20les%20r%C3%A9seaux%20de%20chaleur%20demeurent%20m%C3%A9connus%20du%20grand%20public%2C%20et%20les%20d%C3%A9marches%20pour%20s%27y%20raccorder%20le%20sont%20encore%20moins.%20Par%20ailleurs%2C%20chaque%20r%C3%A9seau%20dispose%20de%20son%20propre%20gestionnaire%20et%20de%20ses%20propres%20tarifs%2C%20ce%20qui%20engendre%20un%20r%C3%A9el%20manque%20de%20lisibilit%C3%A9.%0A%0AAinsi%2C%20lorsque%20les%20chaudi%C3%A8res%20existantes%20arrivent%20en%20fin%20de%20vie%20ou%20que%20des%20travaux%20de%20r%C3%A9novation%20d%27immeubles%20sont%20pr%C3%A9vus%2C%20le%20raccordement%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%20n%27est%20souvent%20pas%20envisag%C3%A9%2C%20alors%20m%C3%AAme%20parfois%20que%20le%20r%C3%A9seau%20passe%20au%20pied%20de%20l%27immeuble.%0A%0A%23%23%23%20La%20solution%20France%20Chaleur%20Urbaine%0A%0AFrance%20Chaleur%20Urbaine%20vise%20%C3%A0%20faciliter%20et%20acc%C3%A9l%C3%A9rer%20les%20raccordements%20des%20b%C3%A2timents%20aux%20r%C3%A9seaux%20de%20chaleur.%0A%0A-%20%2A%2APour%20les%20copropri%C3%A9taires%2C%20et%20les%20propri%C3%A9taires%20ou%20gestionnaires%20de%20b%C3%A2timents%20tertiaires%2A%2A%2C%20France%20Chaleur%20Urbaine%20constitue%20une%20plateforme%20d%E2%80%99%2A%2Ainformations%20et%20de%20mise%20en%20relation%20directe%20avec%20le%20gestionnaire%20du%20r%C3%A9seau%20local%2A%2A%20%28par%20exemple%20pour%20solliciter%20un%20rendez-vous%20ou%20un%20devis%29%20%3B%0A-%20%2A%2APour%20les%20exploitants%20ou%20collectivit%C3%A9s%2A%2A%20qui%20souhaitent%20agir%20pour%20la%20transition%20%C3%A9nerg%C3%A9tique%2C%20France%20Chaleur%20Urbaine%20constitue%20une%20plateforme%20pour%20%2A%2Avaloriser%20leur%20r%C3%A9seau%20de%20chaleur%2A%2A%2C%20pour%20%2A%2Aacqu%C3%A9rir%20de%20nouveaux%20prospects%2A%2A%20et%20pour%20%2A%2Aacc%C3%A9der%20%C3%A0%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%2A%2A%20sur%20leur%20territoire%2C%20%C3%A0%20l%27%C3%A9chelle%20des%20b%C3%A2timents%2C%20via%20un%20outil%20cartographique.%0A%0ALe%20service%20est%20op%C3%A9rationnel%20en%20version%20beta%20sur%20https%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2F%0A%0A%23%23%23%20L%27historique%20du%20projet%0A%0AD%C3%A9but%202020%2C%20Brigitte%20Loubet%2C%20Conseill%C3%A8re%20sp%C3%A9ciale%20%C3%A0%20la%20Direction%20R%C3%A9gionale%20et%20Interd%C3%A9partementale%20de%20l%27Environnement%20et%20de%20l%27Energie%20d%27Ile-de-France%20%28DRIEE%29%2C%20est%20s%C3%A9lectionn%C3%A9e%20%C3%A0%20l%27appel%20%C3%A0%20intrapreneurs%20organis%C3%A9%20par%20la%20Fabrique%20Num%C3%A9rique%20du%20Minist%C3%A8re%20de%20l%27Ecologie.%0A%0ALa%20phase%20d%27investigation%20d%C3%A9montre%20par%20les%20%C3%A9tudes%20et%20entretiens%20l%27importance%20de%20l%27enjeu%20%C3%A9cologique%20du%20raccordement%20aux%20r%C3%A9seaux%20de%20chaleur%20et%20les%20freins%20au%20raccordement%20des%20copropri%C3%A9t%C3%A9s.%20Un%20premier%20prototype%2C%20initialement%20appel%C3%A9%20%22%40ChauffageUrbain%22%2C%20r%C3%A9alis%C3%A9%20d%C3%A9but%202021%20avec%20des%20outils%20low-code%2C%20permet%20de%20valider%20le%20concept%20aupr%C3%A8s%20de%20premiers%20prospects%20en%20Ile-de-France.%0A%0ACe%20prototype%20permet%20de%20convaincre%20un%20consortium%20de%20partenaires%20%28DGEC%2C%20ADEME%2C%20FNCCR%29%20pour%20contribuer%20au%20d%C3%A9veloppement%20du%20produit.%20Le%20produit%20remporte%20le%20concours%20Fast%20de%20la%20DINUM%20en%20mars%202021%20en%20vue%20d%27acc%C3%A9l%C3%A9rer%20son%20d%C3%A9ploiement.%20Le%20service%20change%20alors%20de%20nom%20en%20%22France%20Chaleur%20Urbaine%22%20pour%20traduire%20la%20dimension%20nationale%20de%20la%20vision.%0A%0ASuite%20au%20d%C3%A9part%20%C3%A0%20la%20retraite%20de%20Brigitte%20Loubet%20mi-2021%2C%20le%20r%C3%B4le%20d%27intrapreneur%20est%20repris%20par%20Florence%20L%C3%A9vy%20%28service%20Energie%20et%20b%C3%A2timent%2C%20DRIEAT%20-%20ex%20DRIEE%29.%0A%0AUne%20nouvelle%20version%20du%20site%20est%20mise%20en%20ligne%20fin%20juillet%202021.%0A%0AMi-2022%2C%20France%20Chaleur%20Urbaine%20est%20laur%C3%A9at%20de%20France%20Relance%20au%20titre%20du%20guichet%20ITN2%20%22transformation%20num%C3%A9rique%20des%20%C3%A9cosyst%C3%A8mes%22%20port%C3%A9%20par%20la%20DINUM.%20Le%20service%20obtient%20%C3%A9galement%20un%20soutien%20financier%20renouvel%C3%A9%20de%20la%20DGEC%2C%20l%27ADEME%20et%20la%20DRIEAT.%0A%0ACes%20nouveaux%20moyens%20permettent%20d%27%C3%A9largir%20le%20service%2C%20qui%20ne%20se%20limite%20plus%20aux%20copropri%C3%A9t%C3%A9s%20mais%20cible%20d%C3%A9sormais%20aussi%20le%20secteur%20tertiaire.%20Un%20volet%20%C3%A0%20destination%20des%20collectivit%C3%A9s%20et%20exploitants%20est%20%C3%A9galement%20d%C3%A9velopp%C3%A9%2C%20pour%20les%20accompagner%20dans%20le%20d%C3%A9ploiement%20de%20leurs%20r%C3%A9seaux.%0A%0AMi-2023%2C%20France%20Chaleur%20Urbaine%20est%20laur%C3%A9at%20du%20guichet%20%22Exploitation%20et%20valorisation%20des%20donn%C3%A9es%22%20de%20la%20DINUM%2C%20et%20voit%20%C3%A9galement%20le%20soutien%20financier%20de%20l%27ADEME%20et%20de%20la%20DGEC%20renouvel%C3%A9.%0A%0A%23%23%23%20Strat%C3%A9gie%0A%0ALe%20d%C3%A9ploiement%20national%20de%20France%20Chaleur%20Urbaine%20passe%20par%20%3A%0A%0A-%20un%20travail%20de%20%2A%2Apromotion%20des%20r%C3%A9seaux%20de%20chaleur%2A%2A%2C%20encore%20trop%20peu%20connus%20en%20France%2C%20qui%20passe%20notamment%20par%20des%20actions%20de%20communication%20%3B%0A-%20la%20%2A%2Aprospection%2A%2A%20de%20copropri%C3%A9taires%20et%20propri%C3%A9taires%2Fgestionnaires%20de%20b%C3%A2timents%20tertiaires%20potentiellement%20int%C3%A9ress%C3%A9s%20pour%20se%20raccorder%20%3B%0A-%20la%20mise%20en%20place%20de%20%2A%2Apartenariats%20avec%20des%20collectivit%C3%A9s%20et%20exploitants%2A%2A%2C%20utilisant%20le%20service%20et%20s%27en%20faisant%20le%20relais%20%3B%0A-%20une%20%2A%2Acartographie%20interactive%20%C3%A0%20l%27%C3%A9chelle%20nationale%2A%2A%20incluant%20les%20trac%C3%A9s%20des%20r%C3%A9seaux%20de%20chaleur%20mais%20aussi%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%2C%20qui%20s%27enrichit%20r%C3%A9guli%C3%A8rement%20pour%20r%C3%A9pondre%20aux%20besoins%20de%20ses%20utilisateurs%20%3B%0A-%20la%20mise%20en%20place%20r%C3%A9guli%C3%A8re%20de%20%2A%2Anouvelles%20fonctionnalit%C3%A9s%2A%2A%20pour%20r%C3%A9pondre%20aux%20attentes%20des%20utilisateurs%20%3B%0A-%20l%27organisation%20r%C3%A9guli%C3%A8re%20d%27un%20comit%C3%A9%20des%20partenaires%20r%C3%A9unissant%20les%20principaux%20acteurs%20de%20la%20fili%C3%A8re%2C%20ainsi%20que%20d%27ateliers%20ouverts%20aux%20diff%C3%A9rentes%20parties%20prenantes.%0A%0ALe%20raccordement%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%20n%C3%A9cessitant%20un%20temps%20relativement%20long%20%28plusieurs%20mois%29%2C%20nous%20estimons%20l%E2%80%99impact%20par%20le%20nombre%20de%20demandes%20de%20contact%20re%C3%A7ues%20et%20transf%C3%A9r%C3%A9es%20aux%20gestionnaires%20des%20r%C3%A9seaux%2C%20et%20par%20le%20nombre%20de%20collectivit%C3%A9s%20et%20exploitants%20partenaires%20du%20service.%20La%20quantit%C3%A9%20de%20CO2%20%C3%A9vit%C3%A9e%20par%20les%20raccordements%20%C3%A0%20l%27%C3%A9tude%20sera%20%C3%A9galement%20%C3%A9valu%C3%A9e.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 121000€ pour la promotion 14" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2020-03-01", - "end": "2020-06-15" - }, - { - "name": "construction", - "start": "2020-12-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-07-01", - "end": "" - } - ], - "sponsors": [ - "ademe", - "dgec", - "drieat" - ], - "thematiques": [ - "Logement", - "Écologie" - ], - "accessibility_status": "non conforme" + "id": "SSLv3", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "not offered" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://chauffage-urbain.beta.gouv.fr", - "size": 2490.375, - "nodes": 757, - "requests": 114, - "grade": "E", - "score": 35, - "ges": 2.3, - "water": 3.45, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:00:44.883942", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-31T07:01:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.39, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.94, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "E", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://competencevalidee.pole-emploi.fr", - "category": "pole-emploi", - "betaId": "competence.validee", - "tools": { - "nmap": false - }, - "http": { - "url": "https://competencevalidee.pole-emploi.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:16:15 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' http: https: data: blob: 'unsafe-inline'", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 03:16:14 GMT", - "ETag": "\"cnosxopo5a109i\"", - "Permissions-Policy": "geolocation=(), microphone=(), camera=(), interest-cohort=()", - "Referrer-Policy": "no-referrer-when-downgrade", - "Server": "nginx/1.25.3", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Powered-By": "Next.js", - "X-XSS-Protection": "1; mode=block", - "x-nextjs-cache": "HIT" + "id": "TLS1", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "not offered" }, - "scan_id": 57048929, - "score": 50, - "start_time": "Sun, 20 Oct 2024 03:16:12 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "default-src": [ - "blob:", - "'self'", - "'unsafe-inline'", - "https:", - "data:", - "http:" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": true, - "insecureSchemePassive": true, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": true - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://challengeincubateur.francetravail.fr/", - "redirects": true, - "route": [ - "http://competencevalidee.pole-emploi.fr/", - "https://challengeincubateur.francetravail.fr/" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer-when-downgrade", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-invalid-cert", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://plausible.beta.francetravail.fr/js/script.tagged-events.js": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "eeux", - "url": "https://competencevalidee.pole-emploi.fr", - "alias": null, - "last_status": 200, - "uptime": 99.983, - "down": false, - "down_since": null, - "up_since": "2024-11-23T03:13:22Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T03:25:07Z", - "next_check_at": "2024-11-24T03:26:06Z", - "created_at": "2024-01-15T13:56:21Z", - "mute_until": null, - "favicon_url": "https://competencevalidee.pole-emploi.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T03:24:10Z", - "expires_at": "2025-07-31T06:57:15Z", - "valid": false, - "error": "error code 62: hostname mismatch" + { + "id": "TLS1_1", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "not offered" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 7, - "connection": 118, - "handshake": 122, - "response": 129, - "total": 376 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "competencevalidee.pole-emploi.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", - "vulnerabilities": [ - { - "cvss": "9.8", - "id": "CVE-2023-38408", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "7.8", - "id": "CVE-2020-15778", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "7.5", - "id": "SSV:92579", - "is_exploit": "true", - "type": "seebug" - }, - { - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "is_exploit": "true", - "type": "packetstorm" - }, - { - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "7.5", - "id": "CVE-2020-12062", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "is_exploit": "true", - "type": "zdt" - }, - { - "cvss": "7.1", - "id": "CVE-2021-28041", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "7.0", - "id": "CVE-2021-41617", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "6.8", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "6.8", - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "cvss": "6.5", - "id": "CVE-2023-51385", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "5.9", - "id": "CVE-2023-48795", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "5.9", - "id": "CVE-2020-14145", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "5.3", - "id": "CVE-2016-20012", - "is_exploit": "false", - "type": "cve" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "is_exploit": "true", - "type": "packetstorm" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.25.3", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.25.3", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "offered" + { + "id": "TLS1_2", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "offered" }, { "id": "TLS1_3", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -65231,7 +61252,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -65239,7 +61260,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -65247,7 +61268,7 @@ }, { "id": "cipherlist_LOW", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -65255,7 +61276,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -65263,729 +61284,449 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc028", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc028 ECDHE-RSA-AES256-SHA384 ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384" - }, - { - "id": "cipher-tls1_2_xc014", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc014 ECDHE-RSA-AES256-SHA ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x6b", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x6b DHE-RSA-AES256-SHA256 DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x39", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x39 DHE-RSA-AES256-SHA DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA" - }, - { - "id": "cipher-tls1_2_xc077", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc077 ECDHE-RSA-CAMELLIA256-SHA384 ECDH 521 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384" - }, - { - "id": "cipher-tls1_2_xc4", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc4 DHE-RSA-CAMELLIA256-SHA256 DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x88", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x88 DHE-RSA-CAMELLIA256-SHA DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA" - }, - { - "id": "cipher-tls1_2_x9d", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9d AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x3d", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x3d AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x35", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x35 AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA" - }, - { - "id": "cipher-tls1_2_xc0", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc0 CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x84", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x84 CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_xc027", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc027 ECDHE-RSA-AES128-SHA256 ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_xc013", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc013 ECDHE-RSA-AES128-SHA ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x67", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x67 DHE-RSA-AES128-SHA256 DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x33", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x33 DHE-RSA-AES128-SHA DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA" - }, - { - "id": "cipher-tls1_2_xc076", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc076 ECDHE-RSA-CAMELLIA128-SHA256 ECDH 521 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_xbe", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xbe DHE-RSA-CAMELLIA128-SHA256 DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x45", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x45 DHE-RSA-CAMELLIA128-SHA DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA" - }, - { - "id": "cipher-tls1_2_x9c", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9c AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x3c", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x3c AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x2f", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x2f AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA" - }, - { - "id": "cipher-tls1_2_xba", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xba CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256" - }, - { - "id": "cipher-tls1_2_x41", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x41 CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "id": "cipherorder_TLSv1_2", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA256-SHA384 DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA AES256-GCM-SHA384 AES256-SHA256 AES256-SHA CAMELLIA256-SHA256 CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA ECDHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA AES128-GCM-SHA256 AES128-SHA256 AES128-SHA CAMELLIA128-SHA256 CAMELLIA128-SHA" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "valid for 86400 seconds only (= 60 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-07-31 06:57" + "finding": "2024-11-02 07:01" }, { "id": "cert_notAfter", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-07-31 06:57" + "finding": "2025-01-31 07:01" }, { "id": "cert_extlifeSpan", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://crl.entrust.net/level1m.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://ocsp.entrust.net" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2014-12-15 15:25" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2030-10-15 15:55" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" - }, - { - "id": "intermediate_cert <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "2009-07-07 17:25" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "2030-12-07 17:55" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732418654" + "finding": "1733022864" }, { "id": "HSTS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "nginx/1.25.3" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "default-src 'self' http: https: data: blob: 'unsafe-inline'" - }, - { - "id": "Permissions-Policy", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "OK", - "finding": "geolocation=(), microphone=(), camera=(), interest-cohort=()" - }, - { - "id": "X-XSS-Protection", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, - { - "id": "Referrer-Policy", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no-referrer-when-downgrade" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "id": "security_headers", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "s-maxage=31536000, stale-while-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -65993,7 +61734,7 @@ }, { "id": "heartbleed", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -66002,7 +61743,7 @@ }, { "id": "CCS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -66011,7 +61752,7 @@ }, { "id": "ticketbleed", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -66020,16 +61761,16 @@ }, { "id": "ROBOT", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -66037,7 +61778,7 @@ }, { "id": "secure_client_renego", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -66046,7 +61787,7 @@ }, { "id": "CRIME_TLS", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -66055,16 +61796,16 @@ }, { "id": "BREACH", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -66073,14 +61814,14 @@ }, { "id": "fallback_SCSV", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -66089,7 +61830,7 @@ }, { "id": "FREAK", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -66098,7 +61839,7 @@ }, { "id": "DROWN", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -66107,16 +61848,16 @@ }, { "id": "DROWN_hint", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B40FDEA9CBA9073D060C222A2D0DED95D3CA1494ACE7D94497D83950ED8E1375" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8F7AA55DE33FE4AB6C4A748115D0940866A02320ABF54ECB2A03D8236471954B" }, { "id": "LOGJAM", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -66125,7 +61866,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -66134,7 +61875,7 @@ }, { "id": "BEAST", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -66143,16 +61884,16 @@ }, { "id": "LUCKY13", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -66161,7 +61902,7 @@ }, { "id": "RC4", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -66170,10451 +61911,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "24" }, { "id": "final_score", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "81" }, { "id": "overall_grade", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "CRITICAL", - "finding": "M" + "severity": "OK", + "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Grade capped to M. Domain name mismatch" + "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "grade_cap_reason_2", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "id": "service", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "HTTP" }, { - "id": "scanTime", - "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", - "port": "443", - "severity": "INFO", - "finding": "161" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://plausible.beta.francetravail.fr/js/script.tagged-events.js" - }, - { - "type": "youtube", - "url": "https://www.youtube.com/embed/siPykarRZMU", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-player.css", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/embed.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-embed-player.vflset/www-embed-player.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/base.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/id", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google analytics", - "url": "https://static.doubleclick.net/instream/ad_status.js", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/remote.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google", - "url": "https://www.google.com/js/th/qYKp54bxMdgPywYfc-yhqguRPCT31YTVhLYxMebccTE.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://i.ytimg.com/vi/siPykarRZMU/default.jpg", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://yt3.ggpht.com/ytc/AIdro_nTCRmCpUsgUhrwCn3NSgcQUa2ZB0rACom422HYHb0rOVNHIMzfwDs398hR5zZDBa50vg=s68-c-k-c0x00ffffff-no-rj", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/id?slf_rd=1", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/generate_204?ILaeKQ", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "unknown", - "url": "https://embed.api.video/vod/vi7WleoLU62ymRfByC5JDTyF?&&&id=vi7WleoLU62ymRfByC5JDTyF&ts=1732418549756" - }, - { - "type": "unknown", - "url": "https://embed.api.video/assets/plugins/core-player/player.e1257f5.js" - }, - { - "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "unknown", - "url": "https://embed.api.video/fonts/icomoon.ttf?e1257f5" - }, - { - "type": "unknown", - "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/player.json" - }, - { - "type": "unknown", - "url": "https://embed.api.video/fonts/icomoon.ttf?e1257f5" - }, - { - "type": "unknown", - "url": "https://vod.api.video/player/pt1xVi9lch5IqYxTYqGmbJc9/theme.css?r=eu-central-1" - }, - { - "type": "unknown", - "url": "https://vod.api.video/player/pt1xVi9lch5IqYxTYqGmbJc9/logo.png?r=eu-central-1" - }, - { - "type": "unknown", - "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/thumbnail.jpg?r=eu-central-1" - }, - { - "type": "unknown", - "url": "https://collector.api.video/vod" - }, - { - "type": "unknown", - "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/hls/manifest.m3u8?r=eu-central-1" - }, - { - "type": "unknown", - "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/mp4/source.mp4?r=eu-central-1" - }, - { - "type": "youtube", - "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - } - ], - "cookies": [], - "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self' http: https: data: blob: 'unsafe-inline'", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 03:22:28 GMT", - "etag": "\"lcdhnk1z3y10ew\"", - "permissions-policy": "geolocation=(), microphone=(), camera=(), interest-cohort=()", - "referrer-policy": "no-referrer-when-downgrade", - "server": "nginx/1.25.3", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "competencevalidee.pole-emploi.fr", - "ip": "51.68.90.157", - "geoip": { - "city": { - "geoname_id": 2982681, - "names": { - "de": "Roubaix", - "en": "Roubaix", - "fr": "Roubaix", - "ja": "ルーベ", - "ru": "Рубе", - "zh-CN": "鲁贝" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 50.6974, - "longitude": 3.178, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "59100" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 11071624, - "iso_code": "HDF", - "names": { - "de": "Hauts-de-France", - "en": "Hauts-de-France", - "es": "Alta Francia", - "fr": "Hauts-de-France", - "ja": "オー=ド=フランス地域圏", - "pt-BR": "Altos da França", - "ru": "О-де-Франс", - "zh-CN": "上法兰西大区" - } - }, - { - "geoname_id": 2990129, - "iso_code": "59", - "names": { - "de": "Nord", - "en": "North", - "es": "Norte", - "fr": "Nord", - "ja": "ノール県", - "pt-BR": "Nord", - "ru": "Нор", - "zh-CN": "北部省" - } - } - ] - } - }, - { - "hostname": "plausible.beta.francetravail.fr", - "ip": "213.32.73.220", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "www.youtube.com", - "ip": "142.250.191.78", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "142.250.191.35", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "googleads.g.doubleclick.net", - "ip": "142.251.46.194", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "static.doubleclick.net", - "ip": "142.251.46.166", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "jnn-pa.googleapis.com", - "ip": "142.250.189.234", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.google.com", - "ip": "142.250.189.228", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "i.ytimg.com", - "ip": "142.250.191.54", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "yt3.ggpht.com", - "ip": "142.251.214.129", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.gstatic.com", - "ip": "142.250.189.163", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "play.google.com", - "ip": "142.251.46.174", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "embed.api.video", - "ip": "151.101.201.91", - "geoip": { - "city": { - "geoname_id": 5380748, - "names": { - "de": "Palo Alto", - "en": "Palo Alto", - "es": "Palo Alto", - "fr": "Palo Alto", - "ja": "パロアルト", - "pt-BR": "Palo Alto", - "ru": "Пало Альто" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.4433, - "longitude": -122.141, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94302" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "vod.api.video", - "ip": "151.101.41.91", - "geoip": { - "city": { - "geoname_id": 5392171, - "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "95141" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "collector.api.video", - "ip": "79.133.126.141", - "geoip": { - "city": { - "geoname_id": 2759794, - "names": { - "de": "Amsterdam", - "en": "Amsterdam", - "es": "Ámsterdam", - "fr": "Amsterdam", - "ja": "Amusuterudamu", - "pt-BR": "Amesterdã", - "ru": "Амстердам", - "zh-CN": "阿姆斯特丹" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2750405, - "is_in_european_union": true, - "iso_code": "NL", - "names": { - "de": "Niederlande", - "en": "The Netherlands", - "es": "Holanda", - "fr": "Pays-Bas", - "ja": "オランダ王国", - "pt-BR": "Holanda", - "ru": "Нидерланды", - "zh-CN": "荷兰" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 52.3385, - "longitude": 4.9168, - "time_zone": "Europe/Amsterdam" - }, - "postal": { - "code": "1096" - }, - "registered_country": { - "geoname_id": 2960313, - "is_in_european_union": true, - "iso_code": "LU", - "names": { - "de": "Luxemburg", - "en": "Luxembourg", - "es": "Luxemburgo", - "fr": "Luxembourg", - "ja": "ルクセンブルク", - "pt-BR": "Luxemburgo", - "ru": "Люксембург", - "zh-CN": "卢森堡" - } - }, - "subdivisions": [ - { - "geoname_id": 2749879, - "iso_code": "NH", - "names": { - "de": "Nordholland", - "en": "North Holland", - "es": "Holanda Septentrional", - "fr": "Hollande-Septentrionale", - "ja": "北ホラント州", - "pt-BR": "Holanda do Norte", - "ru": "Северная Голландия", - "zh-CN": "北荷兰省" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://competencevalidee.pole-emploi.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "youtube", - "name": "YouTube", - "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", - "confidence": 100, - "version": null, - "icon": "YouTube.png", - "website": "https://www.youtube.com", - "cpe": null, - "categories": [ - { - "id": 14, - "slug": "video-players", - "name": "Video players" - } - ], - "rootPath": true - }, - { - "slug": "headless-ui", - "name": "Headless UI", - "description": "Headless UI is an unstyled component library for either React.js or Vue.js from the same people that created Tailwind CSS.", - "confidence": 100, - "version": null, - "icon": "Headless UI.svg", - "website": "https://headlessui.dev", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.25.3", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.14", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://competencevalidee.pole-emploi.fr/", - "finalUrl": "https://candidat.francetravail.fr/competences-validees/", - "fetchTime": "2024-07-21T02:47:48.489Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://competencevalidee.pole-emploi.fr/) was redirected to https://candidat.francetravail.fr/competences-validees/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.42 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.95 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.7 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 12236, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 4394, - "firstMeaningfulPaint": 7560, - "largestContentfulPaint": 7701, - "interactive": 12236, - "speedIndex": 8266, - "totalBlockingTime": 381, - "maxPotentialFID": 211, - "cumulativeLayoutShift": 0.034224243164062494, - "cumulativeLayoutShiftMainFrame": 0.034224243164062494, - "totalCumulativeLayoutShift": 0.034224243164062494, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 444545025, - "observedNavigationStart": 0, - "observedNavigationStartTs": 444545025, - "observedFirstPaint": 1470, - "observedFirstPaintTs": 446014969, - "observedFirstContentfulPaint": 1470, - "observedFirstContentfulPaintTs": 446014969, - "observedFirstContentfulPaintAllFrames": 1470, - "observedFirstContentfulPaintAllFramesTs": 446014969, - "observedFirstMeaningfulPaint": 2017, - "observedFirstMeaningfulPaintTs": 446561740, - "observedLargestContentfulPaint": 1755, - "observedLargestContentfulPaintTs": 446299648, - "observedLargestContentfulPaintAllFrames": 1755, - "observedLargestContentfulPaintAllFramesTs": 446299648, - "observedTraceEnd": 4759, - "observedTraceEndTs": 449304304, - "observedLoad": 2452, - "observedLoadTs": 446997063, - "observedDomContentLoaded": 1655, - "observedDomContentLoadedTs": 446199826, - "observedCumulativeLayoutShift": 0.034224243164062494, - "observedCumulativeLayoutShiftMainFrame": 0.034224243164062494, - "observedTotalCumulativeLayoutShift": 0.034224243164062494, - "observedFirstVisualChange": 1470, - "observedFirstVisualChangeTs": 446015025, - "observedLastVisualChange": 2470, - "observedLastVisualChangeTs": 447015025, - "observedSpeedIndex": 1773, - "observedSpeedIndexTs": 446318480 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 27, - "numScripts": 7, - "numStylesheets": 2, - "numFonts": 4, - "numTasks": 689, - "numTasksOver10ms": 11, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.5750000000000002, - "throughput": 6527975.25208938, - "maxRtt": 89.332, - "maxServerLatency": 9.923000000000002, - "totalByteWeight": 1482467, - "totalTaskTime": 459.86699999999894, - "mainDocumentTransferSize": 1108 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "competence.validee", - "type": "startup", - "attributes": { - "name": "Compétences Validées", - "pitch": "Optimiser l’intermédiation entre offre et demande d’emploi en fiabilisant les profils des personnes en demande d'emploi grâce à une validation de compétences", - "stats_url": "", - "link": "https://candidat.francetravail.fr/competences-validees/", - "contact": "competences-validees@francetravail.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AUn%20tiers%20des%20recruteurs%20travaillant%20avec%20P%C3%B4le%20emploi%20sont%20insatisfaits%20de%20la%20pertinence%20des%20candidatures%20qu%E2%80%99ils%20re%C3%A7oivent.%0A%0A%23%23%20Probl%C3%A8me%0A%0ALes%20conseillers%20P%C3%B4le%20emploi%20utilisent%20une%20base%20de%20donn%C3%A9es%20de%20profils%20qui%20n%E2%80%99est%20pas%20ou%20peu%20mise%20%C3%A0%20jour%2C%20et%20mal%20renseign%C3%A9e%20par%20les%20demandeurs%20d%E2%80%99emploi.%20La%20cons%C3%A9quence%20en%20est%20le%20manque%20de%20qualit%C3%A9%20des%20candidatures%20propos%C3%A9es%2C%20ou%20la%20difficult%C3%A9%20de%20rep%C3%A9rer%20des%20profils%20qui%20correspondent%20aux%20besoins%20de%20recrutements.%0A%0ALes%20conseillers%20%2F%20recruteurs%20peuvent%20passer%20%C3%A0%20c%C3%B4t%C3%A9%20de%C2%A0bons%C2%A0candidats%20car%20le%20profil%20de%20comp%C3%A9tences%20est%20uniquement%C2%A0d%C3%A9claratif%2C%C2%A0n%E2%80%99est%20pas%20suffisamment%20renseign%C3%A9%2C%20n%E2%80%99est%20pas%20%C3%A0%C2%A0jour.%0A%0A%23%23%20Solution%0A%0ALes%20chercheurs%20d%E2%80%99emploi%20demandent%20%C3%A0%20P%C3%B4le%20emploi%20de%20contacter%20leurs%20anciens%20employeurs%20%28encore%20en%20activit%C3%A9%29%20afin%20de%20leur%20soumettre%20une%20validation%20des%20comp%C3%A9tences%20de%20l%E2%80%99ancien%20collaborateur.%20L%E2%80%99ancien%20employeur%20peut%20valider%20une%20ou%20plusieurs%20comp%C3%A9tences%20%28savoir-faire%20et%2Fou%20savoir%E2%80%93%C3%AAtre%29%3C%21--StartFragment--%3E%0A%0ASite%20qui%20permet%20aux%20demandeurs%20d%27emploi%20de%20solliciter%2C%C2%A0et%C2%A0d%27obtenir%2C%20la%C2%A0validation%20de%20leurs%20comp%C3%A9tences%C2%A0aupr%C3%A8s%20de%20leurs%C2%A0anciens%C2%A0employeurs%20qui%20peut%20valider%20une%20ou%20plusieurs%20comp%C3%A9tences%20%28savoir-faire%20et%2Fou%20savoir%E2%80%93%C3%AAtre%29%20afin%C2%A0de%C2%A0compl%C3%A9ter%20et%20fiabiliser%C2%A0les%20profils%C2%A0et%C2%A0am%C3%A9liorer%20les%C2%A0propositions%20de%20candidats.%E2%80%8B%0A%0ALa%20mise%20en%20visibilit%C3%A9%20de%20ces%20comp%C3%A9tences%20valid%C3%A9es%20%28avec%20date%20et%20origine%20de%20la%20validation%29%20permet%20d%E2%80%99assurer%20la%20confiance%20des%20conseillers%20P%C3%B4le%20emploi%2C%20et%20des%20recruteurs.%0A%0AL%EF%BB%BFa%20proposition%20de%20valeur%20de%20la%20start%20up%20est%20donc%20d%27enrichir%20et%20fiabiliser%20le%20profil%20des%20demandeurs%20via%C2%A0la%C2%A0validation%20de%20leurs%20comp%C3%A9tences%2C%C2%A0afin%20de%C2%A0favoriser%20les%C2%A0mises%20en%C2%A0relation%20et%20le%20retour%20%C3%A0%20l%E2%80%99emploi%C2%A0en%20basant%20les%C2%A0actes%20d%E2%80%99interm%C3%A9diation%20sur%C2%A0des%20%C3%A9l%C3%A9ments%20factuels.%E2%80%8B%0A%0A%23%23%20Strat%C3%A9gie%0A%0AComp%C3%A9tence%20Valid%C3%A9e%20utilise%20les%20campagnes%20d%E2%80%99e-mailing%20lors%20de%20l%E2%80%99ouverture%20d%E2%80%99un%20nouveau%20territoire.%20Au%20bout%20de%20quelques%20semaines%20un%20lien%20de%20redirection%20est%20ouvert%20sur%20le%20profil%20de%20comp%C3%A9tences%20des%20demandeurs%20d%E2%80%99emploi%20du%20territoire.%0A%0AL%E2%80%99impact%20esp%C3%A9r%C3%A9%20est%20l%E2%80%99observation%20mesurable%20d%E2%80%99une%20hausse%20de%20visibilit%C3%A9%20et%20de%20contacts%20d%E2%80%99interm%C3%A9diation%20sur%20les%20profils%20b%C3%A9n%C3%A9ficiant%20de%20la%20validation%20de%20comp%C3%A9tences.%0A%0AA%20ce%20jour%20les%20profils%20valid%C3%A9s%20ont%20b%C3%A9n%C3%A9fici%C3%A9s%20de%20la%20part%20des%20conseillers%20de%20%2B%2017%20%25%20d%E2%80%99actes%20d%E2%80%99interm%C3%A9diation.%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2020-07-06", - "end": "2020-12-31" - }, - { - "name": "construction", - "start": "2021-02-27", - "end": "2021-10-28" - }, - { - "name": "acceleration", - "start": "2021-08-02", - "end": "2022-08-31" - }, - { - "name": "transfer", - "start": "2023-06-30", - "end": "" - }, - { - "name": "success", - "start": "2023-11-17", - "end": "" - } - ], - "sponsors": [ - "francetravail" - ], - "thematiques": [], - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "francetravail" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://competencevalidee.pole-emploi.fr", - "size": 1174.418, - "nodes": 281, - "requests": 42, - "grade": "B", - "score": 73, - "ges": 1.54, - "water": 2.31, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:11:20.263731", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.983, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-07-31T06:57:00.000Z", - "testsslGrade": "M", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 42, - "lighthouse_performance": 0.42, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.95, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.7, - "lighthouse_pwaGrade": "B", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://communaute.inclusion.beta.gouv.fr", - "category": "gip-inclusion", - "tags": [ - "itou" - ], - "betaId": "la.communaute.de.linclusion", - "http": { - "url": "https://communaute.inclusion.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:13:39 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Length": "8690", - "Content-Security-Policy": "frame-src 'self' https://tally.so https://www.youtube.com/embed/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; default-src 'self'; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-fcuxi8m90pJ2I31hP3scJw=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-fcuxi8m90pJ2I31hP3scJw=='", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 03:13:37 GMT", - "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", - "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=PRWhk8Jxa0aUNaU2Z9wSdVSgLslRoPSb; expires=Sun, 19 Oct 2025 03:13:37 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=brsvv5m0syvm6zk7l64l4scozzgwm68e; expires=Sun, 03 Nov 2024 03:13:37 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01JAKYN19556Y9M2YZ9JP0KN7Z", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", - "Vary": "Cookie, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY" - }, - "scan_id": 57048890, - "score": 105, - "start_time": "Sun, 20 Oct 2024 03:13:36 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "https://api-adresse.data.gouv.fr", - "*.sentry.io", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://fonts.gstatic.com/", - "data:", - "'self'" - ], - "frame-src": [ - "https://www.youtube.com/embed/", - "https://tally.so", - "'self'" - ], - "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "cellar-c2.services.clever-cloud.com", - "data:", - "'self'" - ], - "script-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://www.youtube.com/s/player/", - "https://browser.sentry-cdn.com", - "'nonce-fcuxi8m90pj2i31hp3scjw=='", - "https://js.sentry-cdn.com", - "https://tally.so", - "https://www.youtube.com/iframe_api", - "'self'", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" - ], - "script-src-elem": [ - "https://matomo.inclusion.beta.gouv.fr/", - "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://www.youtube.com/s/player/", - "https://browser.sentry-cdn.com", - "'nonce-fcuxi8m90pj2i31hp3scjw=='", - "https://js.sentry-cdn.com", - "https://tally.so", - "https://www.youtube.com/iframe_api", - "'self'", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" - ], - "style-src": [ - "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" - ], - "style-src-elem": [ - "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "csrftoken": { - "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1760843618, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - }, - "sessionid": { - "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1730603617, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://communaute.inclusion.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://communaute.inclusion.beta.gouv.fr/", - "https://communaute.inclusion.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-I7E8VVD/ismYTF4hNIPjVp/Zjvgyol6VFvRkX/vR+Vc4jQkC+hVqc2pM8ODewa9r" - }, - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-fbbOQedDUMZZ5KreZpsbe1LCZPVmfTnH7ois6mU1QK+m14rQ1l2bGBq41eYeM/fS" - }, - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js": { - "crossorigin": "anonymous", - "integrity": "sha256-o88AwQnZB+VDvE9tvIXrMQaPlFFSUTR+nldQm1LuPXQ=" - }, - "https://js.sentry-cdn.com/315adbc1472b4c5f875aa426db1fe8f2.min.js": { - "crossorigin": "anonymous", - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "y07l", - "url": "https://communaute.inclusion.beta.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-17T14:26:16Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T02:42:39Z", - "next_check_at": "2024-11-24T03:42:30Z", - "created_at": "2021-04-27T20:02:33Z", - "mute_until": null, - "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-23T22:43:59Z", - "expires_at": "2025-01-26T05:14:37Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 177, - "connection": 183, - "handshake": 186, - "response": 252, - "total": 798 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "communaute.inclusion.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "product": "Postfix smtpd", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "1732418507" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-kjyxlVtWQntA5hvkXd5IUg=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-kjyxlVtWQntA5hvkXd5IUg=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "1732418561" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-ZZKaFaSyzX7dFfv5a5GjQg=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-ZZKaFaSyzX7dFfv5a5GjQg=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFETCCA/mgAwIBAgISBMTrjwpEgTtDB8bkngbOizFGMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDI4MDUxNDM4WhcNMjUwMTI2MDUxNDM3WjAsMSowKAYDVQQDEyFjb21tdW5hdXRlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCAhRXOsPll/T6PADhtLgXsuLXTeUZklRwX8Vg8Wr9sJaaSdvFl8sDt4UVIHtoWARqITvdpsOS05Nt9j3piINutEm/Csz/MsANdXG5m4g6IM+nxp5ABd9+LuNH2rBlHZmax01pnKlcP3vVELnb247DzXnaY3vv73f2UCieVhwb6LA0vEv8XxrDxm1hNKLVIC2oxtpN9D/3EQYpPyOvBtoFSvtQNEPw/36JRCe8wlYSuJPCw1WPUgqrkpychaB6GuByRIjjH5XV0MIP4qwiGjSwW36/9LFRlUHRpLYpfG7Xtx65cUKOV1X2c/dEuPV6bNAPS/GiC6Yq3Y3tlJ962hs8/AgMBAAGjggIkMIICIDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFF1WnHt3sjQHOqaUQA4BXYVr/RPlMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhY29tbXVuYXV0ZS5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAouMK5EXvva2bfjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGS0cG/8wAABAMARjBEAiB7M3bxa3XogI585nsqe4D7unDsUPA8zBXiYHRLReCZVQIgVsv1Qp0xr28s9vS2SEN3P+nRsCuL6roxcABt0fKfLaAAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZLRwcA6AAAEAwBHMEUCIDiG9geYmGKQmzjnAyfsTwmq+tbbWKvZ0gwij9M/jbrpAiEA+fEF5ykP64KjW3HpSvsalqz4McvIYJNt3TJpfr5wVQ4wDQYJKoZIhvcNAQELBQADggEBAFeQfrS5sKVsA6olopKhFES7RMej5PJmeoiMX1GlE+iGP/GJkGC+jvV2OYt8G/F2OMVZBwbyO5VQc+dK7XAstwDKbZqnUUlHnhCqDdxes56UrDLOxbcZMb1eBvemye+7RRuq5rmQnpuMCVxFsMidycMt5hQq52RyASOZCEO2S16LshvGA0ldtJW8U+ogiFcyUAFos8CuHPivGZjPzD57V0Y1go2yOrMMsW3Fm8vD5PvBg1b/Mx2z4OUECqyJiLzJj+qufQu9P9FIQSUqK73qCgF/z7fa3d2rzXEUZEWUV5oRY+NtfsbH+lLoCgAvxZBW7aLj8qGECvJeF7+CKxO9vhY=\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "1732418616" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-eoUqazKNifs95GER2NyfSQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-eoUqazKNifs95GER2NyfSQ=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "1732418671" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-qHLH7uSwCZQ+Q64Xtqv9dQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-qHLH7uSwCZQ+Q64Xtqv9dQ=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "-1 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "1732418725" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-lmONUBfyA+F0RumjL/TFnQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-lmONUBfyA+F0RumjL/TFnQ=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "-1 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "1732418780" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-tHi0M0yUqMEJgzDJZqzefA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-tHi0M0yUqMEJgzDJZqzefA=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "id": "pre_128cipher", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "04C4EB8F0A44813B4307C6E49E06CE8B3146" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "9B8AB494571919A3892247FC2E76ED57E0CD40D2" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "63 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2024-10-28 05:14" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "2025-01-26 05:14" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "1732418835" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-Zgeu6Wz79TvjVUnwg4W+fQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-Zgeu6Wz79TvjVUnwg4W+fQ=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "id": "ALPN_HTTP2", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "offered with final" + "finding": "h2" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76622,7 +62311,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76630,7 +62319,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76638,7 +62327,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76646,7 +62335,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76654,7 +62343,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76662,511 +62351,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "id": "cipherorder_TLSv1_2", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-10-28 05:14" + "finding": "2024-11-02 07:01" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-26 05:14" + "finding": "2025-01-31 07:01" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732418889" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1733022915" }, { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "id": "HSTS", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-EvM/t5uXfqMEgpTrf+wx5g=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-EvM/t5uXfqMEgpTrf+wx5g=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "id": "security_headers", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -77174,7 +62793,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -77183,7 +62802,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -77192,16 +62811,16 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -77210,7 +62829,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -77218,16 +62837,16 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -77236,16 +62855,16 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -77254,14 +62873,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -77270,7 +62889,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -77279,7 +62898,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -77288,16 +62907,16 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8F7AA55DE33FE4AB6C4A748115D0940866A02320ABF54ECB2A03D8236471954B" }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -77306,16 +62925,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -77324,7 +62943,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -77333,7 +62952,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -77342,7 +62961,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -77351,385 +62970,1259 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "205" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr", + "domain": "france-chaleur-urbaine.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 80, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__Host-next-auth.csrf-token", + "value": "5a09d5e931fe54b51a6752cfffbd466d21c669f81c489de661fee8be52b91fae%7Cddf55592f3b80b04d23ad636cc292055e815332e97ae2d2722da491f227a4d45", + "domain": "france-chaleur-urbaine.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://*.hotjar.com;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-b4GFU36HxV/ajsLtGxYpBvVIlonNc0Dz5lk+ZTMKysY=' 'sha256-Ny4QAH1g1FWyqlgrnIVWh1mj+jM8c6SjgqJ2i6c2REU=' 'sha256-8r71P9EINuYzK2mdhvMfZG0nDrKZhY5rvxXNAgVD45g=' 'sha256-/To7QTI1yR8LpZjhrqYdP21zirnpAwwI4s7M8TwKxnI=' 'sha256-/CSSb6w0OrYpmMov6mf2agdZaX5CEjsuUL45DW0yKI4=' 'sha256-cLrFOA9eDIz+hTs9m3AUrlzvroRre9vJ4cvv1ygI/Bw=' 'sha256-cWPc/BJwUWRnFb5b17VxDNk72/ZwL1GOqTQ6dAU/P3E=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://*.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/ https://*.hotjar.com;script-src-attr 'none';style-src 'self' https: 'unsafe-inline' https://*.hotjar.com;upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://data.geopf.fr https://api.mapbox.com/ https://sentry.incubateur.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 03:11:27 GMT", + "etag": "\"17x2c9iil631msh\"", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-powered-by": "Next.js", + "x-request-id": "1f5e3b3e-64aa-407a-a4fb-fb043a535b87", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "chauffage-urbain.beta.gouv.fr", + "ip": "109.232.233.130", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://chauffage-urbain.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://chauffage-urbain.beta.gouv.fr/ (https://chauffage-urbain.beta.gouv.fr/)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://chauffage-urbain.beta.gouv.fr/", + "finalUrl": "https://france-chaleur-urbaine.beta.gouv.fr/", + "fetchTime": "2024-12-01T03:11:00.125Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://chauffage-urbain.beta.gouv.fr/) was redirected to https://france-chaleur-urbaine.beta.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.39 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.94 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12364, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2504, + "firstMeaningfulPaint": 2504, + "largestContentfulPaint": 11428, + "interactive": 12364, + "speedIndex": 3843, + "totalBlockingTime": 1025, + "maxPotentialFID": 378, + "cumulativeLayoutShift": 0.02458984375, + "cumulativeLayoutShiftMainFrame": 0.02458984375, + "totalCumulativeLayoutShift": 0.02458984375, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 425104513, + "observedNavigationStart": 0, + "observedNavigationStartTs": 425104513, + "observedFirstPaint": 1458, + "observedFirstPaintTs": 426562145, + "observedFirstContentfulPaint": 1458, + "observedFirstContentfulPaintTs": 426562145, + "observedFirstContentfulPaintAllFrames": 1458, + "observedFirstContentfulPaintAllFramesTs": 426562145, + "observedFirstMeaningfulPaint": 1458, + "observedFirstMeaningfulPaintTs": 426562145, + "observedLargestContentfulPaint": 1950, + "observedLargestContentfulPaintTs": 427054120, + "observedLargestContentfulPaintAllFrames": 1950, + "observedLargestContentfulPaintAllFramesTs": 427054120, + "observedTraceEnd": 4738, + "observedTraceEndTs": 429842312, + "observedLoad": 2334, + "observedLoadTs": 427438197, + "observedDomContentLoaded": 1730, + "observedDomContentLoadedTs": 426834960, + "observedCumulativeLayoutShift": 0.02458984375, + "observedCumulativeLayoutShiftMainFrame": 0.02458984375, + "observedTotalCumulativeLayoutShift": 0.02458984375, + "observedFirstVisualChange": 1461, + "observedFirstVisualChangeTs": 426565513, + "observedLastVisualChange": 2095, + "observedLastVisualChangeTs": 427199513, + "observedSpeedIndex": 1761, + "observedSpeedIndexTs": 426865758 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 91, + "numScripts": 36, + "numStylesheets": 3, + "numFonts": 4, + "numTasks": 2081, + "numTasksOver10ms": 14, + "numTasksOver25ms": 6, + "numTasksOver50ms": 3, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 82.45000000000005, + "throughput": 21059925.827389743, + "maxRtt": 86.90700000000001, + "maxServerLatency": 95.38599999999997, + "totalByteWeight": 1921629, + "totalTaskTime": 731.2009999999964, + "mainDocumentTransferSize": 17360 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 0, + "missingWords": [ + "directeur (ou) directrice", + "publication", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 1, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://chauffage-urbain.beta.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "chauffage-urbain", + "type": "startup", + "attributes": { + "name": "France Chaleur Urbaine", + "pitch": "Accélérer le raccordement des bâtiments aux réseaux de chaleur", + "stats_url": "https://france-chaleur-urbaine.beta.gouv.fr//stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", + "link": "https://france-chaleur-urbaine.beta.gouv.fr/", + "repository": "https://github.com/betagouv/france-chaleur-urbaine", + "contact": "france-chaleur-urbaine@developpement-durable.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AAlors%20que%20les%20r%C3%A9seaux%20de%20chaleur%20constituent%20un%20mode%20de%20chauffage%20%C3%A9cologique%20et%20%C3%A9conomique%20particuli%C3%A8rement%20adapt%C3%A9%20au%20contexte%20actuel%2C%20ils%20demeurent%20trop%20peu%20connus%20en%20France%20et%20leur%20dynamique%20de%20d%C3%A9veloppement%20n%27est%20pas%20%C3%A0%20la%20hauteur%20des%20objectifs%20fix%C3%A9s%20par%20la%20loi.%0A%0A%23%23%20La%20solution%0A%0AFrance%20Chaleur%20Urbaine%20a%20pour%20objectif%20de%20faire%20conna%C3%AEtre%20les%20r%C3%A9seaux%20de%20chaleur%20au%20plus%20grand%20nombre%2C%20de%20faciliter%20les%20d%C3%A9marches%20de%20raccordement%20en%20assurant%20la%20mise%20en%20relation%20entre%20prospects%20et%20gestionnaires%20des%20r%C3%A9seaux%2C%20et%20de%20mettre%20des%20outils%20%C3%A0%20disposition%20des%20collectivit%C3%A9s%20pour%20les%20aider%20%C3%A0%20d%C3%A9ployer%20leurs%20r%C3%A9seaux.%0A%0AL%27un%20des%20freins%20au%20raccordement%20des%20b%C3%A2timents%20aux%20r%C3%A9seaux%20de%20chaleur%20est%20un%20certain%20manque%20de%20visibilit%C3%A9%20et%20de%20lisibilit%C3%A9%20de%20la%20fili%C3%A8re%2C%20chaque%20r%C3%A9seau%20ayant%20ses%20propres%20caract%C3%A9ristiques%20et%20son%20propre%20gestionnaire.%20France%20Chaleur%20Urbaine%20centralise%20les%20informations%20les%20plus%20utiles%20pour%20envisager%20un%20raccordement.%20De%20plus%2C%20toute%20personne%20qui%20le%20souhaite%20peut%20v%C3%A9rifier%20si%20un%20r%C3%A9seau%20de%20chaleur%20passe%20pr%C3%A8s%20de%20son%20adresse%20et%20d%C3%A9poser%20ses%20coordonn%C3%A9es%20pour%20%C3%AAtre%20mise%20en%20relation%20avec%20le%20gestionnaire%20du%20r%C3%A9seau%20le%20plus%20proche.%20Ce%20dernier%20pourra%20alors%20confirmer%20la%20faisabilit%C3%A9%20du%20raccordement%20et%20fournir%20une%20estimation%20tarifaire.%20Pour%20les%20acteurs%20en%20charge%20de%20la%20gestion%20d%27un%20parc%20de%20b%C3%A2timents%20%28bailleurs%20sociaux%2C%20bureaux%20d%27%C3%A9tude%2C%20groupes%20tertiaires%2C%20...%29%2C%20il%20peut%20%C3%AAtre%20fastidieux%20de%20tester%20une%20%C3%A0%20une%20la%20proximit%C3%A9%20des%20diff%C3%A9rentes%20adresses%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%2C%20ce%20qui%20peut%20constituer%20un%20frein%20suppl%C3%A9mentaire%20pour%20s%27engager%20dans%20cette%20d%C3%A9marche.%20Pour%20r%C3%A9pondre%20%C3%A0%20cette%20probl%C3%A9matique%2C%20France%20Chaleur%20Urbaine%20offre%20la%20possibilit%C3%A9%20d%27effectuer%20des%20tests%20en%20masse%2C%20en%20t%C3%A9l%C3%A9chargeant%20une%20liste%20d%27adresses.%20Enfin%2C%20toujours%20dans%20un%20objectif%20de%20facilitation%2C%20France%20Chaleur%20Urbaine%20met%20des%20outils%20%C3%A0%20disposition%20des%20collectivit%C3%A9s%20et%20exploitants%20pour%20les%20aider%20dans%20le%20d%C3%A9ploiement%20de%20leurs%20r%C3%A9seaux.%20Cela%20passe%20notamment%20par%20une%20cartographie%20interactive%20vers%20laquelle%20les%20collectivit%C3%A9s%20peuvent%20orienter%20leurs%20administr%C3%A9s%20pour%20faire%20conna%C3%AEtre%20leur%20r%C3%A9seau%20de%20chaleur.%20Cette%20cartographie%20rassemble%20%C3%A9galement%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%20%3A%20elle%20permet%20par%20exemple%20d%27identifier%20les%20b%C3%A2timents%20chauff%C3%A9s%20au%20gaz%20ou%20fioul%20collectif%20alors%20m%C3%AAme%20qu%27ils%20se%20situent%20%C3%A0%20proximit%C3%A9%20imm%C3%A9diate%20d%27un%20r%C3%A9seau.%0A%0Ahttps%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2F%0A%0A%23%23%20L%27impact%0A%0AAu%201er%20novembre%202023%2C%20le%20site%20enregistre%20159%20320%20visites%20et%2072%20631%20adresses%20test%C3%A9es%20%28hors%20test%20en%20masse%29.%20Plus%20de%202000%20demandes%20ont%20%C3%A9t%C3%A9%20d%C3%A9pos%C3%A9es%20sur%20le%20site%20%C3%A0%20cette%20date%20et%20environ%20500%20raccordements%20sont%20%C3%A0%20l%27%C3%A9tude.%20Cela%20repr%C3%A9sente%20environ%2028%20000%20tonnes%20de%20CO2%20qui%20seront%20%C3%A9vit%C3%A9es%20chaque%20ann%C3%A9e%20si%20ces%20raccordements%20aboutissent%20%28estimation%29.%0A%0AVia%20la%20fonctionnalit%C3%A9%20permettant%20un%20test%20d%27adresses%20en%20masse%20mise%20en%20place%20d%C3%A9but%20d%C3%A9cembre%202022%2C%20plus%20de%20376%20990%20adresses%20ont%20d%C3%A9j%C3%A0%20%C3%A9t%C3%A9%20test%C3%A9es%20au%201er%20novembre%202023%2C%20par%20des%20bailleurs%20sociaux%2C%20bureaux%20d%27%C3%A9tude%2C%20gestionnaires%20du%20b%C3%A2ti%20%C3%89tat...%0A%0AEnfin%2C%20des%20partenariats%20ont%20%C3%A9t%C3%A9%20%C3%A9tablis%20avec%20une%20centaine%20de%20collectivit%C3%A9s%2C%20et%20la%20cartographie%20compte%20aujourd%27hui%20plus%20de%20640%20r%C3%A9seaux%20sur%20les%20898%20recens%C3%A9s%20en%20France.%20L%27int%C3%A9gralit%C3%A9%20des%20trac%C3%A9s%20ont%20%C3%A9t%C3%A9%20mis%20en%20open%20data%20au%201er%20septembre%202023.%0A%0ALes%20objectifs%20%C3%A0%20juin%202024%20sont%20de%203%20000%20demandes%20et%2036%20000%20tonnes%20de%20CO2%20%C3%A9vit%C3%A9es%20par%20an%2C%20ainsi%20que%20des%20partenariats%20%C3%A9tablis%20avec%20180%20collectivit%C3%A9s.%0A%0Ahttps%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2Fstats%0A%0A%23%23%20En%20d%C3%A9tails%0A%0A%23%23%23%20Encore%20trop%20de%20chauffages%20collectifs%20aux%20%C3%A9nergies%20fossiles%0A%0A%2A%2AFace%20%C3%A0%20l%27urgence%20climatique%2C%20%C3%A0%20la%20flamb%C3%A9e%20du%20prix%20des%20%C3%A9nergies%20et%20aux%20tensions%20relatives%20%C3%A0%20l%27approvisionnement%20en%20%C3%A9nergies%20fossiles%2C%20les%20r%C3%A9seaux%20de%20chaleur%20constituent%20une%20solution%20de%20chauffage%20d%27avenir%20encore%20sous-exploit%C3%A9e.%2A%2A%0A%0AAliment%C3%A9s%20en%20moyenne%20%C3%A0%20plus%20de%2062%20%25%20par%20des%20%C3%A9nergies%20renouvelables%20et%20de%20r%C3%A9cup%C3%A9ration%20locales%2C%20les%20r%C3%A9seaux%20de%20chaleur%20%3A%0A%0A-%20%C3%A9mettent%20deux%20fois%20moins%20de%20gaz%20%C3%A0%20effet%20de%20serre%20qu%E2%80%99un%20chauffage%20gaz%20ou%20fioul%20%3B%0A-%20pr%C3%A9sentent%20des%20prix%20comp%C3%A9titifs%20et%20plus%20stables%20que%20ceux%20des%20autres%20%C3%A9nergies%20%3B%0A-%20offrent%20une%20s%C3%A9curit%C3%A9%20d%27approvisionnement%20avec%20l%27exploitation%20d%27%C3%A9nergies%20locales.%0A%0AMalgr%C3%A9%20ces%20atouts%2C%20les%20r%C3%A9seaux%20de%20chaleur%20demeurent%20m%C3%A9connus%20du%20grand%20public%2C%20et%20les%20d%C3%A9marches%20pour%20s%27y%20raccorder%20le%20sont%20encore%20moins.%20Par%20ailleurs%2C%20chaque%20r%C3%A9seau%20dispose%20de%20son%20propre%20gestionnaire%20et%20de%20ses%20propres%20tarifs%2C%20ce%20qui%20engendre%20un%20r%C3%A9el%20manque%20de%20lisibilit%C3%A9.%0A%0AAinsi%2C%20lorsque%20les%20chaudi%C3%A8res%20existantes%20arrivent%20en%20fin%20de%20vie%20ou%20que%20des%20travaux%20de%20r%C3%A9novation%20d%27immeubles%20sont%20pr%C3%A9vus%2C%20le%20raccordement%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%20n%27est%20souvent%20pas%20envisag%C3%A9%2C%20alors%20m%C3%AAme%20parfois%20que%20le%20r%C3%A9seau%20passe%20au%20pied%20de%20l%27immeuble.%0A%0A%23%23%23%20La%20solution%20France%20Chaleur%20Urbaine%0A%0AFrance%20Chaleur%20Urbaine%20vise%20%C3%A0%20faciliter%20et%20acc%C3%A9l%C3%A9rer%20les%20raccordements%20des%20b%C3%A2timents%20aux%20r%C3%A9seaux%20de%20chaleur.%0A%0A-%20%2A%2APour%20les%20copropri%C3%A9taires%2C%20et%20les%20propri%C3%A9taires%20ou%20gestionnaires%20de%20b%C3%A2timents%20tertiaires%2A%2A%2C%20France%20Chaleur%20Urbaine%20constitue%20une%20plateforme%20d%E2%80%99%2A%2Ainformations%20et%20de%20mise%20en%20relation%20directe%20avec%20le%20gestionnaire%20du%20r%C3%A9seau%20local%2A%2A%20%28par%20exemple%20pour%20solliciter%20un%20rendez-vous%20ou%20un%20devis%29%20%3B%0A-%20%2A%2APour%20les%20exploitants%20ou%20collectivit%C3%A9s%2A%2A%20qui%20souhaitent%20agir%20pour%20la%20transition%20%C3%A9nerg%C3%A9tique%2C%20France%20Chaleur%20Urbaine%20constitue%20une%20plateforme%20pour%20%2A%2Avaloriser%20leur%20r%C3%A9seau%20de%20chaleur%2A%2A%2C%20pour%20%2A%2Aacqu%C3%A9rir%20de%20nouveaux%20prospects%2A%2A%20et%20pour%20%2A%2Aacc%C3%A9der%20%C3%A0%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%2A%2A%20sur%20leur%20territoire%2C%20%C3%A0%20l%27%C3%A9chelle%20des%20b%C3%A2timents%2C%20via%20un%20outil%20cartographique.%0A%0ALe%20service%20est%20op%C3%A9rationnel%20en%20version%20beta%20sur%20https%3A%2F%2Ffrance-chaleur-urbaine.beta.gouv.fr%2F%0A%0A%23%23%23%20L%27historique%20du%20projet%0A%0AD%C3%A9but%202020%2C%20Brigitte%20Loubet%2C%20Conseill%C3%A8re%20sp%C3%A9ciale%20%C3%A0%20la%20Direction%20R%C3%A9gionale%20et%20Interd%C3%A9partementale%20de%20l%27Environnement%20et%20de%20l%27Energie%20d%27Ile-de-France%20%28DRIEE%29%2C%20est%20s%C3%A9lectionn%C3%A9e%20%C3%A0%20l%27appel%20%C3%A0%20intrapreneurs%20organis%C3%A9%20par%20la%20Fabrique%20Num%C3%A9rique%20du%20Minist%C3%A8re%20de%20l%27Ecologie.%0A%0ALa%20phase%20d%27investigation%20d%C3%A9montre%20par%20les%20%C3%A9tudes%20et%20entretiens%20l%27importance%20de%20l%27enjeu%20%C3%A9cologique%20du%20raccordement%20aux%20r%C3%A9seaux%20de%20chaleur%20et%20les%20freins%20au%20raccordement%20des%20copropri%C3%A9t%C3%A9s.%20Un%20premier%20prototype%2C%20initialement%20appel%C3%A9%20%22%40ChauffageUrbain%22%2C%20r%C3%A9alis%C3%A9%20d%C3%A9but%202021%20avec%20des%20outils%20low-code%2C%20permet%20de%20valider%20le%20concept%20aupr%C3%A8s%20de%20premiers%20prospects%20en%20Ile-de-France.%0A%0ACe%20prototype%20permet%20de%20convaincre%20un%20consortium%20de%20partenaires%20%28DGEC%2C%20ADEME%2C%20FNCCR%29%20pour%20contribuer%20au%20d%C3%A9veloppement%20du%20produit.%20Le%20produit%20remporte%20le%20concours%20Fast%20de%20la%20DINUM%20en%20mars%202021%20en%20vue%20d%27acc%C3%A9l%C3%A9rer%20son%20d%C3%A9ploiement.%20Le%20service%20change%20alors%20de%20nom%20en%20%22France%20Chaleur%20Urbaine%22%20pour%20traduire%20la%20dimension%20nationale%20de%20la%20vision.%0A%0ASuite%20au%20d%C3%A9part%20%C3%A0%20la%20retraite%20de%20Brigitte%20Loubet%20mi-2021%2C%20le%20r%C3%B4le%20d%27intrapreneur%20est%20repris%20par%20Florence%20L%C3%A9vy%20%28service%20Energie%20et%20b%C3%A2timent%2C%20DRIEAT%20-%20ex%20DRIEE%29.%0A%0AUne%20nouvelle%20version%20du%20site%20est%20mise%20en%20ligne%20fin%20juillet%202021.%0A%0AMi-2022%2C%20France%20Chaleur%20Urbaine%20est%20laur%C3%A9at%20de%20France%20Relance%20au%20titre%20du%20guichet%20ITN2%20%22transformation%20num%C3%A9rique%20des%20%C3%A9cosyst%C3%A8mes%22%20port%C3%A9%20par%20la%20DINUM.%20Le%20service%20obtient%20%C3%A9galement%20un%20soutien%20financier%20renouvel%C3%A9%20de%20la%20DGEC%2C%20l%27ADEME%20et%20la%20DRIEAT.%0A%0ACes%20nouveaux%20moyens%20permettent%20d%27%C3%A9largir%20le%20service%2C%20qui%20ne%20se%20limite%20plus%20aux%20copropri%C3%A9t%C3%A9s%20mais%20cible%20d%C3%A9sormais%20aussi%20le%20secteur%20tertiaire.%20Un%20volet%20%C3%A0%20destination%20des%20collectivit%C3%A9s%20et%20exploitants%20est%20%C3%A9galement%20d%C3%A9velopp%C3%A9%2C%20pour%20les%20accompagner%20dans%20le%20d%C3%A9ploiement%20de%20leurs%20r%C3%A9seaux.%0A%0AMi-2023%2C%20France%20Chaleur%20Urbaine%20est%20laur%C3%A9at%20du%20guichet%20%22Exploitation%20et%20valorisation%20des%20donn%C3%A9es%22%20de%20la%20DINUM%2C%20et%20voit%20%C3%A9galement%20le%20soutien%20financier%20de%20l%27ADEME%20et%20de%20la%20DGEC%20renouvel%C3%A9.%0A%0A%23%23%23%20Strat%C3%A9gie%0A%0ALe%20d%C3%A9ploiement%20national%20de%20France%20Chaleur%20Urbaine%20passe%20par%20%3A%0A%0A-%20un%20travail%20de%20%2A%2Apromotion%20des%20r%C3%A9seaux%20de%20chaleur%2A%2A%2C%20encore%20trop%20peu%20connus%20en%20France%2C%20qui%20passe%20notamment%20par%20des%20actions%20de%20communication%20%3B%0A-%20la%20%2A%2Aprospection%2A%2A%20de%20copropri%C3%A9taires%20et%20propri%C3%A9taires%2Fgestionnaires%20de%20b%C3%A2timents%20tertiaires%20potentiellement%20int%C3%A9ress%C3%A9s%20pour%20se%20raccorder%20%3B%0A-%20la%20mise%20en%20place%20de%20%2A%2Apartenariats%20avec%20des%20collectivit%C3%A9s%20et%20exploitants%2A%2A%2C%20utilisant%20le%20service%20et%20s%27en%20faisant%20le%20relais%20%3B%0A-%20une%20%2A%2Acartographie%20interactive%20%C3%A0%20l%27%C3%A9chelle%20nationale%2A%2A%20incluant%20les%20trac%C3%A9s%20des%20r%C3%A9seaux%20de%20chaleur%20mais%20aussi%20des%20donn%C3%A9es%20sur%20les%20potentiels%20de%20raccordement%2C%20qui%20s%27enrichit%20r%C3%A9guli%C3%A8rement%20pour%20r%C3%A9pondre%20aux%20besoins%20de%20ses%20utilisateurs%20%3B%0A-%20la%20mise%20en%20place%20r%C3%A9guli%C3%A8re%20de%20%2A%2Anouvelles%20fonctionnalit%C3%A9s%2A%2A%20pour%20r%C3%A9pondre%20aux%20attentes%20des%20utilisateurs%20%3B%0A-%20l%27organisation%20r%C3%A9guli%C3%A8re%20d%27un%20comit%C3%A9%20des%20partenaires%20r%C3%A9unissant%20les%20principaux%20acteurs%20de%20la%20fili%C3%A8re%2C%20ainsi%20que%20d%27ateliers%20ouverts%20aux%20diff%C3%A9rentes%20parties%20prenantes.%0A%0ALe%20raccordement%20%C3%A0%20un%20r%C3%A9seau%20de%20chaleur%20n%C3%A9cessitant%20un%20temps%20relativement%20long%20%28plusieurs%20mois%29%2C%20nous%20estimons%20l%E2%80%99impact%20par%20le%20nombre%20de%20demandes%20de%20contact%20re%C3%A7ues%20et%20transf%C3%A9r%C3%A9es%20aux%20gestionnaires%20des%20r%C3%A9seaux%2C%20et%20par%20le%20nombre%20de%20collectivit%C3%A9s%20et%20exploitants%20partenaires%20du%20service.%20La%20quantit%C3%A9%20de%20CO2%20%C3%A9vit%C3%A9e%20par%20les%20raccordements%20%C3%A0%20l%27%C3%A9tude%20sera%20%C3%A9galement%20%C3%A9valu%C3%A9e.%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 121000€ pour la promotion 14" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2020-03-01", + "end": "2020-06-15" + }, + { + "name": "construction", + "start": "2020-12-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-07-01", + "end": "" + } + ], + "sponsors": [ + "ademe", + "dgec", + "drieat" + ], + "thematiques": [ + "Logement", + "Écologie" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://chauffage-urbain.beta.gouv.fr", + "size": 2562.153, + "nodes": 732, + "requests": 132, + "grade": "E", + "score": 34, + "ges": 2.32, + "water": 3.48, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 03:07:35.459929", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-31T07:01:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.39, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.94, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "E", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://competencevalidee.pole-emploi.fr", + "category": "pole-emploi", + "betaId": "competence.validee", + "tools": { + "nmap": false + }, + "http": { + "url": "https://competencevalidee.pole-emploi.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:16:15 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self' http: https: data: blob: 'unsafe-inline'", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 03:16:14 GMT", + "ETag": "\"cnosxopo5a109i\"", + "Permissions-Policy": "geolocation=(), microphone=(), camera=(), interest-cohort=()", + "Referrer-Policy": "no-referrer-when-downgrade", + "Server": "nginx/1.25.3", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Powered-By": "Next.js", + "X-XSS-Protection": "1; mode=block", + "x-nextjs-cache": "HIT" + }, + "scan_id": 57048929, + "score": 50, + "start_time": "Sun, 20 Oct 2024 03:16:12 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "default-src": [ + "blob:", + "'self'", + "'unsafe-inline'", + "https:", + "data:", + "http:" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": true, + "insecureSchemePassive": true, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://challengeincubateur.francetravail.fr/", + "redirects": true, + "route": [ + "http://competencevalidee.pole-emploi.fr/", + "https://challengeincubateur.francetravail.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer-when-downgrade", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://plausible.beta.francetravail.fr/js/script.tagged-events.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "eeux", + "url": "https://competencevalidee.pole-emploi.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T04:08:56Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T03:32:56Z", + "next_check_at": "2024-12-01T03:33:55Z", + "created_at": "2024-01-15T13:56:21Z", + "mute_until": null, + "favicon_url": "https://competencevalidee.pole-emploi.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T03:28:56Z", + "expires_at": "2025-07-31T06:57:15Z", + "valid": false, + "error": "error code 62: hostname mismatch" + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 12, + "connection": 129, + "handshake": 133, + "response": 140, + "total": 415 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "competencevalidee.pole-emploi.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ + { + "cvss": "9.8", + "id": "CVE-2023-38408", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.8", + "id": "CVE-2020-15778", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.5", + "id": "SSV:92579", + "is_exploit": "true", + "type": "seebug" + }, + { + "cvss": "7.5", + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "CVE-2020-12062", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.5", + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "7.1", + "id": "CVE-2021-28041", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.0", + "id": "CVE-2021-41617", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "6.5", + "id": "CVE-2023-51385", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2023-48795", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2020-14145", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.3", + "id": "CVE-2016-20012", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "0.0", + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "type": "packetstorm" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.25.3", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.25.3", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77737,7 +64230,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77745,7 +64238,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77753,7 +64246,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77761,7 +64254,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -77769,519 +64262,729 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc028", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc028 ECDHE-RSA-AES256-SHA384 ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384" + }, + { + "id": "cipher-tls1_2_xc014", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc014 ECDHE-RSA-AES256-SHA ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_x9f", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_x6b", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x6b DHE-RSA-AES256-SHA256 DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x39", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x39 DHE-RSA-AES256-SHA DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc077", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc077 ECDHE-RSA-CAMELLIA256-SHA384 ECDH 521 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384" + }, + { + "id": "cipher-tls1_2_xc4", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc4 DHE-RSA-CAMELLIA256-SHA256 DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x88", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x88 DHE-RSA-CAMELLIA256-SHA DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_x9d", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9d AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_x3d", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x3d AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x35", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x35 AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc0", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc0 CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x84", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x84 CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_xc027", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc027 ECDHE-RSA-AES128-SHA256 ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_xc013", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc013 ECDHE-RSA-AES128-SHA ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x67", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x67 DHE-RSA-AES128-SHA256 DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x33", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x33 DHE-RSA-AES128-SHA DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc076", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc076 ECDHE-RSA-CAMELLIA128-SHA256 ECDH 521 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_xbe", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xbe DHE-RSA-CAMELLIA128-SHA256 DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x45", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x45 DHE-RSA-CAMELLIA128-SHA DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_x9c", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9c AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x3c", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x3c AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x2f", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x2f AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xba", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xba CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x41", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x41 CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA256-SHA384 DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA AES256-GCM-SHA384 AES256-SHA256 AES256-SHA CAMELLIA256-SHA256 CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA ECDHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA AES128-GCM-SHA256 AES128-SHA256 AES128-SHA CAMELLIA128-SHA256 CAMELLIA128-SHA" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 86400 seconds only (= 30 days" + "finding": "242 >= 60 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "2024-10-28 05:14" + "finding": "2024-07-31 06:57" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "2025-01-26 05:14" + "finding": "2025-07-31 06:57" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.entrust.net/level1m.crl" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.entrust.net" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2014-12-15 15:25" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2030-10-15 15:55" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" }, { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" }, { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_notBefore <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2009-07-07 17:25" }, { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_notAfter <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "INFO", - "finding": "1732418944" + "severity": "OK", + "finding": "2030-12-07 17:55" }, { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_expiration <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "ok > 40 days" }, { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_chain <#2>", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "intermediate_cert_badOCSP", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "domain IS marked for preloading" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "HTTP_status_code", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "200 OK ('/')" }, { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "HTTP_clock_skew", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "0 seconds from localtime" }, { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "HTTP_headerTime", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "1733023941" }, { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "HSTS", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "2 at '/'" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "banner_server", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" + "severity": "INFO", + "finding": "nginx/1.25.3" }, { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "id": "banner_application", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "X-Powered-By: Next.js" + }, + { + "id": "cookie_count", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-O3A0l/dw5ZdfgNUVxZDRyA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-O3A0l/dw5ZdfgNUVxZDRyA=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/" + "finding": "default-src 'self' http: https: data: blob: 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" + "finding": "geolocation=(), microphone=(), camera=(), interest-cohort=()" + }, + { + "id": "X-XSS-Protection", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "no-referrer-when-downgrade" + }, + { + "id": "Cache-Control", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -78289,7 +64992,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -78298,7 +65001,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -78307,25 +65010,25 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -78333,16 +65036,16 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -78351,16 +65054,16 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -78369,14 +65072,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -78385,7 +65088,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -78394,7 +65097,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -78403,16 +65106,16 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0458738C343B308FD6B0F85EFCFBFFDA816453C8A83D9CD19B668C8F7738B3E2" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B40FDEA9CBA9073D060C222A2D0DED95D3CA1494ACE7D94497D83950ED8E1375" }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -78421,16 +65124,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -78439,16 +65142,16 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -78457,7 +65160,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -78466,327 +65169,2589 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" + }, + { + "id": "key_exchange_score", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "key_exchange_score_weighted", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "cipher_strength_score", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "final_score", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "overall_grade", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "CRITICAL", + "finding": "M" + }, + { + "id": "grade_cap_reason_1", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to M. Domain name mismatch" + }, + { + "id": "grade_cap_reason_2", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", + "port": "443", + "severity": "INFO", + "finding": "90" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://plausible.beta.francetravail.fr/js/script.tagged-events.js" + }, + { + "type": "youtube", + "url": "https://www.youtube.com/embed/siPykarRZMU", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/www-player.css", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/embed.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/www-embed-player.vflset/www-embed-player.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/base.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://embed.api.video/vod/vi7WleoLU62ymRfByC5JDTyF?&&&id=vi7WleoLU62ymRfByC5JDTyF&ts=1733023876758" + }, + { + "type": "google analytics", + "url": "https://googleads.g.doubleclick.net/pagead/id", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google analytics", + "url": "https://static.doubleclick.net/instream/ad_status.js", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/remote.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google", + "url": "https://www.google.com/js/th/qYKp54bxMdgPywYfc-yhqguRPCT31YTVhLYxMebccTE.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://i.ytimg.com/vi/siPykarRZMU/default.jpg", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://yt3.ggpht.com/ytc/AIdro_nTCRmCpUsgUhrwCn3NSgcQUa2ZB0rACom422HYHb0rOVNHIMzfwDs398hR5zZDBa50vg=s68-c-k-c0x00ffffff-no-rj", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google analytics", + "url": "https://googleads.g.doubleclick.net/pagead/id?slf_rd=1", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://embed.api.video/assets/plugins/core-player/player.e1257f5.js" + }, + { + "type": "google", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/generate_204?vofdMg", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://embed.api.video/fonts/icomoon.ttf?e1257f5" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/player.json" + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://embed.api.video/fonts/icomoon.ttf?e1257f5" + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://vod.api.video/player/pt1xVi9lch5IqYxTYqGmbJc9/theme.css?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://vod.api.video/player/pt1xVi9lch5IqYxTYqGmbJc9/logo.png?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/thumbnail.jpg?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://collector.api.video/vod" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/hls/manifest.m3u8?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/mp4/source.mp4?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/mp4/source.mp4?r=eu-central-1" + }, + { + "type": "unknown", + "url": "https://vod.api.video/vod/vi7WleoLU62ymRfByC5JDTyF/mp4/source.mp4?r=eu-central-1" + }, + { + "type": "youtube", + "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + } + ], + "cookies": [], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' http: https: data: blob: 'unsafe-inline'", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 03:31:16 GMT", + "etag": "\"smwwdwgu1910dc\"", + "permissions-policy": "geolocation=(), microphone=(), camera=(), interest-cohort=()", + "referrer-policy": "no-referrer-when-downgrade", + "server": "nginx/1.25.3", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "competencevalidee.pole-emploi.fr", + "ip": "51.68.90.157", + "geoip": { + "city": { + "geoname_id": 2982681, + "names": { + "de": "Roubaix", + "en": "Roubaix", + "fr": "Roubaix", + "ja": "ルーベ", + "ru": "Рубе", + "zh-CN": "鲁贝" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 50.6974, + "longitude": 3.178, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "59100" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 11071624, + "iso_code": "HDF", + "names": { + "de": "Hauts-de-France", + "en": "Hauts-de-France", + "es": "Alta Francia", + "fr": "Hauts-de-France", + "ja": "オー=ド=フランス地域圏", + "pt-BR": "Altos da França", + "ru": "О-де-Франс", + "zh-CN": "上法兰西大区" + } + }, + { + "geoname_id": 2990129, + "iso_code": "59", + "names": { + "de": "Nord", + "en": "North", + "es": "Norte", + "fr": "Nord", + "ja": "ノール県", + "pt-BR": "Nord", + "ru": "Нор", + "zh-CN": "北部省" + } + } + ] + } + }, + { + "hostname": "plausible.beta.francetravail.fr", + "ip": "213.32.73.220", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "www.youtube.com", + "ip": "172.253.122.93", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "172.253.63.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "embed.api.video", + "ip": "146.75.29.91", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "googleads.g.doubleclick.net", + "ip": "142.251.16.157", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "static.doubleclick.net", + "ip": "172.253.63.149", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "jnn-pa.googleapis.com", + "ip": "142.251.163.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.google.com", + "ip": "142.251.163.103", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "i.ytimg.com", + "ip": "142.251.179.119", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "yt3.ggpht.com", + "ip": "142.251.167.132", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.gstatic.com", + "ip": "172.253.63.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "vod.api.video", + "ip": "146.75.29.91", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "play.google.com", + "ip": "64.233.180.113", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "collector.api.video", + "ip": "79.133.126.111", + "geoip": { + "city": { + "geoname_id": 2759794, + "names": { + "de": "Amsterdam", + "en": "Amsterdam", + "es": "Ámsterdam", + "fr": "Amsterdam", + "ja": "Amusuterudamu", + "pt-BR": "Amesterdã", + "ru": "Амстердам", + "zh-CN": "阿姆斯特丹" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2750405, + "is_in_european_union": true, + "iso_code": "NL", + "names": { + "de": "Niederlande", + "en": "The Netherlands", + "es": "Holanda", + "fr": "Pays-Bas", + "ja": "オランダ王国", + "pt-BR": "Holanda", + "ru": "Нидерланды", + "zh-CN": "荷兰" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 52.3385, + "longitude": 4.9168, + "time_zone": "Europe/Amsterdam" + }, + "postal": { + "code": "1096" + }, + "registered_country": { + "geoname_id": 2960313, + "is_in_european_union": true, + "iso_code": "LU", + "names": { + "de": "Luxemburg", + "en": "Luxembourg", + "es": "Luxemburgo", + "fr": "Luxembourg", + "ja": "ルクセンブルク", + "pt-BR": "Luxemburgo", + "ru": "Люксембург", + "zh-CN": "卢森堡" + } + }, + "subdivisions": [ + { + "geoname_id": 2749879, + "iso_code": "NH", + "names": { + "de": "Nordholland", + "en": "North Holland", + "es": "Holanda Septentrional", + "fr": "Hollande-Septentrionale", + "ja": "北ホラント州", + "pt-BR": "Holanda do Norte", + "ru": "Северная Голландия", + "zh-CN": "北荷兰省" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://competencevalidee.pole-emploi.fr/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "youtube", + "name": "YouTube", + "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", + "confidence": 100, + "version": null, + "icon": "YouTube.png", + "website": "https://www.youtube.com", + "cpe": null, + "categories": [ + { + "id": 14, + "slug": "video-players", + "name": "Video players" + } + ], + "rootPath": true + }, + { + "slug": "headless-ui", + "name": "Headless UI", + "description": "Headless UI is an unstyled component library for either React.js or Vue.js from the same people that created Tailwind CSS.", + "confidence": 100, + "version": null, + "icon": "Headless UI.svg", + "website": "https://headlessui.dev", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.25.3", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.14", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "requestedUrl": "https://competencevalidee.pole-emploi.fr/", + "finalUrl": "https://candidat.francetravail.fr/competences-validees/", + "fetchTime": "2024-07-21T02:47:48.489Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://competencevalidee.pole-emploi.fr/) was redirected to https://candidat.francetravail.fr/competences-validees/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.42 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.95 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.7 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12236, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 4394, + "firstMeaningfulPaint": 7560, + "largestContentfulPaint": 7701, + "interactive": 12236, + "speedIndex": 8266, + "totalBlockingTime": 381, + "maxPotentialFID": 211, + "cumulativeLayoutShift": 0.034224243164062494, + "cumulativeLayoutShiftMainFrame": 0.034224243164062494, + "totalCumulativeLayoutShift": 0.034224243164062494, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 444545025, + "observedNavigationStart": 0, + "observedNavigationStartTs": 444545025, + "observedFirstPaint": 1470, + "observedFirstPaintTs": 446014969, + "observedFirstContentfulPaint": 1470, + "observedFirstContentfulPaintTs": 446014969, + "observedFirstContentfulPaintAllFrames": 1470, + "observedFirstContentfulPaintAllFramesTs": 446014969, + "observedFirstMeaningfulPaint": 2017, + "observedFirstMeaningfulPaintTs": 446561740, + "observedLargestContentfulPaint": 1755, + "observedLargestContentfulPaintTs": 446299648, + "observedLargestContentfulPaintAllFrames": 1755, + "observedLargestContentfulPaintAllFramesTs": 446299648, + "observedTraceEnd": 4759, + "observedTraceEndTs": 449304304, + "observedLoad": 2452, + "observedLoadTs": 446997063, + "observedDomContentLoaded": 1655, + "observedDomContentLoadedTs": 446199826, + "observedCumulativeLayoutShift": 0.034224243164062494, + "observedCumulativeLayoutShiftMainFrame": 0.034224243164062494, + "observedTotalCumulativeLayoutShift": 0.034224243164062494, + "observedFirstVisualChange": 1470, + "observedFirstVisualChangeTs": 446015025, + "observedLastVisualChange": 2470, + "observedLastVisualChangeTs": 447015025, + "observedSpeedIndex": 1773, + "observedSpeedIndexTs": 446318480 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 27, + "numScripts": 7, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 689, + "numTasksOver10ms": 11, + "numTasksOver25ms": 5, + "numTasksOver50ms": 3, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.5750000000000002, + "throughput": 6527975.25208938, + "maxRtt": 89.332, + "maxServerLatency": 9.923000000000002, + "totalByteWeight": 1482467, + "totalTaskTime": 459.86699999999894, + "mainDocumentTransferSize": 1108 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "competence.validee", + "type": "startup", + "attributes": { + "name": "Compétences Validées", + "pitch": "Optimiser l’intermédiation entre offre et demande d’emploi en fiabilisant les profils des personnes en demande d'emploi grâce à une validation de compétences", + "stats_url": "", + "link": "https://candidat.francetravail.fr/competences-validees/", + "contact": "competences-validees@francetravail.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AUn%20tiers%20des%20recruteurs%20travaillant%20avec%20P%C3%B4le%20emploi%20sont%20insatisfaits%20de%20la%20pertinence%20des%20candidatures%20qu%E2%80%99ils%20re%C3%A7oivent.%0A%0A%23%23%20Probl%C3%A8me%0A%0ALes%20conseillers%20P%C3%B4le%20emploi%20utilisent%20une%20base%20de%20donn%C3%A9es%20de%20profils%20qui%20n%E2%80%99est%20pas%20ou%20peu%20mise%20%C3%A0%20jour%2C%20et%20mal%20renseign%C3%A9e%20par%20les%20demandeurs%20d%E2%80%99emploi.%20La%20cons%C3%A9quence%20en%20est%20le%20manque%20de%20qualit%C3%A9%20des%20candidatures%20propos%C3%A9es%2C%20ou%20la%20difficult%C3%A9%20de%20rep%C3%A9rer%20des%20profils%20qui%20correspondent%20aux%20besoins%20de%20recrutements.%0A%0ALes%20conseillers%20%2F%20recruteurs%20peuvent%20passer%20%C3%A0%20c%C3%B4t%C3%A9%20de%C2%A0bons%C2%A0candidats%20car%20le%20profil%20de%20comp%C3%A9tences%20est%20uniquement%C2%A0d%C3%A9claratif%2C%C2%A0n%E2%80%99est%20pas%20suffisamment%20renseign%C3%A9%2C%20n%E2%80%99est%20pas%20%C3%A0%C2%A0jour.%0A%0A%23%23%20Solution%0A%0ALes%20chercheurs%20d%E2%80%99emploi%20demandent%20%C3%A0%20P%C3%B4le%20emploi%20de%20contacter%20leurs%20anciens%20employeurs%20%28encore%20en%20activit%C3%A9%29%20afin%20de%20leur%20soumettre%20une%20validation%20des%20comp%C3%A9tences%20de%20l%E2%80%99ancien%20collaborateur.%20L%E2%80%99ancien%20employeur%20peut%20valider%20une%20ou%20plusieurs%20comp%C3%A9tences%20%28savoir-faire%20et%2Fou%20savoir%E2%80%93%C3%AAtre%29%3C%21--StartFragment--%3E%0A%0ASite%20qui%20permet%20aux%20demandeurs%20d%27emploi%20de%20solliciter%2C%C2%A0et%C2%A0d%27obtenir%2C%20la%C2%A0validation%20de%20leurs%20comp%C3%A9tences%C2%A0aupr%C3%A8s%20de%20leurs%C2%A0anciens%C2%A0employeurs%20qui%20peut%20valider%20une%20ou%20plusieurs%20comp%C3%A9tences%20%28savoir-faire%20et%2Fou%20savoir%E2%80%93%C3%AAtre%29%20afin%C2%A0de%C2%A0compl%C3%A9ter%20et%20fiabiliser%C2%A0les%20profils%C2%A0et%C2%A0am%C3%A9liorer%20les%C2%A0propositions%20de%20candidats.%E2%80%8B%0A%0ALa%20mise%20en%20visibilit%C3%A9%20de%20ces%20comp%C3%A9tences%20valid%C3%A9es%20%28avec%20date%20et%20origine%20de%20la%20validation%29%20permet%20d%E2%80%99assurer%20la%20confiance%20des%20conseillers%20P%C3%B4le%20emploi%2C%20et%20des%20recruteurs.%0A%0AL%EF%BB%BFa%20proposition%20de%20valeur%20de%20la%20start%20up%20est%20donc%20d%27enrichir%20et%20fiabiliser%20le%20profil%20des%20demandeurs%20via%C2%A0la%C2%A0validation%20de%20leurs%20comp%C3%A9tences%2C%C2%A0afin%20de%C2%A0favoriser%20les%C2%A0mises%20en%C2%A0relation%20et%20le%20retour%20%C3%A0%20l%E2%80%99emploi%C2%A0en%20basant%20les%C2%A0actes%20d%E2%80%99interm%C3%A9diation%20sur%C2%A0des%20%C3%A9l%C3%A9ments%20factuels.%E2%80%8B%0A%0A%23%23%20Strat%C3%A9gie%0A%0AComp%C3%A9tence%20Valid%C3%A9e%20utilise%20les%20campagnes%20d%E2%80%99e-mailing%20lors%20de%20l%E2%80%99ouverture%20d%E2%80%99un%20nouveau%20territoire.%20Au%20bout%20de%20quelques%20semaines%20un%20lien%20de%20redirection%20est%20ouvert%20sur%20le%20profil%20de%20comp%C3%A9tences%20des%20demandeurs%20d%E2%80%99emploi%20du%20territoire.%0A%0AL%E2%80%99impact%20esp%C3%A9r%C3%A9%20est%20l%E2%80%99observation%20mesurable%20d%E2%80%99une%20hausse%20de%20visibilit%C3%A9%20et%20de%20contacts%20d%E2%80%99interm%C3%A9diation%20sur%20les%20profils%20b%C3%A9n%C3%A9ficiant%20de%20la%20validation%20de%20comp%C3%A9tences.%0A%0AA%20ce%20jour%20les%20profils%20valid%C3%A9s%20ont%20b%C3%A9n%C3%A9fici%C3%A9s%20de%20la%20part%20des%20conseillers%20de%20%2B%2017%20%25%20d%E2%80%99actes%20d%E2%80%99interm%C3%A9diation.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-07-06", + "end": "2020-12-31" + }, + { + "name": "construction", + "start": "2021-02-27", + "end": "2021-10-28" + }, + { + "name": "acceleration", + "start": "2021-08-02", + "end": "2022-08-31" + }, + { + "name": "transfer", + "start": "2023-06-30", + "end": "" + }, + { + "name": "success", + "start": "2023-11-17", + "end": "" + } + ], + "sponsors": [ + "francetravail" + ], + "thematiques": [], + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "francetravail" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "36" + "width": 1920, + "height": 1080, + "url": "https://competencevalidee.pole-emploi.fr", + "size": 1173.979, + "nodes": 279, + "requests": 42, + "grade": "B", + "score": 73, + "ges": 1.54, + "water": 2.31, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 03:20:07.634570", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-07-31T06:57:00.000Z", + "testsslGrade": "M", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 44, + "lighthouse_performance": 0.42, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.95, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.7, + "lighthouse_pwaGrade": "B", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://communaute.inclusion.beta.gouv.fr", + "category": "gip-inclusion", + "tags": [ + "itou" + ], + "betaId": "la.communaute.de.linclusion", + "http": { + "url": "https://communaute.inclusion.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:13:39 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Length": "8690", + "Content-Security-Policy": "frame-src 'self' https://tally.so https://www.youtube.com/embed/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; default-src 'self'; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-fcuxi8m90pJ2I31hP3scJw=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-fcuxi8m90pJ2I31hP3scJw=='", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 03:13:37 GMT", + "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", + "Referrer-Policy": "same-origin", + "Set-Cookie": "csrftoken=PRWhk8Jxa0aUNaU2Z9wSdVSgLslRoPSb; expires=Sun, 19 Oct 2025 03:13:37 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=brsvv5m0syvm6zk7l64l4scozzgwm68e; expires=Sun, 03 Nov 2024 03:13:37 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01JAKYN19556Y9M2YZ9JP0KN7Z", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Vary": "Cookie, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY" }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "93" + "scan_id": 57048890, + "score": 105, + "start_time": "Sun, 20 Oct 2024 03:13:36 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "https://api-adresse.data.gouv.fr", + "*.sentry.io", + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://fonts.gstatic.com/", + "data:", + "'self'" + ], + "frame-src": [ + "https://www.youtube.com/embed/", + "https://tally.so", + "'self'" + ], + "img-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "cellar-c2.services.clever-cloud.com", + "data:", + "'self'" + ], + "script-src": [ + "https://matomo.inclusion.beta.gouv.fr/", + "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", + "https://www.youtube.com/s/player/", + "https://browser.sentry-cdn.com", + "'nonce-fcuxi8m90pj2i31hp3scjw=='", + "https://js.sentry-cdn.com", + "https://tally.so", + "https://www.youtube.com/iframe_api", + "'self'", + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + ], + "script-src-elem": [ + "https://matomo.inclusion.beta.gouv.fr/", + "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", + "https://www.youtube.com/s/player/", + "https://browser.sentry-cdn.com", + "'nonce-fcuxi8m90pj2i31hp3scjw=='", + "https://js.sentry-cdn.com", + "https://tally.so", + "https://www.youtube.com/iframe_api", + "'self'", + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + ], + "style-src": [ + "https://fonts.googleapis.com", + "'unsafe-inline'", + "'self'" + ], + "style-src-elem": [ + "https://fonts.googleapis.com", + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "communaute.inclusion.beta.gouv.fr", + "expires": 1760843618, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + }, + "sessionid": { + "domain": "communaute.inclusion.beta.gouv.fr", + "expires": 1730603617, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://communaute.inclusion.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://communaute.inclusion.beta.gouv.fr/", + "https://communaute.inclusion.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-I7E8VVD/ismYTF4hNIPjVp/Zjvgyol6VFvRkX/vR+Vc4jQkC+hVqc2pM8ODewa9r" + }, + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-fbbOQedDUMZZ5KreZpsbe1LCZPVmfTnH7ois6mU1QK+m14rQ1l2bGBq41eYeM/fS" + }, + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js": { + "crossorigin": "anonymous", + "integrity": "sha256-o88AwQnZB+VDvE9tvIXrMQaPlFFSUTR+nldQm1LuPXQ=" + }, + "https://js.sentry-cdn.com/315adbc1472b4c5f875aa426db1fe8f2.min.js": { + "crossorigin": "anonymous", + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "y07l", + "url": "https://communaute.inclusion.beta.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-25T03:07:02Z", + "error": null, + "period": 3600, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T03:25:04Z", + "next_check_at": "2024-12-01T04:25:02Z", + "created_at": "2021-04-27T20:02:33Z", + "mute_until": null, + "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-11-30T23:26:23Z", + "expires_at": "2025-01-26T05:14:37Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 170, + "connection": 157, + "handshake": 161, + "response": 224, + "total": 711 + } }, - { - "id": "scanTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "494" - } - ], + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "communaute.inclusion.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": null, "thirdparties": { "trackers": [ { @@ -78821,10 +67786,10 @@ "cookies": [ { "name": "sessionid", - "value": "7wj6ft46cq2zhzw7dwfib0b1h7gi9axk", + "value": "ii56hlvxuhppryja48g9979tgvp4ejpn", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1733628034.689799, + "expires": 1734233062.127255, "size": 41, "httpOnly": true, "secure": true, @@ -78836,10 +67801,10 @@ }, { "name": "csrftoken", - "value": "iIiq2Ejx5pBaeuO8AtRL23ncBv3HTNDA", + "value": "DmUfI6iLTgQ5rS9pg005A2Cde3nWly3Z", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1763868034.689703, + "expires": 1764473062.127165, "size": 41, "httpOnly": false, "secure": true, @@ -78853,15 +67818,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8736", - "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-KmHsiP9iaWg+/24tw7mxFw=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-KmHsiP9iaWg+/24tw7mxFw=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/", + "content-length": "8597", + "content-security-policy": "font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-0h6NX45iISfB8MlEeFPcOg=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-0h6NX45iISfB8MlEeFPcOg=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 03:20:34 GMT", + "date": "Sun, 01 Dec 2024 03:24:22 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=iIiq2Ejx5pBaeuO8AtRL23ncBv3HTNDA; expires=Sun, 23 Nov 2025 03:20:34 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=7wj6ft46cq2zhzw7dwfib0b1h7gi9axk; expires=Sun, 08 Dec 2024 03:20:34 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01JDE2YXDSNDZZ1ABYPRF8X1NC", + "set-cookie": "csrftoken=DmUfI6iLTgQ5rS9pg005A2Cde3nWly3Z; expires=Sun, 30 Nov 2025 03:24:22 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=ii56hlvxuhppryja48g9979tgvp4ejpn; expires=Sun, 15 Dec 2024 03:24:22 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01JE03YWEMFHW27WW2KWCBEB8Z", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -78870,7 +67835,7 @@ "endpoints": [ { "hostname": "communaute.inclusion.beta.gouv.fr", - "ip": "91.208.207.223", + "ip": "91.208.207.215", "geoip": { "continent": { "code": "EU", @@ -78926,7 +67891,7 @@ }, { "hostname": "js.sentry-cdn.com", - "ip": "151.101.194.217", + "ip": "151.101.2.217", "geoip": { "city": { "geoname_id": 5391959, @@ -79013,59 +67978,8 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.29.229", + "ip": "104.18.186.31", "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -79079,23 +67993,7 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] + } } } ] @@ -79316,7 +68214,7 @@ { "requestedUrl": "https://communaute.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T03:20:10.182Z", + "fetchTime": "2024-12-01T03:23:53.937Z", "runWarnings": [], "categories": { "performance": { @@ -79379,53 +68277,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8513, + "numericValue": 8666, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8513, - "firstMeaningfulPaint": 8513, - "largestContentfulPaint": 10941, - "interactive": 8513, - "speedIndex": 8513, + "firstContentfulPaint": 8666, + "firstMeaningfulPaint": 8666, + "largestContentfulPaint": 11963, + "interactive": 8666, + "speedIndex": 8666, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.040926350275675455, - "cumulativeLayoutShiftMainFrame": 0.040926350275675455, - "totalCumulativeLayoutShift": 0.040926350275675455, + "cumulativeLayoutShift": 0.03283829763200548, + "cumulativeLayoutShiftMainFrame": 0.03283829763200548, + "totalCumulativeLayoutShift": 0.03283829763200548, "observedTimeOrigin": 0, - "observedTimeOriginTs": 542827559, + "observedTimeOriginTs": 412307096, "observedNavigationStart": 0, - "observedNavigationStartTs": 542827559, - "observedFirstPaint": 1046, - "observedFirstPaintTs": 543873272, - "observedFirstContentfulPaint": 1046, - "observedFirstContentfulPaintTs": 543873272, - "observedFirstContentfulPaintAllFrames": 1046, - "observedFirstContentfulPaintAllFramesTs": 543873272, - "observedFirstMeaningfulPaint": 1046, - "observedFirstMeaningfulPaintTs": 543873272, - "observedLargestContentfulPaint": 1046, - "observedLargestContentfulPaintTs": 543873272, - "observedLargestContentfulPaintAllFrames": 1046, - "observedLargestContentfulPaintAllFramesTs": 543873272, - "observedTraceEnd": 3598, - "observedTraceEndTs": 546425898, - "observedLoad": 1201, - "observedLoadTs": 544028796, - "observedDomContentLoaded": 1048, - "observedDomContentLoadedTs": 543875146, - "observedCumulativeLayoutShift": 0.040926350275675455, - "observedCumulativeLayoutShiftMainFrame": 0.040926350275675455, - "observedTotalCumulativeLayoutShift": 0.040926350275675455, - "observedFirstVisualChange": 1034, - "observedFirstVisualChangeTs": 543861559, - "observedLastVisualChange": 1650, - "observedLastVisualChangeTs": 544477559, - "observedSpeedIndex": 1057, - "observedSpeedIndexTs": 543884744 + "observedNavigationStartTs": 412307096, + "observedFirstPaint": 1610, + "observedFirstPaintTs": 413917258, + "observedFirstContentfulPaint": 1610, + "observedFirstContentfulPaintTs": 413917258, + "observedFirstContentfulPaintAllFrames": 1610, + "observedFirstContentfulPaintAllFramesTs": 413917258, + "observedFirstMeaningfulPaint": 1610, + "observedFirstMeaningfulPaintTs": 413917258, + "observedLargestContentfulPaint": 1610, + "observedLargestContentfulPaintTs": 413917258, + "observedLargestContentfulPaintAllFrames": 1610, + "observedLargestContentfulPaintAllFramesTs": 413917258, + "observedTraceEnd": 4206, + "observedTraceEndTs": 416513420, + "observedLoad": 1758, + "observedLoadTs": 414064917, + "observedDomContentLoaded": 1621, + "observedDomContentLoadedTs": 413928414, + "observedCumulativeLayoutShift": 0.03283829763200548, + "observedCumulativeLayoutShiftMainFrame": 0.03283829763200548, + "observedTotalCumulativeLayoutShift": 0.03283829763200548, + "observedFirstVisualChange": 1609, + "observedFirstVisualChangeTs": 413916096, + "observedLastVisualChange": 2226, + "observedLastVisualChangeTs": 414533096, + "observedSpeedIndex": 1641, + "observedSpeedIndexTs": 413947941 }, { "lcpInvalidated": false @@ -79447,19 +68345,19 @@ "numScripts": 13, "numStylesheets": 4, "numFonts": 4, - "numTasks": 16, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 1.0380000000000003, - "throughput": 25084605.75170198, - "maxRtt": 82.276, - "maxServerLatency": 82.48299999999999, - "totalByteWeight": 2426274, - "totalTaskTime": 3261.6169999999997, - "mainDocumentTransferSize": 11145 + "numTasks": 38, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 8.38, + "throughput": 17662111.77185734, + "maxRtt": 133.47400000000002, + "maxServerLatency": 134.26599999999993, + "totalByteWeight": 2426900, + "totalTaskTime": 8.104999999999999, + "mainDocumentTransferSize": 10983 } ] } @@ -79557,7 +68455,7 @@ "width": 1920, "height": 1080, "url": "https://communaute.inclusion.beta.gouv.fr", - "size": 3149.025, + "size": 3149.428, "nodes": 447, "requests": 33, "grade": "C", @@ -79565,7 +68463,7 @@ "ges": 1.76, "water": 2.64, "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:16:51.767048", + "date": "2024-12-01 03:20:50.142787", "page_type": "website" } ], @@ -79582,9 +68480,6 @@ "nmapGrade": "B", "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-26T05:14:00.000Z", - "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "C", @@ -79793,8 +68688,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:18:02Z", - "next_check_at": "2024-11-24T03:23:00Z", + "last_check_at": "2024-12-01T03:28:20Z", + "next_check_at": "2024-12-01T03:33:18Z", "created_at": "2021-04-22T19:51:07Z", "mute_until": null, "favicon_url": "https://covoiturage.beta.gouv.fr/_next/static/media/favicon.8c087985.ico", @@ -79802,24 +68697,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:18:02Z", + "tested_at": "2024-12-01T02:53:30Z", "expires_at": "2025-02-10T13:49:31Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.974, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 133, - "connection": 157, - "handshake": 164, - "response": 202, - "total": 656 + "namelookup": 75, + "connection": 76, + "handshake": 85, + "response": 104, + "total": 341 } }, "uptimeGrade": "A", - "apdexGrade": "C" + "apdexGrade": "A" }, "nmap": { "host": "covoiturage.beta.gouv.fr", @@ -80195,7 +69090,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "78 >= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", @@ -80356,7 +69251,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "1732418470" + "finding": "1733023739" }, { "id": "HSTS_time", @@ -80919,7 +69814,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "85" + "finding": "86" } ], "thirdparties": { @@ -80929,16 +69824,47 @@ "url": "https://www.ademe.fr/wp-content/uploads/2022/11/ademe-logo-2022-1.svg" } ], - "cookies": [], + "cookies": [ + { + "name": "_pk_ses.1.aba8", + "value": "1", + "domain": "covoiturage.beta.gouv.fr", + "path": "/", + "expires": 1733025448, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.1.aba8", + "value": "bd8b58737d93c39f.1733023648.", + "domain": "covoiturage.beta.gouv.fr", + "path": "/", + "expires": 1766978848, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "content-length": "85379", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 03:19:41 GMT", - "etag": "\"ffcda69f3cdcfdd36a053b3588b83859\"", - "last-modified": "Fri, 15 Nov 2024 11:50:20 GMT", + "date": "Sun, 01 Dec 2024 03:27:25 GMT", + "etag": "\"76b1a99e1d2edfc39d9f48a1a1b2487e\"", + "last-modified": "Fri, 29 Nov 2024 10:08:57 GMT", "strict-transport-security": "max-age=31536000; includeSubDomains", - "x-amz-id-2": "txgdfd5b3bc263042248e9d-0067429b4d", - "x-amz-request-id": "txgdfd5b3bc263042248e9d-0067429b4d" + "x-amz-id-2": "txgb113bd1facd941078aa3-00674bd79d", + "x-amz-request-id": "txgb113bd1facd941078aa3-00674bd79d" }, "endpoints": [ { @@ -81326,7 +70252,7 @@ { "requestedUrl": "https://covoiturage.beta.gouv.fr/", "finalUrl": "https://covoiturage.beta.gouv.fr/", - "fetchTime": "2024-11-24T03:19:16.468Z", + "fetchTime": "2024-12-01T03:26:59.153Z", "runWarnings": [], "categories": { "performance": { @@ -81337,7 +70263,7 @@ "snapshot" ], "id": "performance", - "score": 0.53 + "score": 0.54 }, "accessibility": { "title": "Accessibility", @@ -81389,53 +70315,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11003, + "numericValue": 10779, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5674, - "firstMeaningfulPaint": 5674, - "largestContentfulPaint": 6584, - "interactive": 11003, - "speedIndex": 6579, - "totalBlockingTime": 24, - "maxPotentialFID": 98, + "firstContentfulPaint": 5583, + "firstMeaningfulPaint": 5583, + "largestContentfulPaint": 6634, + "interactive": 10779, + "speedIndex": 6529, + "totalBlockingTime": 34, + "maxPotentialFID": 85, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 350135709, + "observedTimeOriginTs": 408162953, "observedNavigationStart": 0, - "observedNavigationStartTs": 350135709, - "observedFirstPaint": 1039, - "observedFirstPaintTs": 351174562, - "observedFirstContentfulPaint": 1039, - "observedFirstContentfulPaintTs": 351174562, - "observedFirstContentfulPaintAllFrames": 1039, - "observedFirstContentfulPaintAllFramesTs": 351174562, - "observedFirstMeaningfulPaint": 1039, - "observedFirstMeaningfulPaintTs": 351174562, - "observedLargestContentfulPaint": 1039, - "observedLargestContentfulPaintTs": 351174562, - "observedLargestContentfulPaintAllFrames": 1039, - "observedLargestContentfulPaintAllFramesTs": 351174562, - "observedTraceEnd": 4271, - "observedTraceEndTs": 354406465, - "observedLoad": 1696, - "observedLoadTs": 351831987, - "observedDomContentLoaded": 1030, - "observedDomContentLoadedTs": 351165741, + "observedNavigationStartTs": 408162953, + "observedFirstPaint": 1046, + "observedFirstPaintTs": 409208616, + "observedFirstContentfulPaint": 1046, + "observedFirstContentfulPaintTs": 409208616, + "observedFirstContentfulPaintAllFrames": 1046, + "observedFirstContentfulPaintAllFramesTs": 409208616, + "observedFirstMeaningfulPaint": 1046, + "observedFirstMeaningfulPaintTs": 409208616, + "observedLargestContentfulPaint": 1046, + "observedLargestContentfulPaintTs": 409208616, + "observedLargestContentfulPaintAllFrames": 1046, + "observedLargestContentfulPaintAllFramesTs": 409208616, + "observedTraceEnd": 4592, + "observedTraceEndTs": 412754988, + "observedLoad": 2159, + "observedLoadTs": 410321950, + "observedDomContentLoaded": 1035, + "observedDomContentLoadedTs": 409198256, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1050, - "observedFirstVisualChangeTs": 351185709, - "observedLastVisualChange": 1783, - "observedLastVisualChangeTs": 351918709, - "observedSpeedIndex": 1058, - "observedSpeedIndexTs": 351194118 + "observedFirstVisualChange": 1054, + "observedFirstVisualChangeTs": 409216953, + "observedLastVisualChange": 2170, + "observedLastVisualChangeTs": 410332953, + "observedSpeedIndex": 1072, + "observedSpeedIndexTs": 409235297 }, { "lcpInvalidated": false @@ -81457,19 +70383,19 @@ "numScripts": 13, "numStylesheets": 4, "numFonts": 3, - "numTasks": 1638, + "numTasks": 1669, "numTasksOver10ms": 5, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 105.733, - "throughput": 15464636.963970752, - "maxRtt": 108.782, - "maxServerLatency": 94.357, - "totalByteWeight": 1958633, - "totalTaskTime": 281.47899999999635, - "mainDocumentTransferSize": 85834 + "rtt": 106.092, + "throughput": 18053948.052157596, + "maxRtt": 109.167, + "maxServerLatency": 27.150000000000006, + "totalByteWeight": 1958648, + "totalTaskTime": 277.29399999999714, + "mainDocumentTransferSize": 85869 } ] } @@ -81581,15 +70507,15 @@ "width": 1920, "height": 1080, "url": "https://covoiturage.beta.gouv.fr", - "size": 2302.785, - "nodes": 374, + "size": 2303.713, + "nodes": 376, "requests": 48, "grade": "C", "score": 63, "ges": 1.74, "water": 2.61, "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:16:17.072257", + "date": "2024-12-01 03:23:56.804029", "page_type": null } ], @@ -81599,8 +70525,8 @@ }, "summary": { "httpGrade": "C", - "apdex": 0.974, - "apdexGrade": "C", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -81609,11 +70535,11 @@ "testsslExpireSoon": false, "testsslExpireDate": "2025-02-10T13:49:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.53, + "lighthouse_performance": 0.54, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -83483,7 +72409,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-21T02:37:40Z", + "up_since": "2024-11-29T18:59:28Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -83495,8 +72421,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:37:38Z", - "next_check_at": "2024-11-24T03:42:36Z", + "last_check_at": "2024-12-01T03:45:12Z", + "next_check_at": "2024-12-01T03:50:11Z", "created_at": "2021-04-22T19:51:18Z", "mute_until": null, "favicon_url": "https://datapass.api.gouv.fr/favicons/android-chrome-512x512.png", @@ -83504,7 +72430,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:12:50Z", + "tested_at": "2024-12-01T03:30:19Z", "expires_at": "2025-11-05T22:59:59Z", "valid": true, "error": null @@ -83513,11 +72439,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 329, - "connection": 165, - "handshake": 173, - "response": 166, - "total": 834 + "namelookup": 280, + "connection": 145, + "handshake": 148, + "response": 144, + "total": 717 } }, "uptimeGrade": "A", @@ -83890,7 +72816,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "OK", - "finding": "346 >= 60 days" + "finding": "339 >= 60 days" }, { "id": "cert_notBefore", @@ -84044,14 +72970,14 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1732419440" + "finding": "1733024766" }, { "id": "HSTS_time", @@ -84621,7 +73547,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "57" + "finding": "103" } ], "thirdparties": { @@ -84632,7 +73558,7 @@ "value": "1", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1732421192, + "expires": 1733026482, "size": 16, "httpOnly": false, "secure": false, @@ -84644,10 +73570,10 @@ }, { "name": "_pk_id.53.36f3", - "value": "f7888ae3ccd5ca69.1732419393.", + "value": "8d5189ffc1b4e338.1733024683.", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1766374593, + "expires": 1766979883, "size": 42, "httpOnly": false, "secure": false, @@ -84663,8 +73589,8 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 03:36:31 GMT", - "last-modified": "Sunday, 24-Nov-2024 03:36:31 GMT", + "date": "Sun, 01 Dec 2024 03:44:41 GMT", + "last-modified": "Sunday, 01-Dec-2024 03:44:41 GMT", "server": "nginx", "strict-transport-security": "max-age=15552000", "transfer-encoding": "chunked", @@ -84850,37 +73776,37 @@ "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true @@ -84911,7 +73837,7 @@ { "requestedUrl": "https://datapass.api.gouv.fr/", "finalUrl": "https://datapass.api.gouv.fr/", - "fetchTime": "2024-11-24T03:36:07.328Z", + "fetchTime": "2024-12-01T03:44:11.701Z", "runWarnings": [], "categories": { "performance": { @@ -84922,7 +73848,7 @@ "snapshot" ], "id": "performance", - "score": 0.47 + "score": 0.52 }, "accessibility": { "title": "Accessibility", @@ -84974,53 +73900,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6177, + "numericValue": 5221, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1371, - "firstMeaningfulPaint": 1371, - "largestContentfulPaint": 6252, - "interactive": 6177, - "speedIndex": 3390, - "totalBlockingTime": 518, - "maxPotentialFID": 374, - "cumulativeLayoutShift": 0.5063296712239583, - "cumulativeLayoutShiftMainFrame": 0.5063296712239583, - "totalCumulativeLayoutShift": 0.5063296712239583, + "firstContentfulPaint": 1355, + "firstMeaningfulPaint": 1355, + "largestContentfulPaint": 5797, + "interactive": 5221, + "speedIndex": 3292, + "totalBlockingTime": 442, + "maxPotentialFID": 246, + "cumulativeLayoutShift": 0.46860072157118055, + "cumulativeLayoutShiftMainFrame": 0.46860072157118055, + "totalCumulativeLayoutShift": 0.46860072157118055, "observedTimeOrigin": 0, - "observedTimeOriginTs": 602316087, + "observedTimeOriginTs": 396754496, "observedNavigationStart": 0, - "observedNavigationStartTs": 602316087, - "observedFirstPaint": 967, - "observedFirstPaintTs": 603282603, - "observedFirstContentfulPaint": 967, - "observedFirstContentfulPaintTs": 603282603, - "observedFirstContentfulPaintAllFrames": 967, - "observedFirstContentfulPaintAllFramesTs": 603282603, - "observedFirstMeaningfulPaint": 967, - "observedFirstMeaningfulPaintTs": 603282603, - "observedLargestContentfulPaint": 1316, - "observedLargestContentfulPaintTs": 603631938, - "observedLargestContentfulPaintAllFrames": 1316, - "observedLargestContentfulPaintAllFramesTs": 603631938, - "observedTraceEnd": 3709, - "observedTraceEndTs": 606025518, - "observedLoad": 1308, - "observedLoadTs": 603623966, - "observedDomContentLoaded": 884, - "observedDomContentLoadedTs": 603200418, - "observedCumulativeLayoutShift": 0.5063296712239583, - "observedCumulativeLayoutShiftMainFrame": 0.5063296712239583, - "observedTotalCumulativeLayoutShift": 0.5063296712239583, - "observedFirstVisualChange": 976, - "observedFirstVisualChangeTs": 603292087, - "observedLastVisualChange": 1326, - "observedLastVisualChangeTs": 603642087, - "observedSpeedIndex": 1233, - "observedSpeedIndexTs": 603548690 + "observedNavigationStartTs": 396754496, + "observedFirstPaint": 1456, + "observedFirstPaintTs": 398210112, + "observedFirstContentfulPaint": 1456, + "observedFirstContentfulPaintTs": 398210112, + "observedFirstContentfulPaintAllFrames": 1456, + "observedFirstContentfulPaintAllFramesTs": 398210112, + "observedFirstMeaningfulPaint": 1456, + "observedFirstMeaningfulPaintTs": 398210112, + "observedLargestContentfulPaint": 2033, + "observedLargestContentfulPaintTs": 398787703, + "observedLargestContentfulPaintAllFrames": 2033, + "observedLargestContentfulPaintAllFramesTs": 398787703, + "observedTraceEnd": 4497, + "observedTraceEndTs": 401251030, + "observedLoad": 2041, + "observedLoadTs": 398795399, + "observedDomContentLoaded": 1378, + "observedDomContentLoadedTs": 398132137, + "observedCumulativeLayoutShift": 0.46860072157118055, + "observedCumulativeLayoutShiftMainFrame": 0.46860072157118055, + "observedTotalCumulativeLayoutShift": 0.46860072157118055, + "observedFirstVisualChange": 1462, + "observedFirstVisualChangeTs": 398216496, + "observedLastVisualChange": 2046, + "observedLastVisualChangeTs": 398800496, + "observedSpeedIndex": 1901, + "observedSpeedIndexTs": 398655220 }, { "lcpInvalidated": false @@ -85042,18 +73968,18 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 503, + "numTasks": 530, "numTasksOver10ms": 7, "numTasksOver25ms": 5, "numTasksOver50ms": 3, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 85.595, - "throughput": 12813161.55458923, - "maxRtt": 88.171, - "maxServerLatency": 2.937000000000012, - "totalByteWeight": 716997, - "totalTaskTime": 352.88299999999913, + "rtt": 143.466, + "throughput": 7862457.673163763, + "maxRtt": 151.288, + "maxServerLatency": 3.3519999999999754, + "totalByteWeight": 716995, + "totalTaskTime": 338.25499999999863, "mainDocumentTransferSize": 1351 } ] @@ -85142,7 +74068,7 @@ "width": 1920, "height": 1080, "url": "https://datapass.api.gouv.fr", - "size": 731.303, + "size": 731.3, "nodes": 110, "requests": 16, "grade": "A", @@ -85150,7 +74076,7 @@ "ges": 1.28, "water": 1.92, "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:32:51.781784", + "date": "2024-12-01 03:40:53.455961", "page_type": null } ], @@ -85174,8 +74100,8 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.47, - "lighthouse_performanceGrade": "D", + "lighthouse_performance": 0.52, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, @@ -85374,7 +74300,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T23:35:27Z", + "up_since": "2024-11-28T09:16:28Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -85385,8 +74311,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:45:16Z", - "next_check_at": "2024-11-24T03:46:16Z", + "last_check_at": "2024-12-01T03:51:16Z", + "next_check_at": "2024-12-01T03:52:16Z", "created_at": "2024-01-15T13:56:21Z", "mute_until": null, "favicon_url": "https://deveco.incubateur.anct.gouv.fr/dsfr/favicon/favicon.ico", @@ -85394,7 +74320,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:41:19Z", + "tested_at": "2024-12-01T03:42:20Z", "expires_at": "2025-01-25T06:20:05Z", "valid": true, "error": null @@ -85403,11 +74329,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 8, - "connection": 134, - "handshake": 142, - "response": 139, - "total": 423 + "namelookup": 6, + "connection": 105, + "handshake": 113, + "response": 111, + "total": 335 } }, "uptimeGrade": "A", @@ -85785,7 +74711,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -85946,7 +74872,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1732419861" + "finding": "1733025062" }, { "id": "HSTS_time", @@ -86523,7 +75449,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "72" + "finding": "74" } ], "thirdparties": { @@ -86534,7 +75460,7 @@ "value": "1", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1732421579, + "expires": 1733026779, "size": 16, "httpOnly": false, "secure": false, @@ -86546,10 +75472,10 @@ }, { "name": "_pk_id.15.1d54", - "value": "60a8b4291307f457.1732419779.", + "value": "c53b4e54548d549f.1733024979.", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1766374979, + "expires": 1766980179, "size": 42, "httpOnly": false, "secure": false, @@ -86565,7 +75491,7 @@ "cache-control": "public, max-age=0", "content-length": "20173", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 03:42:58 GMT", + "date": "Sun, 01 Dec 2024 03:49:38 GMT", "etag": "W/\"4ecd-18e578837f6\"", "last-modified": "Tue, 19 Mar 2024 16:25:28 GMT", "referrer-policy": "no-referrer", @@ -86836,7 +75762,7 @@ { "requestedUrl": "https://deveco.incubateur.anct.gouv.fr/", "finalUrl": "https://deveco.incubateur.anct.gouv.fr/", - "fetchTime": "2024-11-17T03:36:34.008Z", + "fetchTime": "2024-12-01T03:49:12.928Z", "runWarnings": [], "categories": { "performance": { @@ -86847,7 +75773,7 @@ "snapshot" ], "id": "performance", - "score": 0.42 + "score": 0.43 }, "accessibility": { "title": "Accessibility", @@ -86899,53 +75825,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11295, + "numericValue": 11608, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7506, - "firstMeaningfulPaint": 7549, - "largestContentfulPaint": 10443, - "interactive": 11295, - "speedIndex": 8440, - "totalBlockingTime": 77, - "maxPotentialFID": 122, + "firstContentfulPaint": 7676, + "firstMeaningfulPaint": 7700, + "largestContentfulPaint": 11603, + "interactive": 11608, + "speedIndex": 7720, + "totalBlockingTime": 86, + "maxPotentialFID": 180, "cumulativeLayoutShift": 0.2133937538994683, "cumulativeLayoutShiftMainFrame": 0.2133937538994683, "totalCumulativeLayoutShift": 0.2133937538994683, "observedTimeOrigin": 0, - "observedTimeOriginTs": 386257630, + "observedTimeOriginTs": 382494302, "observedNavigationStart": 0, - "observedNavigationStartTs": 386257630, - "observedFirstPaint": 1215, - "observedFirstPaintTs": 387472502, - "observedFirstContentfulPaint": 1215, - "observedFirstContentfulPaintTs": 387472502, - "observedFirstContentfulPaintAllFrames": 1215, - "observedFirstContentfulPaintAllFramesTs": 387472502, - "observedFirstMeaningfulPaint": 1215, - "observedFirstMeaningfulPaintTs": 387472502, - "observedLargestContentfulPaint": 1488, - "observedLargestContentfulPaintTs": 387746051, - "observedLargestContentfulPaintAllFrames": 1488, - "observedLargestContentfulPaintAllFramesTs": 387746051, - "observedTraceEnd": 4643, - "observedTraceEndTs": 390900175, - "observedLoad": 1692, - "observedLoadTs": 387949487, - "observedDomContentLoaded": 1170, - "observedDomContentLoadedTs": 387427644, + "observedNavigationStartTs": 382494302, + "observedFirstPaint": 979, + "observedFirstPaintTs": 383473662, + "observedFirstContentfulPaint": 979, + "observedFirstContentfulPaintTs": 383473662, + "observedFirstContentfulPaintAllFrames": 979, + "observedFirstContentfulPaintAllFramesTs": 383473662, + "observedFirstMeaningfulPaint": 979, + "observedFirstMeaningfulPaintTs": 383473662, + "observedLargestContentfulPaint": 1511, + "observedLargestContentfulPaintTs": 384004805, + "observedLargestContentfulPaintAllFrames": 1511, + "observedLargestContentfulPaintAllFramesTs": 384004805, + "observedTraceEnd": 4127, + "observedTraceEndTs": 386621254, + "observedLoad": 1489, + "observedLoadTs": 383983474, + "observedDomContentLoaded": 985, + "observedDomContentLoadedTs": 383479258, "observedCumulativeLayoutShift": 0.2133937538994683, "observedCumulativeLayoutShiftMainFrame": 0.2133937538994683, "observedTotalCumulativeLayoutShift": 0.2133937538994683, - "observedFirstVisualChange": 1226, - "observedFirstVisualChangeTs": 387483630, - "observedLastVisualChange": 1493, - "observedLastVisualChangeTs": 387750630, - "observedSpeedIndex": 1269, - "observedSpeedIndexTs": 387526165 + "observedFirstVisualChange": 990, + "observedFirstVisualChangeTs": 383484302, + "observedLastVisualChange": 1623, + "observedLastVisualChangeTs": 384117302, + "observedSpeedIndex": 1067, + "observedSpeedIndexTs": 383561324 }, { "lcpInvalidated": false @@ -86963,23 +75889,23 @@ "type": "debugdata", "items": [ { - "numRequests": 44, + "numRequests": 46, "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1372, - "numTasksOver10ms": 4, + "numTasks": 1326, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 98.673, - "throughput": 16126967.43731501, - "maxRtt": 110.002, - "maxServerLatency": 798.872, - "totalByteWeight": 2438718, - "totalTaskTime": 278.20699999999715, - "mainDocumentTransferSize": 20438 + "rtt": 84.54100000000001, + "throughput": 18618252.811463572, + "maxRtt": 86.19900000000001, + "maxServerLatency": 677.765, + "totalByteWeight": 2441344, + "totalTaskTime": 267.7949999999982, + "mainDocumentTransferSize": 20429 } ] } @@ -87090,7 +76016,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.42, + "lighthouse_performance": 0.43, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -87349,7 +76275,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-19T02:11:28Z", + "up_since": "2024-11-28T23:06:21Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -87361,8 +76287,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T03:50:11Z", - "next_check_at": "2024-11-24T03:55:08Z", + "last_check_at": "2024-12-01T03:57:35Z", + "next_check_at": "2024-12-01T04:02:35Z", "created_at": "2021-04-22T19:54:05Z", "mute_until": null, "favicon_url": null, @@ -87370,20 +76296,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:45:12Z", + "tested_at": "2024-12-01T03:12:56Z", "expires_at": "2025-01-04T08:44:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.996, + "apdex": 1, "timings": { - "redirect": 446, - "namelookup": 114, - "connection": 108, - "handshake": 114, - "response": 112, - "total": 896 + "redirect": 708, + "namelookup": 168, + "connection": 174, + "handshake": 181, + "response": 179, + "total": 1410 } }, "uptimeGrade": "A", @@ -87416,77 +76342,77 @@ "testssl": [ { "id": "service", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -87494,7 +76420,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -87502,7 +76428,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -87510,7 +76436,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -87518,7 +76444,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -87526,7 +76452,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -87534,455 +76460,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-10-06 08:44" }, { "id": "cert_notAfter", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-01-04 08:44" }, { "id": "cert_extlifeSpan", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732420238" + "finding": "1733025597" }, { "id": "HSTS_time", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -87990,7 +76916,7 @@ }, { "id": "heartbleed", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -87999,7 +76925,7 @@ }, { "id": "CCS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -88008,7 +76934,7 @@ }, { "id": "ticketbleed", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -88017,7 +76943,7 @@ }, { "id": "ROBOT", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -88026,7 +76952,7 @@ }, { "id": "secure_renego", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -88034,7 +76960,7 @@ }, { "id": "secure_client_renego", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -88043,7 +76969,7 @@ }, { "id": "CRIME_TLS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -88052,7 +76978,7 @@ }, { "id": "BREACH", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -88061,7 +76987,7 @@ }, { "id": "POODLE_SSL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -88070,14 +76996,14 @@ }, { "id": "fallback_SCSV", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -88086,7 +77012,7 @@ }, { "id": "FREAK", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -88095,7 +77021,7 @@ }, { "id": "DROWN", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -88104,7 +77030,7 @@ }, { "id": "DROWN_hint", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -88113,7 +77039,7 @@ }, { "id": "LOGJAM", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -88122,7 +77048,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -88131,7 +77057,7 @@ }, { "id": "BEAST", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -88140,7 +77066,7 @@ }, { "id": "LUCKY13", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -88149,7 +77075,7 @@ }, { "id": "winshock", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -88158,7 +77084,7 @@ }, { "id": "RC4", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -88167,392 +77093,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -88560,7 +77486,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -88568,7 +77494,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -88576,7 +77502,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -88584,7 +77510,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -88592,7 +77518,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -88600,455 +77526,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-10-06 08:44" }, { "id": "cert_notAfter", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-01-04 08:44" }, { "id": "cert_extlifeSpan", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732420337" + "finding": "1733025648" }, { "id": "HSTS_time", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -89056,7 +77982,7 @@ }, { "id": "heartbleed", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -89065,7 +77991,7 @@ }, { "id": "CCS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -89074,7 +78000,7 @@ }, { "id": "ticketbleed", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -89083,7 +78009,7 @@ }, { "id": "ROBOT", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -89092,7 +78018,7 @@ }, { "id": "secure_renego", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -89100,7 +78026,7 @@ }, { "id": "secure_client_renego", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -89109,7 +78035,7 @@ }, { "id": "CRIME_TLS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -89118,7 +78044,7 @@ }, { "id": "BREACH", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -89127,7 +78053,7 @@ }, { "id": "POODLE_SSL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -89136,14 +78062,14 @@ }, { "id": "fallback_SCSV", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -89152,7 +78078,7 @@ }, { "id": "FREAK", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -89161,7 +78087,7 @@ }, { "id": "DROWN", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -89170,7 +78096,7 @@ }, { "id": "DROWN_hint", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -89179,7 +78105,7 @@ }, { "id": "LOGJAM", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -89188,7 +78114,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -89197,7 +78123,7 @@ }, { "id": "BEAST", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -89206,7 +78132,7 @@ }, { "id": "LUCKY13", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -89215,7 +78141,7 @@ }, { "id": "winshock", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -89224,7 +78150,7 @@ }, { "id": "RC4", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -89233,325 +78159,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "198" + "finding": "105" } ], "thirdparties": { @@ -89571,7 +78497,7 @@ "value": "1", "domain": "www.dossierfacile.logement.gouv.fr", "path": "/", - "expires": 1732421942, + "expires": 1733027337, "size": 16, "httpOnly": false, "secure": false, @@ -89583,10 +78509,10 @@ }, { "name": "_pk_id.32.db4a", - "value": "4697ad7afca9ebf9.1732420142.", + "value": "34b9c87e2b0b1ccb.1733025537.", "domain": "www.dossierfacile.logement.gouv.fr", "path": "/", - "expires": 1766375342, + "expires": 1766980737, "size": 42, "httpOnly": false, "secure": false, @@ -89601,14 +78527,14 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.beta.gouv.fr 'unsafe-eval' 'unsafe-inline' https://client.crisp.chat ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com https://client.crisp.chat ; img-src 'self' *.dossierfacile.logement.gouv.fr *.cloudfront.net data: client.crisp.chat image.crisp.chat ; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data: https://client.crisp.chat ; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr https://dossierfacile.helpscoutdocs.com dossierfacile.crisp.help aide.dossierfacile.logement.gouv.fr; connect-src https://sentry.incubateur.net https://stats.beta.gouv.fr https://sheets.googleapis.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr client.crisp.chat wss://client.relay.crisp.chat", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 03:49:00 GMT", + "date": "Sun, 01 Dec 2024 03:58:56 GMT", "etag": "W/\"6734b721-fbf0\"", "last-modified": "Wed, 13 Nov 2024 14:26:41 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "deny", - "x-request-id": "c5e37089-dbd9-4fe7-955a-5252539f64be" + "x-request-id": "4cc5aee0-8896-4ad2-a247-8e8bd7ea3dc9" }, "endpoints": [ { @@ -89810,7 +78736,7 @@ { "requestedUrl": "https://dossierfacile.fr/", "finalUrl": "https://www.dossierfacile.logement.gouv.fr/", - "fetchTime": "2024-11-24T03:48:35.010Z", + "fetchTime": "2024-12-01T03:58:30.919Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://dossierfacile.fr/) was redirected to https://www.dossierfacile.logement.gouv.fr/. Try testing the second URL directly." ], @@ -89823,7 +78749,7 @@ "snapshot" ], "id": "performance", - "score": 0.8 + "score": 0.82 }, "accessibility": { "title": "Accessibility", @@ -89875,53 +78801,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5618, + "numericValue": 5114, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3326, - "firstMeaningfulPaint": 3326, - "largestContentfulPaint": 3326, - "interactive": 5618, - "speedIndex": 3986, - "totalBlockingTime": 137, - "maxPotentialFID": 323, + "firstContentfulPaint": 2730, + "firstMeaningfulPaint": 2730, + "largestContentfulPaint": 2730, + "interactive": 5114, + "speedIndex": 2850, + "totalBlockingTime": 324, + "maxPotentialFID": 485, "cumulativeLayoutShift": 0.004859578450520833, "cumulativeLayoutShiftMainFrame": 0.004859578450520833, "totalCumulativeLayoutShift": 0.004859578450520833, "observedTimeOrigin": 0, - "observedTimeOriginTs": 499811508, + "observedTimeOriginTs": 425632498, "observedNavigationStart": 0, - "observedNavigationStartTs": 499811508, - "observedFirstPaint": 1469, - "observedFirstPaintTs": 501280494, - "observedFirstContentfulPaint": 1469, - "observedFirstContentfulPaintTs": 501280494, - "observedFirstContentfulPaintAllFrames": 1469, - "observedFirstContentfulPaintAllFramesTs": 501280494, - "observedFirstMeaningfulPaint": 1469, - "observedFirstMeaningfulPaintTs": 501280494, - "observedLargestContentfulPaint": 1469, - "observedLargestContentfulPaintTs": 501280494, - "observedLargestContentfulPaintAllFrames": 1469, - "observedLargestContentfulPaintAllFramesTs": 501280494, - "observedTraceEnd": 4441, - "observedTraceEndTs": 504252127, - "observedLoad": 1910, - "observedLoadTs": 501721078, - "observedDomContentLoaded": 1662, - "observedDomContentLoadedTs": 501473783, + "observedNavigationStartTs": 425632498, + "observedFirstPaint": 929, + "observedFirstPaintTs": 426561223, + "observedFirstContentfulPaint": 929, + "observedFirstContentfulPaintTs": 426561223, + "observedFirstContentfulPaintAllFrames": 929, + "observedFirstContentfulPaintAllFramesTs": 426561223, + "observedFirstMeaningfulPaint": 929, + "observedFirstMeaningfulPaintTs": 426561223, + "observedLargestContentfulPaint": 929, + "observedLargestContentfulPaintTs": 426561223, + "observedLargestContentfulPaintAllFrames": 929, + "observedLargestContentfulPaintAllFramesTs": 426561223, + "observedTraceEnd": 3694, + "observedTraceEndTs": 429326358, + "observedLoad": 1188, + "observedLoadTs": 426820865, + "observedDomContentLoaded": 1065, + "observedDomContentLoadedTs": 426697247, "observedCumulativeLayoutShift": 0.004859578450520833, "observedCumulativeLayoutShiftMainFrame": 0.004859578450520833, "observedTotalCumulativeLayoutShift": 0.004859578450520833, - "observedFirstVisualChange": 1468, - "observedFirstVisualChangeTs": 501279508, - "observedLastVisualChange": 2085, - "observedLastVisualChangeTs": 501896508, - "observedSpeedIndex": 1481, - "observedSpeedIndexTs": 501292781 + "observedFirstVisualChange": 933, + "observedFirstVisualChangeTs": 426565498, + "observedLastVisualChange": 1550, + "observedLastVisualChangeTs": 427182498, + "observedSpeedIndex": 947, + "observedSpeedIndexTs": 426579103 }, { "lcpInvalidated": false @@ -89943,19 +78869,19 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1391, - "numTasksOver10ms": 2, - "numTasksOver25ms": 2, + "numTasks": 1365, + "numTasksOver10ms": 4, + "numTasksOver25ms": 4, "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 7642625.110451853, - "maxRtt": 154.642, - "maxServerLatency": 17.443, - "totalByteWeight": 614028, - "totalTaskTime": 258.4129999999969, - "mainDocumentTransferSize": 31921 + "throughput": 9305903.084047448, + "maxRtt": 87.373, + "maxServerLatency": 23.017000000000024, + "totalByteWeight": 614157, + "totalTaskTime": 383.60399999999703, + "mainDocumentTransferSize": 31919 } ] } @@ -90003,7 +78929,7 @@ "width": 1920, "height": 1080, "url": "https://dossierfacile.fr", - "size": 864.897, + "size": 865.104, "nodes": 369, "requests": 43, "grade": "B", @@ -90011,7 +78937,7 @@ "ges": 1.58, "water": 2.37, "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:45:35.368704", + "date": "2024-12-01 03:55:28.143379", "page_type": null } ], @@ -90021,7 +78947,7 @@ }, "summary": { "httpGrade": "B", - "apdex": 0.996, + "apdex": 1, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", @@ -90035,7 +78961,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.8, + "lighthouse_performance": 0.82, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -90320,7 +79246,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T03:56:51Z", + "up_since": "2024-11-30T11:02:56Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -90331,8 +79257,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:06:47Z", - "next_check_at": "2024-11-24T04:11:45Z", + "last_check_at": "2024-12-01T04:13:17Z", + "next_check_at": "2024-12-01T04:18:14Z", "created_at": "2021-04-22T19:59:30Z", "mute_until": null, "favicon_url": "https://emplois.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -90340,24 +79266,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T04:06:47Z", + "tested_at": "2024-12-01T03:38:31Z", "expires_at": "2025-01-13T12:10:29Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.928, + "apdex": 1, "timings": { - "redirect": 523, - "namelookup": 950, - "connection": 0, - "handshake": 123, - "response": 141, - "total": 1857 + "redirect": 454, + "namelookup": 0, + "connection": 109, + "handshake": 112, + "response": 131, + "total": 806 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "emplois.inclusion.beta.gouv.fr", @@ -90416,6 +79342,7 @@ { "service": { "name": "smtp", + "product": "Postfix smtpd", "id": "5221", "vulnerabilities": [] } @@ -90472,70 +79399,70 @@ "testssl": [ { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -90543,7 +79470,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -90551,7 +79478,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -90559,7 +79486,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -90567,7 +79494,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -90575,7 +79502,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -90583,490 +79510,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732420689" + "finding": "1733025857" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -91074,7 +80001,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -91083,7 +80010,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -91092,7 +80019,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -91101,7 +80028,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -91110,7 +80037,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -91118,7 +80045,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -91127,7 +80054,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -91136,7 +80063,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -91145,7 +80072,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -91154,14 +80081,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -91170,7 +80097,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -91179,7 +80106,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -91188,7 +80115,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -91197,7 +80124,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -91206,7 +80133,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -91215,7 +80142,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -91224,7 +80151,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -91233,7 +80160,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -91242,7 +80169,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -91251,315 +80178,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A+" @@ -91918,7 +80845,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", @@ -92079,7 +81006,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732420739" + "finding": "1733025914" }, { "id": "HSTS_time", @@ -92149,7 +81076,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", @@ -92660,70 +81587,70 @@ }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -92731,7 +81658,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -92739,7 +81666,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -92747,7 +81674,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -92755,7 +81682,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -92763,7 +81690,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -92771,490 +81698,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732420791" + "finding": "1733025970" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -93262,7 +82189,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -93271,7 +82198,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -93280,7 +82207,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -93289,7 +82216,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -93298,7 +82225,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -93306,7 +82233,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -93315,7 +82242,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -93324,7 +82251,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -93333,7 +82260,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -93342,14 +82269,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -93358,7 +82285,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -93367,7 +82294,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -93376,7 +82303,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -93385,7 +82312,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -93394,7 +82321,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -93403,7 +82330,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -93412,7 +82339,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -93421,7 +82348,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -93430,7 +82357,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -93439,385 +82366,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.220", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -93825,7 +82752,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -93833,7 +82760,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -93841,7 +82768,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -93849,7 +82776,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -93857,7 +82784,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -93865,490 +82792,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISBHihWKuI5Iso0mUR84BhHvzFMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE1MTIxMDMwWhcNMjUwMTEzMTIxMDI5WjApMScwJQYDVQQDEx5lbXBsb2lzLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCC2vEAnPgoXZC7Ekv+LSNEnYVi44iWPh+edDPxDMpYheQImpZZ9hz/EvJp39RH42vKkOhNeoV1NS/hYLDtu969L4cGJZNhut5r5e+onompkEn/YKjDwyQ8liTdbJvNWHSvntE1un6wZfWaY8+UQt699qgN44LYfKlKFYQds+euNMjOWTFPya6DMXiPFsKfXvNvWDn9B2kqAuZqtq8+pe/IsFvYYpaxvmWMui7q2acDS9wm1E/1V13XpdcPihCziywmI6Rw4LnuzqixPTFvaG9/aOI311LIm8iqLwdtjND3jhk5fF2ObfWUsi5Q9PbCYHIshks4rU8txIUzxBa76Iy9AgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFsVSxUkS4rYZSPQ7/ZCxPPpxfiuMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGSkEvPHQAABAMASDBGAiEAhj3rg15Q0+7KGoS3oG2gfefr9/71ffXMQN7InguXSdACIQCjom6B5rJa3TJHE5BqxWBaL779AuuQ32wrZRs3S+x5KwB2AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkpBLz10AAAQDAEcwRQIhAMPjAKA9x4mWdfyUGJi4C7++tSRgvrTQ8BZUlsp0GzPGAiBfvKG9iq7XY9E4Y+1x9Mh2VW1L3c4F5+wKanDJ/EtllzANBgkqhkiG9w0BAQsFAAOCAQEAI0JlQLCjvtfHXd079Ra9OfD2KuoAqn4Pt+utS68+Lsl7Mc/AzcGNm1Kq2UH22V9pQJaPhw9TuW4hutLPorgJjr7+9h1zDGKfN78nt6el9dZqoE1s4LIC9Q7BS0vvyJwtTRojbtoL/nEOZuGB6Q1kuhLpIj247+ANEnJ20ff6vl8aUY62LJbEw2O8CqZ/40bHvKkGItAGfSNwRLryDxW1Kl/gM6OKtcyQcYlHLKyZIwxUy8M8FFnxL0P2mEu4NZ8f2kTOhh+g45J3zWNIjVPKOAANC/3mub9VZYV0xEDm4kwpT+OJdh3HgGu4HCx1ikskmRbmZvUsomAhiF8aCHTITA==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1732420842" + "finding": "1733026027" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -94356,7 +83283,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -94365,7 +83292,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -94374,7 +83301,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -94383,7 +83310,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -94392,7 +83319,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -94400,7 +83327,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -94409,7 +83336,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -94418,7 +83345,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -94427,7 +83354,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -94436,14 +83363,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -94452,7 +83379,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -94461,7 +83388,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -94470,7 +83397,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -94479,7 +83406,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -94488,7 +83415,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -94497,7 +83424,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -94506,7 +83433,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -94515,7 +83442,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -94524,7 +83451,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -94533,385 +83460,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -94919,7 +83846,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -94927,7 +83854,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -94935,7 +83862,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -94943,7 +83870,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -94951,7 +83878,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -94959,490 +83886,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732420893" + "finding": "1733026083" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -95450,7 +84377,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -95459,7 +84386,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -95468,7 +84395,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -95477,7 +84404,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -95486,7 +84413,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -95494,7 +84421,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -95503,7 +84430,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -95512,7 +84439,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -95521,7 +84448,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -95530,14 +84457,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -95546,7 +84473,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -95555,7 +84482,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -95564,7 +84491,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -95573,7 +84500,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -95582,7 +84509,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -95591,7 +84518,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -95600,7 +84527,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -95609,7 +84536,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -95618,7 +84545,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -95627,385 +84554,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96013,7 +84940,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96021,7 +84948,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96029,7 +84956,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96037,7 +84964,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -96045,7 +84972,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -96053,490 +84980,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732420944" + "finding": "1733026139" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -96544,7 +85471,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -96553,7 +85480,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -96562,7 +85489,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -96571,7 +85498,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -96580,7 +85507,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -96588,7 +85515,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -96597,7 +85524,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -96606,7 +85533,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -96615,7 +85542,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -96624,14 +85551,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -96640,7 +85567,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -96649,7 +85576,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -96658,7 +85585,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -96667,7 +85594,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -96676,7 +85603,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -96685,7 +85612,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -96694,7 +85621,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -96703,7 +85630,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -96712,7 +85639,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -96721,385 +85648,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97107,7 +86034,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97115,7 +86042,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97123,7 +86050,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97131,7 +86058,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -97139,7 +86066,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -97147,490 +86074,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDTCCA/WgAwIBAgISBHihWKuI5Iso0mUR84BhHvzFMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE1MTIxMDMwWhcNMjUwMTEzMTIxMDI5WjApMScwJQYDVQQDEx5lbXBsb2lzLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCC2vEAnPgoXZC7Ekv+LSNEnYVi44iWPh+edDPxDMpYheQImpZZ9hz/EvJp39RH42vKkOhNeoV1NS/hYLDtu969L4cGJZNhut5r5e+onompkEn/YKjDwyQ8liTdbJvNWHSvntE1un6wZfWaY8+UQt699qgN44LYfKlKFYQds+euNMjOWTFPya6DMXiPFsKfXvNvWDn9B2kqAuZqtq8+pe/IsFvYYpaxvmWMui7q2acDS9wm1E/1V13XpdcPihCziywmI6Rw4LnuzqixPTFvaG9/aOI311LIm8iqLwdtjND3jhk5fF2ObfWUsi5Q9PbCYHIshks4rU8txIUzxBa76Iy9AgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFsVSxUkS4rYZSPQ7/ZCxPPpxfiuMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGSkEvPHQAABAMASDBGAiEAhj3rg15Q0+7KGoS3oG2gfefr9/71ffXMQN7InguXSdACIQCjom6B5rJa3TJHE5BqxWBaL779AuuQ32wrZRs3S+x5KwB2AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkpBLz10AAAQDAEcwRQIhAMPjAKA9x4mWdfyUGJi4C7++tSRgvrTQ8BZUlsp0GzPGAiBfvKG9iq7XY9E4Y+1x9Mh2VW1L3c4F5+wKanDJ/EtllzANBgkqhkiG9w0BAQsFAAOCAQEAI0JlQLCjvtfHXd079Ra9OfD2KuoAqn4Pt+utS68+Lsl7Mc/AzcGNm1Kq2UH22V9pQJaPhw9TuW4hutLPorgJjr7+9h1zDGKfN78nt6el9dZqoE1s4LIC9Q7BS0vvyJwtTRojbtoL/nEOZuGB6Q1kuhLpIj247+ANEnJ20ff6vl8aUY62LJbEw2O8CqZ/40bHvKkGItAGfSNwRLryDxW1Kl/gM6OKtcyQcYlHLKyZIwxUy8M8FFnxL0P2mEu4NZ8f2kTOhh+g45J3zWNIjVPKOAANC/3mub9VZYV0xEDm4kwpT+OJdh3HgGu4HCx1ikskmRbmZvUsomAhiF8aCHTITA==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1732420996" + "finding": "1733026194" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -97638,7 +86565,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -97647,7 +86574,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -97656,7 +86583,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -97665,7 +86592,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -97674,7 +86601,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -97682,7 +86609,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -97691,7 +86618,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -97700,7 +86627,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -97709,7 +86636,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -97718,14 +86645,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -97734,7 +86661,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -97743,7 +86670,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -97752,7 +86679,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -97761,7 +86688,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -97770,7 +86697,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -97779,7 +86706,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -97788,7 +86715,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -97797,7 +86724,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -97806,7 +86733,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -97815,385 +86742,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98201,7 +87128,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98209,7 +87136,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98217,7 +87144,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98225,7 +87152,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98233,7 +87160,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98241,490 +87168,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732421047" + "finding": "1733026250" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -98732,7 +87659,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -98741,7 +87668,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -98750,7 +87677,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -98759,7 +87686,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -98768,7 +87695,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -98776,7 +87703,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -98785,7 +87712,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -98794,7 +87721,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -98803,7 +87730,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -98812,14 +87739,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -98828,7 +87755,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -98837,7 +87764,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -98846,7 +87773,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -98855,7 +87782,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -98864,7 +87791,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -98873,7 +87800,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -98882,7 +87809,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -98891,7 +87818,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -98900,7 +87827,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -98909,385 +87836,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99295,7 +88222,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99303,7 +88230,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99311,7 +88238,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99319,7 +88246,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -99327,7 +88254,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -99335,490 +88262,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0478A158AB88E48B28D26511F380611EFCC5" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "3ABA9005BBEA6B6FCD58723B6A499C9FCE6B51E1" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "BD5B2D99A3EAB7BEE78BF803BA3F437B544C06AF593664FE3B8C35B2F108C869" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "50 >= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-10-15 12:10" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2025-01-13 12:10" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732421099" + "finding": "1733026305" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:" + "finding": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -99826,7 +88753,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -99835,7 +88762,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -99844,7 +88771,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -99853,7 +88780,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -99862,7 +88789,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -99870,7 +88797,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -99879,7 +88806,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -99888,7 +88815,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -99897,7 +88824,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -99906,14 +88833,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -99922,7 +88849,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -99931,7 +88858,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99940,7 +88867,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99949,7 +88876,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99958,7 +88885,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99967,7 +88894,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -99976,7 +88903,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -99985,7 +88912,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -99994,7 +88921,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -100003,325 +88930,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.223", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "464" + "finding": "508" } ], "thirdparties": { @@ -100330,23 +89257,23 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "7741", - "content-security-policy": "default-src 'self'; worker-src 'self' blob:; object-src 'none'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-cShA0e24/RDus32xUlYItw=='; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-cShA0e24/RDus32xUlYItw=='; font-src 'self' data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; style-src 'self' 'unsafe-inline'; base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:", + "content-length": "7752", + "content-security-policy": "connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/ https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ocxq5Ffda78IkvD6FC1QdA=='; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; default-src 'self'; object-src 'none'; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ocxq5Ffda78IkvD6FC1QdA=='; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://par.cellar.clever-cloud.com/c1-prod/news-images/ https://matomo.inclusion.beta.gouv.fr/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 03:57:10 GMT", + "date": "Sun, 01 Dec 2024 04:03:11 GMT", "referrer-policy": "same-origin", - "sozu-id": "01JDE51XEJC93R922RBA2K5FWM", + "sozu-id": "01JE065ZEQ0GZ16N3J5P6W7KC9", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "f2e65ce8-0897-447b-a2ff-3e1198ec9369" + "x-request-id": "14edc0cc-7674-40cf-bb5b-bc2e1e02eeda" }, "endpoints": [ { "hostname": "emplois.inclusion.beta.gouv.fr", - "ip": "91.208.207.217", + "ip": "91.208.207.216", "geoip": { "continent": { "code": "EU", @@ -100612,7 +89539,7 @@ { "requestedUrl": "https://emplois.inclusion.beta.gouv.fr/", "finalUrl": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "fetchTime": "2024-11-24T03:56:46.031Z", + "fetchTime": "2024-12-01T04:02:45.965Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://emplois.inclusion.beta.gouv.fr/) was redirected to https://emplois.inclusion.beta.gouv.fr/search/employers. Try testing the second URL directly." ], @@ -100677,53 +89604,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2140, + "numericValue": 2114, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2140, - "firstMeaningfulPaint": 2140, - "largestContentfulPaint": 3139, - "interactive": 2140, - "speedIndex": 2643, + "firstContentfulPaint": 2114, + "firstMeaningfulPaint": 2114, + "largestContentfulPaint": 3099, + "interactive": 2114, + "speedIndex": 2918, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0035070279439290363, - "cumulativeLayoutShiftMainFrame": 0.0035070279439290363, - "totalCumulativeLayoutShift": 0.0035070279439290363, + "cumulativeLayoutShift": 0.0024373346964518226, + "cumulativeLayoutShiftMainFrame": 0.0024373346964518226, + "totalCumulativeLayoutShift": 0.0024373346964518226, "observedTimeOrigin": 0, - "observedTimeOriginTs": 500569129, + "observedTimeOriginTs": 436342321, "observedNavigationStart": 0, - "observedNavigationStartTs": 500569129, - "observedFirstPaint": 816, - "observedFirstPaintTs": 501384952, - "observedFirstContentfulPaint": 816, - "observedFirstContentfulPaintTs": 501384952, - "observedFirstContentfulPaintAllFrames": 816, - "observedFirstContentfulPaintAllFramesTs": 501384952, - "observedFirstMeaningfulPaint": 816, - "observedFirstMeaningfulPaintTs": 501384952, - "observedLargestContentfulPaint": 816, - "observedLargestContentfulPaintTs": 501384952, - "observedLargestContentfulPaintAllFrames": 816, - "observedLargestContentfulPaintAllFramesTs": 501384952, - "observedTraceEnd": 3643, - "observedTraceEndTs": 504212414, - "observedLoad": 1245, - "observedLoadTs": 501813946, - "observedDomContentLoaded": 1130, - "observedDomContentLoadedTs": 501699320, - "observedCumulativeLayoutShift": 0.0035070279439290363, - "observedCumulativeLayoutShiftMainFrame": 0.0035070279439290363, - "observedTotalCumulativeLayoutShift": 0.0035070279439290363, - "observedFirstVisualChange": 827, - "observedFirstVisualChangeTs": 501396129, - "observedLastVisualChange": 1494, - "observedLastVisualChangeTs": 502063129, - "observedSpeedIndex": 1072, - "observedSpeedIndexTs": 501641267 + "observedNavigationStartTs": 436342321, + "observedFirstPaint": 961, + "observedFirstPaintTs": 437302922, + "observedFirstContentfulPaint": 961, + "observedFirstContentfulPaintTs": 437302922, + "observedFirstContentfulPaintAllFrames": 961, + "observedFirstContentfulPaintAllFramesTs": 437302922, + "observedFirstMeaningfulPaint": 961, + "observedFirstMeaningfulPaintTs": 437302922, + "observedLargestContentfulPaint": 961, + "observedLargestContentfulPaintTs": 437302922, + "observedLargestContentfulPaintAllFrames": 961, + "observedLargestContentfulPaintAllFramesTs": 437302922, + "observedTraceEnd": 3957, + "observedTraceEndTs": 440299788, + "observedLoad": 1542, + "observedLoadTs": 437884050, + "observedDomContentLoaded": 1319, + "observedDomContentLoadedTs": 437661205, + "observedCumulativeLayoutShift": 0.0024373346964518226, + "observedCumulativeLayoutShiftMainFrame": 0.0024373346964518226, + "observedTotalCumulativeLayoutShift": 0.0024373346964518226, + "observedFirstVisualChange": 973, + "observedFirstVisualChangeTs": 437315321, + "observedLastVisualChange": 1806, + "observedLastVisualChangeTs": 438148321, + "observedSpeedIndex": 1281, + "observedSpeedIndexTs": 437623328 }, { "lcpInvalidated": false @@ -100741,23 +89668,23 @@ "type": "debugdata", "items": [ { - "numRequests": 40, - "numScripts": 23, + "numRequests": 41, + "numScripts": 24, "numStylesheets": 2, "numFonts": 3, - "numTasks": 19, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 81.59200000000001, - "throughput": 12535944.297819814, - "maxRtt": 84.462, - "maxServerLatency": 81.57499999999996, - "totalByteWeight": 1045328, - "totalTaskTime": 3244.652, - "mainDocumentTransferSize": 9387 + "numTasks": 32, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 102.24, + "throughput": 8146610.360846712, + "maxRtt": 102.99600000000001, + "maxServerLatency": 102.277, + "totalByteWeight": 1061350, + "totalTaskTime": 4.733, + "mainDocumentTransferSize": 9425 } ] } @@ -100804,15 +89731,15 @@ "width": 1920, "height": 1080, "url": "https://emplois.inclusion.beta.gouv.fr", - "size": 1299.074, - "nodes": 475, - "requests": 40, + "size": 1315.17, + "nodes": 476, + "requests": 41, "grade": "C", "score": 64, "ges": 1.72, "water": 2.58, "ecoindex_version": "5.4.2", - "date": "2024-11-24 03:53:34.077010", + "date": "2024-12-01 03:59:46.640675", "page_type": "website" } ], @@ -100822,8 +89749,8 @@ }, "summary": { "httpGrade": "A+", - "apdex": 0.928, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", @@ -101078,7 +90005,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-20T03:12:47Z", + "up_since": "2024-11-29T18:57:55Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -101096,8 +90023,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:03:58Z", - "next_check_at": "2024-11-24T04:08:56Z", + "last_check_at": "2024-12-01T04:13:27Z", + "next_check_at": "2024-12-01T04:18:26Z", "created_at": "2023-09-29T16:58:13Z", "mute_until": null, "favicon_url": "https://entreprise.api.gouv.fr/assets/favicons/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", @@ -101105,7 +90032,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:58:59Z", + "tested_at": "2024-12-01T03:28:47Z", "expires_at": "2025-11-05T22:59:59Z", "valid": true, "error": null @@ -101114,11 +90041,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 31, - "connection": 15, - "handshake": 19, - "response": 134, - "total": 198 + "namelookup": 14, + "connection": 17, + "handshake": 21, + "response": 121, + "total": 173 } }, "uptimeGrade": "A", @@ -101491,7 +90418,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "OK", - "finding": "346 >= 60 days" + "finding": "339 >= 60 days" }, { "id": "cert_notBefore", @@ -101645,14 +90572,14 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1732421160" + "finding": "1733026518" }, { "id": "HSTS_time", @@ -102257,7 +91184,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "104" } ], "thirdparties": { @@ -102349,7 +91276,7 @@ "value": "1", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1732422883, + "expires": 1733028198, "size": 16, "httpOnly": false, "secure": false, @@ -102361,10 +91288,10 @@ }, { "name": "_pk_id.45.28f1", - "value": "a6a9b8e9261dae47.1732421083.", + "value": "9bef71977cd49b7b.1733026399.", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1766376283, + "expires": 1766981599, "size": 42, "httpOnly": false, "secure": false, @@ -102376,11 +91303,11 @@ }, { "name": "_admin_apientreprise_session", - "value": "PrbNDxYAfPMez6U4g0PSM3wjKdDqfn5%2FAzfRsQGNA9oGiUOzGcZEYiTX0lUr8CddDPDPFrKatk2bhMGgpphIQBzy%2BTMLioitjZh7piZ3Br5q6nvLXIuUYzYOOPn6%2FNEyhA23FGXTFdERlPnwoBNGzjJaghTrzadoJFL07GJ0JHu5Mj4BXiv7nf6NSHj91GXtF8mfg3Co6FSVFMnldssIZ%2FUnK7PCsj0BF9SBt%2Ft7FFCanXfxy5fHmgx1n386zqvxipYOBILqrfTw6TV3Cfzn7sNuFAqaapDWyfqsmVbAhblzQh7H--xT3hZgcNbIYuxsc3--fj8kurQV0kyXoZmrOicQUQ%3D%3D", + "value": "nVK58SBRq%2Fnj6SbqE%2FKatVnG%2FAGqFPNNkIsjkptGCP3Ffl0CUTjoDimpt7gqU9lerVdQg17eKhpiOwlUESo5NLXGPFhKNMIfoHZ%2FpO%2BJ1QgeLRjLIgGrt9fbunbyxd%2F78pTIzd4ig%2ByQSsR77ua2UqBOtvaoaBrr2vSx3g%2B4yVwG3BUM%2F%2BQQikNwe%2B0%2FkgBD4IvbdTAnneTSM3L%2FOSb02crU8XOj%2FfH8fv0fpEankSvh3DtP5p%2F7AT00lDvLnZAIfy9p%2BnIold%2B8Pj5jNQfL%2FEFf%2Bmbn63Y4HS4wrSQnWzO6BJ3z--U2JRQfTpZTxGnNZU--WQ7LZGT5kfqK63esC7IrlQ%3D%3D", "domain": "entreprise.api.gouv.fr", "path": "/", "expires": -1, - "size": 390, + "size": 418, "httpOnly": true, "secure": true, "session": true, @@ -102392,22 +91319,22 @@ ], "headers": { "connection": "keep-alive", - "content-length": "49315", + "content-length": "49357", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 04:04:42 GMT", + "date": "Sun, 01 Dec 2024 04:13:17 GMT", "server": "nginx", "strict-transport-security": "max-age=63072000", "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"655a46b41a1254fd444809d68f409807\"", + "etag": "W/\"da1a8709b7f6553f581e02c7dc96cdd7\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_admin_apientreprise_session=PrbNDxYAfPMez6U4g0PSM3wjKdDqfn5%2FAzfRsQGNA9oGiUOzGcZEYiTX0lUr8CddDPDPFrKatk2bhMGgpphIQBzy%2BTMLioitjZh7piZ3Br5q6nvLXIuUYzYOOPn6%2FNEyhA23FGXTFdERlPnwoBNGzjJaghTrzadoJFL07GJ0JHu5Mj4BXiv7nf6NSHj91GXtF8mfg3Co6FSVFMnldssIZ%2FUnK7PCsj0BF9SBt%2Ft7FFCanXfxy5fHmgx1n386zqvxipYOBILqrfTw6TV3Cfzn7sNuFAqaapDWyfqsmVbAhblzQh7H--xT3hZgcNbIYuxsc3--fj8kurQV0kyXoZmrOicQUQ%3D%3D; path=/; secure; httponly; samesite=lax", + "set-cookie": "_admin_apientreprise_session=nVK58SBRq%2Fnj6SbqE%2FKatVnG%2FAGqFPNNkIsjkptGCP3Ffl0CUTjoDimpt7gqU9lerVdQg17eKhpiOwlUESo5NLXGPFhKNMIfoHZ%2FpO%2BJ1QgeLRjLIgGrt9fbunbyxd%2F78pTIzd4ig%2ByQSsR77ua2UqBOtvaoaBrr2vSx3g%2B4yVwG3BUM%2F%2BQQikNwe%2B0%2FkgBD4IvbdTAnneTSM3L%2FOSb02crU8XOj%2FfH8fv0fpEankSvh3DtP5p%2F7AT00lDvLnZAIfy9p%2BnIold%2B8Pj5jNQfL%2FEFf%2Bmbn63Y4HS4wrSQnWzO6BJ3z--U2JRQfTpZTxGnNZU--WQ7LZGT5kfqK63esC7IrlQ%3D%3D; path=/; secure; httponly; samesite=lax", "vary": "Origin", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "3dec3edc-ddaa-421a-9122-6fe420e96a95", - "x-runtime": "0.100371", + "x-request-id": "15983ab7-2887-4b4e-bb98-014baecff998", + "x-runtime": "0.094752", "x-xss-protection": "0" }, "endpoints": [ @@ -102469,19 +91396,18 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.29.229", + "ip": "151.101.201.229", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 5380748, "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" + "de": "Palo Alto", + "en": "Palo Alto", + "es": "Palo Alto", + "fr": "Palo Alto", + "ja": "パロアルト", + "pt-BR": "Palo Alto", + "ru": "Пало Альто" } }, "continent": { @@ -102514,13 +91440,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 37.4433, + "longitude": -122.141, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20149" + "code": "94302" }, "registered_country": { "geoname_id": 6252001, @@ -102538,17 +91464,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -102556,7 +91482,7 @@ }, { "hostname": "unpkg.com", - "ip": "104.17.246.203", + "ip": "104.17.248.203", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -102662,7 +91588,7 @@ }, { "hostname": "hyperping.io", - "ip": "104.21.70.54", + "ip": "172.67.220.110", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -103017,7 +91943,7 @@ { "requestedUrl": "https://entreprise.api.gouv.fr/", "finalUrl": "https://entreprise.api.gouv.fr/", - "fetchTime": "2024-11-24T04:04:17.208Z", + "fetchTime": "2024-12-01T04:12:48.215Z", "runWarnings": [], "categories": { "performance": { @@ -103028,7 +91954,7 @@ "snapshot" ], "id": "performance", - "score": 0.71 + "score": 0.66 }, "accessibility": { "title": "Accessibility", @@ -103080,53 +92006,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7004, + "numericValue": 7743, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4009, - "firstMeaningfulPaint": 4009, - "largestContentfulPaint": 4241, - "interactive": 7004, - "speedIndex": 4009, - "totalBlockingTime": 20, - "maxPotentialFID": 90, - "cumulativeLayoutShift": 0.02160523732503255, - "cumulativeLayoutShiftMainFrame": 0.02160523732503255, - "totalCumulativeLayoutShift": 0.02160523732503255, + "firstContentfulPaint": 4439, + "firstMeaningfulPaint": 4439, + "largestContentfulPaint": 4734, + "interactive": 7743, + "speedIndex": 4625, + "totalBlockingTime": 21, + "maxPotentialFID": 92, + "cumulativeLayoutShift": 0.02076027594672309, + "cumulativeLayoutShiftMainFrame": 0.02076027594672309, + "totalCumulativeLayoutShift": 0.02076027594672309, "observedTimeOrigin": 0, - "observedTimeOriginTs": 467575783, + "observedTimeOriginTs": 503010335, "observedNavigationStart": 0, - "observedNavigationStartTs": 467575783, - "observedFirstPaint": 884, - "observedFirstPaintTs": 468459350, - "observedFirstContentfulPaint": 884, - "observedFirstContentfulPaintTs": 468459350, - "observedFirstContentfulPaintAllFrames": 884, - "observedFirstContentfulPaintAllFramesTs": 468459350, - "observedFirstMeaningfulPaint": 884, - "observedFirstMeaningfulPaintTs": 468459350, - "observedLargestContentfulPaint": 884, - "observedLargestContentfulPaintTs": 468459350, - "observedLargestContentfulPaintAllFrames": 884, - "observedLargestContentfulPaintAllFramesTs": 468459350, - "observedTraceEnd": 4271, - "observedTraceEndTs": 471847223, - "observedLoad": 1722, - "observedLoadTs": 469297912, - "observedDomContentLoaded": 974, - "observedDomContentLoadedTs": 468549872, - "observedCumulativeLayoutShift": 0.02160523732503255, - "observedCumulativeLayoutShiftMainFrame": 0.02160523732503255, - "observedTotalCumulativeLayoutShift": 0.02160523732503255, - "observedFirstVisualChange": 888, - "observedFirstVisualChangeTs": 468463783, - "observedLastVisualChange": 1222, - "observedLastVisualChangeTs": 468797783, - "observedSpeedIndex": 909, - "observedSpeedIndexTs": 468484593 + "observedNavigationStartTs": 503010335, + "observedFirstPaint": 1298, + "observedFirstPaintTs": 504308244, + "observedFirstContentfulPaint": 1298, + "observedFirstContentfulPaintTs": 504308244, + "observedFirstContentfulPaintAllFrames": 1298, + "observedFirstContentfulPaintAllFramesTs": 504308244, + "observedFirstMeaningfulPaint": 1298, + "observedFirstMeaningfulPaintTs": 504308244, + "observedLargestContentfulPaint": 1298, + "observedLargestContentfulPaintTs": 504308244, + "observedLargestContentfulPaintAllFrames": 1298, + "observedLargestContentfulPaintAllFramesTs": 504308244, + "observedTraceEnd": 5609, + "observedTraceEndTs": 508619181, + "observedLoad": 2950, + "observedLoadTs": 505960408, + "observedDomContentLoaded": 1435, + "observedDomContentLoadedTs": 504444905, + "observedCumulativeLayoutShift": 0.02076027594672309, + "observedCumulativeLayoutShiftMainFrame": 0.02076027594672309, + "observedTotalCumulativeLayoutShift": 0.02076027594672309, + "observedFirstVisualChange": 1302, + "observedFirstVisualChangeTs": 504312335, + "observedLastVisualChange": 1886, + "observedLastVisualChangeTs": 504896335, + "observedSpeedIndex": 1339, + "observedSpeedIndexTs": 504349659 }, { "lcpInvalidated": false @@ -103148,19 +92074,19 @@ "numScripts": 9, "numStylesheets": 2, "numFonts": 6, - "numTasks": 1877, + "numTasks": 2019, "numTasksOver10ms": 5, - "numTasksOver25ms": 1, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 20777898.86608914, - "maxRtt": 87.747, - "maxServerLatency": 194.78900000000002, - "totalByteWeight": 2178942, - "totalTaskTime": 327.86299999999795, - "mainDocumentTransferSize": 50520 + "throughput": 9706404.048522644, + "maxRtt": 152.426, + "maxServerLatency": 332.21599999999995, + "totalByteWeight": 2177348, + "totalTaskTime": 378.06099999999714, + "mainDocumentTransferSize": 50493 } ] } @@ -103255,7 +92181,7 @@ "width": 1920, "height": 1080, "url": "https://entreprise.api.gouv.fr", - "size": 2380.772, + "size": 2380.94, "nodes": 538, "requests": 67, "grade": "D", @@ -103263,7 +92189,7 @@ "ges": 1.96, "water": 2.94, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:01:18.200446", + "date": "2024-12-01 04:09:35.886678", "page_type": null } ], @@ -103287,8 +92213,8 @@ "cookiesCount": 3, "trackersGrade": "F", "trackersCount": 11, - "lighthouse_performance": 0.71, - "lighthouse_performanceGrade": "B", + "lighthouse_performance": 0.66, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.9, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, @@ -103603,7 +92529,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-20T05:05:36Z", + "up_since": "2024-11-26T07:23:39Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -103614,8 +92540,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:15:26Z", - "next_check_at": "2024-11-24T04:20:23Z", + "last_check_at": "2024-12-01T04:28:22Z", + "next_check_at": "2024-12-01T04:33:22Z", "created_at": "2021-04-22T19:59:31Z", "mute_until": null, "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -103623,7 +92549,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T03:50:36Z", + "tested_at": "2024-12-01T04:13:27Z", "expires_at": "2025-01-09T06:50:22Z", "valid": true, "error": null @@ -103631,12 +92557,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 540, - "namelookup": 82, - "connection": 83, - "handshake": 88, - "response": 153, - "total": 945 + "redirect": 1090, + "namelookup": 182, + "connection": 164, + "handshake": 168, + "response": 234, + "total": 1838 } }, "uptimeGrade": "A", @@ -104016,7 +92942,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", @@ -104177,7 +93103,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1732421920" + "finding": "1733027245" }, { "id": "HSTS", @@ -104770,10 +93696,10 @@ "cookies": [ { "name": "sessionid", - "value": "x1rqg7w2jv7950s8s42echw01siyvsr9", + "value": "zz9efungh9trna7627tpvvge4se0ct6i", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1733631443.768367, + "expires": 1734236768.544753, "size": 41, "httpOnly": true, "secure": true, @@ -104785,10 +93711,10 @@ }, { "name": "csrftoken", - "value": "835piHlIGgm9XQ6a1IuN3xPshZvs53nM", + "value": "lg11peeoBtPU4HiXiMh1l2rqYA3QcyQg", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1763871443.768217, + "expires": 1764476768.544615, "size": 41, "httpOnly": false, "secure": true, @@ -104802,15 +93728,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8673", - "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-bLBtPZk8nQpssY7EvtbjmQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-bLBtPZk8nQpssY7EvtbjmQ=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/", + "content-length": "8585", + "content-security-policy": "font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-pC1JbiIkbdimwYKMRcKuvA=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://browser.sentry-cdn.com https://js.sentry-cdn.com https://tally.so https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://matomo.inclusion.beta.gouv.fr/ 'nonce-pC1JbiIkbdimwYKMRcKuvA=='; frame-src 'self' https://tally.so https://www.youtube.com/embed/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 04:17:23 GMT", + "date": "Sun, 01 Dec 2024 04:26:08 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=835piHlIGgm9XQ6a1IuN3xPshZvs53nM; expires=Sun, 23 Nov 2025 04:17:23 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=x1rqg7w2jv7950s8s42echw01siyvsr9; expires=Sun, 08 Dec 2024 04:17:23 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01JDE66YKMV77940ZDGEGGS87D", + "set-cookie": "csrftoken=lg11peeoBtPU4HiXiMh1l2rqYA3QcyQg; expires=Sun, 30 Nov 2025 04:26:08 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=zz9efungh9trna7627tpvvge4se0ct6i; expires=Sun, 15 Dec 2024 04:26:08 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01JE07G0393P1DT9ZT0FR3ZZ8F", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -104962,8 +93888,59 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "104.18.186.31", + "ip": "146.75.29.229", "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -104977,7 +93954,23 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] } } ] @@ -105016,7 +94009,7 @@ { "requestedUrl": "https://forum.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T04:16:58.024Z", + "fetchTime": "2024-12-01T04:25:40.774Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://forum.inclusion.beta.gouv.fr/) was redirected to https://communaute.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -105081,53 +94074,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9575, + "numericValue": 9789, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 9575, - "firstMeaningfulPaint": 9575, - "largestContentfulPaint": 12452, - "interactive": 9575, - "speedIndex": 9575, + "firstContentfulPaint": 9789, + "firstMeaningfulPaint": 9789, + "largestContentfulPaint": 12664, + "interactive": 9789, + "speedIndex": 9789, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.04073464647928874, - "cumulativeLayoutShiftMainFrame": 0.04073464647928874, - "totalCumulativeLayoutShift": 0.04073464647928874, + "cumulativeLayoutShift": 0.040198369979858393, + "cumulativeLayoutShiftMainFrame": 0.040198369979858393, + "totalCumulativeLayoutShift": 0.040198369979858393, "observedTimeOrigin": 0, - "observedTimeOriginTs": 430110458, + "observedTimeOriginTs": 392499067, "observedNavigationStart": 0, - "observedNavigationStartTs": 430110458, - "observedFirstPaint": 1565, - "observedFirstPaintTs": 431675389, - "observedFirstContentfulPaint": 1565, - "observedFirstContentfulPaintTs": 431675389, - "observedFirstContentfulPaintAllFrames": 1565, - "observedFirstContentfulPaintAllFramesTs": 431675389, - "observedFirstMeaningfulPaint": 1565, - "observedFirstMeaningfulPaintTs": 431675389, - "observedLargestContentfulPaint": 1565, - "observedLargestContentfulPaintTs": 431675389, - "observedLargestContentfulPaintAllFrames": 1565, - "observedLargestContentfulPaintAllFramesTs": 431675389, - "observedTraceEnd": 4218, - "observedTraceEndTs": 434328899, - "observedLoad": 1822, - "observedLoadTs": 431932752, - "observedDomContentLoaded": 1575, - "observedDomContentLoadedTs": 431685888, - "observedCumulativeLayoutShift": 0.04073464647928874, - "observedCumulativeLayoutShiftMainFrame": 0.04073464647928874, - "observedTotalCumulativeLayoutShift": 0.04073464647928874, - "observedFirstVisualChange": 1572, - "observedFirstVisualChangeTs": 431682458, - "observedLastVisualChange": 2205, - "observedLastVisualChangeTs": 432315458, - "observedSpeedIndex": 1594, - "observedSpeedIndexTs": 431704398 + "observedNavigationStartTs": 392499067, + "observedFirstPaint": 1573, + "observedFirstPaintTs": 394072168, + "observedFirstContentfulPaint": 1573, + "observedFirstContentfulPaintTs": 394072168, + "observedFirstContentfulPaintAllFrames": 1573, + "observedFirstContentfulPaintAllFramesTs": 394072168, + "observedFirstMeaningfulPaint": 1573, + "observedFirstMeaningfulPaintTs": 394072168, + "observedLargestContentfulPaint": 1573, + "observedLargestContentfulPaintTs": 394072168, + "observedLargestContentfulPaintAllFrames": 1573, + "observedLargestContentfulPaintAllFramesTs": 394072168, + "observedTraceEnd": 4066, + "observedTraceEndTs": 396564644, + "observedLoad": 1668, + "observedLoadTs": 394167345, + "observedDomContentLoaded": 1604, + "observedDomContentLoadedTs": 394102582, + "observedCumulativeLayoutShift": 0.040198369979858393, + "observedCumulativeLayoutShiftMainFrame": 0.040198369979858393, + "observedTotalCumulativeLayoutShift": 0.040198369979858393, + "observedFirstVisualChange": 1585, + "observedFirstVisualChangeTs": 394084067, + "observedLastVisualChange": 2185, + "observedLastVisualChangeTs": 394684067, + "observedSpeedIndex": 1604, + "observedSpeedIndexTs": 394103069 }, { "lcpInvalidated": false @@ -105149,19 +94142,19 @@ "numScripts": 13, "numStylesheets": 4, "numFonts": 4, - "numTasks": 27, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 5.157, - "throughput": 20625565.916076347, - "maxRtt": 85.018, - "maxServerLatency": 126.81300000000002, - "totalByteWeight": 2427215, - "totalTaskTime": 5.213, - "mainDocumentTransferSize": 11175 + "numTasks": 20, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 5.056, + "throughput": 27960774.99211338, + "maxRtt": 84.605, + "maxServerLatency": 127.48299999999999, + "totalByteWeight": 2426234, + "totalTaskTime": 3327.21, + "mainDocumentTransferSize": 11012 } ] } @@ -105259,7 +94252,7 @@ "width": 1920, "height": 1080, "url": "https://forum.inclusion.beta.gouv.fr", - "size": 3149.572, + "size": 3149.381, "nodes": 447, "requests": 33, "grade": "C", @@ -105267,7 +94260,7 @@ "ges": 1.76, "water": 2.64, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:14:01.024341", + "date": "2024-12-01 04:22:37.331383", "page_type": "website" } ], @@ -105588,10 +94581,10 @@ "url": "https://histologe.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.911, + "uptime": 99.966, "down": false, "down_since": null, - "up_since": "2024-11-23T01:05:03Z", + "up_since": "2024-11-28T19:24:49Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -105602,8 +94595,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:23:51Z", - "next_check_at": "2024-11-24T04:28:49Z", + "last_check_at": "2024-12-01T04:29:17Z", + "next_check_at": "2024-12-01T04:34:14Z", "created_at": "2021-04-22T19:59:31Z", "mute_until": null, "favicon_url": "https://histologe.beta.gouv.fr/favicon.ico", @@ -105611,7 +94604,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T04:13:55Z", + "tested_at": "2024-12-01T04:24:19Z", "expires_at": "2025-01-18T07:40:39Z", "valid": true, "error": null @@ -105620,11 +94613,11 @@ "apdex": 0.5, "timings": { "redirect": 0, - "namelookup": 326, - "connection": 167, - "handshake": 173, - "response": 743, - "total": 1410 + "namelookup": 274, + "connection": 133, + "handshake": 139, + "response": 725, + "total": 1271 } }, "uptimeGrade": "A", @@ -105657,77 +94650,77 @@ "testssl": [ { "id": "service", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -105735,7 +94728,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -105743,7 +94736,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -105751,7 +94744,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -105759,7 +94752,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -105767,7 +94760,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -105775,518 +94768,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-10-20 07:40" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-01-18 07:40" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732422004" + "finding": "1733027377" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "X-Powered-By: none" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-cc0af24080a70df8d21d2696e2db0dd9'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" + "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-4ba51456177b580633b441ed8e3b8f98'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" }, { "id": "Permissions-Policy", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "geolocation=(), camera=(), microphone=(), payment=(), accelerometer=(), ambient-light-sensor=(), gyroscope=(), magnetometer=(), usb=(), vibrate=()" }, { "id": "X-XSS-Protection", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Access-Control-Allow-Origin", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Referrer-Policy", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -106294,7 +95287,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -106303,7 +95296,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -106312,7 +95305,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -106321,7 +95314,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -106330,7 +95323,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -106338,7 +95331,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -106347,7 +95340,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -106356,7 +95349,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -106365,7 +95358,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -106374,14 +95367,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -106390,7 +95383,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -106399,7 +95392,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -106408,7 +95401,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -106417,7 +95410,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -106426,7 +95419,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -106435,7 +95428,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -106444,7 +95437,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -106453,7 +95446,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -106462,7 +95455,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -106471,315 +95464,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" @@ -107131,7 +96124,7 @@ "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "55 >= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", @@ -107292,7 +96285,7 @@ "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732422067" + "finding": "1733027435" }, { "id": "HSTS_time", @@ -107376,7 +96369,7 @@ "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-13939e453d664094b026d11f812c7e04'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" + "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-5a1df766a1d836a205104586a4ecb50d'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" }, { "id": "Permissions-Policy", @@ -108260,7 +97253,7 @@ "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "55 >= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", @@ -108414,14 +97407,14 @@ "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732422125" + "finding": "1733027492" }, { "id": "HSTS_time", @@ -108505,7 +97498,7 @@ "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-aafceb596af7c251cc28013488b78b5f'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" + "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-39ca5480d67cba1d3999990650936f22'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" }, { "id": "Permissions-Policy", @@ -109044,77 +98037,77 @@ }, { "id": "service", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -109122,7 +98115,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -109130,7 +98123,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -109138,7 +98131,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -109146,7 +98139,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -109154,7 +98147,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -109162,518 +98155,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-10-20 07:40" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-01-18 07:40" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732422182" + "finding": "1733027551" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: none" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-080c086a66012e8890a4d8bc5b346d23'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" + "finding": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-f353839ec380bc20db52bca19a5d83cf'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';" }, { "id": "Permissions-Policy", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "geolocation=(), camera=(), microphone=(), payment=(), accelerometer=(), ambient-light-sensor=(), gyroscope=(), magnetometer=(), usb=(), vibrate=()" }, { "id": "X-XSS-Protection", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Access-Control-Allow-Origin", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Referrer-Policy", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -109681,7 +98674,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -109690,7 +98683,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -109699,7 +98692,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -109708,7 +98701,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -109717,7 +98710,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -109725,7 +98718,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -109734,7 +98727,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -109743,7 +98736,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -109752,7 +98745,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -109761,14 +98754,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -109777,7 +98770,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -109786,7 +98779,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -109795,7 +98788,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -109804,7 +98797,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -109813,7 +98806,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -109822,7 +98815,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -109831,7 +98824,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -109840,7 +98833,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -109849,7 +98842,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -109858,325 +98851,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "239" + "finding": "233" } ], "thirdparties": { @@ -110187,7 +99180,7 @@ }, { "type": "unknown", - "url": "https://histologe.matomo.cloud/matomo.php?action_name=Lutter%20contre%20le%20mal%20logement%20-%20Histologe&idsite=7&rec=1&r=084428&h=4&m=18&s=48&url=https%3A%2F%2Fhistologe.beta.gouv.fr%2F&_id=07bc211770439967&_idn=1&send_image=0&_refts=0&pv_id=V5VNIL&fa_pv=1&fa_fp[0][fa_vid]=Dkxz4B&fa_fp[0][fa_id]=front_postalcodesearch&fa_fp[0][fa_name]=postal_code_search&fa_fp[0][fa_fv]=1&fa_fp[1][fa_vid]=tjLKMZ&fa_fp[1][fa_id]=form-demande-lien-signalement&fa_fp[1][fa_name]=demande_lien_signalement&fa_fp[1][fa_fv]=1&pf_net=621&pf_srv=634&pf_tfr=84&pf_dm1=372&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + "url": "https://histologe.matomo.cloud/matomo.php?action_name=Lutter%20contre%20le%20mal%20logement%20-%20Histologe&idsite=7&rec=1&r=314601&h=4&m=28&s=22&url=https%3A%2F%2Fhistologe.beta.gouv.fr%2F&_id=171901143a617b6d&_idn=1&send_image=0&_refts=0&pv_id=XHChZ1&fa_pv=1&fa_fp[0][fa_vid]=X0e6EH&fa_fp[0][fa_id]=front_postalcodesearch&fa_fp[0][fa_name]=postal_code_search&fa_fp[0][fa_fv]=1&fa_fp[1][fa_vid]=VHt8dm&fa_fp[1][fa_id]=form-demande-lien-signalement&fa_fp[1][fa_name]=demande_lien_signalement&fa_fp[1][fa_fv]=1&pf_net=186&pf_srv=664&pf_tfr=82&pf_dm1=339&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" } ], "cookies": [ @@ -110196,7 +99189,7 @@ "value": "1", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1732423728, + "expires": 1733029102, "size": 15, "httpOnly": false, "secure": true, @@ -110208,10 +99201,10 @@ }, { "name": "_pk_id.7.fa00", - "value": "07bc211770439967.1732421929.", + "value": "171901143a617b6d.1733027302.", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1766377129, + "expires": 1766982502, "size": 41, "httpOnly": false, "secure": true, @@ -110223,7 +99216,7 @@ }, { "name": "PHPSESSID", - "value": "f9c75463c772c85654f1e2924107b60b", + "value": "5fb576a8992024c76cb2fdac87c1f66b", "domain": "histologe.beta.gouv.fr", "path": "/", "expires": -1, @@ -110243,16 +99236,16 @@ "access-control-allow-origin": "*", "cache-control": "max-age=0, must-revalidate, private", "content-encoding": "gzip", - "content-security-policy": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-7ab65d153140f528013736eef5d43f07'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';", + "content-security-policy": "default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/@mapbox/leaflet-omnivore@0.3.4/leaflet-omnivore.min.js https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ 'nonce-3aff0cd3c98e71b0e9f9cd5918413dbb'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/leaflet@1.9.4/dist/ https://cdn.jsdelivr.net/npm/leaflet.markercluster@1.5.3/dist/ https://cdn.jsdelivr.net/npm/tippy.js@6/dist/ https://cdn.jsdelivr.net/npm/quill@2.0.2/dist/ https://cdn.jsdelivr.net/npm/tinymce@7.1.2/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/swagger-ui/ https://cdn.jsdelivr.net/gh/nelmio/NelmioApiDocBundle/public/ https://fonts.googleapis.com; style-src-attr 'self' 'unsafe-inline'; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://cdn.jsdelivr.net https://jedonnemonavis.numerique.gouv.fr https://cdn.redoc.ly; worker-src 'self' blob:; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://histologe.matomo.cloud https://koumoul.com https://sentry.incubateur.net; font-src 'self' https://fonts.gstatic.com; frame-src 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; media-src 'self';", "content-type": "text/html; charset=UTF-8", "cross-origin-embedder-policy": "unsafe-none", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "cross-origin", - "date": "Sun, 24 Nov 2024 04:18:47 GMT", - "expires": "Sun, 24 Nov 2024 04:18:47 GMT", + "date": "Sun, 01 Dec 2024 04:28:21 GMT", + "expires": "Sun, 01 Dec 2024 04:28:21 GMT", "permissions-policy": "geolocation=(), camera=(), microphone=(), payment=(), accelerometer=(), ambient-light-sensor=(), gyroscope=(), magnetometer=(), usb=(), vibrate=()", "referrer-policy": "no-referrer", - "set-cookie": "PHPSESSID=f9c75463c772c85654f1e2924107b60b; path=/; secure; httponly; samesite=lax", + "set-cookie": "PHPSESSID=5fb576a8992024c76cb2fdac87c1f66b; path=/; secure; httponly; samesite=lax", "strict-transport-security": "max-age=31536000", "upgrade-insecure-requests": "1", "vary": "Accept-Encoding", @@ -110260,13 +99253,13 @@ "x-frame-options": "deny", "x-permitted-cross-domain-policies": "none", "x-powered-by": "none", - "x-request-id": "1ecd0db0-bec1-4b42-93f0-642e0a0d8fc7", + "x-request-id": "44db0c4a-d038-4769-942b-11a571d7d748", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "histologe.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -110322,7 +99315,7 @@ }, { "hostname": "cdn.matomo.cloud", - "ip": "3.167.99.112", + "ip": "3.167.99.72", "geoip": { "continent": { "code": "NA", @@ -110376,7 +99369,7 @@ }, { "hostname": "histologe.matomo.cloud", - "ip": "18.157.122.248", + "ip": "18.195.235.189", "geoip": { "city": { "geoname_id": 2925533, @@ -110627,7 +99620,7 @@ { "requestedUrl": "https://histologe.beta.gouv.fr/", "finalUrl": "https://histologe.beta.gouv.fr/", - "fetchTime": "2024-11-24T04:18:21.667Z", + "fetchTime": "2024-12-01T04:27:55.084Z", "runWarnings": [], "categories": { "performance": { @@ -110638,7 +99631,7 @@ "snapshot" ], "id": "performance", - "score": 0.95 + "score": 0.94 }, "accessibility": { "title": "Accessibility", @@ -110690,53 +99683,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1898, + "numericValue": 1981, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1898, - "firstMeaningfulPaint": 1898, - "largestContentfulPaint": 2695, - "interactive": 1898, - "speedIndex": 2595, + "firstContentfulPaint": 1981, + "firstMeaningfulPaint": 1981, + "largestContentfulPaint": 2680, + "interactive": 1981, + "speedIndex": 2986, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.003255208333333333, - "cumulativeLayoutShiftMainFrame": 0.003255208333333333, - "totalCumulativeLayoutShift": 0.003255208333333333, + "cumulativeLayoutShift": 0.0031440429687500005, + "cumulativeLayoutShiftMainFrame": 0.0031440429687500005, + "totalCumulativeLayoutShift": 0.0031440429687500005, "observedTimeOrigin": 0, - "observedTimeOriginTs": 422378010, + "observedTimeOriginTs": 394204595, "observedNavigationStart": 0, - "observedNavigationStartTs": 422378010, - "observedFirstPaint": 1137, - "observedFirstPaintTs": 423515388, - "observedFirstContentfulPaint": 1137, - "observedFirstContentfulPaintTs": 423515388, - "observedFirstContentfulPaintAllFrames": 1137, - "observedFirstContentfulPaintAllFramesTs": 423515388, - "observedFirstMeaningfulPaint": 1137, - "observedFirstMeaningfulPaintTs": 423515388, - "observedLargestContentfulPaint": 1137, - "observedLargestContentfulPaintTs": 423515388, - "observedLargestContentfulPaintAllFrames": 1137, - "observedLargestContentfulPaintAllFramesTs": 423515388, - "observedTraceEnd": 3734, - "observedTraceEndTs": 426111685, - "observedLoad": 1334, - "observedLoadTs": 423711828, - "observedDomContentLoaded": 1236, - "observedDomContentLoadedTs": 423613772, - "observedCumulativeLayoutShift": 0.003255208333333333, - "observedCumulativeLayoutShiftMainFrame": 0.003255208333333333, - "observedTotalCumulativeLayoutShift": 0.003255208333333333, - "observedFirstVisualChange": 1138, - "observedFirstVisualChangeTs": 423516010, - "observedLastVisualChange": 1755, - "observedLastVisualChangeTs": 424133010, - "observedSpeedIndex": 1151, - "observedSpeedIndexTs": 423528725 + "observedNavigationStartTs": 394204595, + "observedFirstPaint": 1378, + "observedFirstPaintTs": 395582551, + "observedFirstContentfulPaint": 1378, + "observedFirstContentfulPaintTs": 395582551, + "observedFirstContentfulPaintAllFrames": 1378, + "observedFirstContentfulPaintAllFramesTs": 395582551, + "observedFirstMeaningfulPaint": 1378, + "observedFirstMeaningfulPaintTs": 395582551, + "observedLargestContentfulPaint": 1378, + "observedLargestContentfulPaintTs": 395582551, + "observedLargestContentfulPaintAllFrames": 1378, + "observedLargestContentfulPaintAllFramesTs": 395582551, + "observedTraceEnd": 5352, + "observedTraceEndTs": 399556543, + "observedLoad": 1607, + "observedLoadTs": 395811277, + "observedDomContentLoaded": 1496, + "observedDomContentLoadedTs": 395700279, + "observedCumulativeLayoutShift": 0.0031440429687500005, + "observedCumulativeLayoutShiftMainFrame": 0.0031440429687500005, + "observedTotalCumulativeLayoutShift": 0.0031440429687500005, + "observedFirstVisualChange": 1379, + "observedFirstVisualChangeTs": 395583595, + "observedLastVisualChange": 1996, + "observedLastVisualChangeTs": 396200595, + "observedSpeedIndex": 1392, + "observedSpeedIndexTs": 395596509 }, { "lcpInvalidated": false @@ -110754,23 +99747,23 @@ "type": "debugdata", "items": [ { - "numRequests": 51, + "numRequests": 52, "numScripts": 7, "numStylesheets": 15, "numFonts": 4, - "numTasks": 28, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 5.853, - "throughput": 19459880.6480774, - "maxRtt": 95.22800000000001, - "maxServerLatency": 14.625, - "totalByteWeight": 491992, - "totalTaskTime": 4.694, - "mainDocumentTransferSize": 9740 + "numTasks": 19, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 1.8870000000000005, + "throughput": 35740139.04267196, + "maxRtt": 92.657, + "maxServerLatency": 88.56199999999998, + "totalByteWeight": 492240, + "totalTaskTime": 4483.322, + "mainDocumentTransferSize": 9755 } ] } @@ -110867,7 +99860,7 @@ "width": 1920, "height": 1080, "url": "https://histologe.beta.gouv.fr", - "size": 565.557, + "size": 565.53, "nodes": 332, "requests": 47, "grade": "B", @@ -110875,7 +99868,7 @@ "ges": 1.54, "water": 2.31, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:15:21.666404", + "date": "2024-12-01 04:24:50.322103", "page_type": "website" } ], @@ -110887,7 +99880,7 @@ "httpGrade": "A+", "apdex": 0.5, "apdexGrade": "F", - "uptime": 99.911, + "uptime": 99.966, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -110899,7 +99892,7 @@ "cookiesCount": 3, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.95, + "lighthouse_performance": 0.94, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -111139,8 +100132,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:34:01Z", - "next_check_at": "2024-11-24T04:38:58Z", + "last_check_at": "2024-12-01T04:40:45Z", + "next_check_at": "2024-12-01T04:45:44Z", "created_at": "2022-09-01T22:02:15Z", "mute_until": null, "favicon_url": "https://immersion-facile.beta.gouv.fr/assets/favicon-BMkCb9zi.ico", @@ -111148,7 +100141,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T04:14:06Z", + "tested_at": "2024-12-01T04:40:48Z", "expires_at": "2025-01-23T04:04:40Z", "valid": true, "error": null @@ -111157,11 +100150,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 256, - "connection": 135, - "handshake": 141, - "response": 137, - "total": 668 + "namelookup": 322, + "connection": 148, + "handshake": 152, + "response": 149, + "total": 772 } }, "uptimeGrade": "A", @@ -111194,77 +100187,77 @@ "testssl": [ { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -111272,7 +100265,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -111280,7 +100273,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -111288,7 +100281,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -111296,7 +100289,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -111304,7 +100297,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -111312,469 +100305,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-10-25 04:04" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-23 04:04" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732422703" + "finding": "1733028042" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -111782,7 +100775,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -111791,7 +100784,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -111800,7 +100793,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -111809,7 +100802,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -111818,7 +100811,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -111826,7 +100819,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -111835,7 +100828,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -111844,7 +100837,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -111853,7 +100846,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -111862,14 +100855,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -111878,7 +100871,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -111887,7 +100880,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -111896,7 +100889,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -111905,7 +100898,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -111914,7 +100907,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -111923,7 +100916,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -111932,7 +100925,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -111941,7 +100934,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -111950,7 +100943,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -111959,392 +100952,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -112352,7 +101345,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -112360,7 +101353,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -112368,7 +101361,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -112376,7 +101369,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -112384,7 +101377,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -112392,469 +101385,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-10-25 04:04" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-01-23 04:04" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732422762" + "finding": "1733028095" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -112862,7 +101855,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -112871,7 +101864,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -112880,7 +101873,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -112889,7 +101882,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -112898,7 +101891,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -112906,7 +101899,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -112915,7 +101908,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -112924,7 +101917,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -112933,7 +101926,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -112942,14 +101935,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -112958,7 +101951,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -112967,7 +101960,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -112976,7 +101969,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -112985,7 +101978,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -112994,7 +101987,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -113003,7 +101996,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -113012,7 +102005,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -113021,7 +102014,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -113030,7 +102023,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -113039,392 +102032,1390 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "109" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://sentry.gip-inclusion.cloud-ed.fr/api/2/envelope/?sentry_key=c2909f1d7f384d17bde3e75e250f2828&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.119.1" + } + ], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 04:39:30 GMT", + "etag": "W/\"6746f3fd-8ef\"", + "last-modified": "Wed, 27 Nov 2024 10:27:09 GMT", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-request-id": "204fdd75-88bb-44ad-bb8e-18a686f15f03", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "immersion-facile.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "sentry.gip-inclusion.cloud-ed.fr", + "ip": "154.41.70.31", + "geoip": { + "city": { + "geoname_id": 2972191, + "names": { + "de": "Tours", + "en": "Tours", + "es": "Tours", + "fr": "Tours", + "ja": "トゥール", + "pt-BR": "Tours", + "ru": "Тур", + "zh-CN": "图尔" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 47.3983, + "longitude": 0.7037, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3027939, + "iso_code": "CVL", + "names": { + "de": "Centre-Val de Loire", + "en": "Centre-Val de Loire", + "es": "Centro-Valle de Loira", + "fr": "Centre-Val de Loire", + "ja": "サントル=ヴァル・ド・ロワール地域圏", + "pt-BR": "Centro", + "ru": "Центр — Долина Луары" + } + }, + { + "geoname_id": 3012804, + "iso_code": "37", + "names": { + "de": "Indre-et-Loire", + "en": "Indre-et-Loire", + "es": "Indre y Loira", + "fr": "Indre-et-Loire", + "ja": "アンドル=エ=ロワール県", + "pt-BR": "Indre-et-Loire", + "ru": "Эндр и Луара", + "zh-CN": "安德尔-卢瓦尔省" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://immersion-facile.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "leaflet", + "name": "Leaflet", + "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", + "confidence": 100, + "version": "1.9.4", + "icon": "Leaflet.png", + "website": "https://leafletjs.com", + "cpe": null, + "categories": [ + { + "id": 35, + "slug": "maps", + "name": "Maps" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "livefyre", + "name": "Livefyre", + "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", + "confidence": 0, + "version": "1.9.4", + "icon": "Livefyre.png", + "website": "https://livefyre.com", + "cpe": null, + "categories": [ + { + "id": 15, + "slug": "comment-systems", + "name": "Comment systems" + } + ], + "rootPath": true + }, + { + "slug": "linkedin-ads", + "name": "Linkedin Ads", + "description": "Linkedin Ads is a paid marketing tool that offers access to Linkedin social networks through various sponsored posts and other methods.", + "confidence": 100, + "version": null, + "icon": "Linkedin.svg", + "website": "https://business.linkedin.com/marketing-solutions/ads", + "cpe": null, + "categories": [ + { + "id": 36, + "slug": "advertising", + "name": "Advertising" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://immersion-facile.beta.gouv.fr/", + "finalUrl": "https://immersion-facile.beta.gouv.fr/", + "fetchTime": "2024-12-01T04:39:05.872Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.31 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9102, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 6029, + "firstMeaningfulPaint": 6104, + "largestContentfulPaint": 6881, + "interactive": 9102, + "speedIndex": 6569, + "totalBlockingTime": 948, + "maxPotentialFID": 503, + "cumulativeLayoutShift": 0.09948935190836589, + "cumulativeLayoutShiftMainFrame": 0.09948935190836589, + "totalCumulativeLayoutShift": 0.09948935190836589, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 430049818, + "observedNavigationStart": 0, + "observedNavigationStartTs": 430049818, + "observedFirstPaint": 1227, + "observedFirstPaintTs": 431277013, + "observedFirstContentfulPaint": 1227, + "observedFirstContentfulPaintTs": 431277013, + "observedFirstContentfulPaintAllFrames": 1227, + "observedFirstContentfulPaintAllFramesTs": 431277013, + "observedFirstMeaningfulPaint": 1227, + "observedFirstMeaningfulPaintTs": 431277013, + "observedLargestContentfulPaint": 1227, + "observedLargestContentfulPaintTs": 431277013, + "observedLargestContentfulPaintAllFrames": 1227, + "observedLargestContentfulPaintAllFramesTs": 431277013, + "observedTraceEnd": 3865, + "observedTraceEndTs": 433915197, + "observedLoad": 1115, + "observedLoadTs": 431164688, + "observedDomContentLoaded": 1026, + "observedDomContentLoadedTs": 431075806, + "observedCumulativeLayoutShift": 0.09948935190836589, + "observedCumulativeLayoutShiftMainFrame": 0.09948935190836589, + "observedTotalCumulativeLayoutShift": 0.09948935190836589, + "observedFirstVisualChange": 1232, + "observedFirstVisualChangeTs": 431281818, + "observedLastVisualChange": 1449, + "observedLastVisualChangeTs": 431498818, + "observedSpeedIndex": 1272, + "observedSpeedIndexTs": 431322246 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 46, + "numScripts": 7, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 1673, + "numTasksOver10ms": 13, + "numTasksOver25ms": 5, + "numTasksOver50ms": 3, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 81.97200000000001, + "throughput": 18618657.872116197, + "maxRtt": 83.667, + "maxServerLatency": 89.314, + "totalByteWeight": 1391619, + "totalTaskTime": 647.0229999999947, + "mainDocumentTransferSize": 1741 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "l-immersion-facile", + "type": "startup", + "attributes": { + "name": "Immersion facilitée", + "pitch": "Faciliter la réalisation des immersions professionnelles", + "stats_url": "https://immersion-facile.beta.gouv.fr/stats", + "budget_url": "https://immersion-facile.beta.gouv.fr/pages/budget", + "link": "https://immersion-facile.beta.gouv.fr/", + "repository": "https://github.com/gip-inclusion/immersion-facile", + "contact": "contact@immersion-facile.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AL%E2%80%99immersion%20professionnelle%20ou%20p%C3%A9riode%20de%20mise%20en%20situation%20professionnelle%20%28PMSMP%29%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9e%20en%202014%20pour%20permettre%20%C3%A0%20toute%20personne%20en%20recherche%20d%E2%80%99emploi%20ou%20tout%20actif%20occup%C3%A9%20de%20v%C3%A9rifier%20qu%E2%80%99un%20m%C3%A9tier%20lui%20convient%20afin%20de%20s%C3%A9curiser%20son%20projet%20professionnel.%20C%E2%80%99est%20un%20levier%20puissant%20de%20retour%20%C3%A0%20l%E2%80%99emploi%20utilis%C3%A9%20par%20les%20prescripteurs%20pour%20aider%20les%20usagers%20%C3%A0%20s%E2%80%99orienter%2C%20valider%20une%20piste%20professionnelle%20ou%20une%20formation%2C%20ou%20concr%C3%A9tiser%20un%20projet%20d%E2%80%99insertion.%0A%0AAujourd%E2%80%99hui%2C%20%C3%A0%20peine%20350%20000%20immersions%20professionnelles%20par%20an%20sont%20r%C3%A9alis%C3%A9es.%20Quand%20elles%20le%20sont%2C%20le%20bilan%20qui%20en%20est%20tir%C3%A9%20est%20peu%20et%20mal%20capitalis%C3%A9.%20Il%20est%2C%20de%20ce%20fait%2C%20souvent%20oubli%C3%A9%20dans%20la%20suite%20du%20parcours%20du%20b%C3%A9n%C3%A9ficiaire.%0A%0A%2APourquoi%20si%20peu%20d%E2%80%99immersions%20%3F%2A%0A%0AParce%20que%20les%20personnes%20qui%20cherchent%20%C3%A0%20faire%20une%20immersion%20n%E2%80%99ont%20pas%20d%27outil%20%C3%A0%20leur%20disposition%20leur%20permettant%20d%E2%80%99identifier%20des%20entreprises%20o%C3%B9%20s%E2%80%99adresser.%0AEt%20parce%20que%20le%20process%20administratif%20pour%20avoir%20l%E2%80%99accord%20de%20faire%20une%20immersion%20est%20lourd%20et%20chronophage.%20Les%20conseillers%20des%20missions%20locales%20ou%20de%20P%C3%B4le%20emploi%20demandent%20un%20d%C3%A9lai%20minimal%20de%2015%20jours%20entre%20l%E2%80%99envoi%20d%E2%80%99une%20demande%20et%20la%20date%20de%20d%C3%A9marrage%20d%E2%80%99une%20immersion.%20Des%20prescripteurs%20exigent%20encore%20la%20transmission%20en%20mains%20propres%20du%20CERFA%20de%20la%20convention%20avec%20signatures%20originales%20des%20parties%20et%20cachet%20de%20l%E2%80%99entreprise.%0AR%C3%A9sultats%2C%20des%20d%C3%A9lais%20tr%C3%A8s%20longs%20pour%20des%20immersions%20d%E2%80%99une%20dur%C3%A9e%20courte%2C%20des%20d%C3%A9placements%20et%20des%20abandons%20avant%20le%20d%C3%A9marrage%20de%20l%E2%80%99immersion.%0A%0A%2APourquoi%20les%20%C3%A9valuations%20sont%20si%20mal%20capitalis%C3%A9es%20%3F%2A%0A%0AParce%20qu%E2%80%99il%20existe%20autant%20de%20formes%20de%20bilan%20qu%E2%80%99il%20y%20a%20de%20structures%20accompagnantes.%20Il%20s%E2%80%99agit%2C%20le%20plus%20souvent%2C%20d%E2%80%99une%20fiche%20papier%20%C3%A0%20compl%C3%A9ter%20et%20%C3%A0%20renvoyer%20par%20mail%20et%20trop%20peu%20souvent%20saisi%20dans%20le%20dossier%20de%20la%20personne%20concern%C3%A9e.%0A%0A%23%23%20Notre%20service%0A%0AMettre%20%C3%A0%20disposition%20des%20acteurs%20de%20l%E2%80%99orientation%20et%20de%20l%E2%80%99insertion%20professionnelle%20un%20commun%20num%C3%A9rique%2C%20%E2%80%9CImmersion%20facilit%C3%A9e%E2%80%9D%20reposant%20sur%20deux%20piliers%20%3A%0A%0A%2A%20la%20d%C3%A9mat%C3%A9rialisation%20de%20la%20convention%20et%2C%20%C3%A0%20terme%2C%20du%20bilan%0A%2A%20une%20base%20entreprises%20immersions%20construite%20sur%20un%20annuaire%20d%E2%80%99entreprises%20accueillantes%2C%20volontaires%20pour%20accueillir%20en%20immersion%20professionnelle%20sur%20leurs%20m%C3%A9tiers.%20Cette%20base%20entreprise%20est%20enrichie%20par%20l%E2%80%99appel%20%C3%A0%20des%20bases%20existantes%20%28La%20Bonne%20Bo%C3%AEte%20%E2%80%A6%29%20L%E2%80%99objectif%20est%20de%20n%E2%80%99avoir%20plus%20besoin%20d%E2%80%99appeler%20des%20bases%20compl%C3%A9mentaires.%0A%20%20La%20base%20est%20accessible%20gr%C3%A2ce%20%C3%A0%20un%20moteur%20de%20recherche%20et%20un%20parcours%20utilisateur%20simple%20incluant%20la%20mise%20en%20relation%20avec%20l%E2%80%99entreprise%20puis%20la%20demande%20de%20convention%2C%20%20jusqu%E2%80%99au%20d%C3%A9marrage%20de%20l%E2%80%99immersion.%0A%0A%2A%2ALes%20r%C3%A9sultats%20attendus%20%3A%2A%2A%0A%0Aun%20nombre%20croissant%20d%E2%80%99immersions%20r%C3%A9alis%C3%A9es%20en%20ann%C3%A9e%20pleine.%0Aune%20baisse%20significative%20du%20d%C3%A9lai%20de%20validation%20%3A%20le%20d%C3%A9lai%20moyen%20de%20validation%20sur%20Immersion%20Facilit%C3%A9e%20est%20de%2048h.%0Aune%20baisse%20significative%20du%20d%C3%A9lai%20de%20d%C3%A9marrage%20d%E2%80%99une%20immersion%20%3A%20les%20demandes%20de%20convention%20sont%20d%C3%A9sormais%20majoritairement%20transmises%20une%20semaine%20avant%20la%20date%20de%20d%C3%A9marrage%0Aune%20baisse%20significative%20du%20taux%20d%E2%80%99annulation%20ante%20immersion%0Al%E2%80%99int%C3%A9gration%20syst%C3%A9matique%20du%20bilan%20d%E2%80%99une%20immersion%20dans%20le%20dossier%20du%20b%C3%A9n%C3%A9ficiaire%0A", + "events": [ + { + "name": "national_impact", + "date": "2023-12-31", + "comment": "" + }, + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 300000€ pour la promotion 14" + } + ], + "phases": [ + { + "name": "construction", + "start": "2021-07-16", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-05-31", + "end": "" + } + ], + "sponsors": [ + "francetravail", + "mtei", + "mtfp" + ], + "thematiques": [ + "Travail / Emploi", + "Formation" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/immersion-facile-beta-gouv-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "gip-inclusion" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://immersion-facile.beta.gouv.fr", + "size": 1468.127, + "nodes": 469, + "requests": 28, + "grade": "C", + "score": 66, + "ges": 1.68, + "water": 2.52, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 04:35:59.280226", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "C+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-23T04:04:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.31, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://portail-rse.beta.gouv.fr", + "category": "dinum", + "betaId": "portail-rse", + "http": { + "url": "https://portail-rse.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 04:15:10 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "frame-src 'self' stats.portail-rse.beta.gouv.fr; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; default-src 'self' sentry.incubateur.net; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; script-src 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'nonce-AKLJpyO2LUJcfVtvpXV5Jw==' stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 04:15:10 GMT", + "Referrer-Policy": "same-origin", + "Transfer-Encoding": "chunked", + "Vary": "Cookie", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "568f7fea-b719-422f-ae32-5964b4f39d2d", + "strict-transport-security": "max-age=31536000" }, - { - "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57050158, + "score": 110, + "start_time": "Sun, 20 Oct 2024 04:15:08 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "stats.beta.gouv.fr", + "sentry.incubateur.net", + "'self'" + ], + "default-src": [ + "sentry.incubateur.net", + "'self'" + ], + "frame-src": [ + "stats.portail-rse.beta.gouv.fr", + "'self'" + ], + "img-src": [ + "stats.beta.gouv.fr", + "data:", + "'self'" + ], + "report-uri": [ + "https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + ], + "script-src": [ + "stats.portail-rse.beta.gouv.fr", + "'self'" + ], + "script-src-attr": [ + "stats.portail-rse.beta.gouv.fr", + "'self'" + ], + "script-src-elem": [ + "stats.beta.gouv.fr", + "'nonce-akljpyo2lujcfvtvpxv5jw=='", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://portail-rse.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://portail-rse.beta.gouv.fr/", + "https://portail-rse.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://browser.sentry-cdn.com/8.28.0/bundle.tracing.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-GVaBBYGuaNuY8QXk8YojAIgLouf6OZ9bSBQRZ69jdPLVgNCZr6yFpW5vU/yXHXRb" + } + } + }, + "pass": true, + "result": "sri-implemented-and-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded securely", + "score_modifier": 5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "rrdq", + "url": "https://portail-rse.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T07:12:47Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T04:47:37Z", + "next_check_at": "2024-12-01T04:48:36Z", + "created_at": "2024-01-15T13:56:21Z", + "mute_until": null, + "favicon_url": "https://portail-rse.beta.gouv.fr/static/dsfr/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T04:45:39Z", + "expires_at": "2025-01-17T08:07:46Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.992, + "timings": { + "redirect": 0, + "namelookup": 259, + "connection": 126, + "handshake": 131, + "response": 150, + "total": 665 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "portail-rse.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -113432,7 +103423,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -113440,7 +103431,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -113448,7 +103439,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -113456,7 +103447,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -113464,7 +103455,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -113472,469 +103463,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-25 04:04" + "finding": "2024-10-19 08:07" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-23 04:04" + "finding": "2025-01-17 08:07" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732422819" + "finding": "1733028376" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, + { + "id": "X-Frame-Options", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'" + "finding": "connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; img-src 'self' data: stats.beta.gouv.fr; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; script-src-elem 'self' 'nonce-aYe/g4tDbzSzzwcM3GVZNQ==' stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" }, { - "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "id": "Referrer-Policy", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -113942,7 +103940,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -113951,7 +103949,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -113960,7 +103958,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -113969,7 +103967,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -113978,7 +103976,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -113986,7 +103984,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -113995,7 +103993,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -114004,7 +104002,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -114013,7 +104011,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -114022,14 +104020,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -114038,7 +104036,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -114047,7 +104045,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -114056,16 +104054,16 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BBE554DCC8A92EE493ABD86BD18E0D7FA8F94E605B1D84AC9310ADFFEBD371D3" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -114074,7 +104072,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -114083,7 +104081,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -114092,7 +104090,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -114101,7 +104099,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -114110,7 +104108,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -114119,392 +104117,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -114512,7 +104510,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -114520,7 +104518,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -114528,7 +104526,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -114536,7 +104534,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -114544,7 +104542,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -114552,469 +104550,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-25 04:04" + "finding": "2024-10-19 08:07" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-23 04:04" + "finding": "2025-01-17 08:07" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732422882" + "finding": "1733028434" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, + { + "id": "X-Frame-Options", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'" + "finding": "script-src-attr 'self' stats.portail-rse.beta.gouv.fr; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; script-src 'self' stats.portail-rse.beta.gouv.fr; default-src 'self' sentry.incubateur.net; font-src 'self' data:; style-src 'self' 'unsafe-inline'; frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-elem 'self' 'nonce-kxXqLf4jwzJyFyhnLjBTlw==' stats.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" }, { - "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "id": "Referrer-Policy", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -115022,7 +105027,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -115031,7 +105036,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -115040,7 +105045,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -115049,7 +105054,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -115058,7 +105063,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -115066,7 +105071,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -115075,7 +105080,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -115084,7 +105089,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -115093,7 +105098,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -115102,14 +105107,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -115118,7 +105123,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -115127,7 +105132,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -115136,16 +105141,16 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BBE554DCC8A92EE493ABD86BD18E0D7FA8F94E605B1D84AC9310ADFFEBD371D3" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -115154,7 +105159,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -115163,7 +105168,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -115172,7 +105177,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -115181,7 +105186,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -115190,7 +105195,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -115199,352 +105204,352 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "240" + "finding": "122" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://sentry.gip-inclusion.cloud-ed.fr/api/2/envelope/?sentry_key=c2909f1d7f384d17bde3e75e250f2828&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.119.1" + "url": "https://browser.sentry-cdn.com/8.28.0/bundle.tracing.min.js" } ], "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com https://immersion-dev.cellar-c2.services.clever-cloud.com https://immersion-staging.cellar-c2.services.clever-cloud.com *.openstreetmap.org 'unsafe-inline' 'unsafe-eval'", + "content-security-policy": "script-src-attr 'self' stats.portail-rse.beta.gouv.fr; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; script-src 'self' stats.portail-rse.beta.gouv.fr; default-src 'self' sentry.incubateur.net; font-src 'self' data:; style-src 'self' 'unsafe-inline'; frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-elem 'self' 'nonce-bduiWHECU7rdqwgfBbF4Vw==' stats.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 04:30:25 GMT", - "etag": "W/\"673f6070-8ef\"", - "last-modified": "Thu, 21 Nov 2024 16:31:44 GMT", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 04:44:57 GMT", + "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", + "vary": "Cookie", "x-content-type-options": "nosniff", - "x-request-id": "154ad8fc-27e1-416e-aefc-c38b1aa943cd", - "x-xss-protection": "1; mode=block" + "x-frame-options": "DENY", + "x-request-id": "7506b8b6-b635-4c99-b5c5-ce7b3ee04532" }, "endpoints": [ { - "hostname": "immersion-facile.beta.gouv.fr", - "ip": "80.247.13.145", + "hostname": "portail-rse.beta.gouv.fr", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -115599,56 +105604,59 @@ } }, { - "hostname": "sentry.gip-inclusion.cloud-ed.fr", - "ip": "154.41.70.31", + "hostname": "browser.sentry-cdn.com", + "ip": "151.101.66.217", "geoip": { "city": { - "geoname_id": 2972191, + "geoname_id": 5391959, "names": { - "de": "Tours", - "en": "Tours", - "es": "Tours", - "fr": "Tours", - "ja": "トゥール", - "pt-BR": "Tours", - "ru": "Тур", - "zh-CN": "图尔" + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" } }, "continent": { - "code": "EU", - "geoname_id": 6255148, + "code": "NA", + "geoname_id": 6255149, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" } }, "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "location": { - "accuracy_radius": 20, - "latitude": 47.3983, - "longitude": 0.7037, - "time_zone": "Europe/Paris" + "accuracy_radius": 1000, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "94107" }, "registered_country": { "geoname_id": 6252001, @@ -115666,30 +105674,17 @@ }, "subdivisions": [ { - "geoname_id": 3027939, - "iso_code": "CVL", - "names": { - "de": "Centre-Val de Loire", - "en": "Centre-Val de Loire", - "es": "Centro-Valle de Loira", - "fr": "Centre-Val de Loire", - "ja": "サントル=ヴァル・ド・ロワール地域圏", - "pt-BR": "Centro", - "ru": "Центр — Долина Луары" - } - }, - { - "geoname_id": 3012804, - "iso_code": "37", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "de": "Indre-et-Loire", - "en": "Indre-et-Loire", - "es": "Indre y Loira", - "fr": "Indre-et-Loire", - "ja": "アンドル=エ=ロワール県", - "pt-BR": "Indre-et-Loire", - "ru": "Эндр и Луара", - "zh-CN": "安德尔-卢瓦尔省" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -115699,35 +105694,17 @@ }, "wappalyzer": { "urls": { - "https://immersion-facile.beta.gouv.fr/": { + "https://portail-rse.beta.gouv.fr/": { "status": 200 } }, "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, { "slug": "sentry", "name": "Sentry", "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, - "version": null, + "version": "8.28.0", "icon": "Sentry.svg", "website": "https://sentry.io/", "cpe": null, @@ -115741,80 +105718,26 @@ "rootPath": true }, { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "leaflet", - "name": "Leaflet", - "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", - "confidence": 100, - "version": "1.9.4", - "icon": "Leaflet.png", - "website": "https://leafletjs.com", - "cpe": null, - "categories": [ - { - "id": 35, - "slug": "maps", - "name": "Maps" - } - ], - "rootPath": true - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, + "version": "10.10.0", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "id": 34, + "slug": "databases", + "name": "Databases" }, { "id": 47, "slug": "development", "name": "Development" } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true + ] }, { "slug": "matomo-analytics", @@ -115835,40 +105758,39 @@ "rootPath": true }, { - "slug": "livefyre", - "name": "Livefyre", - "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", - "confidence": 0, - "version": "1.9.4", - "icon": "Livefyre.png", - "website": "https://livefyre.com", + "slug": "htmx", + "name": "Htmx", + "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "confidence": 100, + "version": null, + "icon": "Htmx.svg", + "website": "https://htmx.org", "cpe": null, "categories": [ { - "id": 15, - "slug": "comment-systems", - "name": "Comment systems" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } ], "rootPath": true }, { - "slug": "linkedin-ads", - "name": "Linkedin Ads", - "description": "Linkedin Ads is a paid marketing tool that offers access to Linkedin social networks through various sponsored posts and other methods.", + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", "confidence": 100, "version": null, - "icon": "Linkedin.svg", - "website": "https://business.linkedin.com/marketing-solutions/ads", + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", "cpe": null, "categories": [ { - "id": 36, - "slug": "advertising", - "name": "Advertising" + "id": 16, + "slug": "security", + "name": "Security" } - ], - "rootPath": true + ] }, { "slug": "hsts", @@ -115912,9 +105834,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://immersion-facile.beta.gouv.fr/", - "finalUrl": "https://immersion-facile.beta.gouv.fr/", - "fetchTime": "2024-11-24T04:30:00.304Z", + "requestedUrl": "https://portail-rse.beta.gouv.fr/", + "finalUrl": "https://portail-rse.beta.gouv.fr/", + "fetchTime": "2024-12-01T04:44:33.678Z", "runWarnings": [], "categories": { "performance": { @@ -115925,7 +105847,7 @@ "snapshot" ], "id": "performance", - "score": 0.33 + "score": 0.7 }, "accessibility": { "title": "Accessibility", @@ -115936,7 +105858,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 + "score": 0.99 }, "best-practices": { "title": "Best Practices", @@ -115946,7 +105868,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -115957,7 +105879,7 @@ "snapshot" ], "id": "seo", - "score": 0.91 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -115967,7 +105889,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.3 } }, "audits": { @@ -115977,53 +105899,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9055, + "numericValue": 2311, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5947, - "firstMeaningfulPaint": 6022, - "largestContentfulPaint": 6715, - "interactive": 9055, - "speedIndex": 6322, - "totalBlockingTime": 814, - "maxPotentialFID": 352, - "cumulativeLayoutShift": 0.11722694396972655, - "cumulativeLayoutShiftMainFrame": 0.11722694396972655, - "totalCumulativeLayoutShift": 0.11722694396972655, + "firstContentfulPaint": 2311, + "firstMeaningfulPaint": 2311, + "largestContentfulPaint": 5815, + "interactive": 2311, + "speedIndex": 2975, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.20248321533203123, + "cumulativeLayoutShiftMainFrame": 0.20248321533203123, + "totalCumulativeLayoutShift": 0.20248321533203123, "observedTimeOrigin": 0, - "observedTimeOriginTs": 398432982, + "observedTimeOriginTs": 409017447, "observedNavigationStart": 0, - "observedNavigationStartTs": 398432982, - "observedFirstPaint": 1324, - "observedFirstPaintTs": 399757210, - "observedFirstContentfulPaint": 1324, - "observedFirstContentfulPaintTs": 399757210, - "observedFirstContentfulPaintAllFrames": 1324, - "observedFirstContentfulPaintAllFramesTs": 399757210, - "observedFirstMeaningfulPaint": 1324, - "observedFirstMeaningfulPaintTs": 399757210, - "observedLargestContentfulPaint": 1324, - "observedLargestContentfulPaintTs": 399757210, - "observedLargestContentfulPaintAllFrames": 1324, - "observedLargestContentfulPaintAllFramesTs": 399757210, - "observedTraceEnd": 3978, - "observedTraceEndTs": 402410832, - "observedLoad": 1208, - "observedLoadTs": 399641086, - "observedDomContentLoaded": 1117, - "observedDomContentLoadedTs": 399549995, - "observedCumulativeLayoutShift": 0.11722694396972655, - "observedCumulativeLayoutShiftMainFrame": 0.11722694396972655, - "observedTotalCumulativeLayoutShift": 0.11722694396972655, - "observedFirstVisualChange": 1334, - "observedFirstVisualChangeTs": 399766982, - "observedLastVisualChange": 1517, - "observedLastVisualChangeTs": 399949982, - "observedSpeedIndex": 1375, - "observedSpeedIndexTs": 399808007 + "observedNavigationStartTs": 409017447, + "observedFirstPaint": 816, + "observedFirstPaintTs": 409833717, + "observedFirstContentfulPaint": 816, + "observedFirstContentfulPaintTs": 409833717, + "observedFirstContentfulPaintAllFrames": 816, + "observedFirstContentfulPaintAllFramesTs": 409833717, + "observedFirstMeaningfulPaint": 816, + "observedFirstMeaningfulPaintTs": 409833717, + "observedLargestContentfulPaint": 1303, + "observedLargestContentfulPaintTs": 410320663, + "observedLargestContentfulPaintAllFrames": 1303, + "observedLargestContentfulPaintAllFramesTs": 410320663, + "observedTraceEnd": 3438, + "observedTraceEndTs": 412455002, + "observedLoad": 1019, + "observedLoadTs": 410036340, + "observedDomContentLoaded": 896, + "observedDomContentLoadedTs": 409913602, + "observedCumulativeLayoutShift": 0.20248321533203123, + "observedCumulativeLayoutShiftMainFrame": 0.20248321533203123, + "observedTotalCumulativeLayoutShift": 0.20248321533203123, + "observedFirstVisualChange": 816, + "observedFirstVisualChangeTs": 409833447, + "observedLastVisualChange": 1449, + "observedLastVisualChangeTs": 410466447, + "observedSpeedIndex": 1231, + "observedSpeedIndexTs": 410248423 }, { "lcpInvalidated": false @@ -116041,23 +105963,23 @@ "type": "debugdata", "items": [ { - "numRequests": 46, - "numScripts": 7, - "numStylesheets": 2, - "numFonts": 4, - "numTasks": 1669, - "numTasksOver10ms": 13, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 101.716, - "throughput": 20116426.235844884, - "maxRtt": 102.688, - "maxServerLatency": 15.144999999999996, - "totalByteWeight": 1391159, - "totalTaskTime": 622.901999999995, - "mainDocumentTransferSize": 1742 + "numRequests": 40, + "numScripts": 9, + "numStylesheets": 4, + "numFonts": 3, + "numTasks": 17, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 1.6159999999999997, + "throughput": 13675988.899691954, + "maxRtt": 111.324, + "maxServerLatency": 8.534999999999982, + "totalByteWeight": 957909, + "totalTaskTime": 3101.117, + "mainDocumentTransferSize": 5978 } ] } @@ -116073,11 +105995,10 @@ "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/accessibilite" + "mention": "Accessibilité : non conforme" }, "declaration-rgpd": [ { @@ -116087,71 +106008,57 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/mentions-legales" + "declarationUrl": "https://portail-rse.beta.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": "Données personnelles", + "mention": "Politique de confidentialité", "maxScore": 4, - "score": 4, - "missingWords": [], + "score": 2, + "missingWords": [ + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], "missingTrackers": [], - "declarationUrl": "https://immersion-facile.beta.gouv.fr/pages/politique-de-confidentialite" + "declarationUrl": "https://portail-rse.beta.gouv.fr/politique-confidentialite" } ], "betagouv": { - "id": "l-immersion-facile", + "id": "portail-rse", "type": "startup", "attributes": { - "name": "Immersion facilitée", - "pitch": "Faciliter la réalisation des immersions professionnelles", - "stats_url": "https://immersion-facile.beta.gouv.fr/stats", - "budget_url": "https://immersion-facile.beta.gouv.fr/pages/budget", - "link": "https://immersion-facile.beta.gouv.fr/", - "repository": "https://github.com/gip-inclusion/immersion-facile", - "contact": "contact@immersion-facile.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AL%E2%80%99immersion%20professionnelle%20ou%20p%C3%A9riode%20de%20mise%20en%20situation%20professionnelle%20%28PMSMP%29%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9e%20en%202014%20pour%20permettre%20%C3%A0%20toute%20personne%20en%20recherche%20d%E2%80%99emploi%20ou%20tout%20actif%20occup%C3%A9%20de%20v%C3%A9rifier%20qu%E2%80%99un%20m%C3%A9tier%20lui%20convient%20afin%20de%20s%C3%A9curiser%20son%20projet%20professionnel.%20C%E2%80%99est%20un%20levier%20puissant%20de%20retour%20%C3%A0%20l%E2%80%99emploi%20utilis%C3%A9%20par%20les%20prescripteurs%20pour%20aider%20les%20usagers%20%C3%A0%20s%E2%80%99orienter%2C%20valider%20une%20piste%20professionnelle%20ou%20une%20formation%2C%20ou%20concr%C3%A9tiser%20un%20projet%20d%E2%80%99insertion.%0A%0AAujourd%E2%80%99hui%2C%20%C3%A0%20peine%20350%20000%20immersions%20professionnelles%20par%20an%20sont%20r%C3%A9alis%C3%A9es.%20Quand%20elles%20le%20sont%2C%20le%20bilan%20qui%20en%20est%20tir%C3%A9%20est%20peu%20et%20mal%20capitalis%C3%A9.%20Il%20est%2C%20de%20ce%20fait%2C%20souvent%20oubli%C3%A9%20dans%20la%20suite%20du%20parcours%20du%20b%C3%A9n%C3%A9ficiaire.%0A%0A%2APourquoi%20si%20peu%20d%E2%80%99immersions%20%3F%2A%0A%0AParce%20que%20les%20personnes%20qui%20cherchent%20%C3%A0%20faire%20une%20immersion%20n%E2%80%99ont%20pas%20d%27outil%20%C3%A0%20leur%20disposition%20leur%20permettant%20d%E2%80%99identifier%20des%20entreprises%20o%C3%B9%20s%E2%80%99adresser.%0AEt%20parce%20que%20le%20process%20administratif%20pour%20avoir%20l%E2%80%99accord%20de%20faire%20une%20immersion%20est%20lourd%20et%20chronophage.%20Les%20conseillers%20des%20missions%20locales%20ou%20de%20P%C3%B4le%20emploi%20demandent%20un%20d%C3%A9lai%20minimal%20de%2015%20jours%20entre%20l%E2%80%99envoi%20d%E2%80%99une%20demande%20et%20la%20date%20de%20d%C3%A9marrage%20d%E2%80%99une%20immersion.%20Des%20prescripteurs%20exigent%20encore%20la%20transmission%20en%20mains%20propres%20du%20CERFA%20de%20la%20convention%20avec%20signatures%20originales%20des%20parties%20et%20cachet%20de%20l%E2%80%99entreprise.%0AR%C3%A9sultats%2C%20des%20d%C3%A9lais%20tr%C3%A8s%20longs%20pour%20des%20immersions%20d%E2%80%99une%20dur%C3%A9e%20courte%2C%20des%20d%C3%A9placements%20et%20des%20abandons%20avant%20le%20d%C3%A9marrage%20de%20l%E2%80%99immersion.%0A%0A%2APourquoi%20les%20%C3%A9valuations%20sont%20si%20mal%20capitalis%C3%A9es%20%3F%2A%0A%0AParce%20qu%E2%80%99il%20existe%20autant%20de%20formes%20de%20bilan%20qu%E2%80%99il%20y%20a%20de%20structures%20accompagnantes.%20Il%20s%E2%80%99agit%2C%20le%20plus%20souvent%2C%20d%E2%80%99une%20fiche%20papier%20%C3%A0%20compl%C3%A9ter%20et%20%C3%A0%20renvoyer%20par%20mail%20et%20trop%20peu%20souvent%20saisi%20dans%20le%20dossier%20de%20la%20personne%20concern%C3%A9e.%0A%0A%23%23%20Notre%20service%0A%0AMettre%20%C3%A0%20disposition%20des%20acteurs%20de%20l%E2%80%99orientation%20et%20de%20l%E2%80%99insertion%20professionnelle%20un%20commun%20num%C3%A9rique%2C%20%E2%80%9CImmersion%20facilit%C3%A9e%E2%80%9D%20reposant%20sur%20deux%20piliers%20%3A%0A%0A%2A%20la%20d%C3%A9mat%C3%A9rialisation%20de%20la%20convention%20et%2C%20%C3%A0%20terme%2C%20du%20bilan%0A%2A%20une%20base%20entreprises%20immersions%20construite%20sur%20un%20annuaire%20d%E2%80%99entreprises%20accueillantes%2C%20volontaires%20pour%20accueillir%20en%20immersion%20professionnelle%20sur%20leurs%20m%C3%A9tiers.%20Cette%20base%20entreprise%20est%20enrichie%20par%20l%E2%80%99appel%20%C3%A0%20des%20bases%20existantes%20%28La%20Bonne%20Bo%C3%AEte%20%E2%80%A6%29%20L%E2%80%99objectif%20est%20de%20n%E2%80%99avoir%20plus%20besoin%20d%E2%80%99appeler%20des%20bases%20compl%C3%A9mentaires.%0A%20%20La%20base%20est%20accessible%20gr%C3%A2ce%20%C3%A0%20un%20moteur%20de%20recherche%20et%20un%20parcours%20utilisateur%20simple%20incluant%20la%20mise%20en%20relation%20avec%20l%E2%80%99entreprise%20puis%20la%20demande%20de%20convention%2C%20%20jusqu%E2%80%99au%20d%C3%A9marrage%20de%20l%E2%80%99immersion.%0A%0A%2A%2ALes%20r%C3%A9sultats%20attendus%20%3A%2A%2A%0A%0Aun%20nombre%20croissant%20d%E2%80%99immersions%20r%C3%A9alis%C3%A9es%20en%20ann%C3%A9e%20pleine.%0Aune%20baisse%20significative%20du%20d%C3%A9lai%20de%20validation%20%3A%20le%20d%C3%A9lai%20moyen%20de%20validation%20sur%20Immersion%20Facilit%C3%A9e%20est%20de%2048h.%0Aune%20baisse%20significative%20du%20d%C3%A9lai%20de%20d%C3%A9marrage%20d%E2%80%99une%20immersion%20%3A%20les%20demandes%20de%20convention%20sont%20d%C3%A9sormais%20majoritairement%20transmises%20une%20semaine%20avant%20la%20date%20de%20d%C3%A9marrage%0Aune%20baisse%20significative%20du%20taux%20d%E2%80%99annulation%20ante%20immersion%0Al%E2%80%99int%C3%A9gration%20syst%C3%A9matique%20du%20bilan%20d%E2%80%99une%20immersion%20dans%20le%20dossier%20du%20b%C3%A9n%C3%A9ficiaire%0A", - "events": [ - { - "name": "national_impact", - "date": "2023-12-31", - "comment": "" - }, - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 300000€ pour la promotion 14" - } - ], + "name": "Portail RSE", + "pitch": "Un chemin unique pour connaître et répondre à ses obligations RSE", + "stats_url": "https://portail-rse.beta.gouv.fr/stats", + "link": "https://portail-rse.beta.gouv.fr/", + "repository": "https://github.com/betagouv/portail-rse", + "contact": "contact@portail-rse.beta.gouv.fr", + "content_url_encoded_markdown": "Le%20Portail%20RSE%20est%20un%20produit%20num%C3%A9rique%20en%20cours%20de%20construction%20ayant%20pour%20objectif%20d%E2%80%99aider%20toutes%20les%20entreprises%20%C3%A0%20se%20mettre%20en%20conformit%C3%A9%20avec%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%20%28Responsabilit%C3%A9%20Soci%C3%A9tale%20des%20Entreprises%29.%20Il%20a%20%C3%A9t%C3%A9%20lanc%C3%A9%20en%202021%20par%20la%20Secr%C3%A9taire%20d%E2%80%99%C3%89tat%20%C3%A0%20l%E2%80%99%C3%89conomie%2C%20Sociale%2C%20Solidaire%20et%20Responsable%20%28ESSR%29%20et%20est%20maintenant%20pilot%C3%A9%20par%20la%20Direction%20G%C3%A9n%C3%A9rale%20des%20Entreprises%20%28DGE%29.%0A%0A%23%23%20%2A%2AContexte%2A%2A%0A%0ADans%20un%20contexte%20r%C3%A9glementaire%20qui%20se%20complexifie%20et%20qui%20oblige%20les%20entreprises%20%C3%A0%20publier%20de%20plus%20en%20plus%20d%E2%80%99informations%20E%2CS%2CG%20%28Environnement%2C%20Social%20et%20Gouvernance%29%2C%20comme%20c%E2%80%99est%20le%20cas%20avec%20la%20nouvelle%20directive%20europ%C3%A9enne%20dite%20%C2%AB%C2%A0CSRD%C2%A0%C2%BB%20%28Corporate%20Sustainability%20Reporting%20Directive%29%2C%20le%20Portail%20RSE%20vise%20%C3%A0%20aider%20les%20entreprises%20%2A%2A%C3%A0%20conna%C3%AEtre%20leurs%20obligations%20et%20%C3%A0%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%2A%2A.%0A%0AA%20la%20suite%20d%E2%80%99une%20phase%20d%E2%80%99investigation%20men%C3%A9e%20en%202022%2C%20en%20se%20basant%20sur%20les%20m%C3%A9thodologies%20agiles%20du%20programme%20beta.gouv%2C%20la%20proposition%20de%20valeur%20du%20projet%20s%E2%80%99est%20affin%C3%A9e%20avec%20des%20retours%20utilisateurs.%0A%0ALe%20Portail%20RSE%20permet%20aux%20entreprises%C2%A0%3A%0A%20-%20de%20conna%C3%AEtre%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%0A%20-%20d%E2%80%99identifier%20un%20chemin%20pour%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%0A%0ALe%20projet%20de%20start-up%20d%E2%80%99Etat%20%C2%AB%C2%A0Portail%20RSE%C2%A0%C2%BB%20est%20entr%C3%A9%20en%20phase%20de%20construction%20depuis%20juin%202022.%0A%0A%23%23%20%2A%2ADescription%20et%20vision%20produit%2A%2A%0A%0AAfin%20d%E2%80%99informer%20un%20maximum%20d%E2%80%99usagers%2C%20le%20Portail%20RSE%20permet%20aux%20entreprises%20gr%C3%A2ce%20%C3%A0%20l%E2%80%99espace%20simulation%2C%20de%20conna%C3%AEtre%20les%20r%C3%A9glementations%20extra-financi%C3%A8res%20nationales%20%28r%C3%A9parties%20entre%20plusieurs%20administrations%29%20et%20europ%C3%A9ennes%20faisant%20l%E2%80%99objet%20d%E2%80%99une%20obligation%20de%20d%C3%A9claration%2C%20de%20transmission%20ou%20de%20publication%20de%20leur%20part.%0A%0ALes%20fiches%20techniques%20r%C3%A9glementaires%20viennent%20compl%C3%A9ter%20cet%20espace%20simulation%20pour%20rendre%20accessible%20le%20contenu%20de%20chaque%20r%C3%A9glementation%20aux%20entreprises.%0A%0ALe%20tableau%20de%20bord%2C%20permet%20aux%20entreprises%20inscrites%20sur%20la%20plateforme%C2%A0%3A%0A%20-%20de%20consulter%20le%20statut%20de%20leurs%20r%C3%A9glementations%0A%20-%20d%E2%80%99%C3%AAtre%20redirig%C3%A9%20vers%203%20plateformes%20%C3%A9tatiques%20pour%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%0A%20-%20de%20remplir%20les%20indicateurs%20de%20la%20BDESE%20apr%C3%A8s%20configuration%2C%20les%2010%20th%C3%A9matiques%20de%20la%20BDESE%20peuvent%20%C3%AAtre%20compl%C3%A9t%C3%A9es.%20Une%20fois%20les%20champs%20remplis%2C%20un%20document%20r%C3%A9capitulatif%20des%20tous%20les%20indicateurs%20peut%20%C3%AAtre%20t%C3%A9l%C3%A9charg%C3%A9.%0A%0AA%20moyen%20terme%2C%20les%20d%C3%A9veloppements%20%C3%A0%20venir%20sont%C2%A0%3A%0A%20-%20de%20nouvelles%20r%C3%A9glementations%20vont%20%C3%AAtre%20ajout%C3%A9es%20%C3%A0%20la%20plateforme%2C%0A%20-%20les%20indicateurs%20demand%C3%A9s%20dans%20le%20cadre%20de%20la%20CSRD%20vont%20%C3%AAtre%20int%C3%A9gr%C3%A9s%20au%20tableau%20de%20bord%0A%20-%20Remont%C3%A9e%20automatique%20des%20donn%C3%A9es%20requises%20disponibles%20au%20sein%20de%20l%E2%80%99administration%20de%20fa%C3%A7on%20%C3%A0%20pr%C3%A9-remplir%20les%20informations%20demand%C3%A9es%20aux%20entreprises%0A%0ACette%20plateforme%20pourra%20%C3%A9galement%20%C3%A9voluer%20pour%20devenir%20un%20espace%20de%20collecte%20des%20donn%C3%A9es%20de%20performance%20extra-financi%C3%A8re%20des%20entreprises%2C%20dans%20le%20but%20d%E2%80%99alimenter%20le%20projet%20European%20Single%20Access%20Point%20%28ESAP%29%2C%20point%20d%E2%80%99acc%C3%A8s%20unique%20concentrant%20l%E2%80%99ensemble%20des%20donn%C3%A9es%20financi%C3%A8res%20et%20extra-financi%C3%A8res%20harmonis%C3%A9es%20des%20entreprises%20%C3%A0%20l%E2%80%99%C3%A9chelle%20de%20l%E2%80%99Union%20Europ%C3%A9enne.%0A%0A%2A%2ABesoins%20utilisateurs%20identifi%C3%A9s%2A%2A%0A%0AL%E2%80%99objectif%20du%20Portail%20RSE%20est%20de%20r%C3%A9pondre%20%C3%A0%20plusieurs%20besoins%20rencontr%C3%A9s%20par%20les%20entreprises.%20A%20savoir%C2%A0%3A%0A%0A1.%20%2A%2AINFORMER%2A%2A%20%3A%20Identifier%20les%20r%C3%A9glementations%20de%20d%C3%A9claration%20extra-financi%C3%A8re%20qui%20les%20concernent%0A2.%20%2A%2APILOTER%2A%2A%20%3A%20Remplir%20leurs%20d%C3%A9clarations%20directement%20sur%20la%20plateforme%20ou%20en%20%C3%A9tant%20redirig%C3%A9es%20vers%20les%20plateformes%20ad%C3%A9quates%0A3.%20%2A%2AFACILITER%2A%2A%20%3A%20Obtenir%20leurs%20d%C3%A9clarations%20pr%C3%A9-remplies%20avec%20les%20donn%C3%A9es%20d%C3%A9j%C3%A0%20disponibles%20au%20sein%20de%20l%E2%80%99administration%2C%20dans%20la%20logique%20du%20%C2%AB%C2%A0dites-le%20nous%20une%20fois%C2%A0%C2%BB%0A%0A%23%23%20%2A%2ASolution%20d%C3%A9velopp%C3%A9e%2A%2A%0A%0AUn%20produit%20num%C3%A9rique%20en%20ligne%20%C3%A0%20destination%20des%20entreprises%2C%20pour%20conna%C3%AEtre%20et%20r%C3%A9pondre%20%C3%A0%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%20%28Responsabilit%C3%A9%20Soci%C3%A9tale%20des%20Entreprises%29.%0A%0A%23%23%20%2A%2AFeuille%20de%20route%2A%2A%0A%0APrototypage%20de%20juin%20%C3%A0%20d%C3%A9cembre%202022.%0A%0ALancement%20de%20la%20b%C3%AAta%20%3A%20janvier%202023.%0A%0ARenommage%20de%20%C2%AB%C2%A0Projet%20Impact%C2%A0%C2%BB%20en%20%C2%AB%C2%A0Portail%20RSE%C2%A0%C2%BB%C2%A0%3A%20octobre%202023%0A", + "events": [], "phases": [ { - "name": "construction", - "start": "2021-07-16", - "end": "" + "name": "investigation", + "start": "2022-01-02", + "end": "2022-05-16" }, { - "name": "acceleration", - "start": "2022-05-31", + "name": "construction", + "start": "2022-05-17", "end": "" } ], "sponsors": [ - "francetravail", - "mtei", - "mtfp" - ], - "thematiques": [ - "Travail / Emploi", - "Formation" + "dge" ], - "dashlord_url": "https://dashlord.incubateur.net/url/immersion-facile-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" + "thematiques": [], + "dashlord_url": "https://dashlord.incubateur.net/url/portail-rse-beta-gouv-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "gip-inclusion" + "id": "dinum" } } } @@ -116160,16 +106067,16 @@ { "width": 1920, "height": 1080, - "url": "https://immersion-facile.beta.gouv.fr", - "size": 1467.639, - "nodes": 469, - "requests": 27, + "url": "https://portail-rse.beta.gouv.fr", + "size": 1577.481, + "nodes": 371, + "requests": 37, "grade": "C", - "score": 67, - "ges": 1.66, - "water": 2.49, + "score": 68, + "ges": 1.64, + "water": 2.46, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:26:57.972243", + "date": "2024-12-01 04:41:25.425974", "page_type": null } ], @@ -116178,8 +106085,8 @@ "detected": true }, "summary": { - "httpGrade": "C+", - "apdex": 1, + "httpGrade": "A+", + "apdex": 0.992, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", @@ -116187,66 +106094,75 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-23T04:04:00.000Z", + "testsslExpireDate": "2025-01-17T08:07:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.33, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.96, + "lighthouse_performance": 0.7, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.99, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.91, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "B", + "budgetPageGrade": "F", + "declaration-a11y": "D", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", + "declaration-rgpd-pc": "D", "ecoindexGrade": "C", "dsfrGrade": "A" } }, { "404": null, - "url": "https://portail-rse.beta.gouv.fr", - "category": "dinum", - "betaId": "portail-rse", + "url": "https://impactco2.fr", + "category": "ademe", + "betaId": "impact.co2", + "tags": [ + "production", + "ADEME" + ], + "repositories": [ + "incubateur-ademe/impactco2" + ], "http": { - "url": "https://portail-rse.beta.gouv.fr", + "url": "https://impactco2.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:15:10 GMT", - "grade": "A+", + "end_time": "Sun, 20 Oct 2024 02:03:55 GMT", + "grade": "B+", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { + "Cache-Control": "s-maxage=900, stale-while-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "frame-src 'self' stats.portail-rse.beta.gouv.fr; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; default-src 'self' sentry.incubateur.net; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; script-src 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'nonce-AKLJpyO2LUJcfVtvpXV5Jw==' stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv", "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 04:15:10 GMT", - "Referrer-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 02:03:53 GMT", + "ETag": "\"ir1t6q8ib0ao03\"", "Transfer-Encoding": "chunked", - "Vary": "Cookie", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "568f7fea-b719-422f-ae32-5964b4f39d2d", - "strict-transport-security": "max-age=31536000" + "X-Powered-By": "Next.js", + "X-Request-ID": "06b62f7d-b6cc-4b7e-9c09-5490badefaa9", + "X-XSS-Protection": "1; mode=block", + "strict-transport-security": "max-age=31536000", + "x-nextjs-cache": "HIT" }, - "scan_id": 57050158, - "score": 110, - "start_time": "Sun, 20 Oct 2024 04:15:08 GMT", + "scan_id": 57047489, + "score": 80, + "start_time": "Sun, 20 Oct 2024 02:03:51 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { @@ -116254,43 +106170,61 @@ "name": "content-security-policy", "output": { "data": { + "base-uri": [ + "'self'" + ], "connect-src": [ - "stats.beta.gouv.fr", - "sentry.incubateur.net", + "https://stats.beta.gouv.fr", + "https://cdn.jsdelivr.net", + "https://sentry.incubateur.net", + "https://photon.komoot.io", "'self'" ], "default-src": [ - "sentry.incubateur.net", + "'self'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "https:", + "file:", "'self'" ], "frame-src": [ - "stats.portail-rse.beta.gouv.fr", + "https://cloud.contact.ademe.fr/impact-CO2-miniform", + "https://cloud.contact.ademe.fr/impact-CO2-rdv", "'self'" ], "img-src": [ - "stats.beta.gouv.fr", + "https:", "data:", "'self'" ], - "report-uri": [ - "https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + "object-src": [ + "'none'" ], "script-src": [ - "stats.portail-rse.beta.gouv.fr", + "'unsafe-inline'", + "https://stats.beta.gouv.fr/matomo.js", + "https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php", "'self'" ], "script-src-attr": [ - "stats.portail-rse.beta.gouv.fr", - "'self'" - ], - "script-src-elem": [ - "stats.beta.gouv.fr", - "'nonce-akljpyo2lujcfvtvpxv5jw=='", - "'self'" + "'none'" ], "style-src": [ + "https:", "'unsafe-inline'", "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" ] }, "http": true, @@ -116299,21 +106233,21 @@ "policy": { "antiClickjacking": false, "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, + "insecureBaseUri": false, + "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, - "unsafeInline": false, + "unsafeInline": true, "unsafeInlineStyle": true, "unsafeObjects": false } }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -116346,11 +106280,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://portail-rse.beta.gouv.fr/", + "destination": "https://impactco2.fr/", "redirects": true, "route": [ - "http://portail-rse.beta.gouv.fr/", - "https://portail-rse.beta.gouv.fr/" + "http://impactco2.fr/", + "https://impactco2.fr/" ], "status_code": 200 }, @@ -116363,14 +106297,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "same-origin", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -116391,17 +106325,12 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://browser.sentry-cdn.com/8.28.0/bundle.tracing.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-GVaBBYGuaNuY8QXk8YojAIgLouf6OZ9bSBQRZ69jdPLVgNCZr6yFpW5vU/yXHXRb" - } - } + "data": {} }, "pass": true, - "result": "sri-implemented-and-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded securely", - "score_modifier": 5 + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -116418,35 +106347,35 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "rrdq", - "url": "https://portail-rse.beta.gouv.fr", + "token": "gqem", + "url": "https://impactco2.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T14:32:42Z", + "up_since": "2024-11-29T05:56:47Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -116455,19 +106384,20 @@ "published": true, "disabled_locations": [], "recipients": [ + "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:40:20Z", - "next_check_at": "2024-11-24T04:41:20Z", - "created_at": "2024-01-15T13:56:21Z", + "last_check_at": "2024-12-01T05:01:51Z", + "next_check_at": "2024-12-01T05:02:51Z", + "created_at": "2024-09-15T01:37:02Z", "mute_until": null, - "favicon_url": "https://portail-rse.beta.gouv.fr/static/dsfr/favicon/favicon.ico", + "favicon_url": "https://impactco2.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T04:40:21Z", - "expires_at": "2025-01-17T08:07:46Z", + "tested_at": "2024-12-01T04:56:55Z", + "expires_at": "2025-02-26T13:56:36Z", "valid": true, "error": null }, @@ -116475,18 +106405,18 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 250, - "connection": 137, - "handshake": 141, - "response": 146, - "total": 674 + "namelookup": 58, + "connection": 114, + "handshake": 121, + "response": 123, + "total": 416 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "portail-rse.beta.gouv.fr", + "host": "impactco2.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -116512,77 +106442,77 @@ "testssl": [ { "id": "service", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -116590,7 +106520,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -116598,7 +106528,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -116606,7 +106536,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -116614,7 +106544,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -116622,7 +106552,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -116630,476 +106560,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-10-19 08:07" + "finding": "2024-11-28 13:56" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-17 08:07" + "finding": "2025-02-26 13:56" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732423026" + "finding": "1733028934" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; script-src-elem 'self' 'nonce-MqT53aAIUiqo7/2Yrj/Chg==' stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" }, { - "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "id": "X-XSS-Protection", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "impactco2.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=900, stale-while-revalidate=31535100" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -117107,7 +107037,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -117116,7 +107046,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -117125,7 +107055,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -117134,7 +107064,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -117143,7 +107073,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -117151,7 +107081,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -117160,7 +107090,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -117169,16 +107099,16 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -117187,14 +107117,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -117203,7 +107133,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -117212,7 +107142,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -117221,16 +107151,16 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52" }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -117239,7 +107169,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -117248,7 +107178,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -117257,7 +107187,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -117266,7 +107196,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -117275,7 +107205,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -117284,392 +107214,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -117677,7 +107607,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -117685,7 +107615,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -117693,7 +107623,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -117701,7 +107631,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -117709,7 +107639,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -117717,476 +107647,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-10-19 08:07" + "finding": "2024-11-28 13:56" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2025-01-17 08:07" + "finding": "2025-02-26 13:56" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732423078" + "finding": "1733029037" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; script-src-elem 'self' 'nonce-QUaK6/RwrZ0Vc8lWqYw+Ig==' stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" }, { - "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "id": "X-XSS-Protection", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "impactco2.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=900, stale-while-revalidate=31535100" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -118194,7 +108124,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -118203,7 +108133,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -118212,7 +108142,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -118221,7 +108151,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -118230,7 +108160,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -118238,7 +108168,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -118247,7 +108177,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -118256,16 +108186,16 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -118274,14 +108204,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -118290,7 +108220,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -118299,7 +108229,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -118308,16 +108238,16 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52" }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -118326,7 +108256,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -118335,7 +108265,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -118344,7 +108274,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -118353,7 +108283,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -118362,7 +108292,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -118371,392 +108301,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -118764,7 +108694,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -118772,7 +108702,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -118780,7 +108710,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -118788,7 +108718,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -118796,7 +108726,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -118804,476 +108734,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-19 08:07" + "finding": "2024-11-28 13:56" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-17 08:07" + "finding": "2025-02-26 13:56" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732423132" + "finding": "1733029139" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; script-src-elem 'self' 'nonce-y9g++7VPGEj/0CCK0r9rUw==' stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" }, { - "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "id": "X-XSS-Protection", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "impactco2.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=900, stale-while-revalidate=31535100" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -119281,7 +109211,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -119290,7 +109220,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -119299,7 +109229,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -119308,7 +109238,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -119317,7 +109247,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -119325,7 +109255,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -119334,7 +109264,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -119343,16 +109273,16 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -119361,14 +109291,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -119377,7 +109307,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -119386,7 +109316,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -119395,16 +109325,16 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52" }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -119413,7 +109343,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -119422,7 +109352,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -119431,7 +109361,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -119440,7 +109370,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -119449,7 +109379,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -119458,392 +109388,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -119851,7 +109781,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -119859,7 +109789,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -119867,7 +109797,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -119875,7 +109805,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -119883,7 +109813,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -119891,476 +109821,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-10-19 08:07" + "finding": "2024-11-28 13:56" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-01-17 08:07" + "finding": "2025-02-26 13:56" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732423185" + "finding": "1733029241" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; script-src-elem 'self' 'nonce-0OhhE3KLkiE8ygqP+hi11g==' stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production" + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" }, { - "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "id": "X-XSS-Protection", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "impactco2.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=900, stale-while-revalidate=31535100" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -120368,7 +110298,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -120377,7 +110307,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -120386,7 +110316,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -120395,7 +110325,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -120404,7 +110334,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -120412,7 +110342,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -120421,7 +110351,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -120430,16 +110360,16 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -120448,14 +110378,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -120464,7 +110394,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -120473,7 +110403,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -120482,16 +110412,16 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC03A25C7E7E0B9E3923D7B6BC85370EB986F8FD76BF1981A0474B241E4C7685" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE3299D764BDA7CA01A66DEF58712BE13600EA8ABE5F4D2BC109263C44F3DF52" }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -120500,7 +110430,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -120509,7 +110439,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -120518,7 +110448,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -120527,7 +110457,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -120536,7 +110466,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -120545,352 +110475,460 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "217" + "finding": "412" } ], "thirdparties": { "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Regular.woff2", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Medium.woff2", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Bold.woff2", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, { "type": "unknown", - "url": "https://browser.sentry-cdn.com/8.28.0/bundle.tracing.min.js" + "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/d6a12c19-7593-4193-aca1-4bd55c278caa/franceinfo.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241201%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241201T042436Z&X-Amz-Expires=3600&X-Amz-Signature=db0cd7830caace1959eea7ca10cd13a8e99935aa3780ac0f3709ea58de7dd23c&X-Amz-SignedHeaders=host&x-id=GetObject" + }, + { + "type": "unknown", + "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/b30e36be-011e-48aa-ac76-f463b95a6a19/cegid.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241201%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241201T042436Z&X-Amz-Expires=3600&X-Amz-Signature=b83961da95ab74c849851a694a369106c0b43339356f9738d6188c32f2f8cec8&X-Amz-SignedHeaders=host&x-id=GetObject" + }, + { + "type": "unknown", + "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/9b40ab4c-2dd0-4f20-8db3-7f790ee41695/figaroimmobilier.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241201%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241201T042436Z&X-Amz-Expires=3600&X-Amz-Signature=08e5faa689c518a95719b410bf43b5f60d70423c838e9ed2f8f876439ab6c754&X-Amz-SignedHeaders=host&x-id=GetObject" + }, + { + "type": "unknown", + "url": "https://cloud.contact.ademe.fr/impact-CO2-miniform" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/v1.11.2/dsfr.min.css" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/v1.11.2/utility/utility.min.css" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/commons/ademe.main.css" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/customs/impact.co2.custom.css" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/v1.11.2/dsfr.module.min.js" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/v1.11.2/dsfr.nomodule.min.js" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/commons/ademe.main.js" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/utils/ademe.iframe.resize.js" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/icons/system/external-link-line.svg" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Regular.woff" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Regular.woff" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Medium.woff" + }, + { + "type": "unknown", + "url": "https://multimedias.ademe.fr/connect/dsfr/fonts/Marianne-Medium.woff" } ], "cookies": [], "headers": { + "cache-control": "s-maxage=900, stale-while-revalidate=31535100", "content-encoding": "gzip", - "content-security-policy": "frame-src 'self' stats.portail-rse.beta.gouv.fr; script-src-attr 'self' stats.portail-rse.beta.gouv.fr; img-src 'self' data: stats.beta.gouv.fr; script-src-elem 'self' 'nonce-lq2Lm+pO2NF3Ez7OpCn+4g==' stats.beta.gouv.fr; style-src 'self' 'unsafe-inline'; default-src 'self' sentry.incubateur.net; script-src 'self' stats.portail-rse.beta.gouv.fr; font-src 'self' data:; connect-src 'self' sentry.incubateur.net stats.beta.gouv.fr; report-uri https://sentry.incubateur.net/api/75/security/?sentry_key=cab8f8212fcb489e9275dd9f859964a3&sentry_environment=production", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv", "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 04:35:52 GMT", - "referrer-policy": "same-origin", + "date": "Sun, 01 Dec 2024 04:53:52 GMT", + "etag": "\"a8d6g27d0tateh\"", "strict-transport-security": "max-age=31536000", - "vary": "Cookie", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "128a283a-37af-4635-86e8-24acd33447e6" + "x-nextjs-cache": "HIT", + "x-nextjs-prerender": "1", + "x-nextjs-stale-time": "4294967294", + "x-powered-by": "Next.js", + "x-request-id": "158eddcb-a739-4aa3-aa83-2015a0478f1c", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "portail-rse.beta.gouv.fr", - "ip": "80.247.13.145", + "hostname": "impactco2.fr", + "ip": "109.232.236.90", "geoip": { "continent": { "code": "EU", @@ -120945,20 +110983,39 @@ } }, { - "hostname": "browser.sentry-cdn.com", - "ip": "151.101.2.217", + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.186.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "prod-files-secure.s3.us-west-2.amazonaws.com", + "ip": "52.92.202.82", "geoip": { "city": { - "geoname_id": 5391959, + "geoname_id": 5714964, "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" + "de": "Boardman", + "en": "Boardman", + "es": "Boardman", + "fr": "Boardman", + "ja": "ボードマン", + "pt-BR": "Boardman", + "ru": "Бордман" } }, "continent": { @@ -120990,14 +111047,14 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.7642, - "longitude": -122.3993, - "metro_code": 807, + "accuracy_radius": 20, + "latitude": 45.8491, + "longitude": -119.7143, + "metro_code": 810, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "94107" + "code": "97818" }, "registered_country": { "geoname_id": 6252001, @@ -121015,17 +111072,201 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 5744337, + "iso_code": "OR", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "de": "Oregon", + "en": "Oregon", + "es": "Oregón", + "fr": "Oregon", + "ja": "オレゴン州", + "pt-BR": "Oregon", + "ru": "Орегон", + "zh-CN": "俄勒冈州" + } + } + ] + } + }, + { + "hostname": "cloud.contact.ademe.fr", + "ip": "161.71.90.106", + "geoip": { + "city": { + "geoname_id": 2643743, + "names": { + "de": "London", + "en": "London", + "es": "Londres", + "fr": "Londres", + "ja": "ロンドン", + "pt-BR": "Londres", + "ru": "Лондон", + "zh-CN": "伦敦" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2635167, + "iso_code": "GB", + "names": { + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 51.5074, + "longitude": -0.1196, + "time_zone": "Europe/London" + }, + "postal": { + "code": "EC1N" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6269131, + "iso_code": "ENG", + "names": { + "de": "England", + "en": "England", + "es": "Inglaterra", + "fr": "Angleterre", + "ja": "イングランド", + "pt-BR": "Inglaterra", + "ru": "Англия", + "zh-CN": "英格兰" + } + } + ] + } + }, + { + "hostname": "multimedias.ademe.fr", + "ip": "51.159.204.137", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" } } ] @@ -121035,7 +111276,7 @@ }, "wappalyzer": { "urls": { - "https://portail-rse.beta.gouv.fr/": { + "https://impactco2.fr/": { "status": 200 } }, @@ -121045,7 +111286,7 @@ "name": "Sentry", "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, - "version": "8.28.0", + "version": null, "icon": "Sentry.svg", "website": "https://sentry.io/", "cpe": null, @@ -121059,27 +111300,72 @@ "rootPath": true }, { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, - "version": "10.10.0", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { - "id": 34, - "slug": "databases", - "name": "Databases" - }, + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ { - "id": 47, - "slug": "development", - "name": "Development" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" } ] }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "15.0.3", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, { "slug": "matomo-analytics", "name": "Matomo Analytics", @@ -121099,39 +111385,40 @@ "rootPath": true }, { - "slug": "htmx", - "name": "Htmx", - "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "Htmx.svg", - "website": "https://htmx.org", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", "confidence": 100, "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 31, + "slug": "cdn", + "name": "CDN" } - ] + ], + "rootPath": true }, { "slug": "hsts", @@ -121152,13 +111439,30 @@ "rootPath": true }, { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", "cpe": null, "categories": [ { @@ -121168,6 +111472,23 @@ } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -121175,9 +111496,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://portail-rse.beta.gouv.fr/", - "finalUrl": "https://portail-rse.beta.gouv.fr/", - "fetchTime": "2024-11-24T04:35:28.221Z", + "requestedUrl": "https://impactco2.fr/", + "finalUrl": "https://impactco2.fr/", + "fetchTime": "2024-12-01T04:53:22.549Z", "runWarnings": [], "categories": { "performance": { @@ -121199,7 +111520,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.99 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -121220,7 +111541,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 1 }, "pwa": { "title": "PWA", @@ -121240,53 +111561,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2229, + "numericValue": 5727, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2229, - "firstMeaningfulPaint": 2229, - "largestContentfulPaint": 5456, - "interactive": 2229, - "speedIndex": 2686, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.20248321533203123, - "cumulativeLayoutShiftMainFrame": 0.20248321533203123, - "totalCumulativeLayoutShift": 0.20248321533203123, + "firstContentfulPaint": 2350, + "firstMeaningfulPaint": 2350, + "largestContentfulPaint": 5649, + "interactive": 5727, + "speedIndex": 3036, + "totalBlockingTime": 167, + "maxPotentialFID": 288, + "cumulativeLayoutShift": 0.019376085069444444, + "cumulativeLayoutShiftMainFrame": 0.019376085069444444, + "totalCumulativeLayoutShift": 0.019376085069444444, "observedTimeOrigin": 0, - "observedTimeOriginTs": 484206575, + "observedTimeOriginTs": 357521512, "observedNavigationStart": 0, - "observedNavigationStartTs": 484206575, - "observedFirstPaint": 674, - "observedFirstPaintTs": 484880681, - "observedFirstContentfulPaint": 674, - "observedFirstContentfulPaintTs": 484880681, - "observedFirstContentfulPaintAllFrames": 674, - "observedFirstContentfulPaintAllFramesTs": 484880681, - "observedFirstMeaningfulPaint": 674, - "observedFirstMeaningfulPaintTs": 484880681, - "observedLargestContentfulPaint": 1128, - "observedLargestContentfulPaintTs": 485334314, - "observedLargestContentfulPaintAllFrames": 1128, - "observedLargestContentfulPaintAllFramesTs": 485334314, - "observedTraceEnd": 3236, - "observedTraceEndTs": 487442338, - "observedLoad": 840, - "observedLoadTs": 485047009, - "observedDomContentLoaded": 737, - "observedDomContentLoadedTs": 484943455, - "observedCumulativeLayoutShift": 0.20248321533203123, - "observedCumulativeLayoutShiftMainFrame": 0.20248321533203123, - "observedTotalCumulativeLayoutShift": 0.20248321533203123, - "observedFirstVisualChange": 674, - "observedFirstVisualChangeTs": 484880575, - "observedLastVisualChange": 1307, - "observedLastVisualChangeTs": 485513575, - "observedSpeedIndex": 1062, - "observedSpeedIndexTs": 485268755 + "observedNavigationStartTs": 357521512, + "observedFirstPaint": 896, + "observedFirstPaintTs": 358417709, + "observedFirstContentfulPaint": 896, + "observedFirstContentfulPaintTs": 358417709, + "observedFirstContentfulPaintAllFrames": 896, + "observedFirstContentfulPaintAllFramesTs": 358417709, + "observedFirstMeaningfulPaint": 896, + "observedFirstMeaningfulPaintTs": 358417709, + "observedLargestContentfulPaint": 1285, + "observedLargestContentfulPaintTs": 358806966, + "observedLargestContentfulPaintAllFrames": 1285, + "observedLargestContentfulPaintAllFramesTs": 358806966, + "observedTraceEnd": 6424, + "observedTraceEndTs": 363945099, + "observedLoad": 1185, + "observedLoadTs": 358706720, + "observedDomContentLoaded": 912, + "observedDomContentLoadedTs": 358433425, + "observedCumulativeLayoutShift": 0.019376085069444444, + "observedCumulativeLayoutShiftMainFrame": 0.019376085069444444, + "observedTotalCumulativeLayoutShift": 0.019376085069444444, + "observedFirstVisualChange": 897, + "observedFirstVisualChangeTs": 358418512, + "observedLastVisualChange": 1464, + "observedLastVisualChangeTs": 358985512, + "observedSpeedIndex": 1256, + "observedSpeedIndexTs": 358777982 }, { "lcpInvalidated": false @@ -121304,23 +111625,23 @@ "type": "debugdata", "items": [ { - "numRequests": 40, - "numScripts": 9, - "numStylesheets": 4, - "numFonts": 3, - "numTasks": 35, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, + "numRequests": 67, + "numScripts": 26, + "numStylesheets": 11, + "numFonts": 7, + "numTasks": 1088, + "numTasksOver10ms": 8, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.1719999999999997, - "throughput": 14577546.494424969, - "maxRtt": 87.283, - "maxServerLatency": 85.46000000000001, - "totalByteWeight": 958040, - "totalTaskTime": 8.413000000000007, - "mainDocumentTransferSize": 6061 + "rtt": 17.209999999999997, + "throughput": 5998288.955559687, + "maxRtt": 144.61599999999999, + "maxServerLatency": 350.713, + "totalByteWeight": 1023644, + "totalTaskTime": 423.60299999999916, + "mainDocumentTransferSize": 137667 } ] } @@ -121336,10 +111657,11 @@ "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://impactco2.fr/accessibilite" }, "declaration-rgpd": [ { @@ -121349,57 +111671,63 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://portail-rse.beta.gouv.fr/mentions-legales" + "declarationUrl": "https://impactco2.fr/mentions-legales" }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 2, - "missingWords": [ - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://portail-rse.beta.gouv.fr/politique-confidentialite" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] } ], "betagouv": { - "id": "portail-rse", + "id": "impact.co2", "type": "startup", "attributes": { - "name": "Portail RSE", - "pitch": "Un chemin unique pour connaître et répondre à ses obligations RSE", - "stats_url": "https://portail-rse.beta.gouv.fr/stats", - "link": "https://portail-rse.beta.gouv.fr/", - "repository": "https://github.com/betagouv/portail-rse", - "contact": "contact@portail-rse.beta.gouv.fr", - "content_url_encoded_markdown": "Le%20Portail%20RSE%20est%20un%20produit%20num%C3%A9rique%20en%20cours%20de%20construction%20ayant%20pour%20objectif%20d%E2%80%99aider%20toutes%20les%20entreprises%20%C3%A0%20se%20mettre%20en%20conformit%C3%A9%20avec%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%20%28Responsabilit%C3%A9%20Soci%C3%A9tale%20des%20Entreprises%29.%20Il%20a%20%C3%A9t%C3%A9%20lanc%C3%A9%20en%202021%20par%20la%20Secr%C3%A9taire%20d%E2%80%99%C3%89tat%20%C3%A0%20l%E2%80%99%C3%89conomie%2C%20Sociale%2C%20Solidaire%20et%20Responsable%20%28ESSR%29%20et%20est%20maintenant%20pilot%C3%A9%20par%20la%20Direction%20G%C3%A9n%C3%A9rale%20des%20Entreprises%20%28DGE%29.%0A%0A%23%23%20%2A%2AContexte%2A%2A%0A%0ADans%20un%20contexte%20r%C3%A9glementaire%20qui%20se%20complexifie%20et%20qui%20oblige%20les%20entreprises%20%C3%A0%20publier%20de%20plus%20en%20plus%20d%E2%80%99informations%20E%2CS%2CG%20%28Environnement%2C%20Social%20et%20Gouvernance%29%2C%20comme%20c%E2%80%99est%20le%20cas%20avec%20la%20nouvelle%20directive%20europ%C3%A9enne%20dite%20%C2%AB%C2%A0CSRD%C2%A0%C2%BB%20%28Corporate%20Sustainability%20Reporting%20Directive%29%2C%20le%20Portail%20RSE%20vise%20%C3%A0%20aider%20les%20entreprises%20%2A%2A%C3%A0%20conna%C3%AEtre%20leurs%20obligations%20et%20%C3%A0%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%2A%2A.%0A%0AA%20la%20suite%20d%E2%80%99une%20phase%20d%E2%80%99investigation%20men%C3%A9e%20en%202022%2C%20en%20se%20basant%20sur%20les%20m%C3%A9thodologies%20agiles%20du%20programme%20beta.gouv%2C%20la%20proposition%20de%20valeur%20du%20projet%20s%E2%80%99est%20affin%C3%A9e%20avec%20des%20retours%20utilisateurs.%0A%0ALe%20Portail%20RSE%20permet%20aux%20entreprises%C2%A0%3A%0A%20-%20de%20conna%C3%AEtre%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%0A%20-%20d%E2%80%99identifier%20un%20chemin%20pour%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%0A%0ALe%20projet%20de%20start-up%20d%E2%80%99Etat%20%C2%AB%C2%A0Portail%20RSE%C2%A0%C2%BB%20est%20entr%C3%A9%20en%20phase%20de%20construction%20depuis%20juin%202022.%0A%0A%23%23%20%2A%2ADescription%20et%20vision%20produit%2A%2A%0A%0AAfin%20d%E2%80%99informer%20un%20maximum%20d%E2%80%99usagers%2C%20le%20Portail%20RSE%20permet%20aux%20entreprises%20gr%C3%A2ce%20%C3%A0%20l%E2%80%99espace%20simulation%2C%20de%20conna%C3%AEtre%20les%20r%C3%A9glementations%20extra-financi%C3%A8res%20nationales%20%28r%C3%A9parties%20entre%20plusieurs%20administrations%29%20et%20europ%C3%A9ennes%20faisant%20l%E2%80%99objet%20d%E2%80%99une%20obligation%20de%20d%C3%A9claration%2C%20de%20transmission%20ou%20de%20publication%20de%20leur%20part.%0A%0ALes%20fiches%20techniques%20r%C3%A9glementaires%20viennent%20compl%C3%A9ter%20cet%20espace%20simulation%20pour%20rendre%20accessible%20le%20contenu%20de%20chaque%20r%C3%A9glementation%20aux%20entreprises.%0A%0ALe%20tableau%20de%20bord%2C%20permet%20aux%20entreprises%20inscrites%20sur%20la%20plateforme%C2%A0%3A%0A%20-%20de%20consulter%20le%20statut%20de%20leurs%20r%C3%A9glementations%0A%20-%20d%E2%80%99%C3%AAtre%20redirig%C3%A9%20vers%203%20plateformes%20%C3%A9tatiques%20pour%20se%20mettre%20en%20conformit%C3%A9%20avec%20elles%0A%20-%20de%20remplir%20les%20indicateurs%20de%20la%20BDESE%20apr%C3%A8s%20configuration%2C%20les%2010%20th%C3%A9matiques%20de%20la%20BDESE%20peuvent%20%C3%AAtre%20compl%C3%A9t%C3%A9es.%20Une%20fois%20les%20champs%20remplis%2C%20un%20document%20r%C3%A9capitulatif%20des%20tous%20les%20indicateurs%20peut%20%C3%AAtre%20t%C3%A9l%C3%A9charg%C3%A9.%0A%0AA%20moyen%20terme%2C%20les%20d%C3%A9veloppements%20%C3%A0%20venir%20sont%C2%A0%3A%0A%20-%20de%20nouvelles%20r%C3%A9glementations%20vont%20%C3%AAtre%20ajout%C3%A9es%20%C3%A0%20la%20plateforme%2C%0A%20-%20les%20indicateurs%20demand%C3%A9s%20dans%20le%20cadre%20de%20la%20CSRD%20vont%20%C3%AAtre%20int%C3%A9gr%C3%A9s%20au%20tableau%20de%20bord%0A%20-%20Remont%C3%A9e%20automatique%20des%20donn%C3%A9es%20requises%20disponibles%20au%20sein%20de%20l%E2%80%99administration%20de%20fa%C3%A7on%20%C3%A0%20pr%C3%A9-remplir%20les%20informations%20demand%C3%A9es%20aux%20entreprises%0A%0ACette%20plateforme%20pourra%20%C3%A9galement%20%C3%A9voluer%20pour%20devenir%20un%20espace%20de%20collecte%20des%20donn%C3%A9es%20de%20performance%20extra-financi%C3%A8re%20des%20entreprises%2C%20dans%20le%20but%20d%E2%80%99alimenter%20le%20projet%20European%20Single%20Access%20Point%20%28ESAP%29%2C%20point%20d%E2%80%99acc%C3%A8s%20unique%20concentrant%20l%E2%80%99ensemble%20des%20donn%C3%A9es%20financi%C3%A8res%20et%20extra-financi%C3%A8res%20harmonis%C3%A9es%20des%20entreprises%20%C3%A0%20l%E2%80%99%C3%A9chelle%20de%20l%E2%80%99Union%20Europ%C3%A9enne.%0A%0A%2A%2ABesoins%20utilisateurs%20identifi%C3%A9s%2A%2A%0A%0AL%E2%80%99objectif%20du%20Portail%20RSE%20est%20de%20r%C3%A9pondre%20%C3%A0%20plusieurs%20besoins%20rencontr%C3%A9s%20par%20les%20entreprises.%20A%20savoir%C2%A0%3A%0A%0A1.%20%2A%2AINFORMER%2A%2A%20%3A%20Identifier%20les%20r%C3%A9glementations%20de%20d%C3%A9claration%20extra-financi%C3%A8re%20qui%20les%20concernent%0A2.%20%2A%2APILOTER%2A%2A%20%3A%20Remplir%20leurs%20d%C3%A9clarations%20directement%20sur%20la%20plateforme%20ou%20en%20%C3%A9tant%20redirig%C3%A9es%20vers%20les%20plateformes%20ad%C3%A9quates%0A3.%20%2A%2AFACILITER%2A%2A%20%3A%20Obtenir%20leurs%20d%C3%A9clarations%20pr%C3%A9-remplies%20avec%20les%20donn%C3%A9es%20d%C3%A9j%C3%A0%20disponibles%20au%20sein%20de%20l%E2%80%99administration%2C%20dans%20la%20logique%20du%20%C2%AB%C2%A0dites-le%20nous%20une%20fois%C2%A0%C2%BB%0A%0A%23%23%20%2A%2ASolution%20d%C3%A9velopp%C3%A9e%2A%2A%0A%0AUn%20produit%20num%C3%A9rique%20en%20ligne%20%C3%A0%20destination%20des%20entreprises%2C%20pour%20conna%C3%AEtre%20et%20r%C3%A9pondre%20%C3%A0%20leurs%20obligations%20en%20mati%C3%A8re%20de%20RSE%20%28Responsabilit%C3%A9%20Soci%C3%A9tale%20des%20Entreprises%29.%0A%0A%23%23%20%2A%2AFeuille%20de%20route%2A%2A%0A%0APrototypage%20de%20juin%20%C3%A0%20d%C3%A9cembre%202022.%0A%0ALancement%20de%20la%20b%C3%AAta%20%3A%20janvier%202023.%0A%0ARenommage%20de%20%C2%AB%C2%A0Projet%20Impact%C2%A0%C2%BB%20en%20%C2%AB%C2%A0Portail%20RSE%C2%A0%C2%BB%C2%A0%3A%20octobre%202023%0A", + "name": "Impact CO2", + "pitch": "Le site internet qui vulgarise et valorise les données environnementales de l'ADEME", + "stats_url": "https://impactco2.fr/stats", + "budget_url": "https://impactco2.fr/budget", + "link": "https://impactco2.fr", + "repository": "https://github.com/incubateur-ademe/impactco2", + "contact": "impactco2@ademe.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%20%F0%9F%91%80%0A%0AL%E2%80%99environnement%20est%20un%20%2A%2Asujet%20fort%20et%20complexe%2A%2A%2C%20de%20plus%20en%20plus%20adress%C3%A9%20sur%20la%20sc%C3%A8ne%20publique%20et%20m%C3%A9diatique%2C%20au%20risque%20de%20se%20retrouver%20parfois%20noy%C3%A9%20sous%20un%20flot%20d%E2%80%99actualit%C3%A9s%20qui%20ne%20facilite%20pas%20sa%20bonne%20compr%C3%A9hension%20par%20le%20grand%20public.%0A%0ASur%20la%20%2A%2Ath%C3%A9matique%20de%20l%27impact%20carbone%2A%2A%2C%20une%20d%C3%A9marche%20de%20compr%C3%A9hension%20et%20d%27appropriation%20des%20donn%C3%A9es%20scientifiques%20est%20n%C3%A9cessaire%20pour%20tous%20les%20acteurs%20qui%20diffusent%20de%20l%E2%80%99information%20et%20sensibilisent%20les%20citoyens%20et%20citoyennes%20%28m%C3%A9dias%2C%20entreprises%2C%20politiques%2C%20associations%2C%20%C3%89ducation%2C%20etc.%29.%0A%0ASans%20expertise%20ou%20connaissance%20forte%20sur%20le%20sujet%2C%20cela%20implique%20une%20barri%C3%A8re%20%C3%A0%20l%27entr%C3%A9e%20et%20un%20%2A%2Atravail%20chronophage%20de%20retraitement%20des%20donn%C3%A9es%2A%2A%20-%20lorsqu%27elles%20sont%20accessibles%20ouvertement%20et%20gratuitement%20-%20pour%20les%20exploiter%20afin%20d%E2%80%99en%20retirer%20des%20enseignements%20%C3%A0%20diffuser%20%C3%A0%20leurs%20cibles%20directes.%0A%0AEn%20outre%2C%20face%20%C3%A0%20la%20%2A%2Apluralit%C3%A9%20des%20canaux%20d%E2%80%99information%20et%20des%20formats%20de%20communication%2A%2A%2C%20ces%20acteurs%2C%20qui%20sont%20des%20acc%C3%A9l%C3%A9rateurs%20de%20la%20transition%20%C3%A9cologique%2C%20t%C3%A9moignent%20d%27une%20difficult%C3%A9%20%C3%A0%20trouver%20les%20bonnes%20ressources%20adapt%C3%A9es%20%C3%A0%20leur%20contenu.%20Or%20toute%20la%20pertinence%20et%20la%20validit%C3%A9%20des%20messages%20diffus%C3%A9s%20d%C3%A9pendent%20de%20l%E2%80%99acc%C3%A8s%20%C3%A0%20une%20%2A%2Ainformation%20scientifique%20de%20qualit%C3%A9%2C%20ouverte%2C%20sourc%C3%A9e%2C%20%C3%A0%20jour%20et%20fiabilis%C3%A9e%2A%2A.%0A%0AL%E2%80%99exemple%20du%20num%C3%A9rique%20est%20relativement%20parlant%20%3A%20multipli%C3%A9%20par%20des%20milliards%20d%E2%80%99envois%2C%20l%E2%80%99impact%20des%20e-mails%20%C3%A0%20l%E2%80%99%C3%A9chelle%20plan%C3%A9taire%20est%20n%C3%A9cessairement%20important.%20Pour%20autant%2C%20cette%20information%2C%20m%C3%AAme%20chiffr%C3%A9e%20en%20tonnes%20de%20CO2e%2C%20d%C3%A9tourne%20les%20citoyens%20des%20enjeux%20de%20taille%20%3A%20garder%20son%20smartphone%20le%20plus%20longtemps%20possible%20si%20l%E2%80%99on%20reste%20dans%20le%20secteur%20du%20num%C3%A9rique%2C%20ou%20manger%20moins%20de%20viande%20si%20l%E2%80%99on%20%C3%A9largit%20le%20spectre%20%2830%20To%20de%20mails%20stock%C3%A9s%201%20an%20%C3%A9mettent%20autant%20que%201%20repas%20au%20b%C5%93uf%29.%0A%0ACette%20%28re%29mise%20en%20perspective%20des%20chiffres%20dans%20leur%20contexte%2C%20et%20leur%20intelligibilit%C3%A9%20pour%20des%20usages%20%22grand%20public%22%2C%20est%20un%20%C3%A9l%C3%A9ment%20cl%C3%A9%20de%20la%20mobilisation%20collective.%20Pouvoir%20s%E2%80%99emparer%20rapidement%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20gr%C3%A2ce%20%C3%A0%20des%20%2A%2Aressources%20%C3%A0%20la%20fois%20p%C3%A9dagogiques%2C%20param%C3%A9trables%20et%20contextualis%C3%A9es%2A%2A%20est%20donc%20aujourd%E2%80%99hui%20un%20enjeu-cl%C3%A9%20pour%20tous%20ces%20acteurs.%0A%0A%23%23%20Solution%20%F0%9F%92%A1%0A%0A%5BimpactCO2.fr%5D%28http%3A%2F%2Fimpactco2.fr%2F%29%20ambitionne%20d%27%C3%AAtre%20une%20%2A%2Abiblioth%C3%A8que%20de%20ressources%20de%20r%C3%A9f%C3%A9rence%2A%2A%20pour%20les%20acteurs%20qui%20sont%20%C3%A0%20la%20recherche%20de%20contenus%20informatifs%20didactiques%20et%20fiabilis%C3%A9s%20sur%20l%E2%80%99empreinte%20carbone%20%3A%0A%0A%2A%20%2A%2AM%C3%A9dias%2A%2A%20%28grand%20public%2C%20sp%C3%A9cialis%C3%A9s%2C%E2%80%A6%29%20%3B%0A%2A%20%2A%2AEntreprises%2A%2A%20%28p%C3%B4les%20RSE%2C%20directions%20de%20l%E2%80%99engagement%2C%20startups%20%2AGreen%20Tech%2A%2C%E2%80%A6%29%20%3B%0A%2A%20%2A%2AAssociations%2A%2A%20%28festivals%20culturels%2C%20challenges%20citoyens%2C%E2%80%A6%29%0A%2A%20%2A%2APouvoirs%20publics%2A%2A%20%28Secr%C3%A9tariat%20g%C3%A9n%C3%A9ral%20%C3%A0%20la%20Planification%20%C3%A9cologique%20via%20France%20Nation%20Verte%2C%E2%80%A6%29.%0A%0ALes%20ressources%20disponibles%20sur%20Impact%20CO2%20se%20pr%C3%A9sentent%20sous%20diff%C3%A9rentes%20formes%20%3A%20%2A%2Asimulateurs%2C%20comparateurs%2C%20graphiques%2C%20infographies%2A%2A%2C%20etc.%0A%0ANos%20objectifs%20pour%20nos%20relais%20sont%20%3A%0A%0A%2A%20%2A%2AVulgariser%20l%E2%80%99information%20environnementale%2A%2A%20et%20communiquer%20les%20bons%20ordres%20de%20grandeur%20relatifs%20%C3%A0%20l%E2%80%99empreinte%20carbone%20%3B%0A%2A%20%2A%2ATracer%2C%20enrichir%20et%20valoriser%20les%20donn%C3%A9es%20sources%20utilis%C3%A9es%2A%2A%20afin%20de%20garantir%20la%20validit%C3%A9%20des%20calculs%20et%20leur%20mise%20%C3%A0%20disposition%20%3B%0A%2A%20%2A%2AOutiller%20et%20fid%C3%A9liser%20nos%20r%C3%A9utilisateurs%2A%2A%20avec%20des%20ressources%20personnalisables%20sur%20un%20large%20panel%20de%20th%C3%A9matiques%20%28Alimentation%2C%20Transport%2C%20Num%C3%A9rique%2C%20Chauffage%2C%20etc.%29%20%3B%0A%2A%20%2A%2AFaciliter%20la%20diffusion%20et%2Fou%20l%E2%80%99int%C3%A9gration%20de%20nos%20ressources%2A%2A%20%C3%A0%20de%20nouveaux%20contenus%20de%20sensibilisation.%0A%0ALes%20donn%C3%A9es%20sur%20lesquelles%20sont%20bas%C3%A9es%20les%20ressources%20sont%20en%20%2Aopen%20data%2A%20%3A%20%5Bjeux%20de%20donn%C3%A9es%20ouverts%20de%20l%27ADEME%5D%28https%3A%2F%2Fdata.ademe.fr%2F%29%2C%20%5B%C3%A9tudes%20de%20l%27ADEME%5D%28https%3A%2F%2Flibrairie.ademe.fr%2F%29%2C%20%5Bbase%20Empreinte%5D%28https%3A%2F%2Fbase-empreinte.ademe.fr%2F%29%20et%20%5Bbase%20Agribalyse%5D%28https%3A%2F%2Fagribalyse.ademe.fr%2F%29.%20Le%20code%20source%20du%20site%20et%20la%20m%C3%A9thodologie%20de%20calcul%20sont%20enti%C3%A8rement%20open%20source%20et%20accessibles%20sur%20notre%20%5Brepo%20GitHub%5D%28https%3A%2F%2Fgithub.com%2Fdatagir%2Fimpactco2%29.%0A%0A%23%23%20Strat%C3%A9gie%20%F0%9F%93%88%0A%0A%5BImpact%20CO2%5D%28http%3A%2F%2Fimpactco2.fr%2F%29%20rassemble%20aujourd%27hui%20%2A%2Apr%C3%A8s%20d%E2%80%991%20000%20000%20visites%2A%2A%20depuis%20son%20lancement%20en%20f%C3%A9vrier%202021%2C%20et%20b%C3%A9n%C3%A9ficie%20d%E2%80%99une%20visibilit%C3%A9%20grandissante%20aupr%C3%A8s%20des%20acteurs%20publics%20et%20priv%C3%A9s.%20L%27impact%20recherch%C3%A9%20est%20donc%20d%E2%80%99accro%C3%AEtre%20l%27utilisation%20et%20le%20partage%20du%20site%20et%20des%20contenus%20propos%C3%A9s%2C%20ceci%20afin%20d%E2%80%99%2A%2Aacc%C3%A9l%C3%A9rer%20la%20diffusion%20de%20l%27information%20environnementale%20pour%20nos%20relais%20et%20le%20grand%20public%2A%2A%20%28approche%20B2B2C%29.%0A%0AL%27approche%20est%20simple%20%3A%0A%0A%2A%20%2A%2AD%C3%A9velopper%20des%20kits%20de%20diffusion%2A%2A%20%C3%A0%20destination%20des%20cibles%20prioritaires%20pour%20faciliter%20la%20prise%20en%20main%20et%20la%20diffusion%20des%20ressources%20disponibles%20sur%20le%20site%20%28partages%2C%20t%C3%A9l%C3%A9chargements%2C%20%2Aiframe%2A%2C%20etc.%29%20%3B%0A%2A%20%2A%2AEntrer%20en%20contact%20avec%20des%20journalistes%20de%20m%C3%A9dias%20grand%20public%20et%20sp%C3%A9cialis%C3%A9s%2A%2A%20%C3%A0%20l%E2%80%99audience%20importante%2C%20et%20%C3%AAtre%20%C3%A0%20l%E2%80%99%C3%A9coute%20de%20leurs%20besoins%20d%E2%80%99outillage%20au%20regard%20de%20leur%20calendrier%20%C3%A9ditorial%20%3B%0A%2A%20%2A%2AToucher%20les%20p%C3%B4les%20RSE%2A%2A%2C%20directions%20de%20l%E2%80%99Engagement%20ou%20directions%20Communication%20des%20grands%20groupes%20et%20startups%20Green%20Tech%20ayant%20entrepris%20un%20virage%20%C3%A9cologique%20ou%20d%C3%A9sireux%20de%20le%20faire%20%3B%0A%2A%20%2A%2AProposer%20des%20formats%20innovants%2A%2A%20pour%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20de%20contenus%20qui%20abordent%20l%E2%80%99%C3%A9cologie%20par%20les%20sujets%20du%20quotidien%20aupr%C3%A8s%20d%27une%20cible%20citoyenne%20%28Instagram%2C%20YouTube%2C%20etc.%29.%0A%0A%23%23%20Impact%20%F0%9F%8E%AF%0A%0AImpact%20CO2%20est%20un%20service%20num%C3%A9rique%20con%C3%A7u%20selon%20l%E2%80%99%2A%2Aapproche%20Startup%20d%E2%80%99%C3%89tat%2A%2A%20et%20pilot%C3%A9%20par%20l%E2%80%99impact.%0A%0A%23%23%23%20Indicateur%20%C3%89toile%20du%20Nord%20%E2%AD%90%0A%0A%2A%20Nombre%20d%E2%80%99utilisations%20de%20nos%20ressources%20%28vues%2C%20t%C3%A9l%C3%A9chargements%2C%20partages%20et%20int%C3%A9grations%20%2Aiframe%29.%2A%0A%0A%23%23%23%20M%C3%A9triques%20de%20suivi%20%F0%9F%96%8B%EF%B8%8F%0A%0A%2A%20%2A%2AVisites%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20visites%20par%20semaine%2Fmois%20%3B%0A%20%20%2A%20Nombre%20de%20visites%20depuis%20le%20lancement%20%3B%0A%20%20%2A%20Dur%C3%A9e%20des%20visites%20sur%20le%20site%20%3B%0A%20%20%2A%20Taux%20d%27interaction%20avec%20les%20simulateurs.%0A%2A%20%2A%2AT%C3%A9l%C3%A9chargements%20%2F%20int%C3%A9grations%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20vues%20et%20likes%20des%20kits%20de%20diffusion%20%3B%0A%20%20%2A%20Nombre%20de%20t%C3%A9l%C3%A9chargement%20des%20infographies%20%3B%0A%20%20%2A%20Nombre%20de%20t%C3%A9l%C3%A9chargement%20des%20simulations%20%3B%0A%20%20%2A%20Taux%20d%E2%80%99%2Aiframisation%2A.%0A%2A%20%2A%2AR%C3%A9utilisateurs%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20r%C3%A9utilisateurs%20des%20ressources%20%3B%0A%20%20%2A%20Nombre%20de%20mentions%20d%E2%80%99Impact%20CO2.%0A%2A%20%2A%2ASatisfaction%20utilisateur%2A%2A%20%3A%0A%0A%20%20%2A%20Taux%20de%20satisfaction%20des%20utilisateurs%20%3B%0A%20%20%2A%20Nombre%20de%20likes%20sur%20une%20page%20de%20ressource%20%28ex.%20%3A%20Kit%20M%C3%A9dia%29.%0A%2A%20%2A%2AR%C3%A9seaux%20sociaux%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20d%E2%80%99abonn%C3%A9s%20%3B%0A%20%20%2A%20Taux%20d%E2%80%99engagement%20%3B%0A%20%20%2A%20Nombre%20d%E2%80%99impressions%20et%20de%20partages%20des%20posts%20%3B%0A%20%20%2A%20Nombre%20de%20mentions%20d%E2%80%99Impact%20CO2.%0A%0AAujourd%27hui%2C%20une%20grande%20partie%20de%20ces%20m%C3%A9triques%20d%E2%80%99usage%20et%20d%E2%80%99impact%20sont%20suivies%20gr%C3%A2ce%20aux%20%2A%2Aoutils%20Matomo%20et%20Hotjar%2A%2A%2C%20et%20une%20partie%20d%E2%80%99entre%20elles%20est%20d%C3%A9j%C3%A0%20disponible%20sur%20la%20%5Bpage%20de%20statistiques%20de%20Datagir%5D%28https%3A%2F%2Fdatagir.ademe.fr%2Fstats%2F%29%20%28menu%20d%C3%A9roulant%20%E2%80%9CImpact%20CO2%E2%80%9D%29.%20Suite%20%C3%A0%20la%20fin%20de%20Datagir%20et%20sa%20s%C3%A9paration%20en%202%20Startups%20d%27%C3%89tat%20distinctes%2C%20nous%20souhaitons%20refondre%20cette%20page%20existante%20et%20l%27int%C3%A9grer%20au%20site%20Impact%20CO2.%0A%0AUn%20%2A%2Acomit%C3%A9%20d%27investissement%2A%2A%2C%20instance%20de%20pilotage%20principal%20d%27un%20produit%20num%C3%A9rique%20dans%20le%20programme%20beta.gouv.fr%2C%20aura%20lieu%20tous%20les%206%20mois%20pour%20faire%20le%20point%20sur%20l%27impact%20obtenu%20par%20l%27%C3%A9quipe%20et%20arbitrer%20sur%20les%20objectifs%20et%20les%20investissements%20consentis%20pour%20la%20poursuite%20du%20service.", "events": [], "phases": [ { - "name": "investigation", - "start": "2022-01-02", - "end": "2022-05-16" + "name": "construction", + "start": "2021-02-01", + "end": "" }, { - "name": "construction", - "start": "2022-05-17", + "name": "success", + "start": "2022-06-13", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-09-01", "end": "" } ], "sponsors": [ - "dge" + "ademe" ], - "thematiques": [], - "dashlord_url": "https://dashlord.incubateur.net/url/portail-rse-beta-gouv-fr/", - "accessibility_status": "non conforme" + "thematiques": [ + "Écologie" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/incubateur-ademe/impactco2/blob/main/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/impact.co2", + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "dinum" + "id": "ademe" } } } @@ -121408,25 +111736,25 @@ { "width": 1920, "height": 1080, - "url": "https://portail-rse.beta.gouv.fr", - "size": 1577.709, - "nodes": 371, - "requests": 37, + "url": "https://impactco2.fr", + "size": 3398.579, + "nodes": 392, + "requests": 67, "grade": "C", - "score": 68, - "ges": 1.64, - "water": 2.46, + "score": 56, + "ges": 1.88, + "water": 2.82, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:32:15.871077", + "date": "2024-12-01 04:50:16.612433", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "A+", + "httpGrade": "B+", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -121435,288 +111763,47 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-17T08:07:00.000Z", + "testsslExpireDate": "2025-02-26T13:56:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, + "trackersGrade": "F", + "trackersCount": 24, "lighthouse_performance": 0.71, "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.99, + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "D", + "budgetPageGrade": "A", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", + "declaration-rgpd-pc": "F", "ecoindexGrade": "C", - "dsfrGrade": "A" + "dsfrGrade": "F" } }, { "404": null, - "url": "https://impactco2.fr", - "category": "ademe", - "betaId": "impact.co2", - "tags": [ - "production", - "ADEME" - ], - "repositories": [ - "incubateur-ademe/impactco2" - ], - "http": { - "url": "https://impactco2.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:03:55 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=900, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 02:03:53 GMT", - "ETag": "\"ir1t6q8ib0ao03\"", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Powered-By": "Next.js", - "X-Request-ID": "06b62f7d-b6cc-4b7e-9c09-5490badefaa9", - "X-XSS-Protection": "1; mode=block", - "strict-transport-security": "max-age=31536000", - "x-nextjs-cache": "HIT" - }, - "scan_id": 57047489, - "score": 80, - "start_time": "Sun, 20 Oct 2024 02:03:51 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://stats.beta.gouv.fr", - "https://cdn.jsdelivr.net", - "https://sentry.incubateur.net", - "https://photon.komoot.io", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "https:", - "file:", - "'self'" - ], - "frame-src": [ - "https://cloud.contact.ademe.fr/impact-CO2-miniform", - "https://cloud.contact.ademe.fr/impact-CO2-rdv", - "'self'" - ], - "img-src": [ - "https:", - "data:", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "https://stats.beta.gouv.fr/matomo.js", - "https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "https:", - "'unsafe-inline'", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://impactco2.fr/", - "redirects": true, - "route": [ - "http://impactco2.fr/", - "https://impactco2.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, + "url": "https://infomedicament.beta.gouv.fr", + "category": "dinum", + "betaId": "infomedicament", + "http": null, "updownio": { - "token": "gqem", - "url": "https://impactco2.fr", + "token": "bs9a", + "url": "https://infomedicament.beta.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-22T08:58:04Z", + "up_since": "2024-12-01T04:02:05Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -121728,36 +111815,36 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T04:55:28Z", - "next_check_at": "2024-11-24T04:56:28Z", - "created_at": "2024-09-15T01:37:02Z", + "last_check_at": "2024-12-01T05:03:21Z", + "next_check_at": "2024-12-01T05:04:21Z", + "created_at": "2024-12-01T01:53:41Z", "mute_until": null, - "favicon_url": "https://impactco2.fr/favicon.ico", + "favicon_url": "https://infomedicament.beta.gouv.fr/_next/static/media/favicon.8c087985.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T04:51:30Z", - "expires_at": "2024-12-28T13:55:38Z", + "tested_at": "2024-12-01T05:02:22Z", + "expires_at": "2025-02-23T11:26:49Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.985, "timings": { "redirect": 0, - "namelookup": 44, - "connection": 128, - "handshake": 133, - "response": 135, - "total": 440 + "namelookup": 148, + "connection": 131, + "handshake": 145, + "response": 611, + "total": 1034 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "B" }, "nmap": { - "host": "impactco2.fr", + "host": "infomedicament.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -121783,77 +111870,77 @@ "testssl": [ { "id": "service", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121861,7 +111948,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121869,7 +111956,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121877,7 +111964,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121885,7 +111972,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -121893,7 +111980,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -121901,476 +111988,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-09-29 13:55" + "finding": "2024-11-25 11:26" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-12-28 13:55" + "finding": "2025-02-23 11:26" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732423771" + "finding": "1733029221" }, { "id": "HSTS_time", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Content-Type-Options", - "ip": "impactco2.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "impactco2.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" - }, - { - "id": "X-XSS-Protection", - "ip": "impactco2.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, { "id": "Cache-Control", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "s-maxage=900, stale-while-revalidate=31535100" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -122378,7 +112444,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -122387,7 +112453,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -122396,7 +112462,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -122405,7 +112471,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -122414,7 +112480,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -122422,7 +112488,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -122431,7 +112497,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -122440,7 +112506,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -122449,7 +112515,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -122458,14 +112524,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -122474,7 +112540,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -122483,7 +112549,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -122492,16 +112558,16 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3C96EC8F1C5914AD6D77ADEE8495582B0F3A67DF6394F2B198D3B8A4623AC3A0" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E94C731560F45669F4B275E4654ACC2AA2AF0000A8F1E32F3A4F5D0EF52014C4" }, { "id": "LOGJAM", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -122510,7 +112576,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -122519,7 +112585,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -122528,7 +112594,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -122537,7 +112603,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -122546,7 +112612,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -122555,392 +112621,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/148.253.75.120", + "ip": "infomedicament.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122948,7 +113014,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122956,7 +113022,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122964,7 +113030,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122972,7 +113038,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -122980,7 +113046,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -122988,476 +113054,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-09-29 13:55" + "finding": "2024-11-25 11:26" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-12-28 13:55" + "finding": "2025-02-23 11:26" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732423872" + "finding": "1733029276" }, { "id": "HSTS_time", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Content-Type-Options", - "ip": "impactco2.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "impactco2.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" - }, - { - "id": "X-XSS-Protection", - "ip": "impactco2.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, { "id": "Cache-Control", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "s-maxage=900, stale-while-revalidate=31535100" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -123465,7 +113510,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -123474,7 +113519,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -123483,7 +113528,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -123492,7 +113537,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -123501,7 +113546,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -123509,7 +113554,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -123518,7 +113563,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -123527,7 +113572,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -123536,7 +113581,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -123545,14 +113590,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -123561,7 +113606,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -123570,7 +113615,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -123579,16 +113624,16 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3C96EC8F1C5914AD6D77ADEE8495582B0F3A67DF6394F2B198D3B8A4623AC3A0" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E94C731560F45669F4B275E4654ACC2AA2AF0000A8F1E32F3A4F5D0EF52014C4" }, { "id": "LOGJAM", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -123597,7 +113642,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -123606,7 +113651,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -123615,7 +113660,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -123624,7 +113669,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -123633,7 +113678,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -123642,392 +113687,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/109.232.236.90", + "ip": "infomedicament.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -124035,7 +114080,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -124043,7 +114088,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -124051,7 +114096,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -124059,7 +114104,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -124067,7 +114112,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -124075,476 +114120,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-09-29 13:55" + "finding": "2024-11-25 11:26" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2024-12-28 13:55" + "finding": "2025-02-23 11:26" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732423974" + "finding": "1733029330" }, { "id": "HSTS_time", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Content-Type-Options", - "ip": "impactco2.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "impactco2.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" - }, - { - "id": "X-XSS-Protection", - "ip": "impactco2.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, { "id": "Cache-Control", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "s-maxage=900, stale-while-revalidate=31535100" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -124552,7 +114576,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -124561,7 +114585,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -124570,7 +114594,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -124579,7 +114603,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -124588,7 +114612,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -124596,7 +114620,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -124605,7 +114629,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -124614,7 +114638,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -124623,7 +114647,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -124632,14 +114656,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -124648,7 +114672,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -124657,7 +114681,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -124666,16 +114690,16 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3C96EC8F1C5914AD6D77ADEE8495582B0F3A67DF6394F2B198D3B8A4623AC3A0" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E94C731560F45669F4B275E4654ACC2AA2AF0000A8F1E32F3A4F5D0EF52014C4" }, { "id": "LOGJAM", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -124684,7 +114708,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -124693,7 +114717,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -124702,7 +114726,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -124711,7 +114735,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -124720,7 +114744,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -124729,392 +114753,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/5.104.101.30", + "ip": "infomedicament.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125122,7 +115146,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125130,7 +115154,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125138,7 +115162,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125146,7 +115170,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -125154,7 +115178,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -125162,476 +115186,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-09-29 13:55" + "finding": "2024-11-25 11:26" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-12-28 13:55" + "finding": "2025-02-23 11:26" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732424074" + "finding": "1733029383" }, { "id": "HSTS_time", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Content-Type-Options", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv" - }, - { - "id": "X-XSS-Protection", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, { "id": "Cache-Control", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "s-maxage=900, stale-while-revalidate=31535100" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -125639,7 +115642,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -125648,7 +115651,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -125657,7 +115660,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -125666,7 +115669,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -125675,7 +115678,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -125683,7 +115686,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -125692,7 +115695,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -125701,7 +115704,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -125710,7 +115713,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -125719,14 +115722,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -125735,7 +115738,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -125744,7 +115747,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -125753,16 +115756,16 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3C96EC8F1C5914AD6D77ADEE8495582B0F3A67DF6394F2B198D3B8A4623AC3A0" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E94C731560F45669F4B275E4654ACC2AA2AF0000A8F1E32F3A4F5D0EF52014C4" }, { "id": "LOGJAM", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -125771,7 +115774,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -125780,7 +115783,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -125789,7 +115792,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -125798,7 +115801,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -125807,7 +115810,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -125816,1603 +115819,355 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "impactco2.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "impactco2.fr/109.232.233.130", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "408" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Regular.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Medium.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr/dist/fonts/Marianne-Bold.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/d6a12c19-7593-4193-aca1-4bd55c278caa/franceinfo.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241124%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241124T043442Z&X-Amz-Expires=3600&X-Amz-Signature=9103a1508655efcd1c1984a2e438c7b0f0b19936650f995744dc9bb97915c5cb&X-Amz-SignedHeaders=host&x-id=GetObject" - }, - { - "type": "unknown", - "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/b30e36be-011e-48aa-ac76-f463b95a6a19/cegid.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241124%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241124T043442Z&X-Amz-Expires=3600&X-Amz-Signature=a37de0e487576fd44da877cd929ae28da491d9a3aa1835d7580ad707462a76bc&X-Amz-SignedHeaders=host&x-id=GetObject" - }, - { - "type": "unknown", - "url": "https://prod-files-secure.s3.us-west-2.amazonaws.com/a33bcf70-8792-422e-bd32-0327fc741a8b/9b40ab4c-2dd0-4f20-8db3-7f790ee41695/figaroimmobilier.png?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=AKIAT73L2G45FSPPWI6X%2F20241124%2Fus-west-2%2Fs3%2Faws4_request&X-Amz-Date=20241124T043442Z&X-Amz-Expires=3600&X-Amz-Signature=cc125af67adb29902650f0d678546045a92d78a5ec62ad05211f9c3a611439e0&X-Amz-SignedHeaders=host&x-id=GetObject" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/impact-CO2-miniform" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.dsfr.min.css" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.utility.min.css" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.main.css" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/impact.co2.custom.css" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.dsfr.module.min.js" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.main.js" - }, - { - "type": "unknown", - "url": "https://cloud.contact.ademe.fr/ademe.iframe.resize.js" - } - ], - "cookies": [], - "headers": { - "cache-control": "s-maxage=900, stale-while-revalidate=31535100", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self' https: file:;img-src 'self' https: data:;object-src 'none';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/plugins/HeatmaSessionRecording/configs.php;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://stats.beta.gouv.fr https://photon.komoot.io https://sentry.incubateur.net https://cdn.jsdelivr.net;frame-src 'self' https://cloud.contact.ademe.fr/impact-CO2-miniform https://cloud.contact.ademe.fr/impact-CO2-rdv", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 04:47:52 GMT", - "etag": "\"rruaxrd5o3as7b\"", - "strict-transport-security": "max-age=31536000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-nextjs-cache": "HIT", - "x-nextjs-prerender": "1", - "x-nextjs-stale-time": "4294967294", - "x-powered-by": "Next.js", - "x-request-id": "01690aef-0cf0-48a8-965b-435391cefdcf", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "impactco2.fr", - "ip": "109.232.236.90", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "104.18.187.31", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "prod-files-secure.s3.us-west-2.amazonaws.com", - "ip": "3.5.87.150", - "geoip": { - "city": { - "geoname_id": 5714964, - "names": { - "de": "Boardman", - "en": "Boardman", - "es": "Boardman", - "fr": "Boardman", - "ja": "ボードマン", - "pt-BR": "Boardman", - "ru": "Бордман" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 45.8491, - "longitude": -119.7143, - "metro_code": 810, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "97818" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5744337, - "iso_code": "OR", - "names": { - "de": "Oregon", - "en": "Oregon", - "es": "Oregón", - "fr": "Oregon", - "ja": "オレゴン州", - "pt-BR": "Oregon", - "ru": "Орегон", - "zh-CN": "俄勒冈州" - } - } - ] - } - }, - { - "hostname": "cloud.contact.ademe.fr", - "ip": "161.71.90.106", - "geoip": { - "city": { - "geoname_id": 2643743, - "names": { - "de": "London", - "en": "London", - "es": "Londres", - "fr": "Londres", - "ja": "ロンドン", - "pt-BR": "Londres", - "ru": "Лондон", - "zh-CN": "伦敦" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 51.5074, - "longitude": -0.1196, - "time_zone": "Europe/London" - }, - "postal": { - "code": "EC1N" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6269131, - "iso_code": "ENG", - "names": { - "de": "England", - "en": "England", - "es": "Inglaterra", - "fr": "Angleterre", - "ja": "イングランド", - "pt-BR": "Inglaterra", - "ru": "Англия", - "zh-CN": "英格兰" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://impactco2.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "15.0.3", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", - "confidence": 100, - "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://impactco2.fr/", - "finalUrl": "https://impactco2.fr/", - "fetchTime": "2024-11-24T04:47:24.314Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.69 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4632, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2329, - "firstMeaningfulPaint": 2329, - "largestContentfulPaint": 5313, - "interactive": 4632, - "speedIndex": 3055, - "totalBlockingTime": 285, - "maxPotentialFID": 371, - "cumulativeLayoutShift": 0.019376085069444444, - "cumulativeLayoutShiftMainFrame": 0.019376085069444444, - "totalCumulativeLayoutShift": 0.019376085069444444, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 483783855, - "observedNavigationStart": 0, - "observedNavigationStartTs": 483783855, - "observedFirstPaint": 868, - "observedFirstPaintTs": 484651832, - "observedFirstContentfulPaint": 868, - "observedFirstContentfulPaintTs": 484651832, - "observedFirstContentfulPaintAllFrames": 868, - "observedFirstContentfulPaintAllFramesTs": 484651832, - "observedFirstMeaningfulPaint": 868, - "observedFirstMeaningfulPaintTs": 484651832, - "observedLargestContentfulPaint": 1318, - "observedLargestContentfulPaintTs": 485101830, - "observedLargestContentfulPaintAllFrames": 1318, - "observedLargestContentfulPaintAllFramesTs": 485101830, - "observedTraceEnd": 5581, - "observedTraceEndTs": 489364939, - "observedLoad": 1218, - "observedLoadTs": 485002176, - "observedDomContentLoaded": 882, - "observedDomContentLoadedTs": 484666021, - "observedCumulativeLayoutShift": 0.019376085069444444, - "observedCumulativeLayoutShiftMainFrame": 0.019376085069444444, - "observedTotalCumulativeLayoutShift": 0.019376085069444444, - "observedFirstVisualChange": 880, - "observedFirstVisualChangeTs": 484663855, - "observedLastVisualChange": 1496, - "observedLastVisualChangeTs": 485279855, - "observedSpeedIndex": 1279, - "observedSpeedIndexTs": 485063263 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 64, - "numScripts": 25, - "numStylesheets": 11, - "numFonts": 5, - "numTasks": 1109, - "numTasksOver10ms": 6, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 16.503, - "throughput": 6706327.353797629, - "maxRtt": 143.826, - "maxServerLatency": 276.819, - "totalByteWeight": 2395075, - "totalTaskTime": 385.47599999999875, - "mainDocumentTransferSize": 137415 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://impactco2.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://impactco2.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "impact.co2", - "type": "startup", - "attributes": { - "name": "Impact CO2", - "pitch": "Le site internet qui vulgarise et valorise les données environnementales de l'ADEME", - "stats_url": "https://impactco2.fr/stats", - "budget_url": "https://impactco2.fr/budget", - "link": "https://impactco2.fr", - "repository": "https://github.com/incubateur-ademe/impactco2", - "contact": "impactco2@ademe.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%20%F0%9F%91%80%0A%0AL%E2%80%99environnement%20est%20un%20%2A%2Asujet%20fort%20et%20complexe%2A%2A%2C%20de%20plus%20en%20plus%20adress%C3%A9%20sur%20la%20sc%C3%A8ne%20publique%20et%20m%C3%A9diatique%2C%20au%20risque%20de%20se%20retrouver%20parfois%20noy%C3%A9%20sous%20un%20flot%20d%E2%80%99actualit%C3%A9s%20qui%20ne%20facilite%20pas%20sa%20bonne%20compr%C3%A9hension%20par%20le%20grand%20public.%0A%0ASur%20la%20%2A%2Ath%C3%A9matique%20de%20l%27impact%20carbone%2A%2A%2C%20une%20d%C3%A9marche%20de%20compr%C3%A9hension%20et%20d%27appropriation%20des%20donn%C3%A9es%20scientifiques%20est%20n%C3%A9cessaire%20pour%20tous%20les%20acteurs%20qui%20diffusent%20de%20l%E2%80%99information%20et%20sensibilisent%20les%20citoyens%20et%20citoyennes%20%28m%C3%A9dias%2C%20entreprises%2C%20politiques%2C%20associations%2C%20%C3%89ducation%2C%20etc.%29.%0A%0ASans%20expertise%20ou%20connaissance%20forte%20sur%20le%20sujet%2C%20cela%20implique%20une%20barri%C3%A8re%20%C3%A0%20l%27entr%C3%A9e%20et%20un%20%2A%2Atravail%20chronophage%20de%20retraitement%20des%20donn%C3%A9es%2A%2A%20-%20lorsqu%27elles%20sont%20accessibles%20ouvertement%20et%20gratuitement%20-%20pour%20les%20exploiter%20afin%20d%E2%80%99en%20retirer%20des%20enseignements%20%C3%A0%20diffuser%20%C3%A0%20leurs%20cibles%20directes.%0A%0AEn%20outre%2C%20face%20%C3%A0%20la%20%2A%2Apluralit%C3%A9%20des%20canaux%20d%E2%80%99information%20et%20des%20formats%20de%20communication%2A%2A%2C%20ces%20acteurs%2C%20qui%20sont%20des%20acc%C3%A9l%C3%A9rateurs%20de%20la%20transition%20%C3%A9cologique%2C%20t%C3%A9moignent%20d%27une%20difficult%C3%A9%20%C3%A0%20trouver%20les%20bonnes%20ressources%20adapt%C3%A9es%20%C3%A0%20leur%20contenu.%20Or%20toute%20la%20pertinence%20et%20la%20validit%C3%A9%20des%20messages%20diffus%C3%A9s%20d%C3%A9pendent%20de%20l%E2%80%99acc%C3%A8s%20%C3%A0%20une%20%2A%2Ainformation%20scientifique%20de%20qualit%C3%A9%2C%20ouverte%2C%20sourc%C3%A9e%2C%20%C3%A0%20jour%20et%20fiabilis%C3%A9e%2A%2A.%0A%0AL%E2%80%99exemple%20du%20num%C3%A9rique%20est%20relativement%20parlant%20%3A%20multipli%C3%A9%20par%20des%20milliards%20d%E2%80%99envois%2C%20l%E2%80%99impact%20des%20e-mails%20%C3%A0%20l%E2%80%99%C3%A9chelle%20plan%C3%A9taire%20est%20n%C3%A9cessairement%20important.%20Pour%20autant%2C%20cette%20information%2C%20m%C3%AAme%20chiffr%C3%A9e%20en%20tonnes%20de%20CO2e%2C%20d%C3%A9tourne%20les%20citoyens%20des%20enjeux%20de%20taille%20%3A%20garder%20son%20smartphone%20le%20plus%20longtemps%20possible%20si%20l%E2%80%99on%20reste%20dans%20le%20secteur%20du%20num%C3%A9rique%2C%20ou%20manger%20moins%20de%20viande%20si%20l%E2%80%99on%20%C3%A9largit%20le%20spectre%20%2830%20To%20de%20mails%20stock%C3%A9s%201%20an%20%C3%A9mettent%20autant%20que%201%20repas%20au%20b%C5%93uf%29.%0A%0ACette%20%28re%29mise%20en%20perspective%20des%20chiffres%20dans%20leur%20contexte%2C%20et%20leur%20intelligibilit%C3%A9%20pour%20des%20usages%20%22grand%20public%22%2C%20est%20un%20%C3%A9l%C3%A9ment%20cl%C3%A9%20de%20la%20mobilisation%20collective.%20Pouvoir%20s%E2%80%99emparer%20rapidement%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20gr%C3%A2ce%20%C3%A0%20des%20%2A%2Aressources%20%C3%A0%20la%20fois%20p%C3%A9dagogiques%2C%20param%C3%A9trables%20et%20contextualis%C3%A9es%2A%2A%20est%20donc%20aujourd%E2%80%99hui%20un%20enjeu-cl%C3%A9%20pour%20tous%20ces%20acteurs.%0A%0A%23%23%20Solution%20%F0%9F%92%A1%0A%0A%5BimpactCO2.fr%5D%28http%3A%2F%2Fimpactco2.fr%2F%29%20ambitionne%20d%27%C3%AAtre%20une%20%2A%2Abiblioth%C3%A8que%20de%20ressources%20de%20r%C3%A9f%C3%A9rence%2A%2A%20pour%20les%20acteurs%20qui%20sont%20%C3%A0%20la%20recherche%20de%20contenus%20informatifs%20didactiques%20et%20fiabilis%C3%A9s%20sur%20l%E2%80%99empreinte%20carbone%20%3A%0A%0A%2A%20%2A%2AM%C3%A9dias%2A%2A%20%28grand%20public%2C%20sp%C3%A9cialis%C3%A9s%2C%E2%80%A6%29%20%3B%0A%2A%20%2A%2AEntreprises%2A%2A%20%28p%C3%B4les%20RSE%2C%20directions%20de%20l%E2%80%99engagement%2C%20startups%20%2AGreen%20Tech%2A%2C%E2%80%A6%29%20%3B%0A%2A%20%2A%2AAssociations%2A%2A%20%28festivals%20culturels%2C%20challenges%20citoyens%2C%E2%80%A6%29%0A%2A%20%2A%2APouvoirs%20publics%2A%2A%20%28Secr%C3%A9tariat%20g%C3%A9n%C3%A9ral%20%C3%A0%20la%20Planification%20%C3%A9cologique%20via%20France%20Nation%20Verte%2C%E2%80%A6%29.%0A%0ALes%20ressources%20disponibles%20sur%20Impact%20CO2%20se%20pr%C3%A9sentent%20sous%20diff%C3%A9rentes%20formes%20%3A%20%2A%2Asimulateurs%2C%20comparateurs%2C%20graphiques%2C%20infographies%2A%2A%2C%20etc.%0A%0ANos%20objectifs%20pour%20nos%20relais%20sont%20%3A%0A%0A%2A%20%2A%2AVulgariser%20l%E2%80%99information%20environnementale%2A%2A%20et%20communiquer%20les%20bons%20ordres%20de%20grandeur%20relatifs%20%C3%A0%20l%E2%80%99empreinte%20carbone%20%3B%0A%2A%20%2A%2ATracer%2C%20enrichir%20et%20valoriser%20les%20donn%C3%A9es%20sources%20utilis%C3%A9es%2A%2A%20afin%20de%20garantir%20la%20validit%C3%A9%20des%20calculs%20et%20leur%20mise%20%C3%A0%20disposition%20%3B%0A%2A%20%2A%2AOutiller%20et%20fid%C3%A9liser%20nos%20r%C3%A9utilisateurs%2A%2A%20avec%20des%20ressources%20personnalisables%20sur%20un%20large%20panel%20de%20th%C3%A9matiques%20%28Alimentation%2C%20Transport%2C%20Num%C3%A9rique%2C%20Chauffage%2C%20etc.%29%20%3B%0A%2A%20%2A%2AFaciliter%20la%20diffusion%20et%2Fou%20l%E2%80%99int%C3%A9gration%20de%20nos%20ressources%2A%2A%20%C3%A0%20de%20nouveaux%20contenus%20de%20sensibilisation.%0A%0ALes%20donn%C3%A9es%20sur%20lesquelles%20sont%20bas%C3%A9es%20les%20ressources%20sont%20en%20%2Aopen%20data%2A%20%3A%20%5Bjeux%20de%20donn%C3%A9es%20ouverts%20de%20l%27ADEME%5D%28https%3A%2F%2Fdata.ademe.fr%2F%29%2C%20%5B%C3%A9tudes%20de%20l%27ADEME%5D%28https%3A%2F%2Flibrairie.ademe.fr%2F%29%2C%20%5Bbase%20Empreinte%5D%28https%3A%2F%2Fbase-empreinte.ademe.fr%2F%29%20et%20%5Bbase%20Agribalyse%5D%28https%3A%2F%2Fagribalyse.ademe.fr%2F%29.%20Le%20code%20source%20du%20site%20et%20la%20m%C3%A9thodologie%20de%20calcul%20sont%20enti%C3%A8rement%20open%20source%20et%20accessibles%20sur%20notre%20%5Brepo%20GitHub%5D%28https%3A%2F%2Fgithub.com%2Fdatagir%2Fimpactco2%29.%0A%0A%23%23%20Strat%C3%A9gie%20%F0%9F%93%88%0A%0A%5BImpact%20CO2%5D%28http%3A%2F%2Fimpactco2.fr%2F%29%20rassemble%20aujourd%27hui%20%2A%2Apr%C3%A8s%20d%E2%80%991%20000%20000%20visites%2A%2A%20depuis%20son%20lancement%20en%20f%C3%A9vrier%202021%2C%20et%20b%C3%A9n%C3%A9ficie%20d%E2%80%99une%20visibilit%C3%A9%20grandissante%20aupr%C3%A8s%20des%20acteurs%20publics%20et%20priv%C3%A9s.%20L%27impact%20recherch%C3%A9%20est%20donc%20d%E2%80%99accro%C3%AEtre%20l%27utilisation%20et%20le%20partage%20du%20site%20et%20des%20contenus%20propos%C3%A9s%2C%20ceci%20afin%20d%E2%80%99%2A%2Aacc%C3%A9l%C3%A9rer%20la%20diffusion%20de%20l%27information%20environnementale%20pour%20nos%20relais%20et%20le%20grand%20public%2A%2A%20%28approche%20B2B2C%29.%0A%0AL%27approche%20est%20simple%20%3A%0A%0A%2A%20%2A%2AD%C3%A9velopper%20des%20kits%20de%20diffusion%2A%2A%20%C3%A0%20destination%20des%20cibles%20prioritaires%20pour%20faciliter%20la%20prise%20en%20main%20et%20la%20diffusion%20des%20ressources%20disponibles%20sur%20le%20site%20%28partages%2C%20t%C3%A9l%C3%A9chargements%2C%20%2Aiframe%2A%2C%20etc.%29%20%3B%0A%2A%20%2A%2AEntrer%20en%20contact%20avec%20des%20journalistes%20de%20m%C3%A9dias%20grand%20public%20et%20sp%C3%A9cialis%C3%A9s%2A%2A%20%C3%A0%20l%E2%80%99audience%20importante%2C%20et%20%C3%AAtre%20%C3%A0%20l%E2%80%99%C3%A9coute%20de%20leurs%20besoins%20d%E2%80%99outillage%20au%20regard%20de%20leur%20calendrier%20%C3%A9ditorial%20%3B%0A%2A%20%2A%2AToucher%20les%20p%C3%B4les%20RSE%2A%2A%2C%20directions%20de%20l%E2%80%99Engagement%20ou%20directions%20Communication%20des%20grands%20groupes%20et%20startups%20Green%20Tech%20ayant%20entrepris%20un%20virage%20%C3%A9cologique%20ou%20d%C3%A9sireux%20de%20le%20faire%20%3B%0A%2A%20%2A%2AProposer%20des%20formats%20innovants%2A%2A%20pour%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20de%20contenus%20qui%20abordent%20l%E2%80%99%C3%A9cologie%20par%20les%20sujets%20du%20quotidien%20aupr%C3%A8s%20d%27une%20cible%20citoyenne%20%28Instagram%2C%20YouTube%2C%20etc.%29.%0A%0A%23%23%20Impact%20%F0%9F%8E%AF%0A%0AImpact%20CO2%20est%20un%20service%20num%C3%A9rique%20con%C3%A7u%20selon%20l%E2%80%99%2A%2Aapproche%20Startup%20d%E2%80%99%C3%89tat%2A%2A%20et%20pilot%C3%A9%20par%20l%E2%80%99impact.%0A%0A%23%23%23%20Indicateur%20%C3%89toile%20du%20Nord%20%E2%AD%90%0A%0A%2A%20Nombre%20d%E2%80%99utilisations%20de%20nos%20ressources%20%28vues%2C%20t%C3%A9l%C3%A9chargements%2C%20partages%20et%20int%C3%A9grations%20%2Aiframe%29.%2A%0A%0A%23%23%23%20M%C3%A9triques%20de%20suivi%20%F0%9F%96%8B%EF%B8%8F%0A%0A%2A%20%2A%2AVisites%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20visites%20par%20semaine%2Fmois%20%3B%0A%20%20%2A%20Nombre%20de%20visites%20depuis%20le%20lancement%20%3B%0A%20%20%2A%20Dur%C3%A9e%20des%20visites%20sur%20le%20site%20%3B%0A%20%20%2A%20Taux%20d%27interaction%20avec%20les%20simulateurs.%0A%2A%20%2A%2AT%C3%A9l%C3%A9chargements%20%2F%20int%C3%A9grations%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20vues%20et%20likes%20des%20kits%20de%20diffusion%20%3B%0A%20%20%2A%20Nombre%20de%20t%C3%A9l%C3%A9chargement%20des%20infographies%20%3B%0A%20%20%2A%20Nombre%20de%20t%C3%A9l%C3%A9chargement%20des%20simulations%20%3B%0A%20%20%2A%20Taux%20d%E2%80%99%2Aiframisation%2A.%0A%2A%20%2A%2AR%C3%A9utilisateurs%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20de%20r%C3%A9utilisateurs%20des%20ressources%20%3B%0A%20%20%2A%20Nombre%20de%20mentions%20d%E2%80%99Impact%20CO2.%0A%2A%20%2A%2ASatisfaction%20utilisateur%2A%2A%20%3A%0A%0A%20%20%2A%20Taux%20de%20satisfaction%20des%20utilisateurs%20%3B%0A%20%20%2A%20Nombre%20de%20likes%20sur%20une%20page%20de%20ressource%20%28ex.%20%3A%20Kit%20M%C3%A9dia%29.%0A%2A%20%2A%2AR%C3%A9seaux%20sociaux%2A%2A%20%3A%0A%0A%20%20%2A%20Nombre%20d%E2%80%99abonn%C3%A9s%20%3B%0A%20%20%2A%20Taux%20d%E2%80%99engagement%20%3B%0A%20%20%2A%20Nombre%20d%E2%80%99impressions%20et%20de%20partages%20des%20posts%20%3B%0A%20%20%2A%20Nombre%20de%20mentions%20d%E2%80%99Impact%20CO2.%0A%0AAujourd%27hui%2C%20une%20grande%20partie%20de%20ces%20m%C3%A9triques%20d%E2%80%99usage%20et%20d%E2%80%99impact%20sont%20suivies%20gr%C3%A2ce%20aux%20%2A%2Aoutils%20Matomo%20et%20Hotjar%2A%2A%2C%20et%20une%20partie%20d%E2%80%99entre%20elles%20est%20d%C3%A9j%C3%A0%20disponible%20sur%20la%20%5Bpage%20de%20statistiques%20de%20Datagir%5D%28https%3A%2F%2Fdatagir.ademe.fr%2Fstats%2F%29%20%28menu%20d%C3%A9roulant%20%E2%80%9CImpact%20CO2%E2%80%9D%29.%20Suite%20%C3%A0%20la%20fin%20de%20Datagir%20et%20sa%20s%C3%A9paration%20en%202%20Startups%20d%27%C3%89tat%20distinctes%2C%20nous%20souhaitons%20refondre%20cette%20page%20existante%20et%20l%27int%C3%A9grer%20au%20site%20Impact%20CO2.%0A%0AUn%20%2A%2Acomit%C3%A9%20d%27investissement%2A%2A%2C%20instance%20de%20pilotage%20principal%20d%27un%20produit%20num%C3%A9rique%20dans%20le%20programme%20beta.gouv.fr%2C%20aura%20lieu%20tous%20les%206%20mois%20pour%20faire%20le%20point%20sur%20l%27impact%20obtenu%20par%20l%27%C3%A9quipe%20et%20arbitrer%20sur%20les%20objectifs%20et%20les%20investissements%20consentis%20pour%20la%20poursuite%20du%20service.", - "events": [], - "phases": [ - { - "name": "construction", - "start": "2021-02-01", - "end": "" - }, - { - "name": "success", - "start": "2022-06-13", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-09-01", - "end": "" - } - ], - "sponsors": [ - "ademe" - ], - "thematiques": [ - "Écologie" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/incubateur-ademe/impactco2/blob/main/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/impact.co2", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "ademe" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://impactco2.fr", - "size": 3373.14, - "nodes": 390, - "requests": 65, - "grade": "C", - "score": 57, - "ges": 1.86, - "water": 2.79, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:44:12.702154", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-28T13:55:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 14, - "lighthouse_performance": 0.69, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://lemarche.inclusion.beta.gouv.fr", - "tags": [ - "itou" - ], - "category": "gip-inclusion", - "betaId": "place-de-marche-inclusion", - "http": { - "url": "https://lemarche.inclusion.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:30:31 GMT", - "grade": "C+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Language": "fr", - "Content-Length": "59975", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 04:30:29 GMT", - "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=AuPE6ag6UBwP0Gj95NGZl42FLLOpuqO4; expires=Sun, 19 Oct 2025 04:30:29 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01JAM31S157DRBYJ617XK2BHZF", - "Strict-Transport-Security": "max-age=30", - "Vary": "Accept-Language, Cookie, Origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY" + "severity": "INFO", + "finding": "30" }, - "scan_id": 57050437, - "score": 60, - "start_time": "Sun, 20 Oct 2024 04:30:27 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "csrftoken": { - "domain": "lemarche.inclusion.beta.gouv.fr", - "expires": 1760848231, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://lemarche.inclusion.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://lemarche.inclusion.beta.gouv.fr/", - "https://lemarche.inclusion.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=30", - "includeSubDomains": false, - "max-age": 30, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-implemented-max-age-less-than-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to less than six months (15768000)", - "score_modifier": -10 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js": { - "crossorigin": "anonymous", - "integrity": "sha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo=" - }, - "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "etut", - "url": "https://lemarche.inclusion.beta.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T00:36:07Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T05:04:54Z", - "next_check_at": "2024-11-24T05:09:54Z", - "created_at": "2021-04-22T19:59:32Z", - "mute_until": null, - "favicon_url": "https://lemarche.inclusion.beta.gouv.fr/static/dsfr/dist/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T04:59:55Z", - "expires_at": "2025-01-24T15:19:47Z", - "valid": true, - "error": null + { + "id": "key_exchange_score", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 423, - "connection": 138, - "handshake": 142, - "response": 405, - "total": 1108 - } + { + "id": "key_exchange_score_weighted", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "lemarche.inclusion.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": null, + { + "id": "cipher_strength_score", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "infomedicament.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "220" + } + ], "thirdparties": { "trackers": [ { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", + "type": "hotjar", + "url": "https://static.hotjar.com/c/hotjar-5189823.js?sv=6", "details": { - "id": "jsdelivr", - "message": "Host files locally" + "id": "hotjar", + "message": "Dont use HotJar" } } ], - "cookies": [ - { - "name": "csrftoken", - "value": "wAAVgkywuLU8s86jbv9IKOJr59gkN3y9", - "domain": "lemarche.inclusion.beta.gouv.fr", - "path": "/", - "expires": 1763873556.599568, - "size": 41, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], + "cookies": [], "headers": { - "connection": "keep-alive", - "content-language": "en", - "content-length": "62488", + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 04:52:36 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=wAAVgkywuLU8s86jbv9IKOJr59gkN3y9; expires=Sun, 23 Nov 2025 04:52:36 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01JDE87DMSD58NFFM23QF2PXS6", - "strict-transport-security": "max-age=30", - "vary": "Accept-Language, Cookie, Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" + "date": "Sun, 01 Dec 2024 04:59:34 GMT", + "etag": "\"kx4agicn8r2r3z\"", + "strict-transport-security": "max-age=31536000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js", + "x-request-id": "a71ebb7e-85bb-4404-905f-58881cdb5caf" }, "endpoints": [ { - "hostname": "lemarche.inclusion.beta.gouv.fr", - "ip": "91.208.207.220", + "hostname": "infomedicament.beta.gouv.fr", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -127467,9 +116222,59 @@ } }, { - "hostname": "cdn.jsdelivr.net", - "ip": "104.18.186.31", + "hostname": "static.hotjar.com", + "ip": "18.160.41.58", "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -127483,45 +116288,61 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] } } ] }, "wappalyzer": { "urls": { - "https://lemarche.inclusion.beta.gouv.fr/": { + "https://infomedicament.beta.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" } ], "rootPath": true }, { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -127531,94 +116352,74 @@ ] }, { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, - "version": "8.6.2", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", "categories": [ { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" } ] }, { - "slug": "leaflet", - "name": "Leaflet", - "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", "confidence": 100, - "version": "1.7.1", - "icon": "Leaflet.png", - "website": "https://leafletjs.com", + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", "cpe": null, "categories": [ { - "id": 35, - "slug": "maps", - "name": "Maps" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" } ], "rootPath": true }, { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "version": "14.2.18", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, { "id": 18, "slug": "web-frameworks", "name": "Web frameworks" - } - ] - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", - "confidence": 100, - "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", - "cpe": null, - "categories": [ + }, { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } ], "rootPath": true @@ -127642,67 +116443,49 @@ "rootPath": true }, { - "slug": "livefyre", - "name": "Livefyre", - "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", - "confidence": 0, - "version": "1.7.1", - "icon": "Livefyre.png", - "website": "https://livefyre.com", - "cpe": null, - "categories": [ - { - "id": 15, - "slug": "comment-systems", - "name": "Comment systems" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "slug": "hotjar", + "name": "Hotjar", + "description": "Hotjar is a suite of analytic tools to assist in the gathering of qualitative data, providing feedback through tools such as heatmaps, session recordings, and surveys.", "confidence": 100, - "version": "3.4.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "version": null, + "icon": "Hotjar.svg", + "website": "https://www.hotjar.com", + "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 10, + "slug": "analytics", + "name": "Analytics" } ], "rootPath": true }, { - "slug": "htmx", - "name": "Htmx", - "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "Htmx.svg", - "website": "https://htmx.org", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "slug": "preact", + "name": "Preact", + "description": "Preact is a JavaScript library that describes itself as a fast 3kB alternative to React with the same ES6 API.", "confidence": 100, - "version": "2.5.7", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", + "version": null, + "icon": "Preact.svg", + "website": "https://preactjs.com", "cpe": null, "categories": [ { @@ -127714,53 +116497,24 @@ "rootPath": true }, { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "linkedin-insight-tag", - "name": "Linkedin Insight Tag", - "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", "confidence": 100, "version": null, - "icon": "Linkedin.svg", - "website": "https://business.linkedin.com/marketing-solutions/insight-tag", + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", "cpe": null, "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ + "id": 62, + "slug": "paas", + "name": "PaaS" + }, { - "id": 75, - "slug": "email", - "name": "Email" + "id": 88, + "slug": "hosting", + "name": "Hosting" } ], "rootPath": true @@ -127784,13 +116538,13 @@ "rootPath": true }, { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { @@ -127798,8 +116552,24 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ], - "rootPath": true + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -127807,9 +116577,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://lemarche.inclusion.beta.gouv.fr/", - "finalUrl": "https://lemarche.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T04:52:08.906Z", + "requestedUrl": "https://infomedicament.beta.gouv.fr/", + "finalUrl": "https://infomedicament.beta.gouv.fr/", + "fetchTime": "2024-12-01T04:59:07.281Z", "runWarnings": [], "categories": { "performance": { @@ -127820,7 +116590,7 @@ "snapshot" ], "id": "performance", - "score": 0.5 + "score": 0.46 }, "accessibility": { "title": "Accessibility", @@ -127831,7 +116601,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 + "score": 0.93 }, "best-practices": { "title": "Best Practices", @@ -127841,7 +116611,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.75 + "score": 1 }, "seo": { "title": "SEO", @@ -127852,7 +116622,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -127872,53 +116642,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8856, + "numericValue": 11905, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8856, - "firstMeaningfulPaint": 8856, - "largestContentfulPaint": 10656, - "interactive": 8856, - "speedIndex": 8856, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.003277886284722222, - "cumulativeLayoutShiftMainFrame": 0.003277886284722222, - "totalCumulativeLayoutShift": 0.003277886284722222, + "firstContentfulPaint": 1890, + "firstMeaningfulPaint": 1890, + "largestContentfulPaint": 7253, + "interactive": 11905, + "speedIndex": 5715, + "totalBlockingTime": 636, + "maxPotentialFID": 486, + "cumulativeLayoutShift": 0.0006566480000813801, + "cumulativeLayoutShiftMainFrame": 0.0006566480000813801, + "totalCumulativeLayoutShift": 0.0006566480000813801, "observedTimeOrigin": 0, - "observedTimeOriginTs": 488739329, + "observedTimeOriginTs": 406806010, "observedNavigationStart": 0, - "observedNavigationStartTs": 488739329, - "observedFirstPaint": 1746, - "observedFirstPaintTs": 490485411, - "observedFirstContentfulPaint": 1746, - "observedFirstContentfulPaintTs": 490485411, - "observedFirstContentfulPaintAllFrames": 1746, - "observedFirstContentfulPaintAllFramesTs": 490485411, - "observedFirstMeaningfulPaint": 1746, - "observedFirstMeaningfulPaintTs": 490485411, - "observedLargestContentfulPaint": 1746, - "observedLargestContentfulPaintTs": 490485411, - "observedLargestContentfulPaintAllFrames": 1746, - "observedLargestContentfulPaintAllFramesTs": 490485411, - "observedTraceEnd": 5115, - "observedTraceEndTs": 493854653, - "observedLoad": 2643, - "observedLoadTs": 491382495, - "observedDomContentLoaded": 1872, - "observedDomContentLoadedTs": 490610909, - "observedCumulativeLayoutShift": 0.003277886284722222, - "observedCumulativeLayoutShiftMainFrame": 0.003277886284722222, - "observedTotalCumulativeLayoutShift": 0.003277886284722222, - "observedFirstVisualChange": 1757, - "observedFirstVisualChangeTs": 490496329, - "observedLastVisualChange": 2724, - "observedLastVisualChangeTs": 491463329, - "observedSpeedIndex": 2121, - "observedSpeedIndexTs": 490860531 + "observedNavigationStartTs": 406806010, + "observedFirstPaint": 585, + "observedFirstPaintTs": 407390932, + "observedFirstContentfulPaint": 585, + "observedFirstContentfulPaintTs": 407390932, + "observedFirstContentfulPaintAllFrames": 585, + "observedFirstContentfulPaintAllFramesTs": 407390932, + "observedFirstMeaningfulPaint": 585, + "observedFirstMeaningfulPaintTs": 407390932, + "observedLargestContentfulPaint": 1139, + "observedLargestContentfulPaintTs": 407944563, + "observedLargestContentfulPaintAllFrames": 1139, + "observedLargestContentfulPaintAllFramesTs": 407944563, + "observedTraceEnd": 4671, + "observedTraceEndTs": 411477038, + "observedLoad": 1534, + "observedLoadTs": 408340323, + "observedDomContentLoaded": 534, + "observedDomContentLoadedTs": 407340348, + "observedCumulativeLayoutShift": 0.0006566480000813801, + "observedCumulativeLayoutShiftMainFrame": 0.0006566480000813801, + "observedTotalCumulativeLayoutShift": 0.0006566480000813801, + "observedFirstVisualChange": 594, + "observedFirstVisualChangeTs": 407400010, + "observedLastVisualChange": 2360, + "observedLastVisualChangeTs": 409166010, + "observedSpeedIndex": 1083, + "observedSpeedIndexTs": 407889184 }, { "lcpInvalidated": false @@ -127936,23 +116706,23 @@ "type": "debugdata", "items": [ { - "numRequests": 69, - "numScripts": 13, - "numStylesheets": 4, - "numFonts": 4, - "numTasks": 37, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, + "numRequests": 55, + "numScripts": 21, + "numStylesheets": 3, + "numFonts": 6, + "numTasks": 1999, + "numTasksOver10ms": 13, + "numTasksOver25ms": 7, + "numTasksOver50ms": 4, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.0459999999999994, - "throughput": 12167054.08609188, - "maxRtt": 152.221, - "maxServerLatency": 153.21799999999993, - "totalByteWeight": 2600758, - "totalTaskTime": 5.413999999999997, - "mainDocumentTransferSize": 63055 + "rtt": 5.6049999999999995, + "throughput": 21258349.80898742, + "maxRtt": 86.179, + "maxServerLatency": 76.67699999999999, + "totalByteWeight": 1510714, + "totalTaskTime": 792.8799999999981, + "mainDocumentTransferSize": 29220 } ] } @@ -127962,27 +116732,25 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://lemarche.inclusion.beta.gouv.fr/accessibilite/" + "mention": "Accessibilité : non conforme" }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://lemarche.inclusion.beta.gouv.fr/mentions-legales/" + "missingTrackers": [] }, { "slug": "pc", @@ -127994,57 +116762,40 @@ } ], "betagouv": { - "id": "place-de-marche-inclusion", + "id": "infomedicament", "type": "startup", "attributes": { - "name": "Marché de l'inclusion", - "pitch": "Aider les structures inclusives à développer leur chiffre d’affaires", - "stats_url": "https://lemarche.inclusion.beta.gouv.fr/stats/", - "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?usp=sharing", - "link": "https://lemarche.inclusion.beta.gouv.fr", - "repository": "https://github.com/gip-inclusion/le-marche", - "contact": "lemarche@inclusion.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APlus%20de%202%20millions%20de%20personnes%20sont%20en%20situation%20de%20ch%C3%B4mage%20durable%20et%202%2C7%20millions%20de%20personnes%20sont%20en%20situation%20de%20handicap%20et%20en%20%C3%A2ge%20de%20travailler%20avec%20un%20taux%20d%E2%80%99emploi%20de%2035%25%20seulement.%20Le%20secteur%20de%20l%E2%80%99inclusion%20porte%20des%20r%C3%A9sultats%20tr%C3%A8s%20positifs%20pour%20l%E2%80%99emploi%20de%20ces%20publics%20en%20alliant%20les%20enjeux%20territoriaux%2C%20sociaux%20et%20%C3%A9conomiques.%20Il%20regroupe%20les%20structures%20de%20l%E2%80%99insertion%20par%20l%E2%80%99activit%C3%A9%20%C3%A9conomique%20%28IAE%29%20et%20du%20secteur%20du%20travail%20prot%C3%A9g%C3%A9%20et%20adapt%C3%A9%20%28STPA%29.%20Il%20s%27agit%20donc%20d%27accompagner%20la%20croissance%20de%20ces%20dispositifs.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ADans%20le%20paysage%20des%20structures%20inclusives%2C%20la%20majorit%C3%A9%20d%C3%A9pendent%20de%20leur%20ressources%20propres%20%28chiffre%20d%E2%80%99affaires%29%20pour%20assurer%20leur%20p%C3%A9rennit%C3%A9%20et%20leur%20d%C3%A9veloppement.%20Or%20la%20dynamique%20%E2%80%9Cnaturelle%E2%80%9D%20de%20croissance%20des%20ressources%20propres%20ne%20sera%20pas%20suffisante%20pour%20absorber%20100%20000%20emplois%20suppl%C3%A9mentaires.%20Faire%20cro%C3%AEtre%20les%20embauches%20dans%20le%20secteur%20de%20l%E2%80%99inclusion%20implique%20donc%20de%20soutenir%20leur%20d%C3%A9veloppement%20%C3%A9conomique%20et%20de%20d%C3%A9velopper%20les%20achats%20inclusifs%20%C3%A0%20hauteur%20de%201%2C9%20milliards%20d%E2%80%99euros.%0A%0AComment%20peut-on%20accompagner%20le%20d%C3%A9veloppement%20%C3%A9conomique%20des%20structures%20inclusives%20et%20lever%20les%20freins%20%C3%A0%20l%27acte%20d%27achat%20inclusif%20%3F%0A%0A%23%23%20Notre%20service%0A%0AFace%20aux%206%20grandes%20cat%C3%A9gories%20d%27irritants%20identifi%C3%A9s%2C%20une%20solution%20de%20place%20de%20march%C3%A9%20num%C3%A9rique%20commune%20%C3%A0%20l%27ensemble%20de%20l%27inclusion%20et%20destin%C3%A9e%20%C3%A0%20des%20acheteurs%20professionnels%20%28publics%20ou%20priv%C3%A9s%29%20a%20%C3%A9t%C3%A9%20retenue.%0A%0AAujourd%27hui%20le%20produit%20est%20en%20phase%20de%20d%C3%A9ploiement%20aupr%C3%A8s%20des%20diff%C3%A9rents%20acheteurs.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 125000€ pour la promotion 14" - } - ], + "name": "Info Médicament", + "pitch": "Mettre à disposition les informations et données autour du médicament aux patients et aux professionnels de santé afin de favoriser un meilleur usage des médicaments", + "stats_url": "", + "repository": "https://github.com/betagouv/infomedicament", + "contact": "infomedicament-team@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%20%0A%0AChaque%20ann%C3%A9e%20en%20France%2C%20environ%20130%20000%20personnes%20sont%20hospitalis%C3%A9es%20suite%20%C3%A0%20des%20effets%20ind%C3%A9sirables%20suspect%C3%A9s%20d%E2%80%99%C3%AAtre%20dus%20%C3%A0%20un%20mauvais%20usage%20des%20m%C3%A9dicaments%2C%20dont%2010%20000%20d%C3%A9c%C3%A8s.%20Pr%C3%A8s%20de%2080%25%20des%20fran%C3%A7ais.es%20ont%20recours%20%C3%A0%20de%20l%27autom%C3%A9dication%2C%2030%25%20adaptent%20par%20eux-m%C3%AAmes%20la%20dose%20ou%20la%20dur%C3%A9e%20de%20leur%20traitement.%0A%20%0ATout%20au%20long%20de%20leur%20parcours%20de%20sant%C3%A9%2C%20%2A%2Ales%20patient.es%2A%2A%20recherchent%20des%20informations%20sur%20internet%20sur%20les%20m%C3%A9dicaments%2C%20pour%20se%20rassurer%20ou%20au%20contraire%20%C3%A9valuer%20eux-m%C3%AAmes%20les%20risques%20%C3%A0%20suivre%20leurs%20traitements%2C%20contre%20l%27avis%20des%20m%C3%A9decins.%20De%20plus%2C%20ils%20doivent%20parcourir%20de%20nombreux%20sites%20aux%20informations%20partielles%2C%20payantes%20ou%20obsol%C3%A8tes%2C%20qui%20ne%20leur%20donnent%20pas%20les%20cl%C3%A9s%20de%20compr%C3%A9hension%20n%C3%A9cessaires%20et%20%C3%A0%20qui%20ils%20ne%20font%20pas%20confiance%20%C3%A0%2072%25.%20La%20m%C3%A9sinformation%20et%20la%20d%C3%A9sinformation%20peuvent%20alors%20mener%20%C3%A0%20du%20m%C3%A9susage%20et%20%C3%A0%20des%20cons%C3%A9quences%20graves%20de%20sant%C3%A9%20publique.%0A%0A%0AL%27objectif%20du%20MVP%20est%20de%20v%C3%A9rifier%20qu%E2%80%99un%20acc%C3%A8s%20%C3%A0%20des%20informations%20fiables%2C%20actualis%C3%A9es%20et%20claires%20sur%20l%E2%80%99usage%20des%20m%C3%A9dicaments%20pourrait%20participer%20%C3%A0%20r%C3%A9duire%20ces%20risques.%0A%20%20%0A%23%23%20Objectifs%20%0A%0A%2A%20Lutter%20contre%20la%20m%C3%A9sinformation%20et%20le%20m%C3%A9susage%0A%2A%20Faciliter%20la%20compr%C3%A9hension%20des%20notices%20de%20m%C3%A9dicaments%20%0A%2A%20Responsabiliser%20la%20prise%20de%20m%C3%A9dicament%20pour%20un%20meilleur%20suivi%20des%20traitements%0A%2A%20Mettre%20%C3%A0%20disposition%20en%20open%20data%20des%20donn%C3%A9es%20structur%C3%A9es%20et%20%C3%A0%20jour%20%0A%0A%20%0A%23%23%20Solution%0A%0A%2A%2AInfoMedicament.gouv.fr%2A%2A%20est%20le%20service%20num%C3%A9rique%20de%20r%C3%A9f%C3%A9rence%20d%E2%80%99informations%20sur%20les%20m%C3%A9dicaments%20qui%20permet%20aux%20patient.es%20de%20mieux%20comprendre%20leurs%20traitements%20afin%20qu%E2%80%99ils%20et%20elles%20deviennent%20acteur.ices%20de%20leur%20sant%C3%A9%2C%20mais%20aussi%20aux%20professionnel.les%20de%20sant%C3%A9%20de%20mieux%20accompagner%20les%20patients.%0A%0A%2A%2AInfoMedicament.gouv.fr%2A%2A%20met%20%C3%A0%20disposition%20des%20informations%20claires%2C%20fiables%2C%20compl%C3%A8tes%20et%20compr%C3%A9hensibles%2C%20mais%20aussi%20structur%C3%A9es%20automatiquement%20pour%20mettre%20en%20valeur%20les%20informations%20cl%C3%A9s%20et%20pertinentes%20pour%20les%20patient.es.%20A%20terme%2C%20elles%20seront%20aussi%20accessibles%20%C3%A0%20tous%20gr%C3%A2ce%20une%20API%20publique.%0A%0A%0A%20%0A---%0A%0A%0A%0A%0A%0A%23%23%20Sources%0A%0A%2A%20%5BB.%20BEGAUD%20et%20D.%20COSTAGLIOLA%20%3B%20Rapport%20sur%20la%20surveillance%20et%20le%20bon%20usage%20des%20m%C3%A9dicaments%20en%20France%20%3B%20septembre%0A2013%20%3B%20La%20Documentation%20Fran%C3%A7aise%5D%28https%3A%2F%2Fsante.gouv.fr%2FIMG%2Fpdf%2FRapport_Begaud_Costagliola.pdf%29%0A%2A%20%5BRapport%20IATROSTAT%20%E2%80%93%20RFCRPV%20%E2%80%93%2002%20mai%202022%5D%28https%3A%2F%2Fwww.rfcrpv.fr%2Fwp-content%2Fuploads%2F2022%2F05%2Frapport-IATROSTAT-version-defintiive-02-mai-2022.pdf%29%0A%2A%20%5B%C3%89TUDE%20SUR%20L%E2%80%99IMPACT%20DE%20L%E2%80%99INFLATION%20SUR%20LES%20ACHATS%0ADE%20M%C3%89DICAMENTS%20OTC%20%28SANS%20ORDONNANCE%29%20IFOP%202023%5D%28https%3A%2F%2Fwww.ifop.com%2Fwp-content%2Fuploads%2F2023%2F05%2F119931-Resultats.pdf%29%0A", + "events": [], "phases": [ { "name": "investigation", - "start": "2020-03-16", + "start": "2024-01-09", "end": "" }, { "name": "construction", - "start": "2020-06-30", - "end": "" - }, - { - "name": "acceleration", - "start": "2021-06-01", + "start": "2024-06-03", "end": "" } ], "sponsors": [ - "francetravail", - "mtei" + "ansm" ], "thematiques": [ - "Travail / Emploi", - "Social" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/lemarche-inclusion-beta-gouv-fr/", - "accessibility_status": "non conforme" + "Santé" + ] }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "gip-inclusion" + "id": "dinum" } } } @@ -128053,16 +116804,16 @@ { "width": 1920, "height": 1080, - "url": "https://lemarche.inclusion.beta.gouv.fr", - "size": 2764.774, - "nodes": 703, - "requests": 65, - "grade": "D", - "score": 45, - "ges": 2.1, - "water": 3.15, + "url": "https://infomedicament.beta.gouv.fr", + "size": 2342.004, + "nodes": 345, + "requests": 53, + "grade": "C", + "score": 63, + "ges": 1.74, + "water": 2.61, "ecoindex_version": "5.4.2", - "date": "2024-11-24 04:49:04.634925", + "date": "2024-12-01 04:56:06.270922", "page_type": null } ], @@ -128071,69 +116822,73 @@ "detected": true }, "summary": { - "httpGrade": "C+", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.985, + "apdexGrade": "B", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 4, - "lighthouse_performance": 0.5, + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-23T11:26:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.46, "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.96, + "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.75, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.92, + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "A", + "statsGrade": "F", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", + "budgetPageGrade": "F", + "declaration-a11y": "D", + "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F", - "ecoindexGrade": "D", + "ecoindexGrade": "C", "dsfrGrade": "A" } }, { "404": null, - "url": "https://ma-cantine.agriculture.gouv.fr", - "category": "dinum", - "betaId": "ma-cantine-egalim", + "url": "https://lemarche.inclusion.beta.gouv.fr", + "tags": [ + "itou" + ], + "category": "gip-inclusion", + "betaId": "place-de-marche-inclusion", "http": { - "url": "https://ma-cantine.agriculture.gouv.fr", + "url": "https://lemarche.inclusion.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:41:02 GMT", - "grade": "D+", + "end_time": "Sun, 20 Oct 2024 04:30:31 GMT", + "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Encoding": "gzip", "Content-Language": "fr", - "Content-Security-Policy": "media-src 'self' cellar-c2.services.clever-cloud.com; font-src 'self' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; default-src 'self'; object-src 'self' cellar-c2.services.clever-cloud.com; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", + "Content-Length": "59975", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 04:41:01 GMT", + "Date": "Sun, 20 Oct 2024 04:30:29 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=Q5IKUqhiT6H3Pbu0TLBS9LUYjOvByU52; expires=Sun, 19 Oct 2025 04:41:01 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "Sozu-Id": "01JAM3N1T4WAHDHP61CKX59093", - "Transfer-Encoding": "chunked", - "Vary": "Cookie, Accept-Language", + "Set-Cookie": "csrftoken=AuPE6ag6UBwP0Gj95NGZl42FLLOpuqO4; expires=Sun, 19 Oct 2025 04:30:29 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01JAM31S157DRBYJ617XK2BHZF", + "Strict-Transport-Security": "max-age=30", + "Vary": "Accept-Language, Cookie, Origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 57050669, - "score": 40, - "start_time": "Sun, 20 Oct 2024 04:41:00 GMT", + "scan_id": 57050437, + "score": 60, + "start_time": "Sun, 20 Oct 2024 04:30:27 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -128144,82 +116899,16 @@ "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "connect-src": [ - "wss://client.relay.crisp.chat", - "'self'", - "stats.beta.gouv.fr", - "ws:", - "entreprise.data.gouv.fr", - "plateforme.adresse.data.gouv.fr", - "client.crisp.chat", - "api-adresse.data.gouv.fr" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "client.crisp.chat", - "'self'" - ], - "frame-src": [ - "ma-cantine.crisp.help", - "ma-cantine-metabase.cleverapps.io", - "'self'" - ], - "img-src": [ - "image.crisp.chat", - "'unsafe-inline'", - "'self'", - "data:", - "stats.beta.gouv.fr", - "www.w3.org", - "jedonnemonavis.numerique.gouv.fr", - "cellar-c2.services.clever-cloud.com", - "voxusagers.numerique.gouv.fr" - ], - "media-src": [ - "cellar-c2.services.clever-cloud.com", - "'self'" - ], - "object-src": [ - "cellar-c2.services.clever-cloud.com", - "'self'" - ], - "script-src": [ - "stats.beta.gouv.fr", - "'unsafe-inline'", - "client.crisp.chat", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "netdna.bootstrapcdn.com", - "client.crisp.chat", - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -128227,22 +116916,22 @@ "output": { "data": { "csrftoken": { - "domain": "ma-cantine.agriculture.gouv.fr", - "expires": 1760848862, - "httponly": false, + "domain": "lemarche.inclusion.beta.gouv.fr", + "expires": 1760848231, + "httponly": true, "max-age": null, "path": "/", "port": null, "samesite": "Lax", - "secure": false + "secure": true } }, - "sameSite": null + "sameSite": true }, - "pass": false, - "result": "cookies-without-secure-flag", - "score_description": "Cookies set without using the Secure flag or set over HTTP", - "score_modifier": -20 + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -128263,11 +116952,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://ma-cantine.agriculture.gouv.fr/", + "destination": "https://lemarche.inclusion.beta.gouv.fr/", "redirects": true, "route": [ - "http://ma-cantine.agriculture.gouv.fr/", - "https://ma-cantine.agriculture.gouv.fr/" + "http://lemarche.inclusion.beta.gouv.fr/", + "https://lemarche.inclusion.beta.gouv.fr/" ], "status_code": 200 }, @@ -128293,27 +116982,36 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, + "data": "max-age=30", "includeSubDomains": false, - "max-age": null, + "max-age": 30, "preload": false, "preloaded": false }, "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "result": "hsts-implemented-max-age-less-than-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to less than six months (15768000)", + "score_modifier": -10 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js": { + "crossorigin": "anonymous", + "integrity": "sha256-CSXorXvZcTkaix6Yvo6HppcZGetbYMGWSFlBw8HfCJo=" + }, + "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -128351,56 +117049,54 @@ } }, "updownio": { - "token": "2l7f", - "url": "https://ma-cantine.agriculture.gouv.fr", + "token": "etut", + "url": "https://lemarche.inclusion.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 100, + "uptime": 99.977, "down": false, "down_since": null, - "up_since": "2024-11-22T13:31:46Z", + "up_since": "2024-12-01T00:36:19Z", "error": null, "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ - "email:42281013", - "email:2945598948", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T05:26:07Z", - "next_check_at": "2024-11-24T05:31:06Z", - "created_at": "2023-06-22T12:45:00Z", + "last_check_at": "2024-12-01T05:19:57Z", + "next_check_at": "2024-12-01T05:24:54Z", + "created_at": "2021-04-22T19:59:32Z", "mute_until": null, - "favicon_url": "https://ma-cantine.agriculture.gouv.fr/static/images/favicon-marianne.png", + "favicon_url": "https://lemarche.inclusion.beta.gouv.fr/static/dsfr/dist/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T05:11:15Z", - "expires_at": "2025-07-10T23:59:59Z", + "tested_at": "2024-12-01T04:50:09Z", + "expires_at": "2025-01-24T15:19:47Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.795, "timings": { "redirect": 0, - "namelookup": 95, + "namelookup": 388, "connection": 120, - "handshake": 121, - "response": 121, - "total": 458 + "handshake": 125, + "response": 1095, + "total": 1728 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { - "host": "ma-cantine.agriculture.gouv.fr", + "host": "lemarche.inclusion.beta.gouv.fr", "protocol": "tcp", "closed_ports": "986", "open_ports": [ @@ -128512,70 +117208,70 @@ "testssl": [ { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128583,7 +117279,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128591,7 +117287,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128599,7 +117295,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128607,7 +117303,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128615,7 +117311,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128623,582 +117319,1514 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "1733030074" + }, + { + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" + }, + { + "id": "LOGJAM", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS max-age is too short" + }, + { + "id": "service", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "03940555325AD89E8F82575C2CCB3261E79A" + }, + { + "id": "cert_serialNumberLen", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" + }, + { + "id": "cert", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "54 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "2024-10-26 15:19" + }, + { + "id": "cert_notAfter", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "2025-01-24 15:19" + }, + { + "id": "cert_extlifeSpan", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" - }, - { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "1732425499" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, - { - "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "WARN", + "finding": "HTTP header request failed" }, { - "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "id": "scanProblem", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" + "severity": "WARN", + "finding": "HTTP header was repeatedly zero." }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -129207,7 +118835,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -129216,7 +118844,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -129225,7 +118853,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -129234,7 +118862,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -129242,7 +118870,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -129251,7 +118879,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -129260,16 +118888,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -129278,14 +118906,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -129294,7 +118922,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -129303,7 +118931,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -129312,16 +118940,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129330,7 +118958,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129339,7 +118967,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -129348,7 +118976,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -129357,7 +118985,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -129366,7 +118994,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -129375,392 +119003,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129768,7 +119389,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129776,7 +119397,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129784,7 +119405,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129792,7 +119413,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -129800,7 +119421,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -129808,574 +119429,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1733030181" }, { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732425560" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -130383,7 +119927,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -130392,7 +119936,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -130401,7 +119945,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -130410,7 +119954,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -130419,7 +119963,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -130427,7 +119971,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -130436,7 +119980,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -130445,16 +119989,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -130463,14 +120007,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -130479,7 +120023,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -130488,7 +120032,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -130497,16 +120041,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130515,7 +120059,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130524,7 +120068,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -130533,7 +120077,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -130542,7 +120086,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -130551,7 +120095,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -130560,392 +120104,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130953,7 +120497,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130961,7 +120505,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130969,7 +120513,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130977,7 +120521,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130985,7 +120529,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130993,574 +120537,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIHvTCCBaWgAwIBAgIQeRvzFFQuTGKdWT1IFHaFpjANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjQwNzEwMDAwMDAwWhcNMjUwNzEwMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwExmTrPNif3n68Dio/UKOGyMQJubwYFS5tQ9Xmh4zSAwviN3j6qFUoK8HPWEdOgtpltq4wgktzhOcGXsxKaWDLZ3fBvjnXkZTe2Ivx5ZIMfKC/7c6dqV4xgURh+bJLYsD8QkOTm+SwobTOVvO6ukgXI8LPLK2nxgaM/5mlnFMpfAXeE4aiAS2kJfJK6vhO5mG5IwT2xCgolmnZEf3R+j6z8uMA3jDk1CLDKTifskZq3pTPXtwaSUEc7crvQUeBKdZnNm63fJJhymsdao+xilapmXQHnGQEy6Vza06jVQQ9Xlamkh/Oht42KJx/oW0t/fvlPKHiOXx846y5l9+HUcuQIDAQABo4IDVDCCA1AwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFGd+e9kY95/SVBqBpNjO84MvPoHHMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZCcBUwNAAAEAwBGMEQCIGadZJfdfsuK44HnXiiqvEu1RG6Eh7a9ZOvnAAotqwXNAiApwjFdmSUzQdc1M8+bLBiO4NxKqAni8FGHZpjmec/bwAB2AA3h8jAr0w3BQGISCepVLvxHdHyx1+kw7w5CHrR+Tqo0AAABkJwFS88AAAQDAEcwRQIgQQMQFCVvJZLsfpCTWOJe37mGrBccx9xH02BWB3bxRaMCIQDeG6wKakBEJI5iaJh4o8AWRVV4c/thP9f6sW10eilUNAB2ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAABkJwFS64AAAQDAEcwRQIhALNCJWz1cvb6+iL92+dNtvodd2YuuHuzwxvyxMXxEXVlAiBzVt66CzzZoZIZpWfj4qch3LN6sooJmypgRNn0x8qOfTANBgkqhkiG9w0BAQwFAAOCAgEARRJcRngno5/0hCNlv1NUq5KlOFfmODVraYOznHz1Y/mrajhfDxgjZi/VS6ZxbkqCZ6pqO/IPYM1d12bIuFGWCsdy5O8vxgEjKNoFlLHqnZMrlUmD6FpvrPPOtspLO9uS/Aeg5Pp/lTJ5qPubbhanQ4BmjIZy6eNyT2M3F/kNcH3Bdn8hNl6yNAapKLuLC//KLDrmwn1IpQIukpdbX/3EdNWKpLauc8TDol+X+t06P+az4RNcHS6D7he859m8/l8gZvl+miTE1+qqAxqnuCrHo5c3Ey52nV3ViCJXxjJlipM01VdRgVhq2SnXZDs5RrZ/uDwX2okt3OUIfzbgzUQAQHPt/oZXrw4G85pQKW3E0tZ5E+dtl/bVExq3Um3p9kMNpf8S9V3SU7FSuCLK05/c6M3BL5FJpHiIA3Ut9B0ysBk91K0yVtsrkKp+rg/NulwUJOaCwzaA47VgOA6fgzF22WZqddgmKKinvBmAp+vZEN3cnPKxA5HLSXmOzfDxqUjLfkAVs/yu3ednK6VlGwL9QQP1Jv2L7HkMZ7F0T1BEcf4K+ifA8aGWMkf3F/3ZWTvG6L1vilb9n8CRPt7p455FyGXZx14QveeuYsA+H3QRCnwxOnKGPedCmENI5EQ5DbsD1Z9tfjt1JakNBSZQhMeJGnNC1YgTguynYzcF2RY96Co=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + "finding": "1733030233" }, { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1732425621" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -131568,7 +121035,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -131577,7 +121044,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -131586,7 +121053,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -131595,7 +121062,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -131604,7 +121071,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -131612,7 +121079,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -131621,7 +121088,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -131630,16 +121097,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -131648,14 +121115,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -131664,7 +121131,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -131673,7 +121140,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -131682,16 +121149,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -131700,7 +121167,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -131709,7 +121176,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -131718,7 +121185,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -131727,7 +121194,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -131736,7 +121203,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -131745,392 +121212,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.220", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132138,7 +121605,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132146,7 +121613,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132154,7 +121621,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132162,7 +121629,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -132170,7 +121637,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -132178,574 +121645,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1733030285" }, { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732425682" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -132753,7 +122143,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -132762,7 +122152,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -132771,7 +122161,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -132780,7 +122170,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -132789,7 +122179,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -132797,7 +122187,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -132806,7 +122196,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -132815,16 +122205,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -132833,14 +122223,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -132849,7 +122239,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -132858,7 +122248,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -132867,16 +122257,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -132885,7 +122275,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -132894,7 +122284,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -132903,7 +122293,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -132912,7 +122302,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -132921,7 +122311,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -132930,392 +122320,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133323,7 +122713,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133331,7 +122721,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133339,7 +122729,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133347,7 +122737,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133355,7 +122745,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133363,574 +122753,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "-1 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1733030336" }, { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1732425745" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -133938,7 +123251,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -133947,7 +123260,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -133956,7 +123269,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -133965,7 +123278,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -133974,7 +123287,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -133982,7 +123295,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -133991,7 +123304,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -134000,16 +123313,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -134018,14 +123331,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -134034,7 +123347,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -134043,7 +123356,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -134052,16 +123365,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -134070,7 +123383,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -134079,7 +123392,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -134088,7 +123401,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -134097,7 +123410,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -134106,7 +123419,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -134115,392 +123428,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134508,7 +123821,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134516,7 +123829,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134524,7 +123837,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134532,7 +123845,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134540,7 +123853,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134548,574 +123861,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIHvTCCBaWgAwIBAgIQeRvzFFQuTGKdWT1IFHaFpjANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjQwNzEwMDAwMDAwWhcNMjUwNzEwMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwExmTrPNif3n68Dio/UKOGyMQJubwYFS5tQ9Xmh4zSAwviN3j6qFUoK8HPWEdOgtpltq4wgktzhOcGXsxKaWDLZ3fBvjnXkZTe2Ivx5ZIMfKC/7c6dqV4xgURh+bJLYsD8QkOTm+SwobTOVvO6ukgXI8LPLK2nxgaM/5mlnFMpfAXeE4aiAS2kJfJK6vhO5mG5IwT2xCgolmnZEf3R+j6z8uMA3jDk1CLDKTifskZq3pTPXtwaSUEc7crvQUeBKdZnNm63fJJhymsdao+xilapmXQHnGQEy6Vza06jVQQ9Xlamkh/Oht42KJx/oW0t/fvlPKHiOXx846y5l9+HUcuQIDAQABo4IDVDCCA1AwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFGd+e9kY95/SVBqBpNjO84MvPoHHMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZCcBUwNAAAEAwBGMEQCIGadZJfdfsuK44HnXiiqvEu1RG6Eh7a9ZOvnAAotqwXNAiApwjFdmSUzQdc1M8+bLBiO4NxKqAni8FGHZpjmec/bwAB2AA3h8jAr0w3BQGISCepVLvxHdHyx1+kw7w5CHrR+Tqo0AAABkJwFS88AAAQDAEcwRQIgQQMQFCVvJZLsfpCTWOJe37mGrBccx9xH02BWB3bxRaMCIQDeG6wKakBEJI5iaJh4o8AWRVV4c/thP9f6sW10eilUNAB2ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAABkJwFS64AAAQDAEcwRQIhALNCJWz1cvb6+iL92+dNtvodd2YuuHuzwxvyxMXxEXVlAiBzVt66CzzZoZIZpWfj4qch3LN6sooJmypgRNn0x8qOfTANBgkqhkiG9w0BAQwFAAOCAgEARRJcRngno5/0hCNlv1NUq5KlOFfmODVraYOznHz1Y/mrajhfDxgjZi/VS6ZxbkqCZ6pqO/IPYM1d12bIuFGWCsdy5O8vxgEjKNoFlLHqnZMrlUmD6FpvrPPOtspLO9uS/Aeg5Pp/lTJ5qPubbhanQ4BmjIZy6eNyT2M3F/kNcH3Bdn8hNl6yNAapKLuLC//KLDrmwn1IpQIukpdbX/3EdNWKpLauc8TDol+X+t06P+az4RNcHS6D7he859m8/l8gZvl+miTE1+qqAxqnuCrHo5c3Ey52nV3ViCJXxjJlipM01VdRgVhq2SnXZDs5RrZ/uDwX2okt3OUIfzbgzUQAQHPt/oZXrw4G85pQKW3E0tZ5E+dtl/bVExq3Um3p9kMNpf8S9V3SU7FSuCLK05/c6M3BL5FJpHiIA3Ut9B0ysBk91K0yVtsrkKp+rg/NulwUJOaCwzaA47VgOA6fgzF22WZqddgmKKinvBmAp+vZEN3cnPKxA5HLSXmOzfDxqUjLfkAVs/yu3ednK6VlGwL9QQP1Jv2L7HkMZ7F0T1BEcf4K+ifA8aGWMkf3F/3ZWTvG6L1vilb9n8CRPt7p455FyGXZx14QveeuYsA+H3QRCnwxOnKGPedCmENI5EQ5DbsD1Z9tfjt1JakNBSZQhMeJGnNC1YgTguynYzcF2RY96Co=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + "finding": "1733030388" }, { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732425806" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -135123,7 +124359,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -135132,7 +124368,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -135141,7 +124377,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -135150,7 +124386,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -135159,7 +124395,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -135167,7 +124403,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -135176,7 +124412,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -135185,16 +124421,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -135203,14 +124439,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -135219,7 +124455,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -135228,7 +124464,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -135237,16 +124473,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135255,7 +124491,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135264,7 +124500,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -135273,7 +124509,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -135282,7 +124518,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -135291,7 +124527,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -135300,392 +124536,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135693,7 +124929,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135701,7 +124937,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135709,7 +124945,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135717,7 +124953,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -135725,7 +124961,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -135733,574 +124969,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIHvTCCBaWgAwIBAgIQeRvzFFQuTGKdWT1IFHaFpjANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjQwNzEwMDAwMDAwWhcNMjUwNzEwMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwExmTrPNif3n68Dio/UKOGyMQJubwYFS5tQ9Xmh4zSAwviN3j6qFUoK8HPWEdOgtpltq4wgktzhOcGXsxKaWDLZ3fBvjnXkZTe2Ivx5ZIMfKC/7c6dqV4xgURh+bJLYsD8QkOTm+SwobTOVvO6ukgXI8LPLK2nxgaM/5mlnFMpfAXeE4aiAS2kJfJK6vhO5mG5IwT2xCgolmnZEf3R+j6z8uMA3jDk1CLDKTifskZq3pTPXtwaSUEc7crvQUeBKdZnNm63fJJhymsdao+xilapmXQHnGQEy6Vza06jVQQ9Xlamkh/Oht42KJx/oW0t/fvlPKHiOXx846y5l9+HUcuQIDAQABo4IDVDCCA1AwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFGd+e9kY95/SVBqBpNjO84MvPoHHMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZCcBUwNAAAEAwBGMEQCIGadZJfdfsuK44HnXiiqvEu1RG6Eh7a9ZOvnAAotqwXNAiApwjFdmSUzQdc1M8+bLBiO4NxKqAni8FGHZpjmec/bwAB2AA3h8jAr0w3BQGISCepVLvxHdHyx1+kw7w5CHrR+Tqo0AAABkJwFS88AAAQDAEcwRQIgQQMQFCVvJZLsfpCTWOJe37mGrBccx9xH02BWB3bxRaMCIQDeG6wKakBEJI5iaJh4o8AWRVV4c/thP9f6sW10eilUNAB2ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAABkJwFS64AAAQDAEcwRQIhALNCJWz1cvb6+iL92+dNtvodd2YuuHuzwxvyxMXxEXVlAiBzVt66CzzZoZIZpWfj4qch3LN6sooJmypgRNn0x8qOfTANBgkqhkiG9w0BAQwFAAOCAgEARRJcRngno5/0hCNlv1NUq5KlOFfmODVraYOznHz1Y/mrajhfDxgjZi/VS6ZxbkqCZ6pqO/IPYM1d12bIuFGWCsdy5O8vxgEjKNoFlLHqnZMrlUmD6FpvrPPOtspLO9uS/Aeg5Pp/lTJ5qPubbhanQ4BmjIZy6eNyT2M3F/kNcH3Bdn8hNl6yNAapKLuLC//KLDrmwn1IpQIukpdbX/3EdNWKpLauc8TDol+X+t06P+az4RNcHS6D7he859m8/l8gZvl+miTE1+qqAxqnuCrHo5c3Ey52nV3ViCJXxjJlipM01VdRgVhq2SnXZDs5RrZ/uDwX2okt3OUIfzbgzUQAQHPt/oZXrw4G85pQKW3E0tZ5E+dtl/bVExq3Um3p9kMNpf8S9V3SU7FSuCLK05/c6M3BL5FJpHiIA3Ut9B0ysBk91K0yVtsrkKp+rg/NulwUJOaCwzaA47VgOA6fgzF22WZqddgmKKinvBmAp+vZEN3cnPKxA5HLSXmOzfDxqUjLfkAVs/yu3ednK6VlGwL9QQP1Jv2L7HkMZ7F0T1BEcf4K+ifA8aGWMkf3F/3ZWTvG6L1vilb9n8CRPt7p455FyGXZx14QveeuYsA+H3QRCnwxOnKGPedCmENI5EQ5DbsD1Z9tfjt1JakNBSZQhMeJGnNC1YgTguynYzcF2RY96Co=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1733030439" }, { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732425867" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -136308,7 +125467,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -136317,7 +125476,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -136326,7 +125485,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -136335,7 +125494,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -136344,7 +125503,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -136352,7 +125511,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -136361,7 +125520,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -136370,16 +125529,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -136388,14 +125547,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -136404,7 +125563,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -136413,7 +125572,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -136422,16 +125581,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -136440,7 +125599,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -136449,7 +125608,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -136458,7 +125617,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -136467,7 +125626,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -136476,7 +125635,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -136485,392 +125644,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.222", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -136878,7 +126037,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -136886,7 +126045,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -136894,7 +126053,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -136902,7 +126061,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -136910,7 +126069,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -136918,574 +126077,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "791BF314542E4C629D593D48147685A6" + "finding": "03940555325AD89E8F82575C2CCB3261E79A" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2DC433B5D771450166B9E9AF8EED0BC81417D52A" + "finding": "9C437C453C4426CA1E4E1F1F9DB07B2E2EF55244" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "228 >= 60 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-10-26 15:19" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-01-24 15:19" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "LOW", - "finding": "yes" - }, - { - "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIEMjCCAxqgAwIBAgIBATANBgkqhkiG9w0BAQUFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA0MDEwMTAwMDAwMFoXDTI4MTIzMTIzNTk1OVowezELMAkGA1UEBhMCR0IxGzAZBgNVBAgMEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBwwHU2FsZm9yZDEaMBgGA1UECgwRQ29tb2RvIENBIExpbWl0ZWQxITAfBgNVBAMMGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL5AnfRu4ep2hxxNRUSOvkbIgwadwSr+GB+O5AL686tdUIoWMQuaBtDFcCLNSS1UY8y2bmhGC1Pqy0wkwLxyTurxFa70VJoSCsN6sjNg4tqJVfMiWPPe3M/vg4aijJRPn2jymJBGhCfHdr/jzDUsi14HZGWCwEiwqJH5YZ92IFCokcdmtet4YgNW8IoaE+oxox6gmf049vYnMlhvB/VruPsUK6+3qszWY19zjNoFmag4qMsXeDZRrOme9Hg6jc8P2ULimAyrL58OAd7vn5lJ8S3frHRNG5i1R8XlKdH5kBjHYpy+g8cmez6KJcfA3Z3mNWgQIJ2P2N7Sw4ScDV7oL8kCAwEAAaOBwDCBvTAdBgNVHQ4EFgQUoBEKIz6W8Qfs4q8p74Klf9AwpLQwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wewYDVR0fBHQwcjA4oDagNIYyaHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2aWNlcy5jcmwwNqA0oDKGMGh0dHA6Ly9jcmwuY29tb2RvLm5ldC9BQUFDZXJ0aWZpY2F0ZVNlcnZpY2VzLmNybDANBgkqhkiG9w0BAQUFAAOCAQEACFb8AvCb6P+k+tZ7xkSAzk/ExfYAWMymtrwUSWgEdujm7l3sAg9g1o1QGE8mTgHj5rCl7r+8dFRBv/38ErjHT1r0iWAFf2C3BUrz9vHCv8S5dIa2LX1rzNLzRt0vxuBqw8M0Ayx9lt1awg6nCpnBBYurDC/zXDrPbDdVCYfeU0BsWO/8tqtlbgT2G9w84FoVxp7Z8VlIMCFlA2zs6SFz7JsDoeA3raAVGI/6ugLOpyypEBMs1OUIJqsil2D4kF501KKaU73yqWjgom7C12yxow+ev+to51byrvLjKzg6CYG1a4XXvi3tPxq3smPi9WIsgtRqAEFQ8TmDn5XpNpaYbg==\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "no" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "cert_caIssuers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert_notBefore <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert_notAfter <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2033-05-01 23:59" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert_expiration <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "intermediate_cert_chain <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732425931" + "finding": "1733030491" }, { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" - }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -137493,7 +126575,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -137502,7 +126584,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -137511,7 +126593,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -137520,7 +126602,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -137529,7 +126611,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -137537,7 +126619,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -137546,7 +126628,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -137555,16 +126637,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -137573,14 +126655,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -137589,7 +126671,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -137598,7 +126680,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -137607,16 +126689,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=019CE1E490E17E9312A6247DA27590B4C5BCF323AD81E9F6788FB11BB01CA599" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -137625,7 +126707,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -137634,7 +126716,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -137643,7 +126725,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -137652,7 +126734,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -137661,7 +126743,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -137670,392 +126752,2356 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, - { - "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "30" + { + "id": "protocol_support_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS max-age is too short" + }, + { + "id": "scanTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "472" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + } + ], + "cookies": [ + { + "name": "csrftoken", + "value": "d4YwoUb8S2H3CsEwCGDgFaNmPfG84KWy", + "domain": "lemarche.inclusion.beta.gouv.fr", + "path": "/", + "expires": 1764479612.828089, + "size": 41, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-language": "en", + "content-length": "62488", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 05:13:32 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=d4YwoUb8S2H3CsEwCGDgFaNmPfG84KWy; expires=Sun, 30 Nov 2025 05:13:32 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01JE0A6SES8J7AH0ZTP3A0GVHR", + "strict-transport-security": "max-age=30", + "vary": "Accept-Language, Cookie, Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" + }, + "endpoints": [ + { + "hostname": "lemarche.inclusion.beta.gouv.fr", + "ip": "91.208.207.221", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.187.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://lemarche.inclusion.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wagtail", + "name": "Wagtail", + "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "confidence": 100, + "version": null, + "icon": "Wagtail.svg", + "website": "https://wagtail.org", + "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "leaflet", + "name": "Leaflet", + "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", + "confidence": 100, + "version": "1.7.1", + "icon": "Leaflet.png", + "website": "https://leafletjs.com", + "cpe": null, + "categories": [ + { + "id": 35, + "slug": "maps", + "name": "Maps" + } + ], + "rootPath": true + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "livefyre", + "name": "Livefyre", + "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", + "confidence": 0, + "version": "1.7.1", + "icon": "Livefyre.png", + "website": "https://livefyre.com", + "cpe": null, + "categories": [ + { + "id": 15, + "slug": "comment-systems", + "name": "Comment systems" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.4.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "htmx", + "name": "Htmx", + "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "confidence": 100, + "version": null, + "icon": "Htmx.svg", + "website": "https://htmx.org", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "2.5.7", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "linkedin-insight-tag", + "name": "Linkedin Insight Tag", + "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", + "confidence": 100, + "version": null, + "icon": "Linkedin.svg", + "website": "https://business.linkedin.com/marketing-solutions/insight-tag", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://lemarche.inclusion.beta.gouv.fr/", + "finalUrl": "https://lemarche.inclusion.beta.gouv.fr/", + "fetchTime": "2024-12-01T05:13:08.194Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.51 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.75 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 8278, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 8278, + "firstMeaningfulPaint": 8278, + "largestContentfulPaint": 9086, + "interactive": 8278, + "speedIndex": 8278, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.003277886284722222, + "cumulativeLayoutShiftMainFrame": 0.003277886284722222, + "totalCumulativeLayoutShift": 0.003277886284722222, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 393045552, + "observedNavigationStart": 0, + "observedNavigationStartTs": 393045552, + "observedFirstPaint": 1127, + "observedFirstPaintTs": 394172991, + "observedFirstContentfulPaint": 1127, + "observedFirstContentfulPaintTs": 394172991, + "observedFirstContentfulPaintAllFrames": 1127, + "observedFirstContentfulPaintAllFramesTs": 394172991, + "observedFirstMeaningfulPaint": 1127, + "observedFirstMeaningfulPaintTs": 394172991, + "observedLargestContentfulPaint": 1127, + "observedLargestContentfulPaintTs": 394172991, + "observedLargestContentfulPaintAllFrames": 1127, + "observedLargestContentfulPaintAllFramesTs": 394172991, + "observedTraceEnd": 4183, + "observedTraceEndTs": 397228756, + "observedLoad": 1777, + "observedLoadTs": 394822233, + "observedDomContentLoaded": 1282, + "observedDomContentLoadedTs": 394327664, + "observedCumulativeLayoutShift": 0.003277886284722222, + "observedCumulativeLayoutShiftMainFrame": 0.003277886284722222, + "observedTotalCumulativeLayoutShift": 0.003277886284722222, + "observedFirstVisualChange": 1138, + "observedFirstVisualChangeTs": 394183552, + "observedLastVisualChange": 1888, + "observedLastVisualChangeTs": 394933552, + "observedSpeedIndex": 1423, + "observedSpeedIndexTs": 394468054 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 69, + "numScripts": 13, + "numStylesheets": 4, + "numFonts": 4, + "numTasks": 35, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.2529999999999997, + "throughput": 19936784.026783638, + "maxRtt": 82.628, + "maxServerLatency": 17.244, + "totalByteWeight": 2600746, + "totalTaskTime": 2.965, + "mainDocumentTransferSize": 63055 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://lemarche.inclusion.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://lemarche.inclusion.beta.gouv.fr/mentions-legales/" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "place-de-marche-inclusion", + "type": "startup", + "attributes": { + "name": "Marché de l'inclusion", + "pitch": "Aider les structures inclusives à développer leur chiffre d’affaires", + "stats_url": "https://lemarche.inclusion.beta.gouv.fr/stats/", + "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?usp=sharing", + "link": "https://lemarche.inclusion.beta.gouv.fr", + "repository": "https://github.com/gip-inclusion/le-marche", + "contact": "lemarche@inclusion.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APlus%20de%202%20millions%20de%20personnes%20sont%20en%20situation%20de%20ch%C3%B4mage%20durable%20et%202%2C7%20millions%20de%20personnes%20sont%20en%20situation%20de%20handicap%20et%20en%20%C3%A2ge%20de%20travailler%20avec%20un%20taux%20d%E2%80%99emploi%20de%2035%25%20seulement.%20Le%20secteur%20de%20l%E2%80%99inclusion%20porte%20des%20r%C3%A9sultats%20tr%C3%A8s%20positifs%20pour%20l%E2%80%99emploi%20de%20ces%20publics%20en%20alliant%20les%20enjeux%20territoriaux%2C%20sociaux%20et%20%C3%A9conomiques.%20Il%20regroupe%20les%20structures%20de%20l%E2%80%99insertion%20par%20l%E2%80%99activit%C3%A9%20%C3%A9conomique%20%28IAE%29%20et%20du%20secteur%20du%20travail%20prot%C3%A9g%C3%A9%20et%20adapt%C3%A9%20%28STPA%29.%20Il%20s%27agit%20donc%20d%27accompagner%20la%20croissance%20de%20ces%20dispositifs.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ADans%20le%20paysage%20des%20structures%20inclusives%2C%20la%20majorit%C3%A9%20d%C3%A9pendent%20de%20leur%20ressources%20propres%20%28chiffre%20d%E2%80%99affaires%29%20pour%20assurer%20leur%20p%C3%A9rennit%C3%A9%20et%20leur%20d%C3%A9veloppement.%20Or%20la%20dynamique%20%E2%80%9Cnaturelle%E2%80%9D%20de%20croissance%20des%20ressources%20propres%20ne%20sera%20pas%20suffisante%20pour%20absorber%20100%20000%20emplois%20suppl%C3%A9mentaires.%20Faire%20cro%C3%AEtre%20les%20embauches%20dans%20le%20secteur%20de%20l%E2%80%99inclusion%20implique%20donc%20de%20soutenir%20leur%20d%C3%A9veloppement%20%C3%A9conomique%20et%20de%20d%C3%A9velopper%20les%20achats%20inclusifs%20%C3%A0%20hauteur%20de%201%2C9%20milliards%20d%E2%80%99euros.%0A%0AComment%20peut-on%20accompagner%20le%20d%C3%A9veloppement%20%C3%A9conomique%20des%20structures%20inclusives%20et%20lever%20les%20freins%20%C3%A0%20l%27acte%20d%27achat%20inclusif%20%3F%0A%0A%23%23%20Notre%20service%0A%0AFace%20aux%206%20grandes%20cat%C3%A9gories%20d%27irritants%20identifi%C3%A9s%2C%20une%20solution%20de%20place%20de%20march%C3%A9%20num%C3%A9rique%20commune%20%C3%A0%20l%27ensemble%20de%20l%27inclusion%20et%20destin%C3%A9e%20%C3%A0%20des%20acheteurs%20professionnels%20%28publics%20ou%20priv%C3%A9s%29%20a%20%C3%A9t%C3%A9%20retenue.%0A%0AAujourd%27hui%20le%20produit%20est%20en%20phase%20de%20d%C3%A9ploiement%20aupr%C3%A8s%20des%20diff%C3%A9rents%20acheteurs.%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 125000€ pour la promotion 14" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2020-03-16", + "end": "" + }, + { + "name": "construction", + "start": "2020-06-30", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-06-01", + "end": "" + } + ], + "sponsors": [ + "francetravail", + "mtei" + ], + "thematiques": [ + "Travail / Emploi", + "Social" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/lemarche-inclusion-beta-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "gip-inclusion" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://lemarche.inclusion.beta.gouv.fr", + "size": 2759.938, + "nodes": 703, + "requests": 64, + "grade": "D", + "score": 46, + "ges": 2.08, + "water": 3.12, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 05:10:09.041990", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "C+", + "apdex": 0.795, + "apdexGrade": "F", + "uptime": 99.977, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-24T15:19:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 4, + "lighthouse_performance": 0.51, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.75, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "D", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://ma-cantine.agriculture.gouv.fr", + "category": "dinum", + "betaId": "ma-cantine-egalim", + "http": { + "url": "https://ma-cantine.agriculture.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 04:41:02 GMT", + "grade": "D+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Language": "fr", + "Content-Security-Policy": "media-src 'self' cellar-c2.services.clever-cloud.com; font-src 'self' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; default-src 'self'; object-src 'self' cellar-c2.services.clever-cloud.com; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 04:41:01 GMT", + "Referrer-Policy": "same-origin", + "Set-Cookie": "csrftoken=Q5IKUqhiT6H3Pbu0TLBS9LUYjOvByU52; expires=Sun, 19 Oct 2025 04:41:01 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Sozu-Id": "01JAM3N1T4WAHDHP61CKX59093", + "Transfer-Encoding": "chunked", + "Vary": "Cookie, Accept-Language", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY" + }, + "scan_id": 57050669, + "score": 40, + "start_time": "Sun, 20 Oct 2024 04:41:00 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "wss://client.relay.crisp.chat", + "'self'", + "stats.beta.gouv.fr", + "ws:", + "entreprise.data.gouv.fr", + "plateforme.adresse.data.gouv.fr", + "client.crisp.chat", + "api-adresse.data.gouv.fr" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "client.crisp.chat", + "'self'" + ], + "frame-src": [ + "ma-cantine.crisp.help", + "ma-cantine-metabase.cleverapps.io", + "'self'" + ], + "img-src": [ + "image.crisp.chat", + "'unsafe-inline'", + "'self'", + "data:", + "stats.beta.gouv.fr", + "www.w3.org", + "jedonnemonavis.numerique.gouv.fr", + "cellar-c2.services.clever-cloud.com", + "voxusagers.numerique.gouv.fr" + ], + "media-src": [ + "cellar-c2.services.clever-cloud.com", + "'self'" + ], + "object-src": [ + "cellar-c2.services.clever-cloud.com", + "'self'" + ], + "script-src": [ + "stats.beta.gouv.fr", + "'unsafe-inline'", + "client.crisp.chat", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "netdna.bootstrapcdn.com", + "client.crisp.chat", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "ma-cantine.agriculture.gouv.fr", + "expires": 1760848862, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://ma-cantine.agriculture.gouv.fr/", + "redirects": true, + "route": [ + "http://ma-cantine.agriculture.gouv.fr/", + "https://ma-cantine.agriculture.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "2l7f", + "url": "https://ma-cantine.agriculture.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T16:27:42Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:42281013", + "email:2945598948", + "email:3144099285", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T05:37:56Z", + "next_check_at": "2024-12-01T05:42:53Z", + "created_at": "2023-06-22T12:45:00Z", + "mute_until": null, + "favicon_url": "https://ma-cantine.agriculture.gouv.fr/static/images/favicon-marianne.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:32:57Z", + "expires_at": "2025-07-10T23:59:59Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 98, + "connection": 136, + "handshake": 141, + "response": 143, + "total": 518 + } }, - { - "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "90" + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "ma-cantine.agriculture.gouv.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "product": "Postfix smtpd", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": null, + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [ + { + "name": "_pk_ses.78.3da8", + "value": "1", + "domain": "ma-cantine.agriculture.gouv.fr", + "path": "/", + "expires": 1733032529, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.78.3da8", + "value": "5f849f1b6bfa883a.1733030730.", + "domain": "ma-cantine.agriculture.gouv.fr", + "path": "/", + "expires": 1766985930, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "csrftoken", + "value": "FPvWipwvjiapdU5oSHjBhpH3ybz9OmVN", + "domain": "ma-cantine.agriculture.gouv.fr", + "path": "/", + "expires": 1764480327.349037, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-encoding": "gzip", + "content-language": "fr", + "content-security-policy": "object-src 'self' cellar-c2.services.clever-cloud.com; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; default-src 'self'; media-src 'self' cellar-c2.services.clever-cloud.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 05:25:27 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=FPvWipwvjiapdU5oSHjBhpH3ybz9OmVN; expires=Sun, 30 Nov 2025 05:25:27 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "sozu-id": "01JE0AWKE1CF5P4AN4YB8GGT2Q", + "transfer-encoding": "chunked", + "vary": "Cookie, Accept-Language", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" }, + "endpoints": [ + { + "hostname": "ma-cantine.agriculture.gouv.fr", + "ip": "91.208.207.222", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": null, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "requestedUrl": "https://ma-cantine.agriculture.gouv.fr/", + "finalUrl": "https://ma-cantine.agriculture.gouv.fr/", + "fetchTime": "2024-12-01T05:24:55.736Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.38 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.93 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 7707, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 7707, + "firstMeaningfulPaint": 7707, + "largestContentfulPaint": 8042, + "interactive": 7707, + "speedIndex": 8506, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.7750000856187609, + "cumulativeLayoutShiftMainFrame": 0.7750000856187609, + "totalCumulativeLayoutShift": 0.7750000856187609, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 949768232, + "observedNavigationStart": 0, + "observedNavigationStartTs": 949768232, + "observedFirstPaint": 2228, + "observedFirstPaintTs": 951996406, + "observedFirstContentfulPaint": 2228, + "observedFirstContentfulPaintTs": 951996406, + "observedFirstContentfulPaintAllFrames": 2228, + "observedFirstContentfulPaintAllFramesTs": 951996406, + "observedFirstMeaningfulPaint": 2237, + "observedFirstMeaningfulPaintTs": 952005684, + "observedLargestContentfulPaint": 2485, + "observedLargestContentfulPaintTs": 952253352, + "observedLargestContentfulPaintAllFrames": 2485, + "observedLargestContentfulPaintAllFramesTs": 952253352, + "observedTraceEnd": 5961, + "observedTraceEndTs": 955729150, + "observedLoad": 3493, + "observedLoadTs": 953261111, + "observedDomContentLoaded": 2233, + "observedDomContentLoadedTs": 952000862, + "observedCumulativeLayoutShift": 0.7750000856187609, + "observedCumulativeLayoutShiftMainFrame": 0.7750000856187609, + "observedTotalCumulativeLayoutShift": 0.7750000856187609, + "observedFirstVisualChange": 2243, + "observedFirstVisualChangeTs": 952011232, + "observedLastVisualChange": 3193, + "observedLastVisualChangeTs": 952961232, + "observedSpeedIndex": 2662, + "observedSpeedIndexTs": 952430235 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 18, + "numScripts": 3, + "numStylesheets": 2, + "numFonts": 5, + "numTasks": 36, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.8249999999999957, + "throughput": 6723260.046908839, + "maxRtt": 156.70300000000003, + "maxServerLatency": 25.213, + "totalByteWeight": 1804860, + "totalTaskTime": 5.481, + "mainDocumentTransferSize": 4942 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "90" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/mentions-legales" }, { - "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "36" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "ma-cantine-egalim", + "type": "startup", + "attributes": { + "name": "ma cantine", + "pitch": "Accompagner les acteurs de la restauration collective pour proposer une alimentation de qualité, saine et durable", + "stats_url": "https://ma-cantine.agriculture.gouv.fr/statistiques-plateforme", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow", + "link": "https://ma-cantine.agriculture.gouv.fr", + "repository": "https://github.com/betagouv/ma-cantine", + "contact": "contact@egalim.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%20et%20enjeux%0A%0A15%20millions%20de%20Fran%C3%A7ais%20prennent%20chaque%20jour%20au%20moins%20un%20repas%20hors%20de%20leur%20domicile%2C%20dont%20plus%20de%20la%20moiti%C3%A9%20en%20restauration%20collective.%20Cette%20sp%C3%A9cificit%C3%A9%20fran%C3%A7aise%20fait%20de%20la%20restauration%20collective%20un%20passage%20oblig%C3%A9%20pour%20de%20nombreux%20fran%C3%A7ais.%0AAu%20total%2C%20ce%20sont%20pr%C3%A8s%20de%20100%20000%20structures%20de%20restauration%20collective%2C%20publiques%20ou%20priv%C3%A9es%2C%20qui%20distribuent%20plus%20de%203%2C5%20milliards%20de%20repas%20par%20an.%20Compte%20tenu%20de%20l%E2%80%99importance%20de%20ce%20secteur%2C%20il%20est%20essentiel%20d%E2%80%99en%20faire%20un%20levier%20de%20premier%20plan%20dans%20la%20transformation%20de%20notre%20mod%C3%A8le%20alimentaire.%0A%0A%2A%2ALa%20restauration%20collective%20est%20un%20levier%20puissant%20pour%20faire%20%C3%A9voluer%20les%20pratiques%20alimentaires%2C%20r%C3%A9duire%20les%20in%C3%A9galit%C3%A9s%20et%20recr%C3%A9er%20de%20la%20valeur%20ajout%C3%A9e%20pour%20les%20fili%C3%A8res%20de%20qualit%C3%A9%2C%20notamment%20l%27agriculture%20biologique.%2A%2A%0A%0ACe%20projet%20s%E2%80%99inscrit%20dans%20le%20cadre%20du%20Programme%20National%20de%20l%E2%80%99Alimentation%2C%20pilot%C3%A9%20par%20le%20Minist%C3%A8re%20en%20charge%20de%20l%E2%80%99Agriculture%20et%20de%20l%E2%80%99Alimentation.%0A%0AAfin%20d%E2%80%99accompagner%20les%20acteurs%20de%20la%20restauration%20collective%20dans%20la%20mise%20en%20%C5%93uvre%20des%20dispositions%20des%20lois%20EGAlim%20et%20Climat%20et%20r%C3%A9silience%2C%20d%E2%80%99informer%20les%20citoyens%20sur%20la%20qualit%C3%A9%20et%20la%20durabilit%C3%A9%20de%20leur%20alimentation%20en%20restauration%20collective%20et%20d%E2%80%99assurer%20le%20suivi%20des%20objectifs%20d%E2%80%99une%20politique%20prioritaire%20du%20gouvernement%2C%20la%20DGAL%20a%20cr%C3%A9%C3%A9%20le%20service%20num%C3%A9rique%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20selon%20la%20m%C3%A9thode%20de%20start-up%20avec%20l%E2%80%99accompagnement%20de%20la%20DINUM.%20%0A%0AComme%20toutes%20les%20start-up%20d%E2%80%98Etat%2C%20l%E2%80%99ambition%20de%20ce%20service%20num%C3%A9rique%2C%20au-del%C3%A0%20du%20reporting%20pour%20que%20l%E2%80%99administration%20puisse%20elle-m%C3%AAme%20satisfaire%20ses%20obligations%20r%C3%A9glementaires%2C%20est%20de%20contribuer%20%C3%A0%20la%20transition%20alimentaire%20en%20restauration%20collective%20avec%20la%20recherche%20d%E2%80%99impacts%20dans%20ce%20secteur%2C%20%C3%A0%20savoir%20une%20%2A%2Amodification%20des%20pratiques%20des%20gestionnaires%20de%20cantines%20%28strat%C3%A9gie%20d%E2%80%99achat%20des%20denr%C3%A9es%2C%20diversification%20des%20sources%20de%20prot%C3%A9ines%2C%20fonctionnement%20plus%20durable%20avec%20moins%20de%20gaspillage%20alimentaire%2C%20moins%20d%E2%80%99utilisation%20de%20plastique%E2%80%A6%29.%20Ces%20impacts%20doivent%20permettre%20de%20faire%20%C3%A9voluer%20les%20modes%20de%20productions%20agricoles%20et%20les%20comportements%20alimentaires%20%28plus%20de%20qualit%C3%A9%20et%20de%20durabilit%C3%A9%29%2C%20la%20demande%20tirant%20l%E2%80%99offre%20alimentaire%20mais%20restent%20d%C3%A9pendant%20aussi%20d%E2%80%99autres%20facteurs%20plus%20ou%20moins%20maitrisables%2C%20tels%20que%20les%20prix%20%28inflation%29%2C%20l%E2%80%99organisation%20des%20structures%20alimentaires%20%28producteurs%2C%20grossistes%2C%20gestionnaires%2C%20consommateurs%29%20et%20l%E2%80%99%C3%A9ducation%20alimentaire%20au%20sens%20large.%2A%2A%0A%0ALes%20lois%20EGAlim%20et%20Climat%20et%20r%C3%A9silience%20imposent%20des%20changements%20majeurs%20aux%20acteurs%20du%20secteur%20de%20la%20restauration%20collective%2C%20avec%2C%20pour%20les%20gestionnaires%20en%20particulier%2C%20des%20objectifs%20extr%C3%AAmement%20ambitieux%2C%20sans%20pour%20autant%20pr%C3%A9voir%20ni%20contr%C3%B4les%2C%20ni%20sanctions.%20Le%20parti%20pris%20du%20d%C3%A9veloppement%20de%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20est%20donc%20tout%20naturellement%20align%C3%A9%20avec%20le%20mode%20start-up%20d%E2%80%99Etat%20qui%20cherche%20avant%20tout%20%C3%A0%20apporter%20de%20la%20valeur%20ajout%C3%A9e%20%C3%A0%20des%20utilisateurs%2C%20des%20gestionnaires%20de%20cantines%2C%20c%E2%80%99est-%C3%A0-dire%20de%20l%E2%80%99accompagnement%20et%20des%20services%2C%20afin%20de%20les%20amener%20%C3%A0%20adh%C3%A9rer%20%C3%A0%20cette%20transition%20et%20progresser%20vers%20ces%20objectifs.%0A%0AAinsi%2C%20l%E2%80%99enjeu%20principal%20pour%20la%20plateforme%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20reste%20de%20poursuivre%20sa%20croissance%20%28nombre%20d%E2%80%99utilisateurs%29%2C%20dans%20tous%20les%20secteurs%20de%20la%20restauration%20collective%20et%20particuli%C3%A8rement%20pour%20le%20p%C3%A9rim%C3%A8tre%20%C2%AB%C2%A0Services%20publics%20%C3%A9coresponsables%C2%A0%C2%BB%2C%20en%20proposant%20des%20services%20aux%20utilisateurs%20et%20gestionnaires%20qui%20vont%20permettre%20d%E2%80%99avoir%20les%20impacts%20recherch%C3%A9s%20%C3%A0%20terme.%20Il%20s%E2%80%99agit%20aussi%20de%20conserver%20l%E2%80%99essence%20d%E2%80%99une%20start-up%20d%E2%80%99Etat%20dans%20la%20trajectoire%20de%20p%C3%A9rennisation%20de%20la%20plateforme%20pour%20maintenir%20un%20service%20public%20innovant%20et%20transformer%20les%20organisations%20de%20l%E2%80%99administration.%20Ainsi%2C%20un%20facteur%20de%20r%C3%A9ussite%20de%20la%20p%C3%A9rennisation%20de%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20sera%20son%20int%C3%A9gration%20dans%20un%20nouvel%20environnement%20num%C3%A9rique%20au%20MASA%20en%20relation%20avec%20la%20cr%C3%A9ation%20d%E2%80%99un%20incubateur%20et%20l%E2%80%99apport%20de%20nouvelles%20comp%C3%A9tences%20num%C3%A9riques.%0A%0A%23%23%20%22Mieux%20manger%20de%20la%20cr%C3%A8che%20%C3%A0%20l%27EHPAD%22%20%3A%20ma-cantine%2C%20plateforme%20nationale%20pour%20une%20transition%20alimentaire%20en%20restauration%20collective%0A%0A%2A%2A%0A3%20objectifs%20%3A%20%0A1.%20Accompagner%20la%20transformation%20des%20pratiques%20en%20outillant%20les%20gestionnaires%20pour%20le%20pilotage%20de%20leurs%20achats%2C%20le%20suivi%20et%20la%20r%C3%A9duction%20du%20gaspillage%2C..%0A2.%20Permettre%20une%20fluidification%20des%20remont%C3%A9es%20de%20donn%C3%A9es%20quanti%20et%20qualitatives%20pour%20objectiver%20les%20avanc%C3%A9es%20du%20secteur%20et%20aider%20le%20pilotage%20de%20la%20politique%20publique%0A3.%20Accro%C3%AEtre%20la%20transparence%20et%20la%20communication%20aux%20convives%20du%20secteur%0A%2A%2A%0A%0Apour%20r%C3%A9pondre%20%C3%A0%20ces%20objectifs%2C%20les%20fonctionnalit%C3%A9s%20et%20servis%20rendus%20sont%20nombreux%20et%20en%20%C3%A9volution%20constante%20%3A%20%0A-%20Accompagnement%20pour%20comprendre%20les%20obligations%20l%C3%A9gales%20%28EGalim%2C%20Anti-gaspillage%2C%20Climat%20et%20R%C3%A9silience%29%0A-%20Outils%20pratiques%20de%20pilotage%20et%20gestion%20%28autodiagnostic%2C%20suivi%20des%20achats%2C%20calculette%20de%20scores%20EGalim%2C%20etc.%29%20%0A-%20Supports%20de%20communication%20et%20d%27information%20pour%20valoriser%20les%20initiatives%20aupr%C3%A8s%20des%20convives%0A-%20Acc%C3%A8s%20aux%20guides%20et%20documents%20du%20Conseil%20national%20de%20la%20restauration%20collective%20%28CNRC%29%0A-%20Outil%20de%20d%C3%A9claration%20annuelle%20de%20la%20valeur%20des%20aliments%20achet%C3%A9s%20pour%20le%20suivi%20des%20objectifs%20l%C3%A9gaux%0A%0ALa%20plateforme%20vise%20%C3%A0%20r%C3%A9pondre%20aux%20besoins%20des%20utilisateurs%20de%20mani%C3%A8re%20inclusive.%20Elle%20propose%20un%20dispositif%20de%20b%C3%AAta-testeurs%20pour%20l%27am%C3%A9lioration%20continue.%0A%0A%23%23%20En%20chiffres%20%3A%20%0A%0A-%2038%20374%20%3A%20nombre%20de%20cantines%20inscrites%2C%20soit%20pr%C3%A8s%20de%2050%25%20du%20volume%20total%20estim%C3%A9%20des%20%C3%A9tablissements%0A-%2010k%20%3A%20le%20nombre%20de%20sites%20de%20restauration%20ayant%20remont%C3%A9%20leurs%20donn%C3%A9es%20d%27approvisionnement%0Adans%20cet%20%C3%A9chantillon%2C%20une%20part%20de%20produits%20bio%20estim%C3%A9e%20%C3%A0%2013%25%20en%20moyenne%20en%202022%0A%0APour%20plus%20d%27informations%2C%20consulter%20le%20rapport%20annuel%202023%0A%5BPour%20plus%20d%27informations%2C%20consulter%20le%20rapport%20annuel%202023%5D%28https%3A%2F%2F894795896-files.gitbook.io%2F~%2Ffiles%2Fv0%2Fb%2Fgitbook-x-prod.appspot.com%2Fo%2Fspaces%252F-MSCF7Mdc8yfeIjMxMZr%252Fuploads%252FbEQa5jADHE8lP17X4lg4%252FBilan%2520statistique%2520EGALIM%25202023_macantine.pdf%3Falt%3Dmedia%26token%3D2b11edf6-0b82-4d1c-8cea-ce2ab95d712f%29%20ou%20les%20%5Bstatistiques%20de%20la%20plateforme%5D%28https%3A%2F%2Fma-cantine-metabase.cleverapps.io%2Fpublic%2Fdashboard%2F3dab8a21-c4b9-46e1-84fa-7ba485ddfbbb%29%0A%0A%23%23%20Vous%20souhaitez%20nous%20aider%2C%20participer%20%C3%A0%20ce%20produit%20%3F%20%0A%0AQue%20vous%20soyez%20un%20acteur%20de%20la%20restauration%20collective%2C%20un%C2%B7e%20convive%20ou%20simplement%20curieux%C2%B7se%2C%20vos%20retours%20et%20avis%20sont%20toujours%20bons%20%C3%A0%20prendre%20et%20nous%20serions%20ravi%C2%B7e%C2%B7s%20d%27%C3%A9changer%20avec%20vous%20%21%20N%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20via%20notre%20adresse%20de%20contact%20%3A%20contact%40egalim.beta.gouv.fr%20%21", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 250000€ pour la promotion 13" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2020-09-01", + "end": "2020-10-29" + }, + { + "name": "construction", + "start": "2020-10-29", + "end": "2021-12-31" + }, + { + "name": "acceleration", + "start": "2022-01-01", + "end": "" + } + ], + "sponsors": [ + "dgal" + ], + "thematiques": [ + "Santé", + "Administratif", + "Alimentation" + ], + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "agriculture" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "93" + "width": 1920, + "height": 1080, + "url": "https://ma-cantine.agriculture.gouv.fr", + "size": 3123.492, + "nodes": 547, + "requests": 37, + "grade": "C", + "score": 57, + "ges": 1.86, + "water": 2.79, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 05:12:00.037430", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.38, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.93, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://mediature.beta.gouv.fr", + "title": "Médiature (prod)", + "category": "anct", + "betaId": "mediature", + "repositories": [ + "inclusion-numerique/mediature" + ], + "tags": [ + "mediature", + "app", + "production" + ], + "http": { + "url": "https://mediature.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 04:41:49 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Embedder-Policy": "require-corp", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 04:41:49 GMT", + "ETag": "\"mchbhl081wdnf\"", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=15552000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "0f3dcf53-0faa-445e-b49b-6df351f56e0e", + "X-XSS-Protection": "0", + "x-nextjs-cache": "HIT" }, - { - "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57050676, + "score": 75, + "start_time": "Sun, 20 Oct 2024 04:41:47 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://storage.crisp.chat/users/upload/", + "wss://client.relay.crisp.chat/", + "'self'", + "https://api-adresse.data.gouv.fr/", + "https://client.crisp.chat/static/", + "https://sentry.incubateur.net/" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "img-src": [ + "data:", + "https://*.crisp.chat/", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'unsafe-inline'", + "https://client.crisp.chat/", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "https:", + "'unsafe-inline'", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.mediateur-public.fr/", + "redirects": true, + "route": [ + "http://mediature.beta.gouv.fr/", + "https://www.mediateur-public.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15552000; includeSubDomains", + "includeSubDomains": true, + "max-age": 15552000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "d6xz", + "url": "https://mediature.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T16:11:30Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T05:38:32Z", + "next_check_at": "2024-12-01T05:39:32Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://www.mediateur-public.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:36:34Z", + "expires_at": "2025-02-09T14:35:50Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 460, + "namelookup": 16, + "connection": 119, + "handshake": 130, + "response": 125, + "total": 849 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "mediature.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "mediature.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -138063,7 +129109,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -138071,7 +129117,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -138079,7 +129125,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -138087,7 +129133,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -138095,7 +129141,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -138103,574 +129149,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "cipherorder_TLSv1_2", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 60 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-07-10 00:00" + "finding": "2024-11-11 14:35" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-07-10 23:59" + "finding": "2025-02-09 14:35" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "4" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2004-01-01 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "intermediate_cert_badOCSP", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HTTP_status_code", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + "finding": "301 Moved Permanently ('/')" }, { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HTTP_clock_skew", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HTTP_headerTime", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + "finding": "1733031420" }, { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HSTS_time", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HSTS_subdomains", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "HSTS_preload", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732425993" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "id": "security_headers", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -138678,7 +129605,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -138687,7 +129614,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -138696,16 +129623,16 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -138714,7 +129641,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -138722,16 +129649,16 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -138740,16 +129667,16 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -138758,14 +129685,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -138774,7 +129701,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -138783,7 +129710,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -138792,16 +129719,16 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AC65966B305A218509E55D90F1B1FCD2D222180BFA2215842CC385A314AF1FCF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=470148AB23074A2F8FCD4214008886AD0DD4CE8F9B477E3B616BE92A119C6DBB" }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -138810,16 +129737,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -138828,7 +129755,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -138837,7 +129764,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -138846,7 +129773,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -138855,1113 +129782,319 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "557" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.78.3da8", - "value": "1", - "domain": "ma-cantine.agriculture.gouv.fr", - "path": "/", - "expires": 1732427217, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.78.3da8", - "value": "f143b4ed5b08960f.1732425417.", - "domain": "ma-cantine.agriculture.gouv.fr", - "path": "/", - "expires": 1766380617, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "csrftoken", - "value": "UXCO72xUT4BuOBt3kGAAYSjlY1bnLGX4", - "domain": "ma-cantine.agriculture.gouv.fr", - "path": "/", - "expires": 1763875015.520877, - "size": 41, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-language": "fr", - "content-security-policy": "media-src 'self' cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; default-src 'self'; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; object-src 'self' cellar-c2.services.clever-cloud.com", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 05:16:55 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=UXCO72xUT4BuOBt3kGAAYSjlY1bnLGX4; expires=Sun, 23 Nov 2025 05:16:55 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "sozu-id": "01JDE9KYPNPHZEFZFDEGP9PAR4", - "transfer-encoding": "chunked", - "vary": "Cookie, Accept-Language", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" - }, - "endpoints": [ - { - "hostname": "ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": null, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://ma-cantine.agriculture.gouv.fr/", - "finalUrl": "https://ma-cantine.agriculture.gouv.fr/", - "fetchTime": "2024-11-24T05:16:27.148Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.37 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.93 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.91 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 9606, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 7028, - "firstMeaningfulPaint": 9606, - "largestContentfulPaint": 10521, - "interactive": 9606, - "speedIndex": 7028, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.7800630569458007, - "cumulativeLayoutShiftMainFrame": 0.7800630569458007, - "totalCumulativeLayoutShift": 0.7800630569458007, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 1153957822, - "observedNavigationStart": 0, - "observedNavigationStartTs": 1153957822, - "observedFirstPaint": 1404, - "observedFirstPaintTs": 1155361670, - "observedFirstContentfulPaint": 1404, - "observedFirstContentfulPaintTs": 1155361670, - "observedFirstContentfulPaintAllFrames": 1404, - "observedFirstContentfulPaintAllFramesTs": 1155361670, - "observedFirstMeaningfulPaint": 1869, - "observedFirstMeaningfulPaintTs": 1155827148, - "observedLargestContentfulPaint": 1718, - "observedLargestContentfulPaintTs": 1155675679, - "observedLargestContentfulPaintAllFrames": 1718, - "observedLargestContentfulPaintAllFramesTs": 1155675679, - "observedTraceEnd": 4476, - "observedTraceEndTs": 1158433441, - "observedLoad": 2077, - "observedLoadTs": 1156034996, - "observedDomContentLoaded": 1393, - "observedDomContentLoadedTs": 1155350453, - "observedCumulativeLayoutShift": 0.7800630569458007, - "observedCumulativeLayoutShiftMainFrame": 0.7800630569458007, - "observedTotalCumulativeLayoutShift": 0.7800630569458007, - "observedFirstVisualChange": 1529, - "observedFirstVisualChangeTs": 1155486822, - "observedLastVisualChange": 2145, - "observedLastVisualChangeTs": 1156102822, - "observedSpeedIndex": 1776, - "observedSpeedIndexTs": 1155734102 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 18, - "numScripts": 3, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 20, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 1.8230000000000004, - "throughput": 15153825.772068359, - "maxRtt": 87.535, - "maxServerLatency": 10.962, - "totalByteWeight": 1801555, - "totalTaskTime": 4083.5359999999996, - "mainDocumentTransferSize": 4944 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://ma-cantine.agriculture.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "ma-cantine-egalim", - "type": "startup", - "attributes": { - "name": "ma cantine", - "pitch": "Accompagner les acteurs de la restauration collective pour proposer une alimentation de qualité, saine et durable", - "stats_url": "https://ma-cantine.agriculture.gouv.fr/statistiques-plateforme", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow", - "link": "https://ma-cantine.agriculture.gouv.fr", - "repository": "https://github.com/betagouv/ma-cantine", - "contact": "contact@egalim.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%20et%20enjeux%0A%0A15%20millions%20de%20Fran%C3%A7ais%20prennent%20chaque%20jour%20au%20moins%20un%20repas%20hors%20de%20leur%20domicile%2C%20dont%20plus%20de%20la%20moiti%C3%A9%20en%20restauration%20collective.%20Cette%20sp%C3%A9cificit%C3%A9%20fran%C3%A7aise%20fait%20de%20la%20restauration%20collective%20un%20passage%20oblig%C3%A9%20pour%20de%20nombreux%20fran%C3%A7ais.%0AAu%20total%2C%20ce%20sont%20pr%C3%A8s%20de%20100%20000%20structures%20de%20restauration%20collective%2C%20publiques%20ou%20priv%C3%A9es%2C%20qui%20distribuent%20plus%20de%203%2C5%20milliards%20de%20repas%20par%20an.%20Compte%20tenu%20de%20l%E2%80%99importance%20de%20ce%20secteur%2C%20il%20est%20essentiel%20d%E2%80%99en%20faire%20un%20levier%20de%20premier%20plan%20dans%20la%20transformation%20de%20notre%20mod%C3%A8le%20alimentaire.%0A%0A%2A%2ALa%20restauration%20collective%20est%20un%20levier%20puissant%20pour%20faire%20%C3%A9voluer%20les%20pratiques%20alimentaires%2C%20r%C3%A9duire%20les%20in%C3%A9galit%C3%A9s%20et%20recr%C3%A9er%20de%20la%20valeur%20ajout%C3%A9e%20pour%20les%20fili%C3%A8res%20de%20qualit%C3%A9%2C%20notamment%20l%27agriculture%20biologique.%2A%2A%0A%0ACe%20projet%20s%E2%80%99inscrit%20dans%20le%20cadre%20du%20Programme%20National%20de%20l%E2%80%99Alimentation%2C%20pilot%C3%A9%20par%20le%20Minist%C3%A8re%20en%20charge%20de%20l%E2%80%99Agriculture%20et%20de%20l%E2%80%99Alimentation.%0A%0AAfin%20d%E2%80%99accompagner%20les%20acteurs%20de%20la%20restauration%20collective%20dans%20la%20mise%20en%20%C5%93uvre%20des%20dispositions%20des%20lois%20EGAlim%20et%20Climat%20et%20r%C3%A9silience%2C%20d%E2%80%99informer%20les%20citoyens%20sur%20la%20qualit%C3%A9%20et%20la%20durabilit%C3%A9%20de%20leur%20alimentation%20en%20restauration%20collective%20et%20d%E2%80%99assurer%20le%20suivi%20des%20objectifs%20d%E2%80%99une%20politique%20prioritaire%20du%20gouvernement%2C%20la%20DGAL%20a%20cr%C3%A9%C3%A9%20le%20service%20num%C3%A9rique%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20selon%20la%20m%C3%A9thode%20de%20start-up%20avec%20l%E2%80%99accompagnement%20de%20la%20DINUM.%20%0A%0AComme%20toutes%20les%20start-up%20d%E2%80%98Etat%2C%20l%E2%80%99ambition%20de%20ce%20service%20num%C3%A9rique%2C%20au-del%C3%A0%20du%20reporting%20pour%20que%20l%E2%80%99administration%20puisse%20elle-m%C3%AAme%20satisfaire%20ses%20obligations%20r%C3%A9glementaires%2C%20est%20de%20contribuer%20%C3%A0%20la%20transition%20alimentaire%20en%20restauration%20collective%20avec%20la%20recherche%20d%E2%80%99impacts%20dans%20ce%20secteur%2C%20%C3%A0%20savoir%20une%20%2A%2Amodification%20des%20pratiques%20des%20gestionnaires%20de%20cantines%20%28strat%C3%A9gie%20d%E2%80%99achat%20des%20denr%C3%A9es%2C%20diversification%20des%20sources%20de%20prot%C3%A9ines%2C%20fonctionnement%20plus%20durable%20avec%20moins%20de%20gaspillage%20alimentaire%2C%20moins%20d%E2%80%99utilisation%20de%20plastique%E2%80%A6%29.%20Ces%20impacts%20doivent%20permettre%20de%20faire%20%C3%A9voluer%20les%20modes%20de%20productions%20agricoles%20et%20les%20comportements%20alimentaires%20%28plus%20de%20qualit%C3%A9%20et%20de%20durabilit%C3%A9%29%2C%20la%20demande%20tirant%20l%E2%80%99offre%20alimentaire%20mais%20restent%20d%C3%A9pendant%20aussi%20d%E2%80%99autres%20facteurs%20plus%20ou%20moins%20maitrisables%2C%20tels%20que%20les%20prix%20%28inflation%29%2C%20l%E2%80%99organisation%20des%20structures%20alimentaires%20%28producteurs%2C%20grossistes%2C%20gestionnaires%2C%20consommateurs%29%20et%20l%E2%80%99%C3%A9ducation%20alimentaire%20au%20sens%20large.%2A%2A%0A%0ALes%20lois%20EGAlim%20et%20Climat%20et%20r%C3%A9silience%20imposent%20des%20changements%20majeurs%20aux%20acteurs%20du%20secteur%20de%20la%20restauration%20collective%2C%20avec%2C%20pour%20les%20gestionnaires%20en%20particulier%2C%20des%20objectifs%20extr%C3%AAmement%20ambitieux%2C%20sans%20pour%20autant%20pr%C3%A9voir%20ni%20contr%C3%B4les%2C%20ni%20sanctions.%20Le%20parti%20pris%20du%20d%C3%A9veloppement%20de%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20est%20donc%20tout%20naturellement%20align%C3%A9%20avec%20le%20mode%20start-up%20d%E2%80%99Etat%20qui%20cherche%20avant%20tout%20%C3%A0%20apporter%20de%20la%20valeur%20ajout%C3%A9e%20%C3%A0%20des%20utilisateurs%2C%20des%20gestionnaires%20de%20cantines%2C%20c%E2%80%99est-%C3%A0-dire%20de%20l%E2%80%99accompagnement%20et%20des%20services%2C%20afin%20de%20les%20amener%20%C3%A0%20adh%C3%A9rer%20%C3%A0%20cette%20transition%20et%20progresser%20vers%20ces%20objectifs.%0A%0AAinsi%2C%20l%E2%80%99enjeu%20principal%20pour%20la%20plateforme%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20reste%20de%20poursuivre%20sa%20croissance%20%28nombre%20d%E2%80%99utilisateurs%29%2C%20dans%20tous%20les%20secteurs%20de%20la%20restauration%20collective%20et%20particuli%C3%A8rement%20pour%20le%20p%C3%A9rim%C3%A8tre%20%C2%AB%C2%A0Services%20publics%20%C3%A9coresponsables%C2%A0%C2%BB%2C%20en%20proposant%20des%20services%20aux%20utilisateurs%20et%20gestionnaires%20qui%20vont%20permettre%20d%E2%80%99avoir%20les%20impacts%20recherch%C3%A9s%20%C3%A0%20terme.%20Il%20s%E2%80%99agit%20aussi%20de%20conserver%20l%E2%80%99essence%20d%E2%80%99une%20start-up%20d%E2%80%99Etat%20dans%20la%20trajectoire%20de%20p%C3%A9rennisation%20de%20la%20plateforme%20pour%20maintenir%20un%20service%20public%20innovant%20et%20transformer%20les%20organisations%20de%20l%E2%80%99administration.%20Ainsi%2C%20un%20facteur%20de%20r%C3%A9ussite%20de%20la%20p%C3%A9rennisation%20de%20%C2%AB%C2%A0ma%20cantine%C2%A0%C2%BB%20sera%20son%20int%C3%A9gration%20dans%20un%20nouvel%20environnement%20num%C3%A9rique%20au%20MASA%20en%20relation%20avec%20la%20cr%C3%A9ation%20d%E2%80%99un%20incubateur%20et%20l%E2%80%99apport%20de%20nouvelles%20comp%C3%A9tences%20num%C3%A9riques.%0A%0A%23%23%20%22Mieux%20manger%20de%20la%20cr%C3%A8che%20%C3%A0%20l%27EHPAD%22%20%3A%20ma-cantine%2C%20plateforme%20nationale%20pour%20une%20transition%20alimentaire%20en%20restauration%20collective%0A%0A%2A%2A%0A3%20objectifs%20%3A%20%0A1.%20Accompagner%20la%20transformation%20des%20pratiques%20en%20outillant%20les%20gestionnaires%20pour%20le%20pilotage%20de%20leurs%20achats%2C%20le%20suivi%20et%20la%20r%C3%A9duction%20du%20gaspillage%2C..%0A2.%20Permettre%20une%20fluidification%20des%20remont%C3%A9es%20de%20donn%C3%A9es%20quanti%20et%20qualitatives%20pour%20objectiver%20les%20avanc%C3%A9es%20du%20secteur%20et%20aider%20le%20pilotage%20de%20la%20politique%20publique%0A3.%20Accro%C3%AEtre%20la%20transparence%20et%20la%20communication%20aux%20convives%20du%20secteur%0A%2A%2A%0A%0Apour%20r%C3%A9pondre%20%C3%A0%20ces%20objectifs%2C%20les%20fonctionnalit%C3%A9s%20et%20servis%20rendus%20sont%20nombreux%20et%20en%20%C3%A9volution%20constante%20%3A%20%0A-%20Accompagnement%20pour%20comprendre%20les%20obligations%20l%C3%A9gales%20%28EGalim%2C%20Anti-gaspillage%2C%20Climat%20et%20R%C3%A9silience%29%0A-%20Outils%20pratiques%20de%20pilotage%20et%20gestion%20%28autodiagnostic%2C%20suivi%20des%20achats%2C%20calculette%20de%20scores%20EGalim%2C%20etc.%29%20%0A-%20Supports%20de%20communication%20et%20d%27information%20pour%20valoriser%20les%20initiatives%20aupr%C3%A8s%20des%20convives%0A-%20Acc%C3%A8s%20aux%20guides%20et%20documents%20du%20Conseil%20national%20de%20la%20restauration%20collective%20%28CNRC%29%0A-%20Outil%20de%20d%C3%A9claration%20annuelle%20de%20la%20valeur%20des%20aliments%20achet%C3%A9s%20pour%20le%20suivi%20des%20objectifs%20l%C3%A9gaux%0A%0ALa%20plateforme%20vise%20%C3%A0%20r%C3%A9pondre%20aux%20besoins%20des%20utilisateurs%20de%20mani%C3%A8re%20inclusive.%20Elle%20propose%20un%20dispositif%20de%20b%C3%AAta-testeurs%20pour%20l%27am%C3%A9lioration%20continue.%0A%0A%23%23%20En%20chiffres%20%3A%20%0A%0A-%2038%20374%20%3A%20nombre%20de%20cantines%20inscrites%2C%20soit%20pr%C3%A8s%20de%2050%25%20du%20volume%20total%20estim%C3%A9%20des%20%C3%A9tablissements%0A-%2010k%20%3A%20le%20nombre%20de%20sites%20de%20restauration%20ayant%20remont%C3%A9%20leurs%20donn%C3%A9es%20d%27approvisionnement%0Adans%20cet%20%C3%A9chantillon%2C%20une%20part%20de%20produits%20bio%20estim%C3%A9e%20%C3%A0%2013%25%20en%20moyenne%20en%202022%0A%0APour%20plus%20d%27informations%2C%20consulter%20le%20rapport%20annuel%202023%0A%5BPour%20plus%20d%27informations%2C%20consulter%20le%20rapport%20annuel%202023%5D%28https%3A%2F%2F894795896-files.gitbook.io%2F~%2Ffiles%2Fv0%2Fb%2Fgitbook-x-prod.appspot.com%2Fo%2Fspaces%252F-MSCF7Mdc8yfeIjMxMZr%252Fuploads%252FbEQa5jADHE8lP17X4lg4%252FBilan%2520statistique%2520EGALIM%25202023_macantine.pdf%3Falt%3Dmedia%26token%3D2b11edf6-0b82-4d1c-8cea-ce2ab95d712f%29%20ou%20les%20%5Bstatistiques%20de%20la%20plateforme%5D%28https%3A%2F%2Fma-cantine-metabase.cleverapps.io%2Fpublic%2Fdashboard%2F3dab8a21-c4b9-46e1-84fa-7ba485ddfbbb%29%0A%0A%23%23%20Vous%20souhaitez%20nous%20aider%2C%20participer%20%C3%A0%20ce%20produit%20%3F%20%0A%0AQue%20vous%20soyez%20un%20acteur%20de%20la%20restauration%20collective%2C%20un%C2%B7e%20convive%20ou%20simplement%20curieux%C2%B7se%2C%20vos%20retours%20et%20avis%20sont%20toujours%20bons%20%C3%A0%20prendre%20et%20nous%20serions%20ravi%C2%B7e%C2%B7s%20d%27%C3%A9changer%20avec%20vous%20%21%20N%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20via%20notre%20adresse%20de%20contact%20%3A%20contact%40egalim.beta.gouv.fr%20%21", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 250000€ pour la promotion 13" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2020-09-01", - "end": "2020-10-29" - }, - { - "name": "construction", - "start": "2020-10-29", - "end": "2021-12-31" - }, - { - "name": "acceleration", - "start": "2022-01-01", - "end": "" - } - ], - "sponsors": [ - "dgal" - ], - "thematiques": [ - "Santé", - "Administratif", - "Alimentation" - ], - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "agriculture" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://ma-cantine.agriculture.gouv.fr", - "size": 3119.126, - "nodes": 547, - "requests": 37, - "grade": "C", - "score": 57, - "ges": 1.86, - "water": 2.79, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:03:43.299330", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-07-10T23:59:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.37, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.93, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.91, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://mediature.beta.gouv.fr", - "title": "Médiature (prod)", - "category": "anct", - "betaId": "mediature", - "repositories": [ - "inclusion-numerique/mediature" - ], - "tags": [ - "mediature", - "app", - "production" - ], - "http": { - "url": "https://mediature.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:41:49 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Embedder-Policy": "require-corp", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 04:41:49 GMT", - "ETag": "\"mchbhl081wdnf\"", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=15552000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "0f3dcf53-0faa-445e-b49b-6df351f56e0e", - "X-XSS-Protection": "0", - "x-nextjs-cache": "HIT" - }, - "scan_id": 57050676, - "score": 75, - "start_time": "Sun, 20 Oct 2024 04:41:47 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://storage.crisp.chat/users/upload/", - "wss://client.relay.crisp.chat/", - "'self'", - "https://api-adresse.data.gouv.fr/", - "https://client.crisp.chat/static/", - "https://sentry.incubateur.net/" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "img-src": [ - "data:", - "https://*.crisp.chat/", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "https://client.crisp.chat/", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "https:", - "'unsafe-inline'", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.mediateur-public.fr/", - "redirects": true, - "route": [ - "http://mediature.beta.gouv.fr/", - "https://www.mediateur-public.fr/" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=15552000; includeSubDomains", - "includeSubDomains": true, - "max-age": 15552000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "d6xz", - "url": "https://mediature.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T15:19:07Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T05:20:09Z", - "next_check_at": "2024-11-24T05:21:09Z", - "created_at": "2024-01-15T13:37:42Z", - "mute_until": null, - "favicon_url": "https://www.mediateur-public.fr/_next/static/media/favicon.8c087985.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:13:13Z", - "expires_at": "2025-02-09T14:35:50Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 558, - "namelookup": 20, - "connection": 145, - "handshake": 149, - "response": 152, - "total": 1025 - } + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "mediature.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "mediature.beta.gouv.fr/148.253.96.193", @@ -140309,7 +130442,7 @@ "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -140470,7 +130603,7 @@ "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732425502" + "finding": "1733031470" }, { "id": "HSTS_time", @@ -141021,86 +131154,872 @@ "severity": "INFO", "finding": "81" }, - { - "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + { + "id": "overall_grade", + "ip": "mediature.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "mediature.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "103" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "content-type": "text/html; charset=utf-8", + "cross-origin-embedder-policy": "require-corp", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 05:35:45 GMT", + "etag": "\"mchbhl081wdnf\"", + "origin-agent-cluster": "?1", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=15552000; includeSubDomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-nextjs-cache": "HIT", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "a63c71d6-adac-44fb-b14f-ae99468d7cb5", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "mediature.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mediature.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://mediature.beta.gouv.fr/ (https://mediature.beta.gouv.fr/)" + } + }, + "technologies": [ + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mediature.beta.gouv.fr/", + "finalUrl": "https://www.mediateur-public.fr/", + "fetchTime": "2024-12-01T05:35:20.619Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://mediature.beta.gouv.fr/) was redirected to https://www.mediateur-public.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.8 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1962, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1962, + "firstMeaningfulPaint": 1962, + "largestContentfulPaint": 4887, + "interactive": 1962, + "speedIndex": 3199, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.019755384657118055, + "cumulativeLayoutShiftMainFrame": 0.019755384657118055, + "totalCumulativeLayoutShift": 0.019755384657118055, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 423789733, + "observedNavigationStart": 0, + "observedNavigationStartTs": 423789733, + "observedFirstPaint": 814, + "observedFirstPaintTs": 424603948, + "observedFirstContentfulPaint": 814, + "observedFirstContentfulPaintTs": 424603948, + "observedFirstContentfulPaintAllFrames": 814, + "observedFirstContentfulPaintAllFramesTs": 424603948, + "observedFirstMeaningfulPaint": 1514, + "observedFirstMeaningfulPaintTs": 425303594, + "observedLargestContentfulPaint": 1514, + "observedLargestContentfulPaintTs": 425303594, + "observedLargestContentfulPaintAllFrames": 1514, + "observedLargestContentfulPaintAllFramesTs": 425303594, + "observedTraceEnd": 4025, + "observedTraceEndTs": 427814914, + "observedLoad": 1391, + "observedLoadTs": 425180294, + "observedDomContentLoaded": 799, + "observedDomContentLoadedTs": 424588541, + "observedCumulativeLayoutShift": 0.019755384657118055, + "observedCumulativeLayoutShiftMainFrame": 0.019755384657118055, + "observedTotalCumulativeLayoutShift": 0.019755384657118055, + "observedFirstVisualChange": 1359, + "observedFirstVisualChangeTs": 425148733, + "observedLastVisualChange": 1626, + "observedLastVisualChangeTs": 425415733, + "observedSpeedIndex": 1553, + "observedSpeedIndexTs": 425342652 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 66, + "numScripts": 38, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 34, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 81.349, + "throughput": 17841804.372885726, + "maxRtt": 85.259, + "maxServerLatency": 11.456999999999994, + "totalByteWeight": 833809, + "totalTaskTime": 4.442999999999998, + "mainDocumentTransferSize": 4653 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://mediature.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mediature.beta.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mediature.beta.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "mediature", + "type": "startup", + "attributes": { + "name": "Médiature", + "pitch": "Améliorer le suivi des demandes adressées par les citoyens aux médiateurs des collectivités territoriales.", + "stats_url": "", + "link": "https://www.mediateur-public.fr/", + "repository": "https://github.com/inclusion-numerique/mediature", + "contact": "contactincubateur@anct.gouv.fr", + "content_url_encoded_markdown": "M%C3%A9diature%20%3A%20am%C3%A9liorer%20le%20suivi%20des%20demandes%20adress%C3%A9es%20par%20les%20citoyens%20aux%20m%C3%A9diateurs%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AUNE%20INVESTIGATION%20LOCALE%2A%2A%0A%0ADans%20le%20cadre%20du%20PNI%20%28Programme%20National%20d%27Investigations%29%2C%20le%20M%C3%A9diateur%20du%20D%C3%A9partement%20de%20la%20Seine%20Saint-Denis%20%2893%29%20a%20souhait%C3%A9%20investiguer%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20son%20%C3%A9quipe.%0A%0A%2A%2ALA%20PROBLEMATIQUE%20USAGER%20EN%20SEINE%20SAINT-DENIS%2A%2A%0A%0ALa%20m%C3%A9diature%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20en%202019%20dans%20le%20cadre%20de%20la%20d%C3%A9marche%20usagers%20du%20d%C3%A9partement%20pour%20g%C3%A9rer%20les%20r%C3%A9clamations%20qui%20n%E2%80%99aboutissent%20pas%20dans%20des%20d%C3%A9lais%20sup%C3%A9rieurs%20%C3%A0%202%20mois.%20L%E2%80%99an%20pass%C3%A9%20sur%20180%C2%A0000%20courriers%20adress%C3%A9s%20aux%20services%20centraux%2C%203%20000%20%C3%A9taient%20des%20r%C3%A9clamations%20et%20demandes%20suivies.%20En%202021%2C%20600%20r%C3%A9clamations%20ont%20ainsi%20%C3%A9t%C3%A9%20trait%C3%A9es%20par%20la%20m%C3%A9diature.%C2%A0%0A%0ALe%20traitement%20r%C3%A9alis%C3%A9%20par%20la%20m%C3%A9diature%20n%E2%80%99est%20pas%20automatis%C3%A9%20et%20le%20suivi%20est%20assur%C3%A9%20sur%20des%20tableaux%20excel.%20Alors%20que%20le%20volume%20des%20r%C3%A9clamations%20est%20important%20et%20en%20forte%20croissance%2C%20le%20m%C3%A9diateur%20identifie%20trois%20risques%20%3A%0A%0A%2A%20Baisse%20de%20la%20qualit%C3%A9%20des%20traitements%20des%20demandes%2C%20donc%20perte%20de%20confiance%20des%20usagers%0A%2A%20Impossibilit%C3%A9%20de%20prendre%20en%20charge%20une%20part%20de%20plus%20en%20plus%20importante%20de%20demandes%0A%2A%20Recours%20judiciaires%C2%A0%0A%0A%2A%2AL%E2%80%99INVESTIGATION%20TERRAIN%2A%2A%C2%A0%0A%0ALes%20usagers%20finaux%20sont%20aujourd%E2%80%99hui%20tr%C3%A8s%20satisfaits%20du%20traitement%20de%20leurs%20demandes%2C%20mais%20ils%20n%E2%80%99ont%20pas%20d%E2%80%99outil%20mis%20%C3%A0%20leur%20disposition%20pour%20suivre%20leur%20dossier%20%C3%A0%20tout%20moment.%20Les%20membres%20de%20l%27%C3%A9quipe%20de%20m%C3%A9diature%20confirment%20les%20difficult%C3%A9s%20de%20suivi%20des%20dossiers%20avec%20les%20outils%20utilis%C3%A9s%20aujourd%E2%80%99hui.%20Pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20et%20ne%20pas%20d%C3%A9grader%20le%20service%20rendu%2C%20la%20piste%20de%20l%E2%80%99automatisation%20des%20r%C3%A9clamations%20est%20valid%C3%A9e.%0A%0A%2A%2ALa%20solution%20envisag%C3%A9e%2A%2A%20%3A%20d%C3%A9velopper%20un%20outil%20num%C3%A9rique%20simple%20et%20visuel%20permettant%20de%20suivre%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20des%20demandes%20de%20chaque%20usager.%C2%A0%0A%0APar%20ailleurs%2C%20l%27%5BAssociation%20des%20M%C3%A9diateurs%20des%20Collectivit%C3%A9s%20Territoriales%20%28AMCT%29%5D%28https%3A%2F%2Fwww.amct-mediation.fr%2F%29%2C%20qui%20f%C3%A9d%C3%A8re%20les%20services%20de%20m%C3%A9diation%20des%20collectivit%C3%A9s%20territoriales%2C%20identifie%20des%20difficult%C3%A9s%20similaires%20dans%20de%20nombreux%20services%20de%20m%C3%A9diature.%20L%27AMCT%20manifeste%20son%20soutien%20%C3%A0%20la%20d%C3%A9marche%20et%20son%20int%C3%A9r%C3%AAt%20pour%20promouvoir%20l%27usage%20de%20la%20solution%20envisag%C3%A9e%20dans%20les%20collectivit%C3%A9s%20adh%C3%A9rentes%20%C3%A0%20l%27association%2C%20sur%20tout%20le%20territoire.%0A%0A%2A%2AL%E2%80%99EXPERIMENTATION%2A%2A%0A%0AUn%20prototype%20de%20service%20num%C3%A9rique%20est%20en%20cours%20de%20construction%20avec%20le%20service%20de%20m%C3%A9diature%20du%20Conseil%20d%C3%A9partemental%20de%20la%20Seine%20Saint-Denis%20afin%20d%27en%20tester%20l%27impact.%20Le%20prototype%20sera%20par%20la%20suite%20test%C3%A9%20par%20quelques%20services%20de%20m%C3%A9diature%20volontaires%2C%20membres%20de%20l%27AMCT%2C%20avant%20une%20%C3%A9ventuelle%20g%C3%A9n%C3%A9ralisation.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2021-11-01", + "end": "" + }, + { + "name": "success", + "start": "2023-06-30", + "end": "" + }, + { + "name": "alumni", + "start": "2024-06-05", + "end": "" + } + ], + "sponsors": [ + "anct" + ], + "thematiques": [ + "Collectivités", + "Social" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "anct" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mediature.beta.gouv.fr", + "size": 988.086, + "nodes": 211, + "requests": 71, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 05:32:22.658405", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-09T14:35:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.8, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://mediature.incubateur.net", + "title": "Médiature (préprod)", + "category": "anct", + "betaId": "mediature", + "repositories": [ + "inclusion-numerique/mediature" + ], + "tags": [ + "mediature", + "app", + "staging" + ], + "http": { + "url": "https://mediature.incubateur.net", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 04:52:45 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Embedder-Policy": "require-corp", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 04:52:44 GMT", + "ETag": "\"oymsqsx037dnf\"", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=15552000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "18ecd1db-31ce-443a-9de5-eec934457338", + "X-XSS-Protection": "0", + "x-nextjs-cache": "HIT" + }, + "scan_id": 57050870, + "score": 80, + "start_time": "Sun, 20 Oct 2024 04:52:43 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "'self'", + "wss://client.relay.crisp.chat/", + "https://api-adresse.data.gouv.fr/", + "https://sentry.incubateur.net/", + "https://storage.crisp.chat/users/upload/", + "https://client.crisp.chat/static/" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "data:", + "https:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "img-src": [ + "data:", + "https://*.crisp.chat/", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'unsafe-inline'", + "https://client.crisp.chat/", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "'unsafe-inline'", + "https:", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://mediature.incubateur.net/", + "redirects": true, + "route": [ + "http://mediature.incubateur.net/", + "https://mediature.incubateur.net/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15552000; includeSubDomains", + "includeSubDomains": true, + "max-age": 15552000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "7a0f", + "url": "https://mediature.incubateur.net", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T14:32:34Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T05:53:23Z", + "next_check_at": "2024-12-01T05:54:23Z", + "created_at": "2024-01-15T13:37:41Z", + "mute_until": null, + "favicon_url": "https://mediature.incubateur.net/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:49:27Z", + "expires_at": "2025-02-09T14:33:39Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 111, + "connection": 116, + "handshake": 123, + "response": 122, + "total": 472 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "mediature.incubateur.net", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -141108,7 +132027,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -141116,7 +132035,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -141124,7 +132043,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -141132,7 +132051,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -141140,7 +132059,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -141148,455 +132067,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-11-11 14:35" + "finding": "2024-11-11 14:33" }, { "id": "cert_notAfter", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-02-09 14:35" + "finding": "2025-02-09 14:33" }, { "id": "cert_extlifeSpan", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732425558" + "finding": "1733032299" }, { "id": "HSTS_time", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "id": "X-Frame-Options", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" + }, + { + "id": "X-XSS-Protection", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -141604,7 +132558,7 @@ }, { "id": "heartbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -141613,7 +132567,7 @@ }, { "id": "CCS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -141622,7 +132576,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -141631,7 +132585,7 @@ }, { "id": "ROBOT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -141640,7 +132594,7 @@ }, { "id": "secure_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -141648,7 +132602,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -141657,7 +132611,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -141666,16 +132620,16 @@ }, { "id": "BREACH", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -141684,14 +132638,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -141700,7 +132654,7 @@ }, { "id": "FREAK", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -141709,7 +132663,7 @@ }, { "id": "DROWN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -141718,16 +132672,16 @@ }, { "id": "DROWN_hint", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=470148AB23074A2F8FCD4214008886AD0DD4CE8F9B477E3B616BE92A119C6DBB" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F92169AC9E3CEAB0B49970B6BC4EDFCC9000C00203CE1763C3FFD5EE7ADAAA8A" }, { "id": "LOGJAM", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -141736,7 +132690,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -141745,7 +132699,7 @@ }, { "id": "BEAST", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -141754,7 +132708,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -141763,7 +132717,7 @@ }, { "id": "winshock", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -141772,7 +132726,7 @@ }, { "id": "RC4", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -141781,1136 +132735,319 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "rating_doc", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "mediature.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "118" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "__Secure-next-auth.callback-url", - "value": "https%3A%2F%2Fwww.mediateur-public.fr", - "domain": "www.mediateur-public.fr", - "path": "/", - "expires": -1, - "size": 68, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "__Host-next-auth.csrf-token", - "value": "9992fc9fed65e5fdbcb63213b517e538b317891d2f9844335d118a5b7fe39cd9%7C164b2e51a696a793f771a995ad6120e07c19a293e47efd5aca5eddfac6f05981", - "domain": "www.mediateur-public.fr", - "path": "/", - "expires": -1, - "size": 158, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", - "content-type": "text/html; charset=utf-8", - "cross-origin-embedder-policy": "require-corp", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 24 Nov 2024 05:17:02 GMT", - "etag": "\"mchbhl081wdnf\"", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", - "strict-transport-security": "max-age=15552000; includeSubDomains", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-nextjs-cache": "HIT", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "5c02faec-3e89-494e-ac45-8477dbc32571", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "mediature.beta.gouv.fr", - "ip": "148.253.96.193", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mediature.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://mediature.beta.gouv.fr/ (https://mediature.beta.gouv.fr/)" - } - }, - "technologies": [ - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://mediature.beta.gouv.fr/", - "finalUrl": "https://www.mediateur-public.fr/", - "fetchTime": "2024-11-24T05:16:37.761Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://mediature.beta.gouv.fr/) was redirected to https://www.mediateur-public.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.8 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.91 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 1992, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1992, - "firstMeaningfulPaint": 1992, - "largestContentfulPaint": 4682, - "interactive": 1992, - "speedIndex": 3640, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.019755384657118055, - "cumulativeLayoutShiftMainFrame": 0.019755384657118055, - "totalCumulativeLayoutShift": 0.019755384657118055, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 372587811, - "observedNavigationStart": 0, - "observedNavigationStartTs": 372587811, - "observedFirstPaint": 1009, - "observedFirstPaintTs": 373596513, - "observedFirstContentfulPaint": 1009, - "observedFirstContentfulPaintTs": 373596513, - "observedFirstContentfulPaintAllFrames": 1009, - "observedFirstContentfulPaintAllFramesTs": 373596513, - "observedFirstMeaningfulPaint": 1818, - "observedFirstMeaningfulPaintTs": 374405787, - "observedLargestContentfulPaint": 1818, - "observedLargestContentfulPaintTs": 374405787, - "observedLargestContentfulPaintAllFrames": 1818, - "observedLargestContentfulPaintAllFramesTs": 374405787, - "observedTraceEnd": 4361, - "observedTraceEndTs": 376948408, - "observedLoad": 1696, - "observedLoadTs": 374284205, - "observedDomContentLoaded": 1005, - "observedDomContentLoadedTs": 373593111, - "observedCumulativeLayoutShift": 0.019755384657118055, - "observedCumulativeLayoutShiftMainFrame": 0.019755384657118055, - "observedTotalCumulativeLayoutShift": 0.019755384657118055, - "observedFirstVisualChange": 1430, - "observedFirstVisualChangeTs": 374017811, - "observedLastVisualChange": 1930, - "observedLastVisualChangeTs": 374517811, - "observedSpeedIndex": 1854, - "observedSpeedIndexTs": 374441855 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 66, - "numScripts": 38, - "numStylesheets": 3, - "numFonts": 3, - "numTasks": 40, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 98.912, - "throughput": 17995402.29884356, - "maxRtt": 102.621, - "maxServerLatency": 10.123000000000005, - "totalByteWeight": 833827, - "totalTaskTime": 3.3299999999999987, - "mainDocumentTransferSize": 4654 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://mediature.beta.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://mediature.beta.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://mediature.beta.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "mediature", - "type": "startup", - "attributes": { - "name": "Médiature", - "pitch": "Améliorer le suivi des demandes adressées par les citoyens aux médiateurs des collectivités territoriales.", - "stats_url": "", - "link": "https://www.mediateur-public.fr/", - "repository": "https://github.com/inclusion-numerique/mediature", - "contact": "contactincubateur@anct.gouv.fr", - "content_url_encoded_markdown": "M%C3%A9diature%20%3A%20am%C3%A9liorer%20le%20suivi%20des%20demandes%20adress%C3%A9es%20par%20les%20citoyens%20aux%20m%C3%A9diateurs%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AUNE%20INVESTIGATION%20LOCALE%2A%2A%0A%0ADans%20le%20cadre%20du%20PNI%20%28Programme%20National%20d%27Investigations%29%2C%20le%20M%C3%A9diateur%20du%20D%C3%A9partement%20de%20la%20Seine%20Saint-Denis%20%2893%29%20a%20souhait%C3%A9%20investiguer%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20son%20%C3%A9quipe.%0A%0A%2A%2ALA%20PROBLEMATIQUE%20USAGER%20EN%20SEINE%20SAINT-DENIS%2A%2A%0A%0ALa%20m%C3%A9diature%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20en%202019%20dans%20le%20cadre%20de%20la%20d%C3%A9marche%20usagers%20du%20d%C3%A9partement%20pour%20g%C3%A9rer%20les%20r%C3%A9clamations%20qui%20n%E2%80%99aboutissent%20pas%20dans%20des%20d%C3%A9lais%20sup%C3%A9rieurs%20%C3%A0%202%20mois.%20L%E2%80%99an%20pass%C3%A9%20sur%20180%C2%A0000%20courriers%20adress%C3%A9s%20aux%20services%20centraux%2C%203%20000%20%C3%A9taient%20des%20r%C3%A9clamations%20et%20demandes%20suivies.%20En%202021%2C%20600%20r%C3%A9clamations%20ont%20ainsi%20%C3%A9t%C3%A9%20trait%C3%A9es%20par%20la%20m%C3%A9diature.%C2%A0%0A%0ALe%20traitement%20r%C3%A9alis%C3%A9%20par%20la%20m%C3%A9diature%20n%E2%80%99est%20pas%20automatis%C3%A9%20et%20le%20suivi%20est%20assur%C3%A9%20sur%20des%20tableaux%20excel.%20Alors%20que%20le%20volume%20des%20r%C3%A9clamations%20est%20important%20et%20en%20forte%20croissance%2C%20le%20m%C3%A9diateur%20identifie%20trois%20risques%20%3A%0A%0A%2A%20Baisse%20de%20la%20qualit%C3%A9%20des%20traitements%20des%20demandes%2C%20donc%20perte%20de%20confiance%20des%20usagers%0A%2A%20Impossibilit%C3%A9%20de%20prendre%20en%20charge%20une%20part%20de%20plus%20en%20plus%20importante%20de%20demandes%0A%2A%20Recours%20judiciaires%C2%A0%0A%0A%2A%2AL%E2%80%99INVESTIGATION%20TERRAIN%2A%2A%C2%A0%0A%0ALes%20usagers%20finaux%20sont%20aujourd%E2%80%99hui%20tr%C3%A8s%20satisfaits%20du%20traitement%20de%20leurs%20demandes%2C%20mais%20ils%20n%E2%80%99ont%20pas%20d%E2%80%99outil%20mis%20%C3%A0%20leur%20disposition%20pour%20suivre%20leur%20dossier%20%C3%A0%20tout%20moment.%20Les%20membres%20de%20l%27%C3%A9quipe%20de%20m%C3%A9diature%20confirment%20les%20difficult%C3%A9s%20de%20suivi%20des%20dossiers%20avec%20les%20outils%20utilis%C3%A9s%20aujourd%E2%80%99hui.%20Pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20et%20ne%20pas%20d%C3%A9grader%20le%20service%20rendu%2C%20la%20piste%20de%20l%E2%80%99automatisation%20des%20r%C3%A9clamations%20est%20valid%C3%A9e.%0A%0A%2A%2ALa%20solution%20envisag%C3%A9e%2A%2A%20%3A%20d%C3%A9velopper%20un%20outil%20num%C3%A9rique%20simple%20et%20visuel%20permettant%20de%20suivre%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20des%20demandes%20de%20chaque%20usager.%C2%A0%0A%0APar%20ailleurs%2C%20l%27%5BAssociation%20des%20M%C3%A9diateurs%20des%20Collectivit%C3%A9s%20Territoriales%20%28AMCT%29%5D%28https%3A%2F%2Fwww.amct-mediation.fr%2F%29%2C%20qui%20f%C3%A9d%C3%A8re%20les%20services%20de%20m%C3%A9diation%20des%20collectivit%C3%A9s%20territoriales%2C%20identifie%20des%20difficult%C3%A9s%20similaires%20dans%20de%20nombreux%20services%20de%20m%C3%A9diature.%20L%27AMCT%20manifeste%20son%20soutien%20%C3%A0%20la%20d%C3%A9marche%20et%20son%20int%C3%A9r%C3%AAt%20pour%20promouvoir%20l%27usage%20de%20la%20solution%20envisag%C3%A9e%20dans%20les%20collectivit%C3%A9s%20adh%C3%A9rentes%20%C3%A0%20l%27association%2C%20sur%20tout%20le%20territoire.%0A%0A%2A%2AL%E2%80%99EXPERIMENTATION%2A%2A%0A%0AUn%20prototype%20de%20service%20num%C3%A9rique%20est%20en%20cours%20de%20construction%20avec%20le%20service%20de%20m%C3%A9diature%20du%20Conseil%20d%C3%A9partemental%20de%20la%20Seine%20Saint-Denis%20afin%20d%27en%20tester%20l%27impact.%20Le%20prototype%20sera%20par%20la%20suite%20test%C3%A9%20par%20quelques%20services%20de%20m%C3%A9diature%20volontaires%2C%20membres%20de%20l%27AMCT%2C%20avant%20une%20%C3%A9ventuelle%20g%C3%A9n%C3%A9ralisation.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-06-01", - "end": "" - }, - { - "name": "construction", - "start": "2021-11-01", - "end": "" - }, - { - "name": "success", - "start": "2023-06-30", - "end": "" - }, - { - "name": "alumni", - "start": "2024-06-05", - "end": "" - } - ], - "sponsors": [ - "anct" - ], - "thematiques": [ - "Collectivités", - "Social" - ], - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "anct" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://mediature.beta.gouv.fr", - "size": 988.16, - "nodes": 211, - "requests": 71, - "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:13:37.808078", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-09T14:35:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.8, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.91, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://mediature.incubateur.net", - "title": "Médiature (préprod)", - "category": "anct", - "betaId": "mediature", - "repositories": [ - "inclusion-numerique/mediature" - ], - "tags": [ - "mediature", - "app", - "staging" - ], - "http": { - "url": "https://mediature.incubateur.net", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:52:45 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Embedder-Policy": "require-corp", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 04:52:44 GMT", - "ETag": "\"oymsqsx037dnf\"", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=15552000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "18ecd1db-31ce-443a-9de5-eec934457338", - "X-XSS-Protection": "0", - "x-nextjs-cache": "HIT" + "id": "rating_doc", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "scan_id": 57050870, - "score": 80, - "start_time": "Sun, 20 Oct 2024 04:52:43 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "'self'", - "wss://client.relay.crisp.chat/", - "https://api-adresse.data.gouv.fr/", - "https://sentry.incubateur.net/", - "https://storage.crisp.chat/users/upload/", - "https://client.crisp.chat/static/" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "data:", - "https:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "img-src": [ - "data:", - "https://*.crisp.chat/", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "https://client.crisp.chat/", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "'unsafe-inline'", - "https:", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://mediature.incubateur.net/", - "redirects": true, - "route": [ - "http://mediature.incubateur.net/", - "https://mediature.incubateur.net/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=15552000; includeSubDomains", - "includeSubDomains": true, - "max-age": 15552000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "7a0f", - "url": "https://mediature.incubateur.net", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T01:12:23Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T05:34:27Z", - "next_check_at": "2024-11-24T05:35:27Z", - "created_at": "2024-01-15T13:37:41Z", - "mute_until": null, - "favicon_url": "https://mediature.incubateur.net/_next/static/media/favicon.8c087985.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:29:32Z", - "expires_at": "2025-02-09T14:33:39Z", - "valid": true, - "error": null + { + "id": "protocol_support_score", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 96, - "connection": 126, - "handshake": 132, - "response": 132, - "total": 486 - } + { + "id": "protocol_support_score_weighted", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "mediature.incubateur.net", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "mediature.incubateur.net/109.232.236.90", @@ -143258,7 +133395,7 @@ "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -143419,7 +133556,7 @@ "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732426348" + "finding": "1733032361" }, { "id": "HSTS_time", @@ -143998,93 +134135,961 @@ "severity": "INFO", "finding": "24" }, - { - "id": "final_score", - "ip": "mediature.incubateur.net/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "81" + { + "id": "final_score", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "128" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "content-type": "text/html; charset=utf-8", + "cross-origin-embedder-policy": "require-corp", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 05:50:15 GMT", + "etag": "\"oymsqsx037dnf\"", + "origin-agent-cluster": "?1", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=15552000; includeSubDomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-nextjs-cache": "HIT", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "83bab7b1-f473-49d2-9fb2-4d6a689a9e7d", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "mediature.incubateur.net", + "ip": "5.104.101.30", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mediature.incubateur.net/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "mui", + "name": "MUI", + "description": "MUI(formerly Material UI) is a simple and customisable component library to build faster, beautiful, and more accessible React applications.", + "confidence": 100, + "version": null, + "icon": "MUI.svg", + "website": "https://mui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.1.6", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mediature.incubateur.net/", + "finalUrl": "https://mediature.incubateur.net/", + "fetchTime": "2024-12-01T05:49:50.252Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.87 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1241, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1241, + "firstMeaningfulPaint": 1241, + "largestContentfulPaint": 3950, + "interactive": 1241, + "speedIndex": 2752, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.01594362046983507, + "cumulativeLayoutShiftMainFrame": 0.01594362046983507, + "totalCumulativeLayoutShift": 0.01594362046983507, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 342668200, + "observedNavigationStart": 0, + "observedNavigationStartTs": 342668200, + "observedFirstPaint": 722, + "observedFirstPaintTs": 343390159, + "observedFirstContentfulPaint": 722, + "observedFirstContentfulPaintTs": 343390159, + "observedFirstContentfulPaintAllFrames": 722, + "observedFirstContentfulPaintAllFramesTs": 343390159, + "observedFirstMeaningfulPaint": 1524, + "observedFirstMeaningfulPaintTs": 344192386, + "observedLargestContentfulPaint": 1524, + "observedLargestContentfulPaintTs": 344192386, + "observedLargestContentfulPaintAllFrames": 1524, + "observedLargestContentfulPaintAllFramesTs": 344192386, + "observedTraceEnd": 4070, + "observedTraceEndTs": 346737915, + "observedLoad": 1396, + "observedLoadTs": 344064672, + "observedDomContentLoaded": 709, + "observedDomContentLoadedTs": 343377015, + "observedCumulativeLayoutShift": 0.01594362046983507, + "observedCumulativeLayoutShiftMainFrame": 0.01594362046983507, + "observedTotalCumulativeLayoutShift": 0.01594362046983507, + "observedFirstVisualChange": 1151, + "observedFirstVisualChangeTs": 343819200, + "observedLastVisualChange": 1668, + "observedLastVisualChangeTs": 344336200, + "observedSpeedIndex": 1568, + "observedSpeedIndexTs": 344236397 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 65, + "numScripts": 38, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 15, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 98.441, + "throughput": 14660080.068059312, + "maxRtt": 103.259, + "maxServerLatency": 11.685999999999993, + "totalByteWeight": 833541, + "totalTaskTime": 3731.312, + "mainDocumentTransferSize": 4651 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://mediature.incubateur.net/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mediature.incubateur.net/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mediature.incubateur.net/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "mediature", + "type": "startup", + "attributes": { + "name": "Médiature", + "pitch": "Améliorer le suivi des demandes adressées par les citoyens aux médiateurs des collectivités territoriales.", + "stats_url": "", + "link": "https://www.mediateur-public.fr/", + "repository": "https://github.com/inclusion-numerique/mediature", + "contact": "contactincubateur@anct.gouv.fr", + "content_url_encoded_markdown": "M%C3%A9diature%20%3A%20am%C3%A9liorer%20le%20suivi%20des%20demandes%20adress%C3%A9es%20par%20les%20citoyens%20aux%20m%C3%A9diateurs%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AUNE%20INVESTIGATION%20LOCALE%2A%2A%0A%0ADans%20le%20cadre%20du%20PNI%20%28Programme%20National%20d%27Investigations%29%2C%20le%20M%C3%A9diateur%20du%20D%C3%A9partement%20de%20la%20Seine%20Saint-Denis%20%2893%29%20a%20souhait%C3%A9%20investiguer%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20son%20%C3%A9quipe.%0A%0A%2A%2ALA%20PROBLEMATIQUE%20USAGER%20EN%20SEINE%20SAINT-DENIS%2A%2A%0A%0ALa%20m%C3%A9diature%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20en%202019%20dans%20le%20cadre%20de%20la%20d%C3%A9marche%20usagers%20du%20d%C3%A9partement%20pour%20g%C3%A9rer%20les%20r%C3%A9clamations%20qui%20n%E2%80%99aboutissent%20pas%20dans%20des%20d%C3%A9lais%20sup%C3%A9rieurs%20%C3%A0%202%20mois.%20L%E2%80%99an%20pass%C3%A9%20sur%20180%C2%A0000%20courriers%20adress%C3%A9s%20aux%20services%20centraux%2C%203%20000%20%C3%A9taient%20des%20r%C3%A9clamations%20et%20demandes%20suivies.%20En%202021%2C%20600%20r%C3%A9clamations%20ont%20ainsi%20%C3%A9t%C3%A9%20trait%C3%A9es%20par%20la%20m%C3%A9diature.%C2%A0%0A%0ALe%20traitement%20r%C3%A9alis%C3%A9%20par%20la%20m%C3%A9diature%20n%E2%80%99est%20pas%20automatis%C3%A9%20et%20le%20suivi%20est%20assur%C3%A9%20sur%20des%20tableaux%20excel.%20Alors%20que%20le%20volume%20des%20r%C3%A9clamations%20est%20important%20et%20en%20forte%20croissance%2C%20le%20m%C3%A9diateur%20identifie%20trois%20risques%20%3A%0A%0A%2A%20Baisse%20de%20la%20qualit%C3%A9%20des%20traitements%20des%20demandes%2C%20donc%20perte%20de%20confiance%20des%20usagers%0A%2A%20Impossibilit%C3%A9%20de%20prendre%20en%20charge%20une%20part%20de%20plus%20en%20plus%20importante%20de%20demandes%0A%2A%20Recours%20judiciaires%C2%A0%0A%0A%2A%2AL%E2%80%99INVESTIGATION%20TERRAIN%2A%2A%C2%A0%0A%0ALes%20usagers%20finaux%20sont%20aujourd%E2%80%99hui%20tr%C3%A8s%20satisfaits%20du%20traitement%20de%20leurs%20demandes%2C%20mais%20ils%20n%E2%80%99ont%20pas%20d%E2%80%99outil%20mis%20%C3%A0%20leur%20disposition%20pour%20suivre%20leur%20dossier%20%C3%A0%20tout%20moment.%20Les%20membres%20de%20l%27%C3%A9quipe%20de%20m%C3%A9diature%20confirment%20les%20difficult%C3%A9s%20de%20suivi%20des%20dossiers%20avec%20les%20outils%20utilis%C3%A9s%20aujourd%E2%80%99hui.%20Pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20et%20ne%20pas%20d%C3%A9grader%20le%20service%20rendu%2C%20la%20piste%20de%20l%E2%80%99automatisation%20des%20r%C3%A9clamations%20est%20valid%C3%A9e.%0A%0A%2A%2ALa%20solution%20envisag%C3%A9e%2A%2A%20%3A%20d%C3%A9velopper%20un%20outil%20num%C3%A9rique%20simple%20et%20visuel%20permettant%20de%20suivre%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20des%20demandes%20de%20chaque%20usager.%C2%A0%0A%0APar%20ailleurs%2C%20l%27%5BAssociation%20des%20M%C3%A9diateurs%20des%20Collectivit%C3%A9s%20Territoriales%20%28AMCT%29%5D%28https%3A%2F%2Fwww.amct-mediation.fr%2F%29%2C%20qui%20f%C3%A9d%C3%A8re%20les%20services%20de%20m%C3%A9diation%20des%20collectivit%C3%A9s%20territoriales%2C%20identifie%20des%20difficult%C3%A9s%20similaires%20dans%20de%20nombreux%20services%20de%20m%C3%A9diature.%20L%27AMCT%20manifeste%20son%20soutien%20%C3%A0%20la%20d%C3%A9marche%20et%20son%20int%C3%A9r%C3%AAt%20pour%20promouvoir%20l%27usage%20de%20la%20solution%20envisag%C3%A9e%20dans%20les%20collectivit%C3%A9s%20adh%C3%A9rentes%20%C3%A0%20l%27association%2C%20sur%20tout%20le%20territoire.%0A%0A%2A%2AL%E2%80%99EXPERIMENTATION%2A%2A%0A%0AUn%20prototype%20de%20service%20num%C3%A9rique%20est%20en%20cours%20de%20construction%20avec%20le%20service%20de%20m%C3%A9diature%20du%20Conseil%20d%C3%A9partemental%20de%20la%20Seine%20Saint-Denis%20afin%20d%27en%20tester%20l%27impact.%20Le%20prototype%20sera%20par%20la%20suite%20test%C3%A9%20par%20quelques%20services%20de%20m%C3%A9diature%20volontaires%2C%20membres%20de%20l%27AMCT%2C%20avant%20une%20%C3%A9ventuelle%20g%C3%A9n%C3%A9ralisation.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2021-11-01", + "end": "" + }, + { + "name": "success", + "start": "2023-06-30", + "end": "" + }, + { + "name": "alumni", + "start": "2024-06-05", + "end": "" + } + ], + "sponsors": [ + "anct" + ], + "thematiques": [ + "Collectivités", + "Social" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "anct" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mediature.incubateur.net", + "size": 988.023, + "nodes": 211, + "requests": 71, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 05:46:28.479031", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-09T14:33:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.87, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://mesevenementsemploi.pole-emploi.fr", + "category": "pole-emploi", + "betaId": "mes-evenements-emploi", + "tools": { + "nmap": false + }, + "http": { + "url": "https://mesevenementsemploi.pole-emploi.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 04:56:07 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 04:56:05 GMT", + "Etag": "W/\"33763-bjaMI0djX/ZO49OF8t9QixGonZI\"", + "Set-Cookie": "TS0108a62c=01b3abf0a247579f73a0c4e3c6adffc3191a23ada27d58c1a91422a830f61cab8e466949ec5af64d940cc9541675129d73c8e874e1; Path=/; Domain=.mesevenementsemploi.francetravail.fr; Secure; HttpOnly; ", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff'" + }, + "scan_id": 57050920, + "score": 30, + "start_time": "Sun, 20 Oct 2024 04:56:02 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "TS0108a62c": { + "domain": ".mesevenementsemploi.francetravail.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + } + }, + "sameSite": false + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions", + "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/", + "redirects": true, + "route": [ + "http://mesevenementsemploi.pole-emploi.fr/", + "https://mesevenementsemploi.pole-emploi.fr/", + "https://mesevenementsemploi.francetravail.fr/", + "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff'" + }, + "pass": false, + "result": "x-content-type-options-header-invalid", + "score_description": "X-Content-Type-Options header cannot be recognized", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "u8e3", + "url": "https://mesevenementsemploi.pole-emploi.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T16:30:53Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T05:53:42Z", + "next_check_at": "2024-12-01T05:54:42Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:45:49Z", + "expires_at": "2025-04-22T13:07:23Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "mediature.incubateur.net/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.983, + "timings": { + "redirect": 863, + "namelookup": 1, + "connection": 136, + "handshake": 139, + "response": 245, + "total": 1382 + } }, + "uptimeGrade": "A", + "apdexGrade": "B" + }, + "nmap": { + "host": "mesevenementsemploi.pole-emploi.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http-proxy", + "product": "F5 BIG-IP load balancer http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http-proxy", + "product": "F5 BIG-IP load balancer http proxy", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "mediature.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "not offered" }, { "id": "cipherlist_NULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -144092,7 +135097,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -144100,7 +135105,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -144108,7 +135113,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -144116,7 +135121,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -144124,7 +135129,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -144132,490 +135137,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "142 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "2024-11-11 14:33" + "finding": "2024-04-22 13:07" }, { "id": "cert_notAfter", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "2025-02-09 14:33" + "finding": "2025-04-22 13:07" }, { "id": "cert_extlifeSpan", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.entrust.net/level1m.crl" }, { "id": "cert_ocspURL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.entrust.net" }, { "id": "OCSP_stapling", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2014-12-15 15:25" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2030-10-15 15:55" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "mediature.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" }, { - "id": "HTTP_status_code", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_clock_skew", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" }, { - "id": "HTTP_headerTime", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_notBefore <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "1732426401" + "finding": "2009-07-07 17:25" }, { - "id": "HSTS_time", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_notAfter <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" + "finding": "2030-12-07 17:55" }, { - "id": "HSTS_subdomains", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_expiration <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "mediature.incubateur.net/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "ok > 40 days" }, { - "id": "HPKP", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_chain <#2>", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { - "id": "banner_server", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "intermediate_cert_badOCSP", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "banner_application", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "HTTP_status_code", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "301 Moved Permanently ('/')" }, { - "id": "cookie_count", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "HTTP_clock_skew", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "Got no HTTP time, maybe try different URL?" }, { - "id": "X-Frame-Options", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "HSTS", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "severity": "LOW", + "finding": "not offered" }, { - "id": "X-Content-Type-Options", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "HPKP", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "OK", - "finding": "nosniff" + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "Content-Security-Policy", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "banner_server", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" + "severity": "INFO", + "finding": "BigIP" }, { - "id": "X-XSS-Protection", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "banner_application", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "No application banner found" }, { - "id": "Referrer-Policy", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "cookie_count", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "security_headers", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "INFO", - "finding": "s-maxage=31536000, stale-while-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -144623,7 +135614,7 @@ }, { "id": "heartbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -144632,7 +135623,7 @@ }, { "id": "CCS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -144641,16 +135632,16 @@ }, { "id": "ticketbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -144659,7 +135650,7 @@ }, { "id": "secure_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -144667,16 +135658,16 @@ }, { "id": "secure_client_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "not vulnerable, mitigated" }, { "id": "CRIME_TLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -144685,16 +135676,16 @@ }, { "id": "BREACH", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -144703,14 +135694,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -144719,7 +135710,7 @@ }, { "id": "FREAK", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -144728,7 +135719,7 @@ }, { "id": "DROWN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -144737,16 +135728,16 @@ }, { "id": "DROWN_hint", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F92169AC9E3CEAB0B49970B6BC4EDFCC9000C00203CE1763C3FFD5EE7ADAAA8A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0EE11D6F268B86B3764C526E3B3E01E9038B00791E25EC88F5251F903DFFED96" }, { "id": "LOGJAM", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -144755,16 +135746,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -144773,7 +135764,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -144782,7 +135773,7 @@ }, { "id": "winshock", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -144791,7 +135782,7 @@ }, { "id": "RC4", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -144800,358 +135791,756 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "110" + "finding": "102" } ], "thirdparties": { - "trackers": [], - "cookies": [], + "trackers": [ + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/" + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Poppins:wght@400;500;700&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/icon?family=Material+Icons&display=block", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/styles.a74ef041bd416039.css" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo-marianne.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/mes-evenements_FT.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/banner_remove.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/background_group_smaller.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo_fonds_social_europeen.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo_FT_footer.png" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo-ue.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/runtime.0d68ed71d8146577.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/polyfills.150173942ec73fd8.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/main.f548959851529dab.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/banniere-appmobile.8e529fedf5780027.png" + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://cdn.tagcommander.com/5894/uat/tc_peAction_31.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/175.f2dcded50c4a1f6f.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/631.d64d3ce7a22f37a0.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/850.cf67ef952f82bc78.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/common.e348ad8947fd6579.js" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/605.28313a86266cda34.js" + }, + { + "type": "at-internet", + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "details": { + "id": "at-internet", + "message": "Ensure your TOS notify the AT internet usage" + } + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=620985&idclient=m456owaoaz6kf7vk" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/assets/json/content.json" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OPERA" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/TYPEV" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OBJEC" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/romedomaine/granddomaine" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/prerequis/all/DIPLO-CANDIDAT" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OBJEC" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/CARAC" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/TYPEV" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/modaliteAcces/all" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OPERA" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/organisateur/all" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/Vector.a11b3f93efa800af.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/filters.32d182a7523b3a21.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/all/filtered" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/count/all/" + }, + { + "type": "unknown", + "url": "https://privacy.trustcommander.net/privacy-consent?site=5894" + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=620985&idclient=m456owaoaz6kf7vk" + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-left-black.25154615a36c9baf.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-right-black.828a2a03d9e3b37c.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/profil-multi.7fe3e156556e0cc1.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/pinmap-location.7b68cfdd37432e14.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/presentiel.cf81fbe5d0c09c77.svg" + }, + { + "type": "unknown", + "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-right_violet.751425cad70d083d.svg" + }, + { + "type": "unknown", + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + } + ], + "cookies": [ + { + "name": "TS0108a62c", + "value": "01b3abf0a28688e5ee7aa61e924010b381a4437613073276631cf2b0d9beaf36fd49d961c47ebee39ef017b2cac546ade678799db8a830dbc442d807a562362f073effccaa8c1ad109a359c50f3866f5b108c5398691d9a30fb77705c5718fdc08bc879d5ac54cf49a36ed9668922e25481ae6449202802752cf01d8406a986b0694073b708490e359468762341369af009612ec7e", + "domain": ".mesevenementsemploi.francetravail.fr", + "path": "/", + "expires": -1, + "size": 308, + "httpOnly": true, + "secure": true, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "ADRUM_BT1", + "value": "R:67|i:2321410|e:306|t:1733032310217", + "domain": "mesevenementsemploi.francetravail.fr", + "path": "/", + "expires": 1733032340.432644, + "size": 45, + "httpOnly": true, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "ADRUM_BTa", + "value": "R:67|g:1354e575-8ab3-40b5-bd0c-132092d9797f|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", + "domain": "mesevenementsemploi.francetravail.fr", + "path": "/", + "expires": 1733032340.432586, + "size": 103, + "httpOnly": true, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "TCPID", + "value": "124120551501197523099", + "domain": ".francetravail.fr", + "path": "/", + "expires": 1766987510, + "size": 26, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pctx", + "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAFb5U-VvwAeIAL5A", + "domain": ".francetravail.fr", + "path": "/", + "expires": 1767160309, + "size": 92, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "SameSite", + "value": "None", + "domain": "mesevenementsemploi.francetravail.fr", + "path": "/", + "expires": 1733032340.432602, + "size": 12, + "httpOnly": true, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pcid", + "value": "%7B%22browserId%22%3A%22m456owaoaz6kf7vk%22%2C%22_t%22%3A%22mjtlmdmw%22%7D", + "domain": ".francetravail.fr", + "path": "/", + "expires": 1767160309, + "size": 79, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "pa_privacy", + "value": "%22exempt%22", + "domain": ".francetravail.fr", + "path": "/", + "expires": 1767160309, + "size": 22, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", "content-type": "text/html; charset=utf-8", - "cross-origin-embedder-policy": "require-corp", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 24 Nov 2024 05:31:15 GMT", - "etag": "\"oymsqsx037dnf\"", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", - "strict-transport-security": "max-age=15552000; includeSubDomains", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-nextjs-cache": "HIT", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "bddb443b-6a5e-4274-9f4a-f8f5e6731e96", - "x-xss-protection": "0" + "date": "Sun, 01 Dec 2024 05:51:47 GMT", + "etag": "W/\"33763-S0uo/QM/jm9rXpXot4/DiGdeJwo\"", + "set-cookie": "TS0108a62c=01b3abf0a25631829c8eb2ff79235bf6bfb510453b073276631cf2b0d9beaf36fd49d961c40f39dbb9004c8b39956ebcd767f500b9; Path=/; Domain=.mesevenementsemploi.francetravail.fr; Secure; HttpOnly;", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff'" }, "endpoints": [ { - "hostname": "mediature.incubateur.net", - "ip": "109.232.236.90", + "hostname": "mesevenementsemploi.pole-emploi.fr", + "ip": "185.215.64.42", "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -145182,11 +136571,14 @@ } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, "time_zone": "Europe/Paris" }, + "postal": { + "code": "95360" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -145201,236 +136593,639 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mediature.incubateur.net/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true }, { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] + "hostname": "mesevenementsemploi.francetravail.fr", + "ip": "185.215.64.92", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } }, { - "slug": "mui", - "name": "MUI", - "description": "MUI(formerly Material UI) is a simple and customisable component library to build faster, beautiful, and more accessible React applications.", - "confidence": 100, - "version": null, - "icon": "MUI.svg", - "website": "https://mui.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" + "hostname": "fonts.googleapis.com", + "ip": "172.217.12.138", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true + } }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "hostname": "fonts.gstatic.com", + "ip": "142.250.188.227", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ] + } }, { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "13.1.6", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "hostname": "cdn.tagcommander.com", + "ip": "192.229.163.55", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "location": { + "accuracy_radius": 1000, + "latitude": 32.7797, + "longitude": -96.8022, + "time_zone": "America/Chicago" }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4736286, + "iso_code": "TX", + "names": { + "de": "Texas", + "en": "Texas", + "es": "Texas", + "fr": "Texas", + "ja": "テキサス州", + "pt-BR": "Texas", + "ru": "Техас", + "zh-CN": "得克萨斯州" + } + } + ] + } }, { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "hostname": "tag.aticdn.net", + "ip": "3.168.132.48", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } }, - { - "id": 47, - "slug": "development", - "name": "Development" + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true + } }, { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" + "hostname": "hd.pe.fr", + "ip": "18.164.174.93", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } }, - { - "id": 75, - "slug": "email", - "name": "Email" + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true + } }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true + "hostname": "privacy.trustcommander.net", + "ip": "35.180.96.67", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "hostname": "www.francetravail.fr", + "ip": "185.215.64.79", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mesevenementsemploi.pole-emploi.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://mesevenementsemploi.pole-emploi.fr/ (https://mesevenementsemploi.pole-emploi.fr/)" + } + }, + "technologies": [ + { + "slug": "f5-bigip", + "name": "F5 BigIP", + "description": "F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, + "icon": "F5.png", + "website": "https://www.f5.com/products/big-ip-services", + "cpe": "cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*", "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ], "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -145438,10 +137233,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://mediature.incubateur.net/", - "finalUrl": "https://mediature.incubateur.net/", - "fetchTime": "2024-11-24T05:30:48.977Z", - "runWarnings": [], + "requestedUrl": "https://mesevenementsemploi.pole-emploi.fr/", + "finalUrl": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/", + "fetchTime": "2024-12-01T05:51:16.469Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://mesevenementsemploi.pole-emploi.fr/) was redirected to https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -145451,7 +137248,7 @@ "snapshot" ], "id": "performance", - "score": 0.86 + "score": 0.47 }, "accessibility": { "title": "Accessibility", @@ -145472,7 +137269,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -145483,7 +137280,7 @@ "snapshot" ], "id": "seo", - "score": 0.83 + "score": 1 }, "pwa": { "title": "PWA", @@ -145493,7 +137290,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.3 } }, "audits": { @@ -145503,53 +137300,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1212, + "numericValue": 16105, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1212, - "firstMeaningfulPaint": 1212, - "largestContentfulPaint": 4137, - "interactive": 1212, - "speedIndex": 2397, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.019755384657118055, - "cumulativeLayoutShiftMainFrame": 0.019755384657118055, - "totalCumulativeLayoutShift": 0.019755384657118055, + "firstContentfulPaint": 2749, + "firstMeaningfulPaint": 9510, + "largestContentfulPaint": 5276, + "interactive": 16105, + "speedIndex": 6336, + "totalBlockingTime": 513, + "maxPotentialFID": 318, + "cumulativeLayoutShift": 0.08643709585401746, + "cumulativeLayoutShiftMainFrame": 0.08643709585401746, + "totalCumulativeLayoutShift": 0.10711618359883626, "observedTimeOrigin": 0, - "observedTimeOriginTs": 483789047, + "observedTimeOriginTs": 372568460, "observedNavigationStart": 0, - "observedNavigationStartTs": 483789047, - "observedFirstPaint": 578, - "observedFirstPaintTs": 484367322, - "observedFirstContentfulPaint": 578, - "observedFirstContentfulPaintTs": 484367322, - "observedFirstContentfulPaintAllFrames": 578, - "observedFirstContentfulPaintAllFramesTs": 484367322, - "observedFirstMeaningfulPaint": 1297, - "observedFirstMeaningfulPaintTs": 485085765, - "observedLargestContentfulPaint": 1297, - "observedLargestContentfulPaintTs": 485085765, - "observedLargestContentfulPaintAllFrames": 1297, - "observedLargestContentfulPaintAllFramesTs": 485085765, - "observedTraceEnd": 3827, - "observedTraceEndTs": 487615861, - "observedLoad": 1176, - "observedLoadTs": 484965312, - "observedDomContentLoaded": 575, - "observedDomContentLoadedTs": 484363669, - "observedCumulativeLayoutShift": 0.019755384657118055, - "observedCumulativeLayoutShiftMainFrame": 0.019755384657118055, - "observedTotalCumulativeLayoutShift": 0.019755384657118055, - "observedFirstVisualChange": 958, - "observedFirstVisualChangeTs": 484747047, - "observedLastVisualChange": 1391, - "observedLastVisualChangeTs": 485180047, - "observedSpeedIndex": 1328, - "observedSpeedIndexTs": 485117095 + "observedNavigationStartTs": 372568460, + "observedFirstPaint": 1324, + "observedFirstPaintTs": 373892327, + "observedFirstContentfulPaint": 1324, + "observedFirstContentfulPaintTs": 373892327, + "observedFirstContentfulPaintAllFrames": 1324, + "observedFirstContentfulPaintAllFramesTs": 373892327, + "observedFirstMeaningfulPaint": 3534, + "observedFirstMeaningfulPaintTs": 376102171, + "observedLargestContentfulPaint": 1887, + "observedLargestContentfulPaintTs": 374455703, + "observedLargestContentfulPaintAllFrames": 1887, + "observedLargestContentfulPaintAllFramesTs": 374455703, + "observedTraceEnd": 6345, + "observedTraceEndTs": 378913701, + "observedLoad": 3886, + "observedLoadTs": 376454535, + "observedDomContentLoaded": 2508, + "observedDomContentLoadedTs": 375076956, + "observedCumulativeLayoutShift": 0.08643709585401746, + "observedCumulativeLayoutShiftMainFrame": 0.08643709585401746, + "observedTotalCumulativeLayoutShift": 0.10711618359883626, + "observedFirstVisualChange": 1333, + "observedFirstVisualChangeTs": 373901460, + "observedLastVisualChange": 3899, + "observedLastVisualChangeTs": 376467460, + "observedSpeedIndex": 2494, + "observedSpeedIndexTs": 375062830 }, { "lcpInvalidated": false @@ -145567,23 +137364,23 @@ "type": "debugdata", "items": [ { - "numRequests": 65, - "numScripts": 38, - "numStylesheets": 3, - "numFonts": 3, - "numTasks": 19, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 83.567, - "throughput": 17776517.31216139, - "maxRtt": 85.00099999999999, - "maxServerLatency": 11.930000000000007, - "totalByteWeight": 833652, - "totalTaskTime": 3542.2920000000004, - "mainDocumentTransferSize": 4651 + "numRequests": 63, + "numScripts": 14, + "numStylesheets": 5, + "numFonts": 4, + "numTasks": 1515, + "numTasksOver10ms": 10, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 8.63, + "throughput": 8010440.813952143, + "maxRtt": 142.44, + "maxServerLatency": 69.58900000000001, + "totalByteWeight": 1580998, + "totalTaskTime": 502.8609999999991, + "mainDocumentTransferSize": 42953 } ] } @@ -145593,86 +137390,89 @@ ], "screenshot": true, "stats": { - "grade": "F" + "grade": "A" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://mediature.incubateur.net/accessibilite" + "declarationUrl": "https://www.francetravail.fr/informations/aide-et-accessibilite.html" }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://mediature.incubateur.net/mentions-legales" + "missingTrackers": [] }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://mediature.incubateur.net/politique-de-confidentialite" + "missingTrackers": [] } ], "betagouv": { - "id": "mediature", + "id": "mes-evenements-emploi", "type": "startup", "attributes": { - "name": "Médiature", - "pitch": "Améliorer le suivi des demandes adressées par les citoyens aux médiateurs des collectivités territoriales.", - "stats_url": "", - "link": "https://www.mediateur-public.fr/", - "repository": "https://github.com/inclusion-numerique/mediature", - "contact": "contactincubateur@anct.gouv.fr", - "content_url_encoded_markdown": "M%C3%A9diature%20%3A%20am%C3%A9liorer%20le%20suivi%20des%20demandes%20adress%C3%A9es%20par%20les%20citoyens%20aux%20m%C3%A9diateurs%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AUNE%20INVESTIGATION%20LOCALE%2A%2A%0A%0ADans%20le%20cadre%20du%20PNI%20%28Programme%20National%20d%27Investigations%29%2C%20le%20M%C3%A9diateur%20du%20D%C3%A9partement%20de%20la%20Seine%20Saint-Denis%20%2893%29%20a%20souhait%C3%A9%20investiguer%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20son%20%C3%A9quipe.%0A%0A%2A%2ALA%20PROBLEMATIQUE%20USAGER%20EN%20SEINE%20SAINT-DENIS%2A%2A%0A%0ALa%20m%C3%A9diature%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20en%202019%20dans%20le%20cadre%20de%20la%20d%C3%A9marche%20usagers%20du%20d%C3%A9partement%20pour%20g%C3%A9rer%20les%20r%C3%A9clamations%20qui%20n%E2%80%99aboutissent%20pas%20dans%20des%20d%C3%A9lais%20sup%C3%A9rieurs%20%C3%A0%202%20mois.%20L%E2%80%99an%20pass%C3%A9%20sur%20180%C2%A0000%20courriers%20adress%C3%A9s%20aux%20services%20centraux%2C%203%20000%20%C3%A9taient%20des%20r%C3%A9clamations%20et%20demandes%20suivies.%20En%202021%2C%20600%20r%C3%A9clamations%20ont%20ainsi%20%C3%A9t%C3%A9%20trait%C3%A9es%20par%20la%20m%C3%A9diature.%C2%A0%0A%0ALe%20traitement%20r%C3%A9alis%C3%A9%20par%20la%20m%C3%A9diature%20n%E2%80%99est%20pas%20automatis%C3%A9%20et%20le%20suivi%20est%20assur%C3%A9%20sur%20des%20tableaux%20excel.%20Alors%20que%20le%20volume%20des%20r%C3%A9clamations%20est%20important%20et%20en%20forte%20croissance%2C%20le%20m%C3%A9diateur%20identifie%20trois%20risques%20%3A%0A%0A%2A%20Baisse%20de%20la%20qualit%C3%A9%20des%20traitements%20des%20demandes%2C%20donc%20perte%20de%20confiance%20des%20usagers%0A%2A%20Impossibilit%C3%A9%20de%20prendre%20en%20charge%20une%20part%20de%20plus%20en%20plus%20importante%20de%20demandes%0A%2A%20Recours%20judiciaires%C2%A0%0A%0A%2A%2AL%E2%80%99INVESTIGATION%20TERRAIN%2A%2A%C2%A0%0A%0ALes%20usagers%20finaux%20sont%20aujourd%E2%80%99hui%20tr%C3%A8s%20satisfaits%20du%20traitement%20de%20leurs%20demandes%2C%20mais%20ils%20n%E2%80%99ont%20pas%20d%E2%80%99outil%20mis%20%C3%A0%20leur%20disposition%20pour%20suivre%20leur%20dossier%20%C3%A0%20tout%20moment.%20Les%20membres%20de%20l%27%C3%A9quipe%20de%20m%C3%A9diature%20confirment%20les%20difficult%C3%A9s%20de%20suivi%20des%20dossiers%20avec%20les%20outils%20utilis%C3%A9s%20aujourd%E2%80%99hui.%20Pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20et%20ne%20pas%20d%C3%A9grader%20le%20service%20rendu%2C%20la%20piste%20de%20l%E2%80%99automatisation%20des%20r%C3%A9clamations%20est%20valid%C3%A9e.%0A%0A%2A%2ALa%20solution%20envisag%C3%A9e%2A%2A%20%3A%20d%C3%A9velopper%20un%20outil%20num%C3%A9rique%20simple%20et%20visuel%20permettant%20de%20suivre%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20des%20demandes%20de%20chaque%20usager.%C2%A0%0A%0APar%20ailleurs%2C%20l%27%5BAssociation%20des%20M%C3%A9diateurs%20des%20Collectivit%C3%A9s%20Territoriales%20%28AMCT%29%5D%28https%3A%2F%2Fwww.amct-mediation.fr%2F%29%2C%20qui%20f%C3%A9d%C3%A8re%20les%20services%20de%20m%C3%A9diation%20des%20collectivit%C3%A9s%20territoriales%2C%20identifie%20des%20difficult%C3%A9s%20similaires%20dans%20de%20nombreux%20services%20de%20m%C3%A9diature.%20L%27AMCT%20manifeste%20son%20soutien%20%C3%A0%20la%20d%C3%A9marche%20et%20son%20int%C3%A9r%C3%AAt%20pour%20promouvoir%20l%27usage%20de%20la%20solution%20envisag%C3%A9e%20dans%20les%20collectivit%C3%A9s%20adh%C3%A9rentes%20%C3%A0%20l%27association%2C%20sur%20tout%20le%20territoire.%0A%0A%2A%2AL%E2%80%99EXPERIMENTATION%2A%2A%0A%0AUn%20prototype%20de%20service%20num%C3%A9rique%20est%20en%20cours%20de%20construction%20avec%20le%20service%20de%20m%C3%A9diature%20du%20Conseil%20d%C3%A9partemental%20de%20la%20Seine%20Saint-Denis%20afin%20d%27en%20tester%20l%27impact.%20Le%20prototype%20sera%20par%20la%20suite%20test%C3%A9%20par%20quelques%20services%20de%20m%C3%A9diature%20volontaires%2C%20membres%20de%20l%27AMCT%2C%20avant%20une%20%C3%A9ventuelle%20g%C3%A9n%C3%A9ralisation.", - "events": [], + "name": "Mes événements emploi", + "pitch": "Promouvoir l’ensemble des événements de l’emploi (job dating, conférence, atelier..) auprès des candidats et leur permettre de s’inscrire en ligne en vue de faciliter leur retour à l’emploi", + "stats_url": "https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/stats", + "link": "https://mesevenementsemploi.pole-emploi.fr", + "contact": "deudmesevenementsemploi.00589@pole-emploi.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ALes%20candidats%2C%20par%20manque%20de%20visibilit%C3%A9%20et%20de%20lisibilit%C3%A9%20%28multitude%C2%A0de%20supports%20et%20de%C2%A0communication%20des%C2%A0%C3%A9v%C3%A9nements%E2%80%8B%29%2C%C2%A0ratent%20des%20opportunit%C3%A9s%20de%20s%E2%80%99informer%2C%20se%20pr%C3%A9parer%2C%20se%20former%20et%20d%E2%80%99%C3%AAtre%20recrut%C3%A9s.%20Les%20%C3%A9v%C3%A9nements%C2%A0organis%C3%A9s%C2%A0par%20les%C2%A0agences%C2%A0P%C3%B4le%C2%A0emploi%C2%A0avec%C2%A0leurs%C2%A0partenaires%C2%A0sont%20peu%C2%A0visibles%C2%A0des%C2%A0candidats.%E2%80%8B%0A%0APour%20les%20conseillers%20organisateurs%20d%E2%80%99un%20%C3%A9v%C3%A9nement%2C%20la%20gestion%20de%20ce%20dernier%20est%20chronophage%C2%A0%28cr%C3%A9ation%2C%C2%A0suivi%2C%20relances%2C%20pilotage%29%C2%A0et%20il%20est%20difficile%20de%C2%A0trouver%C2%A0des%C2%A0candidats%C2%A0pertinents%C2%A0selon%C2%A0des%C2%A0pr%C3%A9-requis%C2%A0identifi%C3%A9s%E2%80%8B%0A%0A%23%23%20Produit%0A%0AMes%20%C3%A9v%C3%A9nements%20emploi%20est%20une%20solution%20num%C3%A9rique%20qui%20permet%20%C3%A0%20tous%20les%20candidats%20et%20partenaires%20de%20l%27emploi%20d%27acc%C3%A9der%20%C3%A0%20l%27ensemble%20des%20%C3%A9v%C3%A9nements%20organis%C3%A9s%20par%20P%C3%B4le%20emploi%20adapt%C3%A9s%C2%A0%C3%A0%20leurs%20crit%C3%A8res%C2%A0de%C2%A0recherche.%0A%0AA%20tout%20moment%2C%2024h%2F24h%2C%207j%2F7j%2C%20un%20candidat%20peut%20rechercher%20et%20s%27inscrire%20en%20ligne%C2%A0aux%C2%A0%C3%A9v%C3%A9nements%20adapt%C3%A9s%20%C3%A0%20ses%20crit%C3%A8res%20de%20recherche%2C%20dans%20l%E2%80%99objectif%20de%20trouver%20un%20emploi%2C%C2%A0d%E2%80%99acc%C3%A9der%20%C3%A0%20une%20formation%2C%C2%A0se%20pr%C3%A9parer%20%C3%A0%20un%20%C3%A9v%C3%A9nement%20de%20recrutement%2C%20obtenir%C2%A0des%20conseils%20pour%20leur%20projet%20%28mobilit%C3%A9%20professionnelle%20ou%20g%C3%A9ographique%2C%C2%A0cr%C3%A9ation%20ou%20reprise%20d%27entreprise%2C%C2%A0aides%20%C3%A0%20l%27emploi...%29%E2%80%8B.%0A%0APour%20les%20conseillers%2C%20ce%20site%20permet%20d%27am%C3%A9liorer%C2%A0la%C2%A0visibilit%C3%A9%C2%A0des%C2%A0%C3%A9v%C3%A9nements%C2%A0organis%C3%A9s%C2%A0par%20les%C2%A0agences%2C%C2%A0partager%C2%A0les%C2%A0%C3%A9v%C3%A9nements%C2%A0en%C2%A0interne%20et%C2%A0en%C2%A0externe%C2%A0sur%20tout%20le%C2%A0territoire%2C%C2%A0faciliter%C2%A0la%C2%A0recherche%20de%C2%A0profils%C2%A0en%C2%A0ad%C3%A9quation%C2%A0aux%C2%A0%C3%A9v%C3%A9nements%C2%A0et%C2%A0diminuer%C2%A0la%20charge%C2%A0administrative%20de%20la%20gestion%20d%27un%C2%A0%C3%A9v%C3%A9nement.%E2%80%8B%0A%0ALe%20produit%20est%20en%20phase%20d%27acc%C3%A9l%C3%A9ration%20et%20depuis%20janvier%202023%2C%20toutes%20les%20r%C3%A9gions%20fran%C3%A7aises%20sont%20visibles%20sur%20le%20site.%0A", + "events": [ + { + "name": "product_launch", + "date": "2021-01-07", + "comment": "La première version du site est ouverte aux Demandeurs d'Emploi bénéficiaires de l'Allocation de Solidarité Spécifique." + }, + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 300000€ pour la promotion 14" + } + ], "phases": [ { "name": "investigation", - "start": "2021-06-01", - "end": "" + "start": "2020-09-01", + "end": "2020-10-30" }, { "name": "construction", - "start": "2021-11-01", - "end": "" - }, - { - "name": "success", - "start": "2023-06-30", - "end": "" + "start": "2020-11-01", + "end": "2021-03-08" }, { - "name": "alumni", - "start": "2024-06-05", + "name": "acceleration", + "start": "2021-11-01", "end": "" } ], "sponsors": [ - "anct" + "francetravail" ], "thematiques": [ - "Collectivités", - "Social" + "Travail / Emploi" ], + "dashlord_url": "http://dashlord.incubateur.net/url/mesevenementsemploi-pole-emploi-fr", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "anct" + "id": "francetravail" } } } @@ -145681,129 +137481,207 @@ { "width": 1920, "height": 1080, - "url": "https://mediature.incubateur.net", - "size": 988.125, - "nodes": 211, - "requests": 71, - "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, + "url": "https://mesevenementsemploi.pole-emploi.fr", + "size": 2389.403, + "nodes": 556, + "requests": 63, + "grade": "D", + "score": 52, + "ges": 1.96, + "water": 2.94, "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:27:47.932877", + "date": "2024-12-01 05:48:11.476340", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "B+", - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "D", + "apdex": 0.983, + "apdexGrade": "B", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-09T14:33:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.86, - "lighthouse_performanceGrade": "A", + "testsslExpireDate": "2025-04-22T13:07:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "E", + "cookiesCount": 8, + "trackersGrade": "F", + "trackersCount": 58, + "lighthouse_performance": 0.47, + "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "A" + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "D", + "dsfrGrade": "F" } }, { "404": null, - "url": "https://mesevenementsemploi.pole-emploi.fr", - "category": "pole-emploi", - "betaId": "mes-evenements-emploi", - "tools": { - "nmap": false - }, + "url": "https://mobilic.beta.gouv.fr", + "category": "mtes", + "betaId": "mobilic", "http": { - "url": "https://mesevenementsemploi.pole-emploi.fr", + "url": "https://mobilic.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:56:07 GMT", - "grade": "D", + "end_time": "Sun, 20 Oct 2024 04:57:40 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { + "Accept-Ranges": "bytes", + "Age": "0", + "Cache-Control": "no-cache; max-age=0", + "Connection": "keep-alive", "Content-Encoding": "gzip", + "Content-Security-Policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.beta.gouv.fr https://client.axept.io/ https://api.axept.io https://google.com; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.beta.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://www.google.com 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.beta.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net https://www.googleadservices.com; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 04:56:05 GMT", - "Etag": "W/\"33763-bjaMI0djX/ZO49OF8t9QixGonZI\"", - "Set-Cookie": "TS0108a62c=01b3abf0a247579f73a0c4e3c6adffc3191a23ada27d58c1a91422a830f61cab8e466949ec5af64d940cc9541675129d73c8e874e1; Path=/; Domain=.mesevenementsemploi.francetravail.fr; Secure; HttpOnly; ", + "Date": "Sun, 20 Oct 2024 04:57:39 GMT", + "ETag": "W/\"66fd2974-c6f\"", + "Last-Modified": "Wed, 02 Oct 2024 11:07:32 GMT", + "Referrer-Policy": "origin-when-cross-origin", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff'" + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "deny", + "X-Request-ID": "a690955220a2e61d0a9cde6cbcf212b3", + "X-Varnish": "257863115", + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 57050920, - "score": 30, - "start_time": "Sun, 20 Oct 2024 04:56:02 GMT", + "scan_id": 57050960, + "score": 75, + "start_time": "Sun, 20 Oct 2024 04:57:38 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://stats.beta.gouv.fr", + "wss://client.relay.crisp.chat", + "'self'", + "https://client.crisp.chat", + "https://api-adresse.data.gouv.fr", + "https://sentry.incubateur.net", + "https://google.com", + "https://client.axept.io/", + "https://api.axept.io" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://cdn.jsdelivr.net", + "https://client.crisp.chat", + "'self'" + ], + "frame-src": [ + "https://fr.slideshare.net", + "https://cgu.mobilic.beta.gouv.fr", + "https://bid.g.doubleclick.net/", + "https://metabase.mobilic.beta.gouv.fr", + "https://form.typeform.com", + "https://player.vimeo.com", + "https://www.slideshare.net" + ], + "img-src": [ + "https://stats.beta.gouv.fr", + "https://images.unsplash.com", + "https://www.google.fr/", + "https://favicons.axept.io", + "'self'", + "data:", + "https://client.crisp.chat", + "https://res.cloudinary.com", + "https://image.crisp.chat", + "https://t1.gstatic.com", + "https://www.google.com/", + "https://googleads.g.doubleclick.net", + "https://axeptio.imgix.net", + "https://www.googleadservices.com" + ], + "object-src": [ + "'self'" + ], + "script-src": [ + "https://stats.beta.gouv.fr", + "'unsafe-inline'", + "'self'", + "https://www.googleadservices.com/", + "https://client.crisp.chat", + "'unsafe-eval'", + "https://static.axept.io/", + "https://googleads.g.doubleclick.net", + "https://www.google.com", + "https://www.googletagmanager.com/" + ], + "style-src": [ + "'unsafe-inline'", + "https://client.crisp.chat", + "https://cdn.jsdelivr.net", + "'self'" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "TS0108a62c": { - "domain": ".mesevenementsemploi.francetravail.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - } - }, - "sameSite": false + "data": null, + "sameSite": null }, "pass": true, - "result": "cookies-secure-with-httponly-sessions", - "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", + "result": "cookies-not-found", + "score_description": "No cookies detected", "score_modifier": 0 }, "cross-origin-resource-sharing": { @@ -145825,13 +137703,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/", + "destination": "https://mobilic.beta.gouv.fr/", "redirects": true, "route": [ - "http://mesevenementsemploi.pole-emploi.fr/", - "https://mesevenementsemploi.pole-emploi.fr/", - "https://mesevenementsemploi.francetravail.fr/", - "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/" + "http://mobilic.beta.gouv.fr/", + "https://mobilic.beta.gouv.fr/" ], "status_code": 200 }, @@ -145844,29 +137720,29 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "origin-when-cross-origin", + "http": true, "meta": false }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "pass": false, + "result": "referrer-policy-unsafe", + "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", + "score_modifier": -5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -145883,101 +137759,99 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff'" + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-header-invalid", - "score_description": "X-Content-Type-Options header cannot be recognized", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "deny" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "u8e3", - "url": "https://mesevenementsemploi.pole-emploi.fr", + "token": "okwz", + "url": "https://mobilic.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.956, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T05:40:02Z", + "up_since": "2024-12-01T04:26:26Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T05:45:01Z", - "next_check_at": "2024-11-24T05:46:00Z", - "created_at": "2024-01-15T13:37:42Z", + "last_check_at": "2024-12-01T06:05:58Z", + "next_check_at": "2024-12-01T06:10:57Z", + "created_at": "2021-04-22T19:59:33Z", "mute_until": null, - "favicon_url": null, + "favicon_url": "https://mobilic.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T05:44:02Z", - "expires_at": "2025-04-22T13:07:23Z", + "tested_at": "2024-12-01T05:31:08Z", + "expires_at": "2024-12-17T12:45:53Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.973, + "apdex": 1, "timings": { - "redirect": 863, - "namelookup": 0, - "connection": 127, - "handshake": 130, - "response": 445, - "total": 1565 + "redirect": 0, + "namelookup": 127, + "connection": 85, + "handshake": 90, + "response": 108, + "total": 410 } }, "uptimeGrade": "A", - "apdexGrade": "C" + "apdexGrade": "A" }, "nmap": { - "host": "mesevenementsemploi.pole-emploi.fr", + "host": "mobilic.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ { "service": { - "name": "http-proxy", - "product": "F5 BIG-IP load balancer http proxy", + "name": "http", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http-proxy", - "product": "F5 BIG-IP load balancer http proxy", + "name": "https", "id": "443", "vulnerabilities": [] } @@ -145990,70 +137864,77 @@ "testssl": [ { "id": "service", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -146061,7 +137942,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -146069,7 +137950,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -146077,7 +137958,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -146085,7 +137966,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -146093,484 +137974,498 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "127C20BC34127578CD04D1337A034621" + "finding": "03C9563B4D10C9E0FD00FABA9674C0555A5D" }, { "id": "cert_serialNumberLen", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "3CE32E22EF250CFE51CC2065AF97864776286CFF" + "finding": "063A9032A9F7856CC106CFBB906842B33243E22F" }, { "id": "cert_fingerprintSHA256", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "0EE11D6F268B86B3764C526E3B3E01E9038B00791E25EC88F5251F903DFFED96" + "finding": "51EDDF86D7069DE77A2317C5417E159F1925967013B8F542C92A99F8877EA08C" }, { "id": "cert", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", - "finding": "mesevenementsemploi.pole-emploi.fr" + "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "mesevenementsemploi.pole-emploi.fr" + "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "mesevenementsemploi.pole-emploi.fr www.mesevenementsemploi.pole-emploi.fr" + "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", - "finding": "149 >= 60 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (16)" }, { "id": "cert_notBefore", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "2024-04-22 13:07" + "finding": "2024-09-18 12:45" }, { "id": "cert_notAfter", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", - "finding": "2025-04-22 13:07" + "severity": "MEDIUM", + "finding": "2024-12-17 12:45" }, { "id": "cert_extlifeSpan", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "http://crl.entrust.net/level1m.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "http://ocsp.entrust.net" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "2014-12-15 15:25" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", - "finding": "2030-10-15 15:55" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "intermediate_cert_badOCSP", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HTTP_status_code", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HTTP_clock_skew", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "2009-07-07 17:25" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_notAfter <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HTTP_headerTime", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", - "finding": "2030-12-07 17:55" + "severity": "INFO", + "finding": "1733033253" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HSTS_time", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", - "finding": "ok > 40 days" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HSTS_subdomains", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" + "finding": "only for this domain" }, { - "id": "intermediate_cert_badOCSP", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HSTS_preload", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { - "id": "HTTP_status_code", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "HPKP", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "HTTP_clock_skew", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "banner_server", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "Got no HTTP time, maybe try different URL?" + "finding": "No Server banner line in header, interesting!" }, { - "id": "HSTS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "banner_application", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "INFO", + "finding": "No application banner found" }, { - "id": "HPKP", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "cookie_count", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "0 at '/'" }, { - "id": "banner_server", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "X-Frame-Options", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "INFO", - "finding": "BigIP" + "severity": "OK", + "finding": "DENY" }, { - "id": "banner_application", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "X-Content-Type-Options", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "1; mode=block" }, { - "id": "cookie_count", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "Referrer-Policy", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "no-referrer" }, { - "id": "security_headers", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "id": "Cache-Control", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -146578,7 +138473,7 @@ }, { "id": "heartbleed", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -146587,7 +138482,7 @@ }, { "id": "CCS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -146596,7 +138491,7 @@ }, { "id": "ticketbleed", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -146605,7 +138500,7 @@ }, { "id": "ROBOT", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -146614,7 +138509,7 @@ }, { "id": "secure_renego", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -146622,16 +138517,16 @@ }, { "id": "secure_client_renego", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable, mitigated" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -146640,16 +138535,16 @@ }, { "id": "BREACH", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -146658,14 +138553,14 @@ }, { "id": "fallback_SCSV", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -146674,7 +138569,7 @@ }, { "id": "FREAK", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -146683,7 +138578,7 @@ }, { "id": "DROWN", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -146692,16 +138587,16 @@ }, { "id": "DROWN_hint", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0EE11D6F268B86B3764C526E3B3E01E9038B00791E25EC88F5251F903DFFED96" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=51EDDF86D7069DE77A2317C5417E159F1925967013B8F542C92A99F8877EA08C" }, { "id": "LOGJAM", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -146710,16 +138605,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -146728,16 +138623,16 @@ }, { "id": "LUCKY13", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -146746,7 +138641,7 @@ }, { "id": "RC4", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -146755,687 +138650,578 @@ }, { "id": "clientsimulation-android_60", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", + "ip": "mobilic.beta.gouv.fr/185.231.164.121", "port": "443", "severity": "INFO", - "finding": "105" + "finding": "55" } ], "thirdparties": { "trackers": [ - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/" - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Poppins:wght@400;500;700&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, { "type": "google fonts", - "url": "https://fonts.googleapis.com/icon?family=Material+Icons&display=block", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", "details": { "id": "google fonts", "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/styles.a74ef041bd416039.css" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo-marianne.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/mes-evenements_FT.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/banner_remove.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/background_group_smaller.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo_fonds_social_europeen.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo_FT_footer.png" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/img/logo-ue.svg" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/runtime.0d68ed71d8146577.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/polyfills.150173942ec73fd8.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/main.f548959851529dab.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/banniere-appmobile.8e529fedf5780027.png" - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2", + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "jsdelivr", + "message": "Host files locally" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXw.woff2", + "type": "crisp", + "url": "https://client.crisp.chat/l.js", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2", + "type": "vimeo", + "url": "https://player.vimeo.com/video/873641091?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "vimeo", + "message": "use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2", + "type": "vimeo", + "url": "https://player.vimeo.com/video/873641124?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "vimeo", + "message": "use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXw.woff2", + "type": "vimeo", + "url": "https://player.vimeo.com/video/873642814?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "vimeo", + "message": "use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2", + "type": "vimeo", + "url": "https://player.vimeo.com/video/873642901?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "vimeo", + "message": "use peertube" } }, { - "type": "unknown", - "url": "https://cdn.tagcommander.com/5894/uat/tc_peAction_31.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/175.f2dcded50c4a1f6f.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/631.d64d3ce7a22f37a0.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/850.cf67ef952f82bc78.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/common.e348ad8947fd6579.js" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/605.28313a86266cda34.js" - }, - { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "type": "vimeo", + "url": "https://player.vimeo.com/video/873642970?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" + "id": "vimeo", + "message": "use peertube" } }, { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=m3v6a7s2tzx6cynl" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/assets/json/content.json" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OPERA" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/TYPEV" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OBJEC" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/romedomaine/granddomaine" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/prerequis/all/DIPLO-CANDIDAT" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OBJEC" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/CARAC" - }, - { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/TYPEV" + "type": "vimeo", + "url": "https://player.vimeo.com/video/873642767?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", + "details": { + "id": "vimeo", + "message": "use peertube" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/modaliteAcces/all" + "type": "vimeo", + "url": "https://player.vimeo.com/video/873642861?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", + "details": { + "id": "vimeo", + "message": "use peertube" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/tag/tags/type/OPERA" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/turnstile/v0/api.js?onload=turnstileLoad", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/organisateur/all" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/turnstile/v0/api.js?onload=turnstileLoad", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/Vector.a11b3f93efa800af.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/turnstile/v0/b/a6e12e96a2d5/api.js", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/filters.32d182a7523b3a21.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/turnstile/v0/b/a6e12e96a2d5/api.js", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=5894" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jsno8/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=m3v6a7s2tzx6cynl" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/bjjb4/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/all/filtered" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/0hldg/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/ex089-versunmetier-rest/mee/v1/de/evenement/count/all/" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/ym96t/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/h3qpz/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-left-black.25154615a36c9baf.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/u8gd2/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-right-black.828a2a03d9e3b37c.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/vilel/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/profil-multi.7fe3e156556e0cc1.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/tnbjb/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/pinmap-location.7b68cfdd37432e14.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/lbn9s/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/presentiel.cf81fbe5d0c09c77.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/h5gi6/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/circle-arrow-right_violet.751425cad70d083d.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/w6ynl/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "unknown", - "url": "https://mesevenementsemploi.francetravail.fr/en-ligne.b439ff6d7d2a00d1.svg" + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/fzyrj/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/1lxb0/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "cloudflare", + "message": "Host files locally" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j34mb/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "cloudflare", + "message": "Host files locally" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/kVL2t161R37ZZrj_/jsno8/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "cloudflare", + "message": "Host files locally" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", + "type": "cloudflare", + "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv1/kVL2t161R37ZZrj_/bjjb4/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "cloudflare", + "message": "Host files locally" } } ], "cookies": [ { - "name": "TS0108a62c", - "value": "01b3abf0a21eae6aa15b82cfaebfb84876e7000859c74891d78d4afed0c813499f9b07e78fe8e04c95c261c9bebf13eeeea7ec32499ec3fa5df3103177f85adccf9c7dce69ff3c0d7ec6a39ea9ebef1f8dd47c233150bcf9cebcd7be83772ac13504721193c741526e98f9485937d4f7151645a90764ce760e97a0f8eb81d13d18b85fdd8e63cc70ba067c2c3040de3a72b07d6db1", - "domain": ".mesevenementsemploi.francetravail.fr", - "path": "/", - "expires": -1, - "size": 308, - "httpOnly": true, - "secure": true, - "session": true, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "ADRUM_BT1", - "value": "R:67|i:2321410|e:213|t:1732426963810", - "domain": "mesevenementsemploi.francetravail.fr", - "path": "/", - "expires": 1732426995.105098, - "size": 45, - "httpOnly": true, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "ADRUM_BTa", - "value": "R:67|g:1175614a-4e4a-4329-b756-eaa3186f95a1|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", - "domain": "mesevenementsemploi.francetravail.fr", - "path": "/", - "expires": 1732426995.105041, - "size": 103, - "httpOnly": true, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "TCPID", - "value": "124110542432149255719", - "domain": ".francetravail.fr", + "name": "_pk_ses.75.5533", + "value": "1", + "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1766382163, - "size": 26, + "expires": 1733034965, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -147445,43 +139231,14 @@ "sourcePort": 443 }, { - "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAFaDUAdgAOAFgDGIAL5A", - "domain": ".francetravail.fr", - "path": "/", - "expires": 1766554962, - "size": 96, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "SameSite", - "value": "None", - "domain": "mesevenementsemploi.francetravail.fr", - "path": "/", - "expires": 1732426995.105057, - "size": 12, - "httpOnly": true, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pcid", - "value": "%7B%22browserId%22%3A%22m3v6a7s2tzx6cynl%22%2C%22_t%22%3A%22mjjl7p4a%22%7D", - "domain": ".francetravail.fr", + "name": "_pk_id.75.5533", + "value": "c0768a1d29a49a26.1733033166.", + "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1766554962, - "size": 79, + "expires": 1766988366, + "size": 42, "httpOnly": false, - "secure": true, + "secure": false, "session": false, "sameSite": "Lax", "sameParty": false, @@ -147489,137 +139246,45 @@ "sourcePort": 443 }, { - "name": "pa_privacy", - "value": "%22exempt%22", - "domain": ".francetravail.fr", + "name": "bln_challengejs", + "value": "g8AAHoKTAi8g5SQQ75eb1VXJtnmotVJ4UMaXOlbXKGr58OyjsrvYqLcJ_IPG13DL7_SrTIJuskXXwYVM40O-1CnZQuFoccJmxSmfJTVOfeFyOt4fsJDv1jnOJewVBQ1qTMVp5KzjuOrbIw6rDf-GG51tmJEWgreiVrQH_ui2vUW5m1V6o4nK2O4EpOp_wai1WsAV2WlYN_iD90UFa5Wzi67r9YaG06296yY0OeHWbq3KUlbsLt7hD24wUIYAdPtpIdE8yTuYNcuMQ7E4CY8E7V9B5HurKmISFHhA4KBeQhg", + "domain": ".beta.gouv.fr", "path": "/", - "expires": 1766554962, - "size": 22, + "expires": 1733034064.283367, + "size": 314, "httpOnly": false, "secure": true, "session": false, - "sameSite": "Lax", + "sameSite": "None", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { + "accept-ranges": "bytes", + "age": "0", + "cache-control": "max-age=0", "content-encoding": "gzip", + "content-security-policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.beta.gouv.fr https://client.axept.io/ https://api.axept.io https://google.com; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.beta.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://www.google.com 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.beta.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net https://www.googleadservices.com https://beta.gouv.fr; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 05:42:40 GMT", - "etag": "W/\"33763-dEi9TVW+CmLPgViIAWqAbT8nxzQ\"", - "set-cookie": "TS0108a62c=01b3abf0a288643ea3b30b99a508fbdc586b5f9ed1c74891d78d4afed0c813499f9b07e78fc402e4e153a0e7929623b40b48bc67de; Path=/; Domain=.mesevenementsemploi.francetravail.fr; Secure; HttpOnly;", - "transfer-encoding": "chunked", + "date": "Sun, 01 Dec 2024 06:06:04 GMT", + "etag": "W/\"674637e8-cf8\"", + "last-modified": "Tue, 26 Nov 2024 21:04:40 GMT", + "referrer-policy": "origin-when-cross-origin", + "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Accept-Encoding", - "x-content-type-options": "nosniff'" + "x-content-type-options": "nosniff", + "x-frame-options": "deny", + "x-request-id": "4c16329ec885f4f3d1bda355a9d5dc4f", + "x-varnish": "276247239", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "mesevenementsemploi.pole-emploi.fr", - "ip": "185.215.64.42", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - }, - { - "hostname": "mesevenementsemploi.francetravail.fr", - "ip": "185.215.64.92", + "hostname": "mobilic.beta.gouv.fr", + "ip": "185.231.164.121", "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -147650,14 +139315,11 @@ } }, "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "95360" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -147672,42 +139334,12 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] + } } }, { "hostname": "fonts.googleapis.com", - "ip": "172.217.12.106", + "ip": "172.253.63.95", "geoip": { "continent": { "code": "NA", @@ -147760,9 +139392,22 @@ } }, { - "hostname": "fonts.gstatic.com", - "ip": "142.251.214.131", + "hostname": "cdn.jsdelivr.net", + "ip": "146.75.29.229", "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -147792,10 +139437,14 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" }, "registered_country": { "geoname_id": 6252001, @@ -147810,47 +139459,29 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] } }, { - "hostname": "cdn.tagcommander.com", - "ip": "192.229.163.55", + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -147864,56 +139495,14 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "de": "Texas", - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "pt-BR": "Texas", - "ru": "Техас", - "zh-CN": "得克萨斯州" - } - } - ] + } } }, { - "hostname": "tag.aticdn.net", - "ip": "65.8.161.43", + "hostname": "player.vimeo.com", + "ip": "162.159.138.60", "geoip": { - "city": { - "geoname_id": 5511077, - "names": { - "de": "Reno", - "en": "Reno", - "es": "Reno", - "fr": "Reno", - "ja": "リノ", - "pt-BR": "Reno", - "ru": "Рино" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { + "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { @@ -147926,17 +139515,13 @@ "ru": "США", "zh-CN": "美国" } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.3714, - "longitude": -119.6855, - "metro_code": 811, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "89521" - }, + } + } + }, + { + "hostname": "challenges.cloudflare.com", + "ip": "104.18.94.41", + "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -147950,1007 +139535,1941 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5509151, - "iso_code": "NV", - "names": { - "de": "Nevada", - "en": "Nevada", - "es": "Nevada", - "fr": "Nevada", - "ja": "ネバダ州", - "pt-BR": "Nevada", - "ru": "Невада", - "zh-CN": "内华达州" - } - } - ] + } } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mobilic.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true }, { - "hostname": "hd.pe.fr", - "ip": "18.173.121.33", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mobilic.beta.gouv.fr/", + "finalUrl": "https://mobilic.beta.gouv.fr/", + "fetchTime": "2024-12-01T06:05:33.415Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.35 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": null + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 1 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 19264, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 14929, + "firstMeaningfulPaint": 15043, + "largestContentfulPaint": 16275, + "interactive": 19264, + "speedIndex": 14929, + "totalBlockingTime": 419, + "maxPotentialFID": 866, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 508186959, + "observedNavigationStart": 0, + "observedNavigationStartTs": 508186959, + "observedFirstPaint": 1287, + "observedFirstPaintTs": 509473519, + "observedFirstContentfulPaint": 1287, + "observedFirstContentfulPaintTs": 509473519, + "observedFirstContentfulPaintAllFrames": 1287, + "observedFirstContentfulPaintAllFramesTs": 509473519, + "observedFirstMeaningfulPaint": 1287, + "observedFirstMeaningfulPaintTs": 509473519, + "observedLargestContentfulPaint": 1429, + "observedLargestContentfulPaintTs": 509616194, + "observedLargestContentfulPaintAllFrames": 1429, + "observedLargestContentfulPaintAllFramesTs": 509616194, + "observedTraceEnd": 4965, + "observedTraceEndTs": 513151749, + "observedLoad": 2608, + "observedLoadTs": 510795077, + "observedDomContentLoaded": 1291, + "observedDomContentLoadedTs": 509477751, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1292, + "observedFirstVisualChangeTs": 509478959, + "observedLastVisualChange": 4309, + "observedLastVisualChangeTs": 512495959, + "observedSpeedIndex": 2049, + "observedSpeedIndexTs": 510235756 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 129, + "numScripts": 49, + "numStylesheets": 14, + "numFonts": 5, + "numTasks": 1939, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 4, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 29575113.821658503, + "maxRtt": 86.55799999999999, + "maxServerLatency": 348.646, + "totalByteWeight": 3491592, + "totalTaskTime": 881.6419999999939, + "mainDocumentTransferSize": 2148 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://mobilic.beta.gouv.fr/accessibility" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mobilic.beta.gouv.fr/legal-notices" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 9, + "score": 6, + "missingWords": [], + "missingTrackers": [ + "googlefonts", + "vimeo", + "cloudflare" + ], + "declarationUrl": "https://mobilic.beta.gouv.fr/donnees-personnelles" + } + ], + "betagouv": { + "id": "mobilic", + "type": "startup", + "attributes": { + "name": "Mobilic", + "pitch": "Lutter contre le travail illégal dans le secteur des transports légers", + "stats_url": "https://mobilic.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#Mobilic", + "link": "https://mobilic.beta.gouv.fr", + "repository": "https://github.com/MTES-MCT/mobilic", + "contact": "contact@mobilic.beta.gouv.fr", + "content_url_encoded_markdown": "Pour%20r%C3%A9pondre%20aux%20exigences%20du%20droit%20du%20travail%2C%20%2A%2Ales%20employeurs%20ont%20l%E2%80%99obligation%20de%20suivre%20le%20temps%20de%20travail%20de%20leurs%20conducteurs%2A%2A.%20Dans%20le%20secteur%20des%20transports%20routiers%2C%20les%20conducteurs%20%C3%A9tant%20mobiles%2C%20le%20d%C3%A9compte%20de%20leur%20temps%20de%20travail%20ne%20peut%20pas%20se%20faire%20au%20si%C3%A8ge%20de%20leur%20entreprise.%20Il%20est%20donc%20fait%20par%20les%20conducteurs%20%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20dispositif%20qu%E2%80%99ils%20emportent%20avec%20eux.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%0ADans%20le%20secteur%20du%20transport%20routier%20l%C3%A9ger%20%28v%C3%A9hicules%20utilitaires%20l%C3%A9gers%20%28VUL%29%20%20de%20moins%20de%203.5%20tonnes%20ou%20de%20moins%20de%209%20places%29%2C%20%2A%2Ale%20respect%20du%20temps%20de%20travail%20des%20personnels%20roulants%20est%20historiquement%20contr%C3%B4l%C3%A9%20au%20moyen%20du%20livret%20individuel%20de%20contr%C3%B4le%20%28LIC%29%2A%2A%20au%20format%20papier%2C%20en%20application%20du%20code%20des%20transports.%0A%0AOr%2C%20ce%20dispositif%20%C3%A9tait%20inutilis%C3%A9%20ou%20contourn%C3%A9%20par%20un%20grand%20nombre%20d%E2%80%99acteurs%2C%20car%20%3A%0A%0A%2A%20%2A%2Apas%20adapt%C3%A9%2A%2A%20%C3%A0%20l%E2%80%99activit%C3%A9%20mobile%20des%20salari%C3%A9s%20%3B%0A%2A%20la%20%2A%2Agestion%20administrative%2A%2A%20de%20ces%20LIC%20est%20co%C3%BBteuse%20et%20chronophage%20pour%20les%20gestionnaires%20d%E2%80%99entreprise%20et%20les%20corps%20de%20contr%C3%B4le%20%3B%0A%2A%20le%20format%20papier%20n%E2%80%99est%20%2A%2Ani%20fiable%20ni%20contr%C3%B4lable%2A%2A%20par%20les%20corps%20de%20contr%C3%B4le.%0A%0AEn%20cons%C3%A9quence%2C%20de%20nombreuses%20entreprises%20n%27utilisent%20pas%20le%20LIC%20ou%20utilisent%20des%20solutions%20de%20contournement%20non%20r%C3%A9glementaires.%0A%0ACette%20non-utilisation%20a%20des%20cons%C3%A9quences%20fortes%20%3A%0A%0A%2A%20%2A%2Atravail%20dissimul%C3%A9%2A%2A%20repr%C3%A9sentant%20jusqu%E2%80%99%C3%A0%2010%25%20des%20salari%C3%A9s%20du%20secteur%20%3B%0A%2A%20%2A%2Afraude%20fiscale%2A%2A%20et%20sociale%20estim%C3%A9e%20%C3%A0%20plusieurs%20centaines%20de%20millions%20d%E2%80%99euros%20chaque%20ann%C3%A9e%20%3B%0A%2A%20enjeux%20de%20%2A%2Asant%C3%A9%20et%20s%C3%A9curit%C3%A9%20routi%C3%A8re%2A%2A%20et%20concurrence%20d%C3%A9loyale%20pour%20les%20entreprises%20vertueuses.%0A%0A%E2%9E%A1%EF%B8%8F%20Un%20rapport%20de%20l%E2%80%99Observatoire%20du%20Travail%20Dissimul%C3%A9%20rapporte%20au%20titre%20de%20l%E2%80%99ann%C3%A9e%202016%20que%2C%20dans%20le%20secteur%20du%20transport%2C%20un%20quart%20des%20%C3%A9tablissements%20contr%C3%B4l%C3%A9s%20est%20en%20situation%20de%20fraude%20ou%20d%27irr%C3%A9gularit%C3%A9.%0A%0ALe%20recours%20aux%20VUL%20explose%20%28%2B6%2C5%25%20d%E2%80%99immatriculations%20en%20France%20en%202019%20selon%20l%E2%80%99association%20des%20constructeurs%20europ%C3%A9ens%20d%E2%80%99automobiles%29%2C%20car%20ils%20ne%20sont%20pas%20soumis%20%C3%A0%20la%20r%C3%A9glementation%20applicable%20aux%20poids%20lourds%20de%20plus%20de%203%2C5%20tonnes%20ce%20qui%20les%20rend%20plus%20comp%C3%A9titifs%2C%20ce%20qui%20accentue%20le%20probl%C3%A8me%20constat%C3%A9.%0A%0A%23%23%20Solution%0A%0ANotre%20mission%20est%20de%20lutter%20contre%20le%20travail%20ill%C3%A9gal%20dans%20le%20transport%20routier%20l%C3%A9ger.%20Notre%20strat%C3%A9gie%20pour%20y%20parvenir%20%3F%20Faciliter%20la%20mise%20en%20conformit%C3%A9%20des%20entreprises%20du%20secteur%20tout%20en%20agissant%20sur%20le%20cadre%20r%C3%A9glementaire%0A%0A%2A%2AMobilic%20est%20la%20plateforme%20num%C3%A9rique%20gouvernementale%20de%20suivi%20du%20temps%20de%20travail%20dans%20le%20transport%20routier%20l%C3%A9ger.%2A%2A%0A%0AD%C3%A9velopp%C3%A9e%20en%20collaboration%20avec%20les%20entreprises%20du%20secteur%20et%20les%20corps%20de%20contr%C3%B4le%20de%20l%E2%80%99%C3%89tat%2C%20notre%20outil%20se%20compose%20%3A%0A%0A%2A%20D%27une%20application%20web%20destin%C3%A9e%20aux%20salari%C3%A9s%20conducteurs%2C%20permettant%20l%E2%80%99enregistrement%20du%20temps%20de%20travail%20adapt%C3%A9%20%C3%A0%20un%20usage%20en%20mobilit%C3%A9%2C%20et%20aux%20gestionnaires%2C%20permettant%20la%20gestion%20de%20ces%20temps%20de%20travail%20%3B%0A%2A%20D%27une%20interface%20de%20contr%C3%B4le%20calculant%20automatiquement%20les%20d%C3%A9passements%20de%20seuils%20%3B%0A%2A%20D%27une%20API%20pour%20r%C3%A9pondre%20au%20besoin%20d%27interfa%C3%A7age%20des%20applications%20m%C3%A9tier%2FRH%20des%20entreprises.%0A%0A%21%5Bhttps%3A%2F%2Fmobilic.beta.gouv.fr%2F%5D%28%2Fimg%2Fnetlifycms%2Fmobilic-workflow.png%29%0A%0A%23%23%20Impact%0A%0ANous%20avons%20%C3%A9tabli%20le%20certificat%20Mobilic%20en%20juillet%202023.%20Le%20certificat%20atteste%20qu%27une%20entreprise%20a%20un%20%2A%2Ataux%20%C3%A9lev%C3%A9%20de%20conformit%C3%A9%20%C3%A0%20la%20%20r%C3%A9glementation%2A%2A%20en%20mati%C3%A8re%20de%20temps%20de%20travail%20et%2C%20qu%E2%80%99elle%20%2A%2Autilise%20Mobilic%20de%20mani%C3%A8re%20conforme%2A%2A%20%28enregistrement%20du%20temps%20de%20travail%20au%20maximum%20en%20temps%20r%C3%A9el%2C%20validation%20r%C3%A9guli%C3%A8re%20des%20donn%C3%A9es%2C%20modifications%20exceptionnelles%20des%20donn%C3%A9es%20du%20salari%C3%A9%20par%20son%20employeur%29.%0A%0AL%27indicateur%20que%20nous%20suivons%20d%C3%A9sormais%20pour%20mesurer%20l%27impact%20de%20Mobilic%20est%20le%20%2A%2Anombre%20d%27entreprises%20certifi%C3%A9es%2A%2A%2C%20c%27est-%C3%A0-dire%2C%20les%20entreprises%20qui%20ont%20un%20taux%20%C3%A9lev%C3%A9%20de%20conformit%C3%A9%20%C3%A0%20la%20r%C3%A9glementation.%0A%0ASur%2030%20000%20entreprises%20concern%C3%A9es%20par%20la%20r%C3%A9glementation%2C%20nous%20estimons%20%C3%A0%2012%20000%20celles%20aupr%C3%A8s%20de%20qui%20Mobilic%20s%27adresse%20en%20premier%20lieu%20%28d%C3%A9m%C3%A9nagement%20et%20transport%20de%20marchandises%29.%0A%0A%2A%2A%E2%9E%A1%EF%B8%8F%20Notre%20objectif%20est%20d%27arriver%20%C3%A0%20500%20entreprises%20certifi%C3%A9es%20d%27ici%20d%C3%A9cembre%202024.%2A%2A%0A%0ALa%20croissance%20anticip%C3%A9e%20repose%20sur%20%3A%0A%0A%2A%20l%27effet%20levier%20li%C3%A9%20au%20nombre%20grandissant%20de%20%2A%2Alogiciels%20m%C3%A9tier%20qui%20s%27interfacent%2A%2A%20avec%20l%27API%20Mobilic%20%3B%0A%2A%20la%20%2A%2Amodification%20de%20la%20r%C3%A9glementation%2A%2A%20%28d%C3%A9cret%2Farr%C3%AAt%C3%A9s%29%20permettant%20de%20faciliter%20les%20contr%C3%B4les%20%3B%0A%2A%20un%20%2A%2Aaccompagnement%2A%2A%20%C3%A9tape%20par%20%C3%A9tape%20des%20entreprises%20embarqu%C3%A9es%20%28minimiser%20le%20taux%20de%20perte%20d%27usagers%2C%20acc%C3%A9l%C3%A9rer%20la%20prise%20en%20main%20de%20l%27outil%20et%20la%20vitesse%20%C3%A0%20laquelle%20elles%20deviennent%20certifi%C3%A9es%29%20%3B%0A%2A%20les%20diverses%20%2A%2Aactions%20de%20d%C3%A9ploiement%2A%2A%20%28feuille%20de%20route%20actuelle%29.%0A%0APour%20plus%20d%E2%80%99information%2C%20n%27h%C3%A9sitez%20pas%20%C3%A0%20consulter%20nos%20%5Bstatistiques%20publiques%20%5D%28https%3A%2F%2Fmobilic.beta.gouv.fr%2Fstats%29et%20notre%20%5BFAQ%5D%28https%3A%2F%2Ffaq.mobilic.beta.gouv.fr%2F%29.%0A", + "events": [ + { + "name": "product_launch", + "date": "2020-02-15", + "comment": "Première entreprise inscrite" + }, + { + "name": "fast", + "date": "2023-09-01", + "comment": "Montant de 300 000€ pour la promotion 13" + }, + { + "name": "other", + "date": "2024-09-28", + "comment": "Homologation sécurité" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2019-11-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-01-01", + "end": "" + } + ], + "sponsors": [ + "mtes" + ], + "thematiques": [ + "Transports", + "Travail / Emploi", + "Écologie", + "Social" + ], + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/mobilic-beta-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mobilic.beta.gouv.fr", + "size": 3339.647, + "nodes": 400, + "requests": 54, + "grade": "C", + "score": 59, + "ges": 1.82, + "water": 2.73, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:02:01.669523", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-17T12:45:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "F", + "trackersCount": 30, + "lighthouse_performance": 0.35, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 1, + "lighthouse_pwaGrade": "A", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://app.moncomptepro.beta.gouv.fr", + "category": "dinum_produits_interministeriels", + "betaId": "moncomptepro", + "repositories": [ + "betagouv/moncomptepro" + ], + "http": { + "url": "https://app.moncomptepro.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:07:08 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 05:07:07 GMT", + "Expires": "0", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "no-referrer", + "Set-Cookie": "session=s%3A7H7lcWYAAJ9OvupP5DGff2sc_me6Owom.knyx9GV%2FRMNa77Tufp1Ph9ay4DjCfG5a9SH4olJfnDM; Path=/; Expires=Mon, 21 Oct 2024 05:07:07 GMT; HttpOnly; Secure; SameSite=Lax", + "Surrogate-Control": "no-store", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "25ea60e7-ae6f-4352-9448-35d8259f1e4c", + "X-XSS-Protection": "0", + "strict-transport-security": "max-age=31536000" + }, + "scan_id": 57051180, + "score": 115, + "start_time": "Sun, 20 Oct 2024 05:07:06 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "*.crisp.chat", + "stats.data.gouv.fr", + "wss://*.crisp.chat", + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "*.crisp.chat", + "data:", + "'self'" + ], + "form-action": [ + "*", + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "frame-src": [ + "agentconnect.crisp.help", + "'self'" + ], + "img-src": [ + "*.crisp.chat", + "data:", + "stats.data.gouv.fr", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "*.crisp.chat", + "stats.data.gouv.fr", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "*.crisp.chat", + "'sha256-ks+4bfa56ezwbsvt5/a+a7rcibdxwrqvb7y2dkdlizm='", + "'sha256-mkaswyfd3dgfqes9nqt5xnsle3xylnub4chpxhk4fag='", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "session": { + "domain": "app.moncomptepro.beta.gouv.fr", + "expires": 1729487227, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true } }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null } - } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "redirects": true, + "route": [ + "http://app.moncomptepro.beta.gouv.fr/", + "https://app.moncomptepro.beta.gouv.fr/", + "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer, no-referrer-when-downgrade", + "http": true, + "meta": true + }, + "pass": true, + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "jbpm", + "url": "https://app.moncomptepro.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.989, + "down": false, + "down_since": null, + "up_since": "2024-11-28T23:58:27Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T06:09:29Z", + "next_check_at": "2024-12-01T06:10:29Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://app.moncomptepro.beta.gouv.fr/dist/favicons/android-chrome-512x512.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:03:31Z", + "expires_at": "2025-02-15T04:18:56Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 36, + "connection": 119, + "handshake": 124, + "response": 123, + "total": 402 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "app.moncomptepro.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ { - "hostname": "privacy.trustcommander.net", - "ip": "52.47.161.136", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] } }, { - "hostname": "www.francetravail.fr", - "ip": "185.215.64.79", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] } } - ] + ], + "grade": "A" }, - "wappalyzer": { - "urls": { - "https://mesevenementsemploi.pole-emploi.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://mesevenementsemploi.pole-emploi.fr/ (https://mesevenementsemploi.pole-emploi.fr/)" - } + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-11-17 04:18" + }, + { + "id": "cert_notAfter", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-02-15 04:18" + }, + { + "id": "cert_extlifeSpan", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r10.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R10 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R10 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "302 Found ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1733033173" + }, + { + "id": "HSTS_time", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "cookie_secure", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" + }, + { + "id": "X-Content-Type-Options", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, - "technologies": [ - { - "slug": "f5-bigip", - "name": "F5 BigIP", - "description": "F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.", - "confidence": 100, - "version": null, - "icon": "F5.png", - "website": "https://www.f5.com/products/big-ip-services", - "cpe": "cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://mesevenementsemploi.pole-emploi.fr/", - "finalUrl": "https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/", - "fetchTime": "2024-11-24T05:42:11.625Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://mesevenementsemploi.pole-emploi.fr/) was redirected to https://mesevenementsemploi.francetravail.fr/mes-evenements-emploi/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.38 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 16925, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3396, - "firstMeaningfulPaint": 9847, - "largestContentfulPaint": 5431, - "interactive": 16925, - "speedIndex": 6030, - "totalBlockingTime": 817, - "maxPotentialFID": 333, - "cumulativeLayoutShift": 0.08643709585401746, - "cumulativeLayoutShiftMainFrame": 0.08643709585401746, - "totalCumulativeLayoutShift": 0.10711618359883626, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 401880792, - "observedNavigationStart": 0, - "observedNavigationStartTs": 401880792, - "observedFirstPaint": 1374, - "observedFirstPaintTs": 403254538, - "observedFirstContentfulPaint": 1374, - "observedFirstContentfulPaintTs": 403254538, - "observedFirstContentfulPaintAllFrames": 1374, - "observedFirstContentfulPaintAllFramesTs": 403254538, - "observedFirstMeaningfulPaint": 4162, - "observedFirstMeaningfulPaintTs": 406042924, - "observedLargestContentfulPaint": 1999, - "observedLargestContentfulPaintTs": 403879765, - "observedLargestContentfulPaintAllFrames": 1999, - "observedLargestContentfulPaintAllFramesTs": 403879765, - "observedTraceEnd": 6914, - "observedTraceEndTs": 408794404, - "observedLoad": 4441, - "observedLoadTs": 406321885, - "observedDomContentLoaded": 2963, - "observedDomContentLoadedTs": 404843937, - "observedCumulativeLayoutShift": 0.08643709585401746, - "observedCumulativeLayoutShiftMainFrame": 0.08643709585401746, - "observedTotalCumulativeLayoutShift": 0.10711618359883626, - "observedFirstVisualChange": 1386, - "observedFirstVisualChangeTs": 403266792, - "observedLastVisualChange": 4469, - "observedLastVisualChangeTs": 406349792, - "observedSpeedIndex": 2805, - "observedSpeedIndexTs": 404685812 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 64, - "numScripts": 14, - "numStylesheets": 5, - "numFonts": 4, - "numTasks": 1626, - "numTasksOver10ms": 13, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.2570000000000006, - "throughput": 6215519.2236258, - "maxRtt": 158.65200000000002, - "maxServerLatency": 70.206, - "totalByteWeight": 1581829, - "totalTaskTime": 660.8899999999998, - "mainDocumentTransferSize": 42957 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://www.francetravail.fr/informations/aide-et-accessibilite.html" - }, - "declaration-rgpd": [ + "id": "Content-Security-Policy", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'unsafe-inline';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "X-XSS-Protection", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "mes-evenements-emploi", - "type": "startup", - "attributes": { - "name": "Mes événements emploi", - "pitch": "Promouvoir l’ensemble des événements de l’emploi (job dating, conférence, atelier..) auprès des candidats et leur permettre de s’inscrire en ligne en vue de faciliter leur retour à l’emploi", - "stats_url": "https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/stats", - "link": "https://mesevenementsemploi.pole-emploi.fr", - "contact": "deudmesevenementsemploi.00589@pole-emploi.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ALes%20candidats%2C%20par%20manque%20de%20visibilit%C3%A9%20et%20de%20lisibilit%C3%A9%20%28multitude%C2%A0de%20supports%20et%20de%C2%A0communication%20des%C2%A0%C3%A9v%C3%A9nements%E2%80%8B%29%2C%C2%A0ratent%20des%20opportunit%C3%A9s%20de%20s%E2%80%99informer%2C%20se%20pr%C3%A9parer%2C%20se%20former%20et%20d%E2%80%99%C3%AAtre%20recrut%C3%A9s.%20Les%20%C3%A9v%C3%A9nements%C2%A0organis%C3%A9s%C2%A0par%20les%C2%A0agences%C2%A0P%C3%B4le%C2%A0emploi%C2%A0avec%C2%A0leurs%C2%A0partenaires%C2%A0sont%20peu%C2%A0visibles%C2%A0des%C2%A0candidats.%E2%80%8B%0A%0APour%20les%20conseillers%20organisateurs%20d%E2%80%99un%20%C3%A9v%C3%A9nement%2C%20la%20gestion%20de%20ce%20dernier%20est%20chronophage%C2%A0%28cr%C3%A9ation%2C%C2%A0suivi%2C%20relances%2C%20pilotage%29%C2%A0et%20il%20est%20difficile%20de%C2%A0trouver%C2%A0des%C2%A0candidats%C2%A0pertinents%C2%A0selon%C2%A0des%C2%A0pr%C3%A9-requis%C2%A0identifi%C3%A9s%E2%80%8B%0A%0A%23%23%20Produit%0A%0AMes%20%C3%A9v%C3%A9nements%20emploi%20est%20une%20solution%20num%C3%A9rique%20qui%20permet%20%C3%A0%20tous%20les%20candidats%20et%20partenaires%20de%20l%27emploi%20d%27acc%C3%A9der%20%C3%A0%20l%27ensemble%20des%20%C3%A9v%C3%A9nements%20organis%C3%A9s%20par%20P%C3%B4le%20emploi%20adapt%C3%A9s%C2%A0%C3%A0%20leurs%20crit%C3%A8res%C2%A0de%C2%A0recherche.%0A%0AA%20tout%20moment%2C%2024h%2F24h%2C%207j%2F7j%2C%20un%20candidat%20peut%20rechercher%20et%20s%27inscrire%20en%20ligne%C2%A0aux%C2%A0%C3%A9v%C3%A9nements%20adapt%C3%A9s%20%C3%A0%20ses%20crit%C3%A8res%20de%20recherche%2C%20dans%20l%E2%80%99objectif%20de%20trouver%20un%20emploi%2C%C2%A0d%E2%80%99acc%C3%A9der%20%C3%A0%20une%20formation%2C%C2%A0se%20pr%C3%A9parer%20%C3%A0%20un%20%C3%A9v%C3%A9nement%20de%20recrutement%2C%20obtenir%C2%A0des%20conseils%20pour%20leur%20projet%20%28mobilit%C3%A9%20professionnelle%20ou%20g%C3%A9ographique%2C%C2%A0cr%C3%A9ation%20ou%20reprise%20d%27entreprise%2C%C2%A0aides%20%C3%A0%20l%27emploi...%29%E2%80%8B.%0A%0APour%20les%20conseillers%2C%20ce%20site%20permet%20d%27am%C3%A9liorer%C2%A0la%C2%A0visibilit%C3%A9%C2%A0des%C2%A0%C3%A9v%C3%A9nements%C2%A0organis%C3%A9s%C2%A0par%20les%C2%A0agences%2C%C2%A0partager%C2%A0les%C2%A0%C3%A9v%C3%A9nements%C2%A0en%C2%A0interne%20et%C2%A0en%C2%A0externe%C2%A0sur%20tout%20le%C2%A0territoire%2C%C2%A0faciliter%C2%A0la%C2%A0recherche%20de%C2%A0profils%C2%A0en%C2%A0ad%C3%A9quation%C2%A0aux%C2%A0%C3%A9v%C3%A9nements%C2%A0et%C2%A0diminuer%C2%A0la%20charge%C2%A0administrative%20de%20la%20gestion%20d%27un%C2%A0%C3%A9v%C3%A9nement.%E2%80%8B%0A%0ALe%20produit%20est%20en%20phase%20d%27acc%C3%A9l%C3%A9ration%20et%20depuis%20janvier%202023%2C%20toutes%20les%20r%C3%A9gions%20fran%C3%A7aises%20sont%20visibles%20sur%20le%20site.%0A", - "events": [ - { - "name": "product_launch", - "date": "2021-01-07", - "comment": "La première version du site est ouverte aux Demandeurs d'Emploi bénéficiaires de l'Allocation de Solidarité Spécifique." - }, - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 300000€ pour la promotion 14" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2020-09-01", - "end": "2020-10-30" - }, - { - "name": "construction", - "start": "2020-11-01", - "end": "2021-03-08" - }, - { - "name": "acceleration", - "start": "2021-11-01", - "end": "" - } - ], - "sponsors": [ - "francetravail" - ], - "thematiques": [ - "Travail / Emploi" - ], - "dashlord_url": "http://dashlord.incubateur.net/url/mesevenementsemploi-pole-emploi-fr", - "accessibility_status": "non conforme" + "id": "Referrer-Policy", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "francetravail" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://mesevenementsemploi.pole-emploi.fr", - "size": 2389.861, - "nodes": 558, - "requests": 64, - "grade": "D", - "score": 52, - "ges": 1.96, - "water": 2.94, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:38:56.293522", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "apdex": 0.973, - "apdexGrade": "C", - "uptime": 99.956, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-04-22T13:07:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "E", - "cookiesCount": 8, - "trackersGrade": "F", - "trackersCount": 61, - "lighthouse_performance": 0.38, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "D", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://mobilic.beta.gouv.fr", - "category": "mtes", - "betaId": "mobilic", - "http": { - "url": "https://mobilic.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 04:57:40 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Accept-Ranges": "bytes", - "Age": "0", - "Cache-Control": "no-cache; max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.beta.gouv.fr https://client.axept.io/ https://api.axept.io https://google.com; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.beta.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://www.google.com 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.beta.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net https://www.googleadservices.com; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/;", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 04:57:39 GMT", - "ETag": "W/\"66fd2974-c6f\"", - "Last-Modified": "Wed, 02 Oct 2024 11:07:32 GMT", - "Referrer-Policy": "origin-when-cross-origin", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "deny", - "X-Request-ID": "a690955220a2e61d0a9cde6cbcf212b3", - "X-Varnish": "257863115", - "X-XSS-Protection": "1; mode=block" + "id": "Cache-Control", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" }, - "scan_id": 57050960, - "score": 75, - "start_time": "Sun, 20 Oct 2024 04:57:38 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://stats.beta.gouv.fr", - "wss://client.relay.crisp.chat", - "'self'", - "https://client.crisp.chat", - "https://api-adresse.data.gouv.fr", - "https://sentry.incubateur.net", - "https://google.com", - "https://client.axept.io/", - "https://api.axept.io" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://cdn.jsdelivr.net", - "https://client.crisp.chat", - "'self'" - ], - "frame-src": [ - "https://fr.slideshare.net", - "https://cgu.mobilic.beta.gouv.fr", - "https://bid.g.doubleclick.net/", - "https://metabase.mobilic.beta.gouv.fr", - "https://form.typeform.com", - "https://player.vimeo.com", - "https://www.slideshare.net" - ], - "img-src": [ - "https://stats.beta.gouv.fr", - "https://images.unsplash.com", - "https://www.google.fr/", - "https://favicons.axept.io", - "'self'", - "data:", - "https://client.crisp.chat", - "https://res.cloudinary.com", - "https://image.crisp.chat", - "https://t1.gstatic.com", - "https://www.google.com/", - "https://googleads.g.doubleclick.net", - "https://axeptio.imgix.net", - "https://www.googleadservices.com" - ], - "object-src": [ - "'self'" - ], - "script-src": [ - "https://stats.beta.gouv.fr", - "'unsafe-inline'", - "'self'", - "https://www.googleadservices.com/", - "https://client.crisp.chat", - "'unsafe-eval'", - "https://static.axept.io/", - "https://googleads.g.doubleclick.net", - "https://www.google.com", - "https://www.googletagmanager.com/" - ], - "style-src": [ - "'unsafe-inline'", - "https://client.crisp.chat", - "https://cdn.jsdelivr.net", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://mobilic.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://mobilic.beta.gouv.fr/", - "https://mobilic.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": false, - "result": "referrer-policy-unsafe", - "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", - "score_modifier": -5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "deny" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "okwz", - "url": "https://mobilic.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-21T08:03:55Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T05:45:17Z", - "next_check_at": "2024-11-24T05:50:15Z", - "created_at": "2021-04-22T19:59:33Z", - "mute_until": null, - "favicon_url": "https://mobilic.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:15:24Z", - "expires_at": "2024-12-17T12:45:53Z", - "valid": true, - "error": null + { + "id": "banner_reverseproxy", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E787926D1B509014B593302ED03F7DF1EC20C38EF767D88789BEE65998B2331D" + }, + { + "id": "LOGJAM", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 197, - "connection": 135, - "handshake": 140, - "response": 174, - "total": 646 - } + { + "id": "protocol_support_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "mobilic.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148958,7 +141477,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148966,7 +141485,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148974,7 +141493,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148982,7 +141501,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -148990,498 +141509,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-09-18 12:45" + "finding": "2024-11-17 04:18" }, { "id": "cert_notAfter", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-17 12:45" + "severity": "OK", + "finding": "2025-02-15 04:18" }, { "id": "cert_extlifeSpan", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732427231" + "finding": "1733033225" }, { "id": "HSTS_time", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "id": "cookie_secure", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'unsafe-inline';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" + }, { "id": "X-XSS-Protection", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -149489,7 +142015,7 @@ }, { "id": "heartbleed", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -149498,7 +142024,7 @@ }, { "id": "CCS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -149507,16 +142033,16 @@ }, { "id": "ticketbleed", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -149525,7 +142051,7 @@ }, { "id": "secure_renego", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -149533,7 +142059,7 @@ }, { "id": "secure_client_renego", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -149542,7 +142068,7 @@ }, { "id": "CRIME_TLS", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -149551,16 +142077,16 @@ }, { "id": "BREACH", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -149569,14 +142095,14 @@ }, { "id": "fallback_SCSV", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -149585,7 +142111,7 @@ }, { "id": "FREAK", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -149594,7 +142120,7 @@ }, { "id": "DROWN", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -149603,1698 +142129,455 @@ }, { "id": "DROWN_hint", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=51EDDF86D7069DE77A2317C5417E159F1925967013B8F542C92A99F8877EA08C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E787926D1B509014B593302ED03F7DF1EC20C38EF767D88789BEE65998B2331D" }, { "id": "LOGJAM", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" - }, - { - "id": "winshock", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "mobilic.beta.gouv.fr/185.231.164.121", - "port": "443", - "severity": "INFO", - "finding": "57" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873641091?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873641124?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873642814?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873642901?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873642970?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873642767?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "vimeo", - "url": "https://player.vimeo.com/video/873642861?badge=0&autopause=0&quality_selector=1&progress_bar=1&player_id=0&app_id=58479", - "details": { - "id": "vimeo", - "message": "use peertube" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/turnstile/v0/api.js?onload=turnstileLoad", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/turnstile/v0/api.js?onload=turnstileLoad", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/turnstile/v0/g/e4025c85ea63/api.js", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/turnstile/v0/g/e4025c85ea63/api.js", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/xg543/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/zynmv/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ch3cb/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/s93ge/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/mvd4p/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/2xyqg/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3uphw/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/w8yqz/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/cqdkk/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/6f1km/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/n8jvr/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qbal8/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/ha8ze/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/97wnc/0x4AAAAAAAbaszMygKLnGbeo/auto/fbE/normal/auto/", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.75.5533", - "value": "1", - "domain": "mobilic.beta.gouv.fr", - "path": "/", - "expires": 1732428948, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.75.5533", - "value": "0776a55b5e779fc8.1732427148.", - "domain": "mobilic.beta.gouv.fr", - "path": "/", - "expires": 1766382348, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "bln_challengejs", - "value": "Al4bwl4sw2fgLRldMorlvR1220JRdJ0xM17wmv4xDD1A7DdX5617hyB5uiad1hE6Mqr_2Cm1iZT8tiLn4Dn6gVahBJ1SutXUnr9J06ps20Ws2LmhM1nTCnRo-yWCJlOamdsTxMD2MJHqI-GsqlDpzQV710QFoTiNoorVgTT7VMRkyRWVe8at1i2YJRuAKivhwrdzRwyq85nBHBgbA-rOnKR-Mc7xw8FSIhC_O6dHr9HIFEj7jv25RRdtGzvcjezFuEHYhIVc-ZbBEU_fPoqTqTIFs1ArFmSEDcrTn5QbZTI", - "domain": ".beta.gouv.fr", - "path": "/", - "expires": 1732428046.71812, - "size": 314, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "accept-ranges": "bytes", - "age": "0", - "cache-control": "max-age=0", - "content-encoding": "gzip", - "content-security-policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.beta.gouv.fr https://client.axept.io/ https://api.axept.io https://google.com; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.beta.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://www.google.com 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.beta.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net https://www.googleadservices.com https://beta.gouv.fr; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 05:45:46 GMT", - "etag": "W/\"672cccda-cf9\"", - "last-modified": "Thu, 07 Nov 2024 14:21:14 GMT", - "referrer-policy": "origin-when-cross-origin", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "deny", - "x-request-id": "1c369d48e48b0502cbbd35bd16ee1f85", - "x-varnish": "204403210", - "x-xss-protection": "1; mode=block" + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," }, - "endpoints": [ - { - "hostname": "mobilic.beta.gouv.fr", - "ip": "185.231.164.121", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "172.253.63.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "104.18.187.31", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.29.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "player.vimeo.com", - "ip": "162.159.138.60", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "challenges.cloudflare.com", - "ip": "104.18.95.41", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mobilic.beta.gouv.fr/": { - "status": 200 - } + { + "id": "LOGJAM-common_primes", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://mobilic.beta.gouv.fr/", - "finalUrl": "https://mobilic.beta.gouv.fr/", - "fetchTime": "2024-11-24T05:45:09.731Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.23 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.96 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 1 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 26753, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 14572, - "firstMeaningfulPaint": 14688, - "largestContentfulPaint": 17892, - "interactive": 26753, - "speedIndex": 14572, - "totalBlockingTime": 1046, - "maxPotentialFID": 839, - "cumulativeLayoutShift": 0.0005788828531901041, - "cumulativeLayoutShiftMainFrame": 0.0005788828531901041, - "totalCumulativeLayoutShift": 0.0005788828531901041, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 428485706, - "observedNavigationStart": 0, - "observedNavigationStartTs": 428485706, - "observedFirstPaint": 1250, - "observedFirstPaintTs": 429736153, - "observedFirstContentfulPaint": 1250, - "observedFirstContentfulPaintTs": 429736153, - "observedFirstContentfulPaintAllFrames": 1250, - "observedFirstContentfulPaintAllFramesTs": 429736153, - "observedFirstMeaningfulPaint": 1250, - "observedFirstMeaningfulPaintTs": 429736153, - "observedLargestContentfulPaint": 1429, - "observedLargestContentfulPaintTs": 429914293, - "observedLargestContentfulPaintAllFrames": 1429, - "observedLargestContentfulPaintAllFramesTs": 429914293, - "observedTraceEnd": 7603, - "observedTraceEndTs": 436088470, - "observedLoad": 1776, - "observedLoadTs": 430261831, - "observedDomContentLoaded": 1261, - "observedDomContentLoadedTs": 429747151, - "observedCumulativeLayoutShift": 0.0005788828531901041, - "observedCumulativeLayoutShiftMainFrame": 0.0005788828531901041, - "observedTotalCumulativeLayoutShift": 0.0005788828531901041, - "observedFirstVisualChange": 1263, - "observedFirstVisualChangeTs": 429748706, - "observedLastVisualChange": 4263, - "observedLastVisualChangeTs": 432748706, - "observedSpeedIndex": 1997, - "observedSpeedIndexTs": 430482447 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 212, - "numScripts": 76, - "numStylesheets": 7, - "numFonts": 5, - "numTasks": 2879, - "numTasksOver10ms": 9, - "numTasksOver25ms": 3, - "numTasksOver50ms": 3, - "numTasksOver100ms": 2, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 43743381.36982252, - "maxRtt": 87.75099999999999, - "maxServerLatency": 171.921, - "totalByteWeight": 5519457, - "totalTaskTime": 987.9529999999933, - "mainDocumentTransferSize": 2148 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://mobilic.beta.gouv.fr/accessibility" - }, - "declaration-rgpd": [ + "id": "BEAST", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://mobilic.beta.gouv.fr/legal-notices" + "id": "LUCKY13", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 9, - "score": 6, - "missingWords": [], - "missingTrackers": [ - "googlefonts", - "vimeo", - "cloudflare" - ], - "declarationUrl": "https://mobilic.beta.gouv.fr/donnees-personnelles" - } - ], - "betagouv": { - "id": "mobilic", - "type": "startup", - "attributes": { - "name": "Mobilic", - "pitch": "Lutter contre le travail illégal dans le secteur des transports légers", - "stats_url": "https://mobilic.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#Mobilic", - "link": "https://mobilic.beta.gouv.fr", - "repository": "https://github.com/MTES-MCT/mobilic", - "contact": "contact@mobilic.beta.gouv.fr", - "content_url_encoded_markdown": "Pour%20r%C3%A9pondre%20aux%20exigences%20du%20droit%20du%20travail%2C%20%2A%2Ales%20employeurs%20ont%20l%E2%80%99obligation%20de%20suivre%20le%20temps%20de%20travail%20de%20leurs%20conducteurs%2A%2A.%20Dans%20le%20secteur%20des%20transports%20routiers%2C%20les%20conducteurs%20%C3%A9tant%20mobiles%2C%20le%20d%C3%A9compte%20de%20leur%20temps%20de%20travail%20ne%20peut%20pas%20se%20faire%20au%20si%C3%A8ge%20de%20leur%20entreprise.%20Il%20est%20donc%20fait%20par%20les%20conducteurs%20%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20dispositif%20qu%E2%80%99ils%20emportent%20avec%20eux.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%0ADans%20le%20secteur%20du%20transport%20routier%20l%C3%A9ger%20%28v%C3%A9hicules%20utilitaires%20l%C3%A9gers%20%28VUL%29%20%20de%20moins%20de%203.5%20tonnes%20ou%20de%20moins%20de%209%20places%29%2C%20%2A%2Ale%20respect%20du%20temps%20de%20travail%20des%20personnels%20roulants%20est%20historiquement%20contr%C3%B4l%C3%A9%20au%20moyen%20du%20livret%20individuel%20de%20contr%C3%B4le%20%28LIC%29%2A%2A%20au%20format%20papier%2C%20en%20application%20du%20code%20des%20transports.%0A%0AOr%2C%20ce%20dispositif%20%C3%A9tait%20inutilis%C3%A9%20ou%20contourn%C3%A9%20par%20un%20grand%20nombre%20d%E2%80%99acteurs%2C%20car%20%3A%0A%0A%2A%20%2A%2Apas%20adapt%C3%A9%2A%2A%20%C3%A0%20l%E2%80%99activit%C3%A9%20mobile%20des%20salari%C3%A9s%20%3B%0A%2A%20la%20%2A%2Agestion%20administrative%2A%2A%20de%20ces%20LIC%20est%20co%C3%BBteuse%20et%20chronophage%20pour%20les%20gestionnaires%20d%E2%80%99entreprise%20et%20les%20corps%20de%20contr%C3%B4le%20%3B%0A%2A%20le%20format%20papier%20n%E2%80%99est%20%2A%2Ani%20fiable%20ni%20contr%C3%B4lable%2A%2A%20par%20les%20corps%20de%20contr%C3%B4le.%0A%0AEn%20cons%C3%A9quence%2C%20de%20nombreuses%20entreprises%20n%27utilisent%20pas%20le%20LIC%20ou%20utilisent%20des%20solutions%20de%20contournement%20non%20r%C3%A9glementaires.%0A%0ACette%20non-utilisation%20a%20des%20cons%C3%A9quences%20fortes%20%3A%0A%0A%2A%20%2A%2Atravail%20dissimul%C3%A9%2A%2A%20repr%C3%A9sentant%20jusqu%E2%80%99%C3%A0%2010%25%20des%20salari%C3%A9s%20du%20secteur%20%3B%0A%2A%20%2A%2Afraude%20fiscale%2A%2A%20et%20sociale%20estim%C3%A9e%20%C3%A0%20plusieurs%20centaines%20de%20millions%20d%E2%80%99euros%20chaque%20ann%C3%A9e%20%3B%0A%2A%20enjeux%20de%20%2A%2Asant%C3%A9%20et%20s%C3%A9curit%C3%A9%20routi%C3%A8re%2A%2A%20et%20concurrence%20d%C3%A9loyale%20pour%20les%20entreprises%20vertueuses.%0A%0A%E2%9E%A1%EF%B8%8F%20Un%20rapport%20de%20l%E2%80%99Observatoire%20du%20Travail%20Dissimul%C3%A9%20rapporte%20au%20titre%20de%20l%E2%80%99ann%C3%A9e%202016%20que%2C%20dans%20le%20secteur%20du%20transport%2C%20un%20quart%20des%20%C3%A9tablissements%20contr%C3%B4l%C3%A9s%20est%20en%20situation%20de%20fraude%20ou%20d%27irr%C3%A9gularit%C3%A9.%0A%0ALe%20recours%20aux%20VUL%20explose%20%28%2B6%2C5%25%20d%E2%80%99immatriculations%20en%20France%20en%202019%20selon%20l%E2%80%99association%20des%20constructeurs%20europ%C3%A9ens%20d%E2%80%99automobiles%29%2C%20car%20ils%20ne%20sont%20pas%20soumis%20%C3%A0%20la%20r%C3%A9glementation%20applicable%20aux%20poids%20lourds%20de%20plus%20de%203%2C5%20tonnes%20ce%20qui%20les%20rend%20plus%20comp%C3%A9titifs%2C%20ce%20qui%20accentue%20le%20probl%C3%A8me%20constat%C3%A9.%0A%0A%23%23%20Solution%0A%0ANotre%20mission%20est%20de%20lutter%20contre%20le%20travail%20ill%C3%A9gal%20dans%20le%20transport%20routier%20l%C3%A9ger.%20Notre%20strat%C3%A9gie%20pour%20y%20parvenir%20%3F%20Faciliter%20la%20mise%20en%20conformit%C3%A9%20des%20entreprises%20du%20secteur%20tout%20en%20agissant%20sur%20le%20cadre%20r%C3%A9glementaire%0A%0A%2A%2AMobilic%20est%20la%20plateforme%20num%C3%A9rique%20gouvernementale%20de%20suivi%20du%20temps%20de%20travail%20dans%20le%20transport%20routier%20l%C3%A9ger.%2A%2A%0A%0AD%C3%A9velopp%C3%A9e%20en%20collaboration%20avec%20les%20entreprises%20du%20secteur%20et%20les%20corps%20de%20contr%C3%B4le%20de%20l%E2%80%99%C3%89tat%2C%20notre%20outil%20se%20compose%20%3A%0A%0A%2A%20D%27une%20application%20web%20destin%C3%A9e%20aux%20salari%C3%A9s%20conducteurs%2C%20permettant%20l%E2%80%99enregistrement%20du%20temps%20de%20travail%20adapt%C3%A9%20%C3%A0%20un%20usage%20en%20mobilit%C3%A9%2C%20et%20aux%20gestionnaires%2C%20permettant%20la%20gestion%20de%20ces%20temps%20de%20travail%20%3B%0A%2A%20D%27une%20interface%20de%20contr%C3%B4le%20calculant%20automatiquement%20les%20d%C3%A9passements%20de%20seuils%20%3B%0A%2A%20D%27une%20API%20pour%20r%C3%A9pondre%20au%20besoin%20d%27interfa%C3%A7age%20des%20applications%20m%C3%A9tier%2FRH%20des%20entreprises.%0A%0A%21%5Bhttps%3A%2F%2Fmobilic.beta.gouv.fr%2F%5D%28%2Fimg%2Fnetlifycms%2Fmobilic-workflow.png%29%0A%0A%23%23%20Impact%0A%0ANous%20avons%20%C3%A9tabli%20le%20certificat%20Mobilic%20en%20juillet%202023.%20Le%20certificat%20atteste%20qu%27une%20entreprise%20a%20un%20%2A%2Ataux%20%C3%A9lev%C3%A9%20de%20conformit%C3%A9%20%C3%A0%20la%20%20r%C3%A9glementation%2A%2A%20en%20mati%C3%A8re%20de%20temps%20de%20travail%20et%2C%20qu%E2%80%99elle%20%2A%2Autilise%20Mobilic%20de%20mani%C3%A8re%20conforme%2A%2A%20%28enregistrement%20du%20temps%20de%20travail%20au%20maximum%20en%20temps%20r%C3%A9el%2C%20validation%20r%C3%A9guli%C3%A8re%20des%20donn%C3%A9es%2C%20modifications%20exceptionnelles%20des%20donn%C3%A9es%20du%20salari%C3%A9%20par%20son%20employeur%29.%0A%0AL%27indicateur%20que%20nous%20suivons%20d%C3%A9sormais%20pour%20mesurer%20l%27impact%20de%20Mobilic%20est%20le%20%2A%2Anombre%20d%27entreprises%20certifi%C3%A9es%2A%2A%2C%20c%27est-%C3%A0-dire%2C%20les%20entreprises%20qui%20ont%20un%20taux%20%C3%A9lev%C3%A9%20de%20conformit%C3%A9%20%C3%A0%20la%20r%C3%A9glementation.%0A%0ASur%2030%20000%20entreprises%20concern%C3%A9es%20par%20la%20r%C3%A9glementation%2C%20nous%20estimons%20%C3%A0%2012%20000%20celles%20aupr%C3%A8s%20de%20qui%20Mobilic%20s%27adresse%20en%20premier%20lieu%20%28d%C3%A9m%C3%A9nagement%20et%20transport%20de%20marchandises%29.%0A%0A%2A%2A%E2%9E%A1%EF%B8%8F%20Notre%20objectif%20est%20d%27arriver%20%C3%A0%20500%20entreprises%20certifi%C3%A9es%20d%27ici%20d%C3%A9cembre%202024.%2A%2A%0A%0ALa%20croissance%20anticip%C3%A9e%20repose%20sur%20%3A%0A%0A%2A%20l%27effet%20levier%20li%C3%A9%20au%20nombre%20grandissant%20de%20%2A%2Alogiciels%20m%C3%A9tier%20qui%20s%27interfacent%2A%2A%20avec%20l%27API%20Mobilic%20%3B%0A%2A%20la%20%2A%2Amodification%20de%20la%20r%C3%A9glementation%2A%2A%20%28d%C3%A9cret%2Farr%C3%AAt%C3%A9s%29%20permettant%20de%20faciliter%20les%20contr%C3%B4les%20%3B%0A%2A%20un%20%2A%2Aaccompagnement%2A%2A%20%C3%A9tape%20par%20%C3%A9tape%20des%20entreprises%20embarqu%C3%A9es%20%28minimiser%20le%20taux%20de%20perte%20d%27usagers%2C%20acc%C3%A9l%C3%A9rer%20la%20prise%20en%20main%20de%20l%27outil%20et%20la%20vitesse%20%C3%A0%20laquelle%20elles%20deviennent%20certifi%C3%A9es%29%20%3B%0A%2A%20les%20diverses%20%2A%2Aactions%20de%20d%C3%A9ploiement%2A%2A%20%28feuille%20de%20route%20actuelle%29.%0A%0APour%20plus%20d%E2%80%99information%2C%20n%27h%C3%A9sitez%20pas%20%C3%A0%20consulter%20nos%20%5Bstatistiques%20publiques%20%5D%28https%3A%2F%2Fmobilic.beta.gouv.fr%2Fstats%29et%20notre%20%5BFAQ%5D%28https%3A%2F%2Ffaq.mobilic.beta.gouv.fr%2F%29.%0A", - "events": [ - { - "name": "product_launch", - "date": "2020-02-15", - "comment": "Première entreprise inscrite" - }, - { - "name": "fast", - "date": "2023-09-01", - "comment": "Montant de 300 000€ pour la promotion 13" - }, - { - "name": "other", - "date": "2024-09-28", - "comment": "Homologation sécurité" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2019-11-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2021-01-01", - "end": "" - } - ], - "sponsors": [ - "mtes" - ], - "thematiques": [ - "Transports", - "Travail / Emploi", - "Écologie", - "Social" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/mobilic-beta-gouv-fr/", - "accessibility_status": "non conforme" + "id": "winshock", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://mobilic.beta.gouv.fr", - "size": 3554.928, - "nodes": 416, - "requests": 54, - "grade": "C", - "score": 58, - "ges": 1.84, - "water": 2.76, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:42:02.153675", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-17T12:45:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "F", - "trackersCount": 28, - "lighthouse_performance": 0.23, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.96, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 1, - "lighthouse_pwaGrade": "A", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://app.moncomptepro.beta.gouv.fr", - "category": "dinum_produits_interministeriels", - "betaId": "moncomptepro", - "repositories": [ - "betagouv/moncomptepro" - ], - "http": { - "url": "https://app.moncomptepro.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:07:08 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 05:07:07 GMT", - "Expires": "0", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", - "Set-Cookie": "session=s%3A7H7lcWYAAJ9OvupP5DGff2sc_me6Owom.knyx9GV%2FRMNa77Tufp1Ph9ay4DjCfG5a9SH4olJfnDM; Path=/; Expires=Mon, 21 Oct 2024 05:07:07 GMT; HttpOnly; Secure; SameSite=Lax", - "Surrogate-Control": "no-store", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "25ea60e7-ae6f-4352-9448-35d8259f1e4c", - "X-XSS-Protection": "0", - "strict-transport-security": "max-age=31536000" + "id": "RC4", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, - "scan_id": 57051180, - "score": 115, - "start_time": "Sun, 20 Oct 2024 05:07:06 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "*.crisp.chat", - "stats.data.gouv.fr", - "wss://*.crisp.chat", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "*.crisp.chat", - "data:", - "'self'" - ], - "form-action": [ - "*", - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "agentconnect.crisp.help", - "'self'" - ], - "img-src": [ - "*.crisp.chat", - "data:", - "stats.data.gouv.fr", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "*.crisp.chat", - "stats.data.gouv.fr", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "*.crisp.chat", - "'sha256-ks+4bfa56ezwbsvt5/a+a7rcibdxwrqvb7y2dkdlizm='", - "'sha256-mkaswyfd3dgfqes9nqt5xnsle3xylnub4chpxhk4fag='", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-no-unsafe", - "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", - "score_modifier": 5 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "session": { - "domain": "app.moncomptepro.beta.gouv.fr", - "expires": 1729487227, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", - "redirects": true, - "route": [ - "http://app.moncomptepro.beta.gouv.fr/", - "https://app.moncomptepro.beta.gouv.fr/", - "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer, no-referrer-when-downgrade", - "http": true, - "meta": true - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "jbpm", - "url": "https://app.moncomptepro.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.989, - "down": false, - "down_since": null, - "up_since": "2024-11-24T03:05:27Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T06:01:09Z", - "next_check_at": "2024-11-24T06:02:09Z", - "created_at": "2024-01-15T13:37:42Z", - "mute_until": null, - "favicon_url": "https://app.moncomptepro.beta.gouv.fr/dist/favicons/android-chrome-512x512.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:57:07Z", - "expires_at": "2025-02-15T04:18:56Z", - "valid": true, - "error": null + { + "id": "clientsimulation-android_60", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 0.984, - "timings": { - "redirect": 0, - "namelookup": 35, - "connection": 155, - "handshake": 160, - "response": 191, - "total": 541 - } + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "uptimeGrade": "A", - "apdexGrade": "B" - }, - "nmap": { - "host": "app.moncomptepro.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "service", + "id": "clientsimulation-java_7u25", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -151302,7 +142585,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -151310,7 +142593,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -151318,7 +142601,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -151326,7 +142609,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -151334,7 +142617,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -151342,497 +142625,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-11-17 04:18" }, { "id": "cert_notAfter", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-02-15 04:18" }, { "id": "cert_extlifeSpan", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732427870" + "finding": "1733033275" }, { "id": "HSTS_time", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/' (30x detected, better try target URL of 30x)" }, { "id": "cookie_secure", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" + "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'unsafe-inline';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" }, { "id": "banner_reverseproxy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -151840,7 +143123,7 @@ }, { "id": "heartbleed", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -151849,7 +143132,7 @@ }, { "id": "CCS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -151858,7 +143141,7 @@ }, { "id": "ticketbleed", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -151867,7 +143150,7 @@ }, { "id": "ROBOT", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -151876,7 +143159,7 @@ }, { "id": "secure_renego", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -151884,7 +143167,7 @@ }, { "id": "secure_client_renego", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -151893,7 +143176,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -151902,7 +143185,7 @@ }, { "id": "BREACH", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -151911,7 +143194,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -151920,14 +143203,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -151936,7 +143219,7 @@ }, { "id": "FREAK", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -151945,7 +143228,7 @@ }, { "id": "DROWN", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -151954,7 +143237,7 @@ }, { "id": "DROWN_hint", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -151963,7 +143246,7 @@ }, { "id": "LOGJAM", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -151972,7 +143255,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -151981,7 +143264,7 @@ }, { "id": "BEAST", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -151990,7 +143273,7 @@ }, { "id": "LUCKY13", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -151999,7 +143282,7 @@ }, { "id": "winshock", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -152008,7 +143291,7 @@ }, { "id": "RC4", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -152017,392 +143300,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.12.255", + "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -152410,7 +143693,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -152418,7 +143701,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -152426,7 +143709,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -152434,7 +143717,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -152442,7 +143725,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -152450,497 +143733,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-11-17 04:18" }, { "id": "cert_notAfter", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-02-15 04:18" }, { "id": "cert_extlifeSpan", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732427924" + "finding": "1733033326" }, { "id": "HSTS_time", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/' (30x detected, better try target URL of 30x)" }, { "id": "cookie_secure", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" + "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'unsafe-inline';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" }, { "id": "banner_reverseproxy", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -152948,7 +144231,7 @@ }, { "id": "heartbleed", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -152957,7 +144240,7 @@ }, { "id": "CCS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -152966,7 +144249,7 @@ }, { "id": "ticketbleed", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -152975,7 +144258,7 @@ }, { "id": "ROBOT", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -152984,7 +144267,7 @@ }, { "id": "secure_renego", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -152992,7 +144275,7 @@ }, { "id": "secure_client_renego", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -153001,7 +144284,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -153010,7 +144293,7 @@ }, { "id": "BREACH", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -153019,7 +144302,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -153028,14 +144311,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -153044,7 +144327,7 @@ }, { "id": "FREAK", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -153053,7 +144336,7 @@ }, { "id": "DROWN", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -153062,7 +144345,7 @@ }, { "id": "DROWN_hint", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -153071,7 +144354,7 @@ }, { "id": "LOGJAM", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -153080,7 +144363,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -153089,7 +144372,7 @@ }, { "id": "BEAST", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -153098,7 +144381,7 @@ }, { "id": "LUCKY13", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -153107,7 +144390,7 @@ }, { "id": "winshock", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -153116,7 +144399,7 @@ }, { "id": "RC4", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -153125,392 +144408,1254 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "207" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [ + { + "name": "_pk_ses.85.5d49", + "value": "1", + "domain": "app.moncomptepro.beta.gouv.fr", + "path": "/", + "expires": 1733034914, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.85.5d49", + "value": "77a1566b9f8e2d2e.1733033115.", + "domain": "app.moncomptepro.beta.gouv.fr", + "path": "/", + "expires": 1766988315, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "session", + "value": "s%3AziEj4DsNt7Ev4OaGTkYmbtpJlTCdKuNE.GHgtsQcBHfgTOGmPWZQ0P3Lt4B0nLkL06yKJBFBV028", + "domain": "app.moncomptepro.beta.gouv.fr", + "path": "/", + "expires": 1733119513.831849, + "size": 87, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'unsafe-inline';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 06:05:13 GMT", + "expires": "0", + "origin-agent-cluster": "?1", + "referrer-policy": "no-referrer", + "set-cookie": "session=s%3AziEj4DsNt7Ev4OaGTkYmbtpJlTCdKuNE.GHgtsQcBHfgTOGmPWZQ0P3Lt4B0nLkL06yKJBFBV028; Path=/; Expires=Mon, 02 Dec 2024 06:05:13 GMT; HttpOnly; Secure; SameSite=Lax", + "strict-transport-security": "max-age=31536000", + "surrogate-control": "no-store", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "a3bdcc55-57e3-4ce3-8d16-af2cac61ca20", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "app.moncomptepro.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://app.moncomptepro.beta.gouv.fr/": { + "status": 302 + }, + "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ] + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://app.moncomptepro.beta.gouv.fr/", + "finalUrl": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "fetchTime": "2024-12-01T06:04:49.689Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://app.moncomptepro.beta.gouv.fr/) was redirected to https://app.moncomptepro.beta.gouv.fr/users/start-sign-in. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.99 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.82 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1464, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1464, + "firstMeaningfulPaint": 1464, + "largestContentfulPaint": 1926, + "interactive": 1464, + "speedIndex": 1662, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.0018882827758789065, + "cumulativeLayoutShiftMainFrame": 0.0018882827758789065, + "totalCumulativeLayoutShift": 0.0018882827758789065, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 438943999, + "observedNavigationStart": 0, + "observedNavigationStartTs": 438943999, + "observedFirstPaint": 660, + "observedFirstPaintTs": 439603740, + "observedFirstContentfulPaint": 660, + "observedFirstContentfulPaintTs": 439603740, + "observedFirstContentfulPaintAllFrames": 660, + "observedFirstContentfulPaintAllFramesTs": 439603740, + "observedFirstMeaningfulPaint": 660, + "observedFirstMeaningfulPaintTs": 439603740, + "observedLargestContentfulPaint": 660, + "observedLargestContentfulPaintTs": 439603740, + "observedLargestContentfulPaintAllFrames": 660, + "observedLargestContentfulPaintAllFramesTs": 439603740, + "observedTraceEnd": 3465, + "observedTraceEndTs": 442409311, + "observedLoad": 1067, + "observedLoadTs": 440010706, + "observedDomContentLoaded": 657, + "observedDomContentLoadedTs": 439601136, + "observedCumulativeLayoutShift": 0.0018882827758789065, + "observedCumulativeLayoutShiftMainFrame": 0.0018882827758789065, + "observedTotalCumulativeLayoutShift": 0.0018882827758789065, + "observedFirstVisualChange": 671, + "observedFirstVisualChangeTs": 439614999, + "observedLastVisualChange": 1288, + "observedLastVisualChangeTs": 440231999, + "observedSpeedIndex": 686, + "observedSpeedIndexTs": 439630247 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 24, + "numScripts": 7, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 35, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 6346548.146406165, + "maxRtt": 85.602, + "maxServerLatency": 18.76, + "totalByteWeight": 270477, + "totalTaskTime": 8.833, + "mainDocumentTransferSize": 3676 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://legal.moncomptepro.beta.gouv.fr/moncomptepro-accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 4, + "missingWords": [], + "missingTrackers": [ + "crisp" + ], + "declarationUrl": "https://legal.moncomptepro.beta.gouv.fr/moncomptepro-politique-de-confidentialite" + } + ], + "betagouv": { + "id": "moncomptepro", + "type": "startup", + "attributes": { + "name": "MonComptePro", + "pitch": "Nous identifions vos utilisateurs professionnels du privé ou du public.", + "stats_url": "https://moncomptepro.beta.gouv.fr/stats", + "link": "https://moncomptepro.beta.gouv.fr", + "repository": "https://github.com/betagouv/moncomptepro", + "contact": "contact@moncomptepro.beta.gouv.fr", + "content_url_encoded_markdown": "En%202024%2C%20MonComptePro%20a%20%C3%A9t%C3%A9%20fusionn%C3%A9%20au%20sein%20d%E2%80%99un%20seul%20produit%20regroupant%20les%20solutions%20AgentConnect%2C%20ProConnect%20et%20MonComptePro.%0A%0A%23%23%20Contexte%0A%0AIl%20existe%20de%20nombreux%20services%20num%C3%A9riques%20qui%20s%E2%80%99adressent%20aux%20collectivit%C3%A9s%20territoriales%20%28exemples%20%3A%20Urban%20Vitaliz%2C%20macantine%2C%20le.taxi%2C%20covoiturage.beta.gouv.fr%2C%20territoiresentransition.fr%2C%20data.gouv.fr%2C%20api.gouv.fr%2C%20adresse.data.gouv.fr...%29%2C%20ou%20plus%20largement%20%C3%A0%20des%20personnalit%C3%A9s%20morales%20%28entreprises%2C%20associations%2C%20services%20de%20l%E2%80%99%C3%89tat%29.%20Ces%20services%20n%C3%A9cessitent%20souvent%20un%20syst%C3%A8me%20d%E2%80%99authentification.%0A%0AAinsi%2C%20face%20%C3%A0%20la%20multiplication%20des%20services%20num%C3%A9riques%20de%20l%E2%80%99%C3%89tat%2C%20et%20pour%20prendre%20l%E2%80%99exemple%20des%20territoires%2C%20les%20agents%20de%20collectivit%C3%A9s%20peuvent%20avoir%20%C3%A0%20g%C3%A9rer%20des%20dizaines%20de%20comptes%20diff%C3%A9rents.%0A%0A%C3%80%20chaque%20service%2C%20les%20%C3%A9quipes%20de%20d%C3%A9veloppement%20de%20ces%20services%20sont%20tent%C3%A9es%20de%20d%C3%A9velopper%20une%20brique%20d%E2%80%99authentification%20complexe%2C%20car%20s%E2%80%99authentifier%20en%20tant%20que%20personne%20physique%20faisant%20partie%20d%E2%80%99une%20organisation%20%28entreprise%2C%20collectivit%C3%A9%2C%20association%29%20sur%20un%20service%20num%C3%A9rique%20de%20l%E2%80%99%C3%89tat%20peut%20soulever%20des%20probl%C3%A8mes%20de%20plusieurs%20natures%20%3A%0A%0A-%20Pour%20la%20validation%20de%20l%E2%80%99identit%C3%A9%20de%20la%20personne%20lors%20de%20ses%20inscriptions%20sur%20diff%C3%A9rentes%20plateformes%2C%20ainsi%20que%20la%20gestion%20de%20ses%20comptes%20%C3%A0%20long%20terme%20%28gestion%20de%20droits%29.%0A-%20Lorsque%20plusieurs%20personnes%20travaillent%20autour%20d%E2%80%99une%20m%C3%AAme%20organisation%20ou%20ne%20peuvent%20pas%20travailler%20ensemble%20sur%20un%20m%C3%AAme%20sujet.%0A-%20En%20termes%20de%20s%C3%A9curit%C3%A9%20informatique%20et%20de%20configuration%20de%20permissions%20et%20d%E2%80%99acc%C3%A8s%20%C3%A0%20certaines%20donn%C3%A9es.%0A%0A%23%23%20Solution%20pressentie%0A%0AIl%20existe%20d%C3%A9j%C3%A0%20plusieurs%20services%20ayant%20d%C3%A9velopp%C3%A9%20une%20brique%20d%E2%80%99authentification%20pour%20certifier%20l%E2%80%99appartenance%20d%E2%80%99une%20personne%20physique%20qui%20se%20connecte%20sur%20un%20service%20%C3%A0%20une%20personnalit%C3%A9%20morale%20telle%20une%20collectivit%C3%A9.%0A%0AIl%20a%20%C3%A9t%C3%A9%20propos%C3%A9%20de%20repartir%20des%20comptes%20utilis%C3%A9s%20par%20%5Bl%E2%80%99outil%20d%E2%80%99habilitation%20DataPass%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2Fdatapass%29.%20Cette%20solution%20permet%20de%20v%C3%A9rifier%20l%E2%80%99identit%C3%A9%20de%20l%E2%80%99inscrit%20de%20mani%C3%A8re%20automatis%C3%A9e%20%C3%A0%20partir%20de%20son%20courriel%20et%20du%20SIRET%20de%20son%20organisation.%20Cette%20solution%20permet%20%C3%A9galement%20une%20gestion%20de%20groupes%2C%20d%E2%80%99utilisateurs%20et%20est%20fiable%20en%20termes%20de%20s%C3%A9curit%C3%A9%20informatique%20et%20de%20restriction%20d%E2%80%99acc%C3%A8s%20aux%20seuls%20agents%20autoris%C3%A9s.%20%2A%2ACette%20solution%20d%E2%80%99identification%20a%20%C3%A9t%C3%A9%20adapt%C3%A9e%20sous%20le%20nom%20de%20MonComptePro%2A%2A%0A%0AGr%C3%A2ce%20%C3%A0%20MonComptePro%2C%20toute%20plateforme%20num%C3%A9rique%20qui%20s%E2%80%99adresse%20%C3%A0%20une%20personne%20morale%20pourrait%20facilement%20int%C3%A9grer%20une%20brique%20d%E2%80%99authentification%2C%20qui%20permettrait%20%C3%A0%20la%20fois%20%3A%0A%0A-%20aux%20personnes%20faisant%20partie%20de%20l%E2%80%99organisation%20de%20se%20connecter%20via%20MonComptePro%2C%20et%20donc%20de%20ne%20pas%20cr%C3%A9er%20un%20nouveau%20compte%20%C3%A0%20chaque%20inscription%20%C3%A0%20une%20nouvelle%20plateforme%0A-%20aux%20d%C3%A9veloppeurs%2Fd%C3%A9veloppeuses%20de%20la%20plateforme%20en%20question%20de%20ne%20pas%20avoir%20%C3%A0%20d%C3%A9velopper%20une%20brique%20d%E2%80%99authentification%20ad%20hoc%20et%20de%20ne%20pas%20avoir%20%C3%A0%20g%C3%A9rer%20la%20validation%20de%20l%E2%80%99identit%C3%A9%20de%20chaque%20personne%20de%20mani%C3%A8re%20individuelle.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2018-09-01", + "end": "2022-01-01" + }, + { + "name": "construction", + "start": "2022-06-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-12-01", + "end": "" + }, + { + "name": "transfer", + "start": "2024-10-01", + "end": "" + } + ], + "sponsors": [ + "dinum" + ], + "thematiques": [ + "Sécurité informatique", + "Outil technique" + ] }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum_produits_interministeriels" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://app.moncomptepro.beta.gouv.fr", + "size": 415.772, + "nodes": 124, + "requests": 21, + "grade": "A", + "score": 86, + "ges": 1.28, + "water": 1.92, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:01:51.909646", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.989, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-15T04:18:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.99, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.82, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "A", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://mon-entreprise.urssaf.fr", + "category": "dinum", + "repositories": [ + "betagouv/mon-entreprise" + ], + "betaId": "mon-entreprise", + "http": { + "url": "https://mon-entreprise.urssaf.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:09:02 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Age": "0", + "Cache-Control": "public,max-age=0,must-revalidate", + "Cache-Status": "\"Netlify Edge\"; fwd=miss", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 05:09:01 GMT", + "Etag": "\"52c316107ed7f28f1ef619b5d34432de-ssl-df\"", + "Server": "Netlify", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Nf-Request-Id": "01JAM58B39JE3XZ0K3GGR1M9GG" }, - { - "id": "final_score", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57051215, + "score": 15, + "start_time": "Sun, 20 Oct 2024 05:09:01 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "*.algolianet.com", + "geo.api.gouv.fr", + "jedonnemonavis.numerique.gouv.fr", + "github.com", + "recherche-entreprises.api.gouv.fr", + "*.incubateur.net", + "api.recherche-entreprises.fabrique.social.gouv.fr", + "polyfill.io", + "'self'", + "user-images.githubusercontent.com", + "*.algolia.net", + "raw.githubusercontent.com", + "tm.urssaf.fr" + ], + "default-src": [ + "mon-entreprise.fr", + "'self'" + ], + "form-action": [ + "*.incubateur.net", + "*.sibforms.com", + "'self'" + ], + "frame-src": [ + "'self'", + "https://codesandbox.io", + "https://www.youtube-nocookie.com", + "https://place-des-entreprises.beta.gouv.fr", + "https://stackblitz.com", + "https://conseillers-entreprises.service-public.fr", + "https://reso-staging.osc-fr1.scalingo.io" + ], + "img-src": [ + "jedonnemonavis.numerique.gouv.fr", + "github.com", + "mon-entreprise.urssaf.fr", + "'self'", + "*.s3.amazonaws.com", + "data:", + "user-images.githubusercontent.com", + "tm.urssaf.fr" + ], + "script-src": [ + "'unsafe-eval'", + "code.jquery.com", + "'unsafe-inline'", + "*.incubateur.net", + "polyfill.io", + "'self'", + "stonly.com", + "tm.urssaf.fr" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://mon-entreprise.urssaf.fr/", + "redirects": true, + "route": [], + "status_code": 200 + }, + "pass": false, + "result": "redirection-invalid-cert", + "score_description": "Invalid certificate chain encountered during redirection", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "j955", + "url": "https://mon-entreprise.urssaf.fr", + "alias": null, + "last_status": 200, + "uptime": 99.509, + "down": false, + "down_since": null, + "up_since": "2024-11-29T04:36:24Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T06:23:05Z", + "next_check_at": "2024-12-01T06:24:05Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://mon-entreprise.urssaf.fr/favicon/favicon.ico?v=2.0", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:15:09Z", + "expires_at": "2025-11-20T23:59:59Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "app.moncomptepro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 50, + "connection": 20, + "handshake": 25, + "response": 32, + "total": 127 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "mon-entreprise.urssaf.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Netlify", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "product": "Netlify", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -153518,7 +145663,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -153526,7 +145671,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -153534,7 +145679,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -153542,7 +145687,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -153550,7 +145695,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -153558,497 +145703,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "354 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "2024-11-17 04:18" + "finding": "2024-11-20 00:00" }, { "id": "cert_notAfter", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", - "finding": "2025-02-15 04:18" + "finding": "2025-11-20 23:59" }, { "id": "cert_extlifeSpan", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" }, { "id": "certificate_transparency", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" + }, + { + "id": "intermediate_cert <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIGljCCBH6gAwIBAgIQJ13ZAzwqaesXYoUuTG3QwjANBgkqhkiG9w0BAQwFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMjMwODAyMDAwMDAwWhcNMzMwODAxMjM1OTU5WjCBkDELMAkGA1UEBhMCUFQxPTA7BgNVBAoMNE1hcmtldFdhcmUgLSBTb2x1w6fDtWVzIHBhcmEgTWVyY2Fkb3MgRGlnaXRhaXMsIExkYS4xQjBABgNVBAMTOU1hcmtldFdhcmUgUlNBIE9yZ2FuaXphdGlvbiBWYWxpZGF0aW9uIFNlY3VyZSBTZXJ2ZXIgQ0EgMzCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAJJw57HYmdDHfF8kGphEDek1dfOgGLwTfZC95Jsf108M7Edh/id2UlJcuFu0Lt9bWyqgjHEiI4QHkyBWPNjaB1pHepcRO23LRH0Ax1/JYPBPgDD+1QsPhE3j+q1stM6TZ+L7N8K+H95B7vH3FAvM388r4tKYSZ3IqczYrhnx9sbgIhV49j0XQmRNGPi6E2hEjzxqvUFfqvEuUObIoMhxfecnQDaOktbruCgi+SAQcdCxCTeJYfv9LtXBKv033TrlWNrx0FxJWlvRT2HGmnisShPFNmYSlk470/F/5VmMR8s8AB6iWyzasBJRnZ1FxxnegOg6qcyHe6NtvTFNbnNc3GdI2R/I1TonIZpA6aceYc2FYsMiPsMOgZAMrIf2b3CFCoj2NFKcnMvazMskmceIu2C5ye0m03UIKTFfr7zaU4CIHc3sMEeonrQU3OZOiYKMWadRNyXIMTanV8GSgSqnVrr1qDLXCXFe0vJWfDgv1WeEijinoXe6ZVwNPXrXL9UP/wIDAQABo4IBcDCCAWwwHwYDVR0jBBgwFoAUU3m/WqorSs9UgOHYm8Cd8rIDZsswHQYDVR0OBBYEFKAlB3ZCHbjY/8dAbhuqE9kdB/N7MA4GA1UdDwEB/wQEAwIBhjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAiBgNVHSAEGzAZMA0GCysGAQQBsjEBAgIiMAgGBmeBDAECAjBQBgNVHR8ESTBHMEWgQ6BBhj9odHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vVVNFUlRydXN0UlNBQ2VydGlmaWNhdGlvbkF1dGhvcml0eS5jcmwwcQYIKwYBBQUHAQEEZTBjMDoGCCsGAQUFBzAChi5odHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVVNFUlRydXN0UlNBQUFBQ0EuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQBxQD2p+H9J26Zx2i1Hifn7//5xXUAr721NWHUNegfGinmEayGsOy7QKmDEhMPOQVkUKdjrhB7ySaI6tTSr+d97226s26Ldobf8lMZQelGmvw9rhsFmm8Ia3rdn1dGartoHG790n+OoWQSufpQ1v05MXMi9CLKOsAzJ5rMYkNL4QU9769Ti4xb1OPijPUe0ty9OtyNTUWOK77oO5t4esA/v3FfQGmgUyZHo20dlyMZa/UBhD92W4W1P/SB2gl8GNju4X/LP8oN8A1cht5tn0VVFU6V9ziZQHgcfH1ZSQouqF+s/dfSnUBWgA7CPVtOdz+wE9Jri0g6bIa9SWc928OExEbMFP3k5j0sWhBwNnA8l3glIYNkancHULjlTBaIxMkga9/8MBk0Mv2gSBwa00OqUJCAamoWBy8uNIyhLOhrNYAup0mh+x+90iZ/ahP5Z0u5zlb+4Y+0KudbXxsLgb5oMR9eeCke5fcJZX3ONMNI9BTNNKL6+wyxDif59lFHC6L40F8Mev55O6UZ3z0gFAcHCh6Zi9RdB5imiWCJ8JZAlMIdtakXL3eUqhZUKVLo2ty4ee1ou9Hi8q7lPVAniCma8qS05EEg6ra8zCpD4AyHCZ+b1Vkljfq4R5AJiluqsl/DtcYaKsQYRJCeXNtfY313dtq8l2wZ5TRtrp1Xjf0c4LQ==\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "INFO", + "finding": "F6138950DEFB71D2CB1456401E1BE00DA15A0D3B3F39ABB9555DBC7C3EC5C2E3" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "INFO", + "finding": "2023-08-02 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "OK", + "finding": "2033-08-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "INFO", + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+18 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "port": "443", + "severity": "INFO", + "finding": "1733034061" + }, + { + "id": "HTTP_headerAge", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "1732427978" + "finding": "18 seconds" }, { "id": "HSTS_time", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Netlify" }, { "id": "banner_application", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "1 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "cookie_secure", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" - }, - { - "id": "X-Content-Type-Options", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" + "finding": "0 at '/'" }, { "id": "Content-Security-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", - "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "X-XSS-Protection", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr" }, { "id": "Cache-Control", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" + "finding": "public,max-age=0,must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -154056,7 +146215,7 @@ }, { "id": "heartbleed", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -154065,7 +146224,7 @@ }, { "id": "CCS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -154074,7 +146233,7 @@ }, { "id": "ticketbleed", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -154083,7 +146242,7 @@ }, { "id": "ROBOT", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -154092,7 +146251,7 @@ }, { "id": "secure_renego", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -154100,7 +146259,7 @@ }, { "id": "secure_client_renego", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -154109,7 +146268,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -154118,16 +146277,16 @@ }, { "id": "BREACH", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -154136,14 +146295,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -154152,7 +146311,7 @@ }, { "id": "FREAK", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -154161,7 +146320,7 @@ }, { "id": "DROWN", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -154170,16 +146329,16 @@ }, { "id": "DROWN_hint", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E787926D1B509014B593302ED03F7DF1EC20C38EF767D88789BEE65998B2331D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6A433B83120C109B75A31E34BC6D087F4CBFE17943A2DD3472ABB3802549890F" }, { "id": "LOGJAM", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -154188,16 +146347,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -154206,7 +146365,7 @@ }, { "id": "LUCKY13", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -154215,7 +146374,7 @@ }, { "id": "winshock", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -154224,7 +146383,7 @@ }, { "id": "RC4", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -154233,392 +146392,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.moncomptepro.beta.gouv.fr/148.253.96.193", + "ip": "mon-entreprise.urssaf.fr/54.215.62.21", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154626,7 +146785,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154634,7 +146793,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154642,7 +146801,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154650,7 +146809,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -154658,7 +146817,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -154666,497 +146825,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "354 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "2024-11-17 04:18" + "finding": "2024-11-20 00:00" }, { "id": "cert_notAfter", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", - "finding": "2025-02-15 04:18" + "finding": "2025-11-20 23:59" }, { "id": "cert_extlifeSpan", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" }, { "id": "certificate_transparency", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" + }, + { + "id": "intermediate_cert <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "INFO", + "finding": "F6138950DEFB71D2CB1456401E1BE00DA15A0D3B3F39ABB9555DBC7C3EC5C2E3" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "INFO", + "finding": "2023-08-02 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "OK", + "finding": "2033-08-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "INFO", + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+15 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "port": "443", + "severity": "INFO", + "finding": "1733034105" + }, + { + "id": "HTTP_headerAge", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "1732428032" + "finding": "15 seconds" }, { "id": "HSTS_time", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Netlify" }, { "id": "banner_application", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "1 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "cookie_secure", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" - }, - { - "id": "X-Content-Type-Options", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" + "finding": "0 at '/'" }, { "id": "Content-Security-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", - "finding": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "X-XSS-Protection", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr" }, { "id": "Cache-Control", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "no-store, no-cache, must-revalidate, proxy-revalidate" + "finding": "public,max-age=0,must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -155164,7 +147337,7 @@ }, { "id": "heartbleed", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -155173,7 +147346,7 @@ }, { "id": "CCS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -155182,7 +147355,7 @@ }, { "id": "ticketbleed", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -155191,7 +147364,7 @@ }, { "id": "ROBOT", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -155200,7 +147373,7 @@ }, { "id": "secure_renego", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -155208,7 +147381,7 @@ }, { "id": "secure_client_renego", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -155217,7 +147390,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -155226,16 +147399,16 @@ }, { "id": "BREACH", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -155244,14 +147417,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -155260,7 +147433,7 @@ }, { "id": "FREAK", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -155269,7 +147442,7 @@ }, { "id": "DROWN", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -155278,16 +147451,16 @@ }, { "id": "DROWN_hint", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E787926D1B509014B593302ED03F7DF1EC20C38EF767D88789BEE65998B2331D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6A433B83120C109B75A31E34BC6D087F4CBFE17943A2DD3472ABB3802549890F" }, { "id": "LOGJAM", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -155296,16 +147469,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -155314,7 +147487,7 @@ }, { "id": "LUCKY13", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -155323,7 +147496,7 @@ }, { "id": "winshock", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -155332,7 +147505,7 @@ }, { "id": "RC4", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -155341,467 +147514,476 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "app.moncomptepro.beta.gouv.fr/185.21.194.105", + "ip": "mon-entreprise.urssaf.fr/13.52.115.166", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "94" } ], "thirdparties": { "trackers": [ { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.85.5d49", - "value": "1", - "domain": "app.moncomptepro.beta.gouv.fr", - "path": "/", - "expires": 1732429606, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.85.5d49", - "value": "7f1740f568b6bdb2.1732427807.", - "domain": "app.moncomptepro.beta.gouv.fr", - "path": "/", - "expires": 1766383007, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "session", - "value": "s%3Ao3Wifb6MIYWpS_uyl2gv3_DfgtbRxQBg.rSU42zWDeVAypOxZyRWLKZvG%2FhCIx3JiKmbLSuENG38", - "domain": "app.moncomptepro.beta.gouv.fr", - "path": "/", - "expires": 1732514205.872701, - "size": 89, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "unknown", + "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=ea3a1298-5005-4f28-9a73-8c91ef5a68ec&vc=false&vm=exempt&ts=1733034020120&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" } ], + "cookies": [], "headers": { - "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';img-src 'self' data: stats.data.gouv.fr *.crisp.chat;connect-src 'self' stats.data.gouv.fr *.crisp.chat wss://*.crisp.chat;frame-src 'self' agentconnect.crisp.help;script-src 'self' stats.data.gouv.fr *.crisp.chat;style-src 'self' *.crisp.chat 'sha256-MKASWYfd3dGFQes9nQT5XnslE3xYlnUb4cHpxhk4fag=' 'sha256-Ks+4bfA56EzWbsVt5/a+A7rCibdXWRQVb7y2dkDLIZM=';font-src 'self' data: *.crisp.chat;form-action 'self' *;base-uri 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 24 Nov 2024 05:56:45 GMT", - "expires": "0", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", - "set-cookie": "session=s%3Ao3Wifb6MIYWpS_uyl2gv3_DfgtbRxQBg.rSU42zWDeVAypOxZyRWLKZvG%2FhCIx3JiKmbLSuENG38; Path=/; Expires=Mon, 25 Nov 2024 05:56:45 GMT; HttpOnly; Secure; SameSite=Lax", + "accept-ranges": "bytes", + "age": "907", + "cache-control": "public,max-age=0,must-revalidate", + "cache-status": "\"Netlify Edge\"; hit", + "content-encoding": "br", + "content-length": "10912", + "content-security-policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 06:20:18 GMT", + "etag": "\"04c4d79901410bd3c15531045a4987c5-ssl-df\"", + "server": "Netlify", "strict-transport-security": "max-age=31536000", - "surrogate-control": "no-store", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "78b6afee-2eeb-4bac-b773-9baef7fa0ed7", - "x-xss-protection": "0" + "vary": "Accept-Encoding", + "x-nf-request-id": "01JE0E121S1T9MRC076JDAXFQ0" }, "endpoints": [ { - "hostname": "app.moncomptepro.beta.gouv.fr", - "ip": "80.247.13.145", + "hostname": "mon-entreprise.urssaf.fr", + "ip": "54.215.62.21", "geoip": { + "city": { + "geoname_id": 5392171, + "names": { + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" + } + }, "continent": { - "code": "EU", - "geoname_id": 6255148, + "code": "NA", + "geoname_id": 6255149, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" } }, "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" + "accuracy_radius": 1000, + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "95141" }, "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] } }, { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", + "hostname": "tm.urssaf.fr", + "ip": "13.226.210.96", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -155822,81 +148004,269 @@ }, "wappalyzer": { "urls": { - "https://app.moncomptepro.beta.gouv.fr/": { - "status": 302 + "https://mon-entreprise.urssaf.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "algolia", + "name": "Algolia", + "description": "Algolia offers a hosted web search product delivering real-time results.", + "confidence": 100, + "version": null, + "icon": "Algolia.svg", + "website": "https://www.algolia.com", + "cpe": null, + "categories": [ + { + "id": 29, + "slug": "search-engines", + "name": "Search engines" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "amazon-web-services", + "name": "Amazon Web Services", + "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", + "confidence": 100, + "version": null, + "icon": "Amazon Web Services.svg", + "website": "https://aws.amazon.com/", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + } + ] + }, + { + "slug": "styled-components", + "name": "styled-components", + "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "confidence": 100, + "version": "6.0.7", + "icon": "styled-components.svg", + "website": "https://styled-components.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "at-internet-analyzer", + "name": "AT Internet Analyzer", + "description": null, + "confidence": 100, + "version": null, + "icon": "AT Internet.png", + "website": "https://atinternet.com/en", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "netlify", + "name": "Netlify", + "description": "Netlify providers hosting and server-less backend services for web applications and static websites.", + "confidence": 100, + "version": null, + "icon": "Netlify.svg", + "website": "https://www.netlify.com/", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true }, - "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in": { - "status": 200 - } - }, - "technologies": [ { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", + "slug": "amazon-s3", + "name": "Amazon S3", + "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", "confidence": 100, "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "icon": "Amazon S3.svg", + "website": "https://aws.amazon.com/s3/", "cpe": null, "categories": [ { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" + "id": 31, + "slug": "cdn", + "name": "CDN" } - ] + ], + "rootPath": true }, { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "slug": "vite", + "name": "Vite", + "description": "Vite is a rapid development tool for modern web projects.", "confidence": 100, "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "icon": "vite.svg", + "website": "https://vitejs.dev", + "cpe": null, "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ] + ], + "rootPath": true }, { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", "confidence": 100, "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", "cpe": null, "categories": [ { - "id": 52, - "slug": "live-chat", - "name": "Live chat" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ] + ], + "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Open Graph.png", + "website": "https://ogp.me", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ] + ], + "rootPath": true } ] }, @@ -155904,12 +148274,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://app.moncomptepro.beta.gouv.fr/", - "finalUrl": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", - "fetchTime": "2024-11-24T05:56:22.173Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://app.moncomptepro.beta.gouv.fr/) was redirected to https://app.moncomptepro.beta.gouv.fr/users/start-sign-in. Try testing the second URL directly." - ], + "requestedUrl": "https://mon-entreprise.urssaf.fr/", + "finalUrl": "https://mon-entreprise.urssaf.fr/", + "fetchTime": "2024-12-01T06:19:49.801Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -155919,7 +148287,7 @@ "snapshot" ], "id": "performance", - "score": 0.99 + "score": 0.51 }, "accessibility": { "title": "Accessibility", @@ -155951,7 +148319,7 @@ "snapshot" ], "id": "seo", - "score": 0.82 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -155961,7 +148329,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.9 } }, "audits": { @@ -155971,53 +148339,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1566, + "numericValue": 5735, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1566, - "firstMeaningfulPaint": 1566, - "largestContentfulPaint": 1944, - "interactive": 1566, - "speedIndex": 1905, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0018882827758789065, - "cumulativeLayoutShiftMainFrame": 0.0018882827758789065, - "totalCumulativeLayoutShift": 0.0018882827758789065, + "firstContentfulPaint": 3997, + "firstMeaningfulPaint": 3997, + "largestContentfulPaint": 4064, + "interactive": 5735, + "speedIndex": 3997, + "totalBlockingTime": 1143, + "maxPotentialFID": 1193, + "cumulativeLayoutShift": 0.0026802190144856767, + "cumulativeLayoutShiftMainFrame": 0.0026802190144856767, + "totalCumulativeLayoutShift": 0.0026802190144856767, "observedTimeOrigin": 0, - "observedTimeOriginTs": 475401042, + "observedTimeOriginTs": 462612328, "observedNavigationStart": 0, - "observedNavigationStartTs": 475401042, - "observedFirstPaint": 800, - "observedFirstPaintTs": 476201483, - "observedFirstContentfulPaint": 800, - "observedFirstContentfulPaintTs": 476201483, - "observedFirstContentfulPaintAllFrames": 800, - "observedFirstContentfulPaintAllFramesTs": 476201483, - "observedFirstMeaningfulPaint": 800, - "observedFirstMeaningfulPaintTs": 476201483, - "observedLargestContentfulPaint": 800, - "observedLargestContentfulPaintTs": 476201483, - "observedLargestContentfulPaintAllFrames": 800, - "observedLargestContentfulPaintAllFramesTs": 476201483, - "observedTraceEnd": 3678, - "observedTraceEndTs": 479078932, - "observedLoad": 1262, - "observedLoadTs": 476662615, - "observedDomContentLoaded": 797, - "observedDomContentLoadedTs": 476198135, - "observedCumulativeLayoutShift": 0.0018882827758789065, - "observedCumulativeLayoutShiftMainFrame": 0.0018882827758789065, - "observedTotalCumulativeLayoutShift": 0.0018882827758789065, - "observedFirstVisualChange": 796, - "observedFirstVisualChangeTs": 476197042, - "observedLastVisualChange": 1429, - "observedLastVisualChangeTs": 476830042, - "observedSpeedIndex": 812, - "observedSpeedIndexTs": 476213284 + "observedNavigationStartTs": 462612328, + "observedFirstPaint": 339, + "observedFirstPaintTs": 462951749, + "observedFirstContentfulPaint": 339, + "observedFirstContentfulPaintTs": 462951749, + "observedFirstContentfulPaintAllFrames": 339, + "observedFirstContentfulPaintAllFramesTs": 462951749, + "observedFirstMeaningfulPaint": 339, + "observedFirstMeaningfulPaintTs": 462951749, + "observedLargestContentfulPaint": 339, + "observedLargestContentfulPaintTs": 462951749, + "observedLargestContentfulPaintAllFrames": 339, + "observedLargestContentfulPaintAllFramesTs": 462951749, + "observedTraceEnd": 3657, + "observedTraceEndTs": 466269656, + "observedLoad": 1198, + "observedLoadTs": 463809951, + "observedDomContentLoaded": 418, + "observedDomContentLoadedTs": 463030775, + "observedCumulativeLayoutShift": 0.0026802190144856767, + "observedCumulativeLayoutShiftMainFrame": 0.0026802190144856767, + "observedTotalCumulativeLayoutShift": 0.0026802190144856767, + "observedFirstVisualChange": 352, + "observedFirstVisualChangeTs": 462964328, + "observedLastVisualChange": 1102, + "observedLastVisualChangeTs": 463714328, + "observedSpeedIndex": 537, + "observedSpeedIndexTs": 463149807 }, { "lcpInvalidated": false @@ -156035,23 +148403,23 @@ "type": "debugdata", "items": [ { - "numRequests": 23, + "numRequests": 36, "numScripts": 6, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 36, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 5245416.309662728, - "maxRtt": 101.913, - "maxServerLatency": 22.289, - "totalByteWeight": 269630, - "totalTaskTime": 4.764999999999999, - "mainDocumentTransferSize": 3763 + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 1003, + "numTasksOver10ms": 6, + "numTasksOver25ms": 4, + "numTasksOver50ms": 3, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 8.806000000000001, + "throughput": 54429957.80994697, + "maxRtt": 139.352, + "maxServerLatency": 101.64, + "totalByteWeight": 714400, + "totalTaskTime": 915.8740000000005, + "mainDocumentTransferSize": 11856 } ] } @@ -156061,17 +148429,17 @@ ], "screenshot": true, "stats": { - "grade": "F" + "grade": "A" }, "github_repository": { "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://legal.moncomptepro.beta.gouv.fr/moncomptepro-accessibilite" + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://mon-entreprise.urssaf.fr/accessibilité" }, "declaration-rgpd": [ { @@ -156084,63 +148452,71 @@ }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [ - "crisp" - ], - "declarationUrl": "https://legal.moncomptepro.beta.gouv.fr/moncomptepro-politique-de-confidentialite" + "missingTrackers": [] } ], "betagouv": { - "id": "moncomptepro", + "id": "mon-entreprise", "type": "startup", "attributes": { - "name": "MonComptePro", - "pitch": "Nous identifions vos utilisateurs professionnels du privé ou du public.", - "stats_url": "https://moncomptepro.beta.gouv.fr/stats", - "link": "https://moncomptepro.beta.gouv.fr", - "repository": "https://github.com/betagouv/moncomptepro", - "contact": "contact@moncomptepro.beta.gouv.fr", - "content_url_encoded_markdown": "En%202024%2C%20MonComptePro%20a%20%C3%A9t%C3%A9%20fusionn%C3%A9%20au%20sein%20d%E2%80%99un%20seul%20produit%20regroupant%20les%20solutions%20AgentConnect%2C%20ProConnect%20et%20MonComptePro.%0A%0A%23%23%20Contexte%0A%0AIl%20existe%20de%20nombreux%20services%20num%C3%A9riques%20qui%20s%E2%80%99adressent%20aux%20collectivit%C3%A9s%20territoriales%20%28exemples%20%3A%20Urban%20Vitaliz%2C%20macantine%2C%20le.taxi%2C%20covoiturage.beta.gouv.fr%2C%20territoiresentransition.fr%2C%20data.gouv.fr%2C%20api.gouv.fr%2C%20adresse.data.gouv.fr...%29%2C%20ou%20plus%20largement%20%C3%A0%20des%20personnalit%C3%A9s%20morales%20%28entreprises%2C%20associations%2C%20services%20de%20l%E2%80%99%C3%89tat%29.%20Ces%20services%20n%C3%A9cessitent%20souvent%20un%20syst%C3%A8me%20d%E2%80%99authentification.%0A%0AAinsi%2C%20face%20%C3%A0%20la%20multiplication%20des%20services%20num%C3%A9riques%20de%20l%E2%80%99%C3%89tat%2C%20et%20pour%20prendre%20l%E2%80%99exemple%20des%20territoires%2C%20les%20agents%20de%20collectivit%C3%A9s%20peuvent%20avoir%20%C3%A0%20g%C3%A9rer%20des%20dizaines%20de%20comptes%20diff%C3%A9rents.%0A%0A%C3%80%20chaque%20service%2C%20les%20%C3%A9quipes%20de%20d%C3%A9veloppement%20de%20ces%20services%20sont%20tent%C3%A9es%20de%20d%C3%A9velopper%20une%20brique%20d%E2%80%99authentification%20complexe%2C%20car%20s%E2%80%99authentifier%20en%20tant%20que%20personne%20physique%20faisant%20partie%20d%E2%80%99une%20organisation%20%28entreprise%2C%20collectivit%C3%A9%2C%20association%29%20sur%20un%20service%20num%C3%A9rique%20de%20l%E2%80%99%C3%89tat%20peut%20soulever%20des%20probl%C3%A8mes%20de%20plusieurs%20natures%20%3A%0A%0A-%20Pour%20la%20validation%20de%20l%E2%80%99identit%C3%A9%20de%20la%20personne%20lors%20de%20ses%20inscriptions%20sur%20diff%C3%A9rentes%20plateformes%2C%20ainsi%20que%20la%20gestion%20de%20ses%20comptes%20%C3%A0%20long%20terme%20%28gestion%20de%20droits%29.%0A-%20Lorsque%20plusieurs%20personnes%20travaillent%20autour%20d%E2%80%99une%20m%C3%AAme%20organisation%20ou%20ne%20peuvent%20pas%20travailler%20ensemble%20sur%20un%20m%C3%AAme%20sujet.%0A-%20En%20termes%20de%20s%C3%A9curit%C3%A9%20informatique%20et%20de%20configuration%20de%20permissions%20et%20d%E2%80%99acc%C3%A8s%20%C3%A0%20certaines%20donn%C3%A9es.%0A%0A%23%23%20Solution%20pressentie%0A%0AIl%20existe%20d%C3%A9j%C3%A0%20plusieurs%20services%20ayant%20d%C3%A9velopp%C3%A9%20une%20brique%20d%E2%80%99authentification%20pour%20certifier%20l%E2%80%99appartenance%20d%E2%80%99une%20personne%20physique%20qui%20se%20connecte%20sur%20un%20service%20%C3%A0%20une%20personnalit%C3%A9%20morale%20telle%20une%20collectivit%C3%A9.%0A%0AIl%20a%20%C3%A9t%C3%A9%20propos%C3%A9%20de%20repartir%20des%20comptes%20utilis%C3%A9s%20par%20%5Bl%E2%80%99outil%20d%E2%80%99habilitation%20DataPass%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2Fdatapass%29.%20Cette%20solution%20permet%20de%20v%C3%A9rifier%20l%E2%80%99identit%C3%A9%20de%20l%E2%80%99inscrit%20de%20mani%C3%A8re%20automatis%C3%A9e%20%C3%A0%20partir%20de%20son%20courriel%20et%20du%20SIRET%20de%20son%20organisation.%20Cette%20solution%20permet%20%C3%A9galement%20une%20gestion%20de%20groupes%2C%20d%E2%80%99utilisateurs%20et%20est%20fiable%20en%20termes%20de%20s%C3%A9curit%C3%A9%20informatique%20et%20de%20restriction%20d%E2%80%99acc%C3%A8s%20aux%20seuls%20agents%20autoris%C3%A9s.%20%2A%2ACette%20solution%20d%E2%80%99identification%20a%20%C3%A9t%C3%A9%20adapt%C3%A9e%20sous%20le%20nom%20de%20MonComptePro%2A%2A%0A%0AGr%C3%A2ce%20%C3%A0%20MonComptePro%2C%20toute%20plateforme%20num%C3%A9rique%20qui%20s%E2%80%99adresse%20%C3%A0%20une%20personne%20morale%20pourrait%20facilement%20int%C3%A9grer%20une%20brique%20d%E2%80%99authentification%2C%20qui%20permettrait%20%C3%A0%20la%20fois%20%3A%0A%0A-%20aux%20personnes%20faisant%20partie%20de%20l%E2%80%99organisation%20de%20se%20connecter%20via%20MonComptePro%2C%20et%20donc%20de%20ne%20pas%20cr%C3%A9er%20un%20nouveau%20compte%20%C3%A0%20chaque%20inscription%20%C3%A0%20une%20nouvelle%20plateforme%0A-%20aux%20d%C3%A9veloppeurs%2Fd%C3%A9veloppeuses%20de%20la%20plateforme%20en%20question%20de%20ne%20pas%20avoir%20%C3%A0%20d%C3%A9velopper%20une%20brique%20d%E2%80%99authentification%20ad%20hoc%20et%20de%20ne%20pas%20avoir%20%C3%A0%20g%C3%A9rer%20la%20validation%20de%20l%E2%80%99identit%C3%A9%20de%20chaque%20personne%20de%20mani%C3%A8re%20individuelle.%0A", - "events": [], + "name": "Mon-entreprise", + "pitch": "Guider les créateurs et créatrices d’entreprise.", + "stats_url": "https://mon-entreprise.urssaf.fr/stats", + "budget_url": "https://mon-entreprise.urssaf.fr/budget", + "link": "https://mon-entreprise.urssaf.fr", + "repository": "https://github.com/betagouv/mon-entreprise", + "contact": "contact@mon-entreprise.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20drame%0AEn%202021%2C%20on%20a%20observ%C3%A9%20une%20augmentation%20de%2016%E2%80%89%25%20de%20cr%C3%A9ations%20d%E2%80%99auto-entreprises%2C%20et%20de%2024%E2%80%89%25%20des%20cr%C3%A9ations%20de%20soci%C3%A9t%C3%A9s%2C%20pour%20atteindre%20le%20chiffre%20record%20d%E2%80%99un%20million%20de%20nouvelles%20entreprises.%0A%0AChaque%20jour%2C%20ces%20nouveaux%20cr%C3%A9ateurs%20d%E2%80%99entreprises%20doivent%20prendre%20de%20nombreuses%20d%C3%A9cisions%20dans%20la%20gestion%20juridique%2C%20fiscale%20et%20sociale%20de%20leur%20entreprise.%0A%0APar%20exemple%20%3A%0A-%20Opter%20pour%20la%20bonne%20forme%20juridique%20avec%20une%20protection%20sociale%20ad%C3%A9quate%20%3B%0A-%20Recruter%20un%20salari%C3%A9%2C%20un%20alternant%20ou%20un%20stagiaire%20%3B%0A-%20Anticiper%20sa%20r%C3%A9mun%C3%A9ration%20en%20fonction%20des%20r%C3%A9sultats%20pr%C3%A9vus%20pour%20l%E2%80%99entreprise.%0A%0ACes%20choix%20sont%20tous%20li%C3%A9s%20aux%20dispositifs%20l%C3%A9gislatifs%20en%20cours%2C%20qui%20%C3%A9voluent%20constamment.%20Un%20mauvais%20choix%20peut%20avoir%20pour%20cons%C3%A9quence%20%3A%0A-%20Des%20difficult%C3%A9s%20de%20tr%C3%A9sorerie%20suite%20%C3%A0%20une%20mauvaise%20estimation%20des%20obligations%20sociales%20et%20fiscales%20%3B%0A-%20Une%20pr%C3%A9carit%C3%A9%20due%20%C3%A0%20une%20couverture%20sociale%20non%20adapt%C3%A9e%20%3B%0A-%20Un%20manque%20%C3%A0%20gagner%20%C3%A0%20cause%20d%E2%80%99un%20statut%20non%20adapt%C3%A9%20%28charges%20non%20d%C3%A9ductibles%20en%20auto-entreprise%29%0A%0A%C3%80%20l%E2%80%99heure%20actuel%2C%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20prennent%20ces%20d%C3%A9cisions%20%3A%0A-%20En%20%2A%2Amimant%20les%20d%C3%A9cisions%20de%20pairs%2A%2A%2C%20qui%20ne%20sont%20pas%20forc%C3%A9ment%20adapt%C3%A9es%20%C3%A0%20son%20cas%20%3B%0A-%20En%20%2A%2Afaisant%20appel%20%C3%A0%20des%20professionnels%2A%2A%20%28comptable%2C%20avocats%2C%20chambres%29%2C%20ce%20qui%20a%20un%20co%C3%BBt%2C%20pour%20des%20conseils%20qui%20peuvent%20%C3%AAtre%20de%20qualit%C3%A9%20et%20de%20pr%C3%A9cision%20variables%20%3B%0A-%20De%20mani%C3%A8re%20autonome%20%C3%A0%20l%E2%80%99aide%20de%20la%20%2A%2Adocumentation%20en%20ligne%2A%2A.%0A%0AConcernant%20ce%20dernier%20cas%2C%20il%20est%20%C3%A0%20noter%20que%20l%E2%80%99offre%20publique%20s%E2%80%99est%20r%C3%A9ellement%20am%C3%A9lior%C3%A9e%20ces%20derni%C3%A8res%20ann%C3%A9es%20%28on%20peut%20citer%20la%20cr%C3%A9ation%20du%20portail%20unique%20d%E2%80%99information%20entreprendre.service-public.fr%29.%20Ces%20sites%20proposent%20des%20textes%20%C3%A0%20jour%2C%20fiables%2C%20et%20non%20int%C3%A9ress%C3%A9s%2C%20ce%20qui%20n%E2%80%99est%20pas%20le%20cas%20de%20sa%20contrepartie%20priv%C3%A9e.%0A%0ACependant%2C%20les%20informations%20disponibles%20restent%20souvent%20pr%C3%A9sent%C3%A9es%20sous%20forme%20de%20%C2%AB%20mur%20de%20texte%20%C2%BB.%20C%E2%80%99est%20alors%20au%20lecteur%20de%20s%C3%A9lectionner%20les%20dispositifs%20applicables%2C%20d%E2%80%99interpr%C3%A9ter%20les%20explications%20et%20d%E2%80%99effectuer%20les%20calculs%20et%20les%20recoupements%20entre%20ses%20choix%20et%20les%20cons%C3%A9quences%20sur%20sa%20situation%20personnelle%20%28couverture%20sociale%2C%20co%C3%BBt%2C%20etc.%29..%0A%0ACela%20prend%20du%20temps%20et%20de%20l%E2%80%99%C3%A9nergie%2C%20au%20d%C3%A9triment%20du%20d%C3%A9veloppement%20de%20l%E2%80%99activit%C3%A9%20%C3%A9conomique.%20Finalement%2C%20cela%20cr%C3%A9e%20beaucoup%20de%20frustration%20et%20d%E2%80%99incompr%C3%A9hension.%0A%0A%2A%2AEn%20r%C3%A9sum%C3%A9%2C%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20d%E2%80%99entreprises%20ne%20sont%20pas%20suffisamment%20outill%C3%A9s%20dans%20leur%20prise%20de%20d%C3%A9cisions.%2A%2A%0A%0A%23%23%20Solution%0A%0AMon-entreprise.urssaf.fr%20propose%20des%20simulateurs%20et%20des%20assistants%20pour%20accompagner%20les%20acteurs%20%C3%A9conomiques%20-%20de%20la%20sph%C3%A8re%20des%20entrepreneurs%2C%20salari%C3%A9s%2C%20demandeurs%20d%E2%80%99emploi%20-%20au%20plus%20pr%C3%A8s%20de%20leurs%20parcours%20de%20recherche%20d%E2%80%99informations.%0A%0APar%20exemple%2C%20pour%20aider%20les%20entreprises%20%C3%A0%20anticiper%20le%20co%C3%BBt%20d%E2%80%99un%20recrutement%2C%20nous%20mettons%20%C3%A0%20disposition%20un%20simulateur%20salari%C3%A9.%20Ce%20dernier%20est%20int%C3%A9gr%C3%A9%20directement%20sur%20p%C3%B4le-emploi%2C%20economie.gouv.fr%2C%20entreprendre.service-public.fr%20et%20code.travail.gouv.fr%2C%20ce%20afin%20de%20garantir%20%C3%A0%20l%E2%80%99usager%20le%20parcours%20le%20plus%20fluide%20possible.%0A%0AIl%20existe%20aujourd%E2%80%99hui%20une%20vingtaine%20de%20simulateurs%20et%20assistants%2C%20qui%20couvrent%20un%20ensemble%20de%20questions%20relatives%20%C3%A0%20la%20cr%C3%A9ation%20et%20%C3%A0%20la%20gestion%20d%E2%80%99une%20entreprise.%20%0A%0ACes%20derniers%20proposent%20des%20r%C3%A9sultats%20%2A%2Apersonnalis%C3%A9s%20et%20fiables%2A%2A%2C%20et%20couvrent%20un%20%2A%2Agrand%20nombre%20de%20cas%20sp%C3%A9cifiques%2A%2A.%20Ils%20sont%20%2A%2Amaintenus%20%C3%A0%20jour%2A%2A%20au%20fur%20et%20%C3%A0%20mesure%20des%20%C3%A9volutions%20l%C3%A9gislatives%2C%20et%20proposent%20une%20%2A%2Aexplication%20des%20calculs%2A%2A%20auto-g%C3%A9n%C3%A9r%C3%A9s%2C%20gr%C3%A2ce%20au%20moteur%20de%20calcul%20sp%C3%A9cialement%20con%C3%A7u%20pour%20le%20besoin%20%3A%20%5BPublicodes%5D%28https%3A%2F%2Fpubli.codes%29%0A%0ATous%20les%20simulateurs%20et%20assistant%20peuvent%20%C3%AAtre%20%5Bint%C3%A9gr%C3%A9s%20via%20un%20simple%20script%5D%28https%3A%2F%2Fmon-entreprise.urssaf.fr%2Fd%25C3%25A9veloppeur%2Fiframe%3Fmodule%3Dsalari%25C3%25A9%29%20dans%20n%27importe%20quelle%20page%20web.%20Par%20ailleurs%2C%20nous%20mettons%20%C3%A0%20disposition%20une%20%5BAPI%20REST%5D%28https%3A%2F%2Fmon-entreprise.urssaf.fr%2Fd%25C3%25A9veloppeur%2Fapi%29%20pour%20int%C3%A9grer%20les%20calculs%20des%20simulateur%20dans%20n%27importe%20quelle%20application.%0A%0A%23%23%23%20Internationalisation%20%F0%9F%8C%8D%0A%0ALe%20service%20est%20%C3%A9galement%20disponible%20en%20anglais%20%C3%A0%20l%27adresse%20%5Bmycompanyinfrance.fr%5D%28https%3A%2F%2Fmycompanyinfrance.fr%29%0A%0A%23%23%23%20Transfert%20%C3%A0%20l%E2%80%99Urssaf%0A%0AEn%202020%2C%20le%20service%20et%20l%27%C3%A9quipe%20Mon%20Entreprise%20sont%20transf%C3%A9r%C3%A9s%20hors%20de%20l%27incubateur%20de%20la%20DINUM%20vers%20l%E2%80%99Urssaf%20Caisse%20nationale.%20%0A%0AFin%202021%2C%20le%20site%20est%20int%C3%A9gr%C3%A9%20dans%20l%27%C3%A9cosyst%C3%A8me%20Urssaf%20avec%20une%20nouvelle%20charte%20graphique%20et%20une%20nouvelle%20adresse%20%3A%20https%3A%2F%2Fmon-entreprise.urssaf.fr%0A%20%0A", + "events": [ + { + "name": "national_impact", + "date": "2020-03-01", + "comment": "" + } + ], "phases": [ { "name": "investigation", - "start": "2018-09-01", - "end": "2022-01-01" + "start": "2014-10-01", + "end": "" }, { "name": "construction", - "start": "2022-06-01", + "start": "2014-10-01", "end": "" }, { "name": "acceleration", - "start": "2022-12-01", + "start": "2019-01-01", "end": "" }, { "name": "transfer", - "start": "2024-10-01", + "start": "2019-09-01", + "end": "" + }, + { + "name": "success", + "start": "2020-03-01", "end": "" } ], "sponsors": [ - "dinum" + "urssaf" ], - "thematiques": [ - "Sécurité informatique", - "Outil technique" - ] + "thematiques": [], + "dashlord_url": "https://dashlord.incubateur.net/url/mon-entreprise-urssaf-fr/", + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "dinum_produits_interministeriels" + "id": "dinum" } } } @@ -156149,97 +148525,91 @@ { "width": 1920, "height": 1080, - "url": "https://app.moncomptepro.beta.gouv.fr", - "size": 414.918, - "nodes": 124, - "requests": 20, - "grade": "A", - "score": 86, - "ges": 1.28, - "water": 1.92, + "url": "https://mon-entreprise.urssaf.fr", + "size": 836.911, + "nodes": 231, + "requests": 37, + "grade": "B", + "score": 77, + "ges": 1.46, + "water": 2.19, "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:53:24.858757", - "page_type": null + "date": "2024-12-01 06:16:34.283001", + "page_type": "website" } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "A+", - "apdex": 0.984, - "apdexGrade": "B", - "uptime": 99.989, + "httpGrade": "F", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.509, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-15T04:18:00.000Z", + "testsslExpireDate": "2025-11-20T23:59:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, + "cookiesGrade": "A", + "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.99, - "lighthouse_performanceGrade": "A", + "lighthouse_performance": 0.51, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.82, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.9, + "lighthouse_pwaGrade": "A", + "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", + "budgetPageGrade": "A", + "declaration-a11y": "B", "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "A", - "dsfrGrade": "A" + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "F" } }, { "404": null, - "url": "https://mon-entreprise.urssaf.fr", + "url": "https://mrs.beta.gouv.fr", "category": "dinum", - "repositories": [ - "betagouv/mon-entreprise" - ], - "betaId": "mon-entreprise", + "betaId": "mrs", "http": { - "url": "https://mon-entreprise.urssaf.fr", + "url": "https://mrs.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:09:02 GMT", - "grade": "F", + "end_time": "Sun, 20 Oct 2024 05:20:03 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Accept-Ranges": "bytes", - "Age": "0", - "Cache-Control": "public,max-age=0,must-revalidate", - "Cache-Status": "\"Netlify Edge\"; fwd=miss", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 05:09:01 GMT", - "Etag": "\"52c316107ed7f28f1ef619b5d34432de-ssl-df\"", - "Server": "Netlify", - "Strict-Transport-Security": "max-age=31536000", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Nf-Request-Id": "01JAM58B39JE3XZ0K3GGR1M9GG" + "Content-Language": "fr", + "Content-Length": "12153", + "Content-Security-Policy": "default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; frame-ancestors 'self'; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; frame-src 'self' https://www.youtube.com; base-uri 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; img-src 'self' https://stats.data.gouv.fr; form-action 'self'", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 05:20:01 GMT", + "Referrer-Policy": "same-origin", + "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", + "Vary": "Accept-Language", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Xss-Protection": "1; mode=block" }, - "scan_id": 57051215, - "score": 15, - "start_time": "Sun, 20 Oct 2024 05:09:01 GMT", + "scan_id": 57051445, + "score": 70, + "start_time": "Sun, 20 Oct 2024 05:19:57 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, + "tests_failed": 3, + "tests_passed": 7, "tests_quantity": 10, "details": { "content-security-policy": { @@ -156247,71 +148617,60 @@ "name": "content-security-policy", "output": { "data": { - "connect-src": [ - "*.algolianet.com", - "geo.api.gouv.fr", - "jedonnemonavis.numerique.gouv.fr", - "github.com", - "recherche-entreprises.api.gouv.fr", - "*.incubateur.net", - "api.recherche-entreprises.fabrique.social.gouv.fr", - "polyfill.io", - "'self'", - "user-images.githubusercontent.com", - "*.algolia.net", - "raw.githubusercontent.com", - "tm.urssaf.fr" + "base-uri": [ + "'self'" ], "default-src": [ - "mon-entreprise.fr", - "'self'" + "'unsafe-inline'", + "https://stats.data.gouv.fr", + "https://cdnjs.cloudflare.com", + "'self'", + "https://fonts.gstatic.com" ], "form-action": [ - "*.incubateur.net", - "*.sibforms.com", + "'self'" + ], + "frame-ancestors": [ "'self'" ], "frame-src": [ - "'self'", - "https://codesandbox.io", - "https://www.youtube-nocookie.com", - "https://place-des-entreprises.beta.gouv.fr", - "https://stackblitz.com", - "https://conseillers-entreprises.service-public.fr", - "https://reso-staging.osc-fr1.scalingo.io" + "https://www.youtube.com", + "'self'" ], "img-src": [ - "jedonnemonavis.numerique.gouv.fr", - "github.com", - "mon-entreprise.urssaf.fr", - "'self'", - "*.s3.amazonaws.com", - "data:", - "user-images.githubusercontent.com", - "tm.urssaf.fr" + "https://stats.data.gouv.fr", + "'self'" ], "script-src": [ - "'unsafe-eval'", - "code.jquery.com", + "https://stackpath.bootstrapcdn.com", "'unsafe-inline'", - "*.incubateur.net", - "polyfill.io", + "https://stats.data.gouv.fr", + "'unsafe-eval'", + "https://cdnjs.cloudflare.com", + "https://fonts.googleapis.com", "'self'", - "stonly.com", - "tm.urssaf.fr" + "https://code.jquery.com", + "https://cdn.ravenjs.com", + "https://fonts.gstatic.com" ], "style-src": [ + "https://stackpath.bootstrapcdn.com", "'unsafe-inline'", + "https://cdnjs.cloudflare.com", + "https://fonts.googleapis.com", "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": false, + "antiClickjacking": true, "defaultNone": false, - "insecureBaseUri": true, + "insecureBaseUri": false, "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, @@ -156358,237 +148717,822 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://mon-entreprise.urssaf.fr/", + "destination": "https://www.mrs.beta.gouv.fr/", "redirects": true, - "route": [], - "status_code": 200 + "route": [ + "http://mrs.beta.gouv.fr/", + "https://www.mrs.beta.gouv.fr/" + ], + "status_code": 302 }, "pass": false, - "result": "redirection-invalid-cert", - "score_description": "Invalid certificate chain encountered during redirection", - "score_modifier": -20 + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "same-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, + "data": "max-age=15768000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 15768000, + "preload": true, "preloaded": false }, - "pass": false, - "result": "hsts-invalid-cert", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "https://cdn.ravenjs.com/3.26.4/raven.min.js": { + "crossorigin": "anonymous", + "integrity": null + }, + "https://code.jquery.com/jquery-3.3.1.slim.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo" + }, + "https://stats.data.gouv.fr/matomo.js": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "j955", - "url": "https://mon-entreprise.urssaf.fr", + "token": "cq7r", + "url": "https://mrs.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.526, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T06:00:31Z", + "up_since": "2024-11-27T01:52:24Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T06:02:30Z", - "next_check_at": "2024-11-24T06:03:30Z", - "created_at": "2024-01-15T13:37:42Z", + "last_check_at": "2024-12-01T06:20:24Z", + "next_check_at": "2024-12-01T06:25:21Z", + "created_at": "2021-04-22T19:59:34Z", "mute_until": null, - "favicon_url": "https://mon-entreprise.urssaf.fr/favicon/favicon.ico?v=2.0", + "favicon_url": "https://www.mrs.beta.gouv.fr/static/img/logos/launcher-icon-2x.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T05:53:58Z", - "expires_at": "2024-11-28T23:59:59Z", - "valid": false, - "error": "error code 20: unable to get local issuer certificate" + "tested_at": "2024-12-01T06:10:29Z", + "expires_at": "2025-02-13T00:20:25Z", + "valid": true, + "error": null }, "metrics": { - "apdex": 0.986, + "apdex": 0.5, "timings": { - "redirect": 0, - "namelookup": 140, - "connection": 0, - "handshake": 25, - "response": 54, - "total": 239 + "redirect": 435, + "namelookup": 284, + "connection": 96, + "handshake": 113, + "response": 779, + "total": 1706 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "F" }, "nmap": { - "host": "mon-entreprise.urssaf.fr", + "host": "mrs.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "996", "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "cvss": "10.0", + "type": "githubexploit", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", + "is_exploit": "true" + }, + { + "cvss": "10.0", + "type": "githubexploit", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-38408", + "is_exploit": "false" + }, + { + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-28531", + "is_exploit": "false" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "packetstorm", + "id": "PACKETSTORM:179290", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "D1E049F1-393E-552D-80D1-675022B26911", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "cve", + "id": "CVE-2024-6387", + "is_exploit": "false" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "6FD8F914-B663-533D-8866-23313FD37804", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "452ADB71-199C-561E-B949-FCDE6288B925", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "zdt", + "id": "1337DAY-ID-39674", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "11F020AC-F907-5606-8805-0516E06160EE", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", + "is_exploit": "true" + }, + { + "cvss": "8.1", + "type": "githubexploit", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "seebug", + "id": "SSV:92579", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "packetstorm", + "id": "PACKETSTORM:173661", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "zdt", + "id": "1337DAY-ID-26576", + "is_exploit": "true" + }, + { + "cvss": "6.5", + "type": "cve", + "id": "CVE-2023-51385", + "is_exploit": "false" + }, + { + "cvss": "5.9", + "type": "cve", + "id": "CVE-2023-48795", + "is_exploit": "false" + }, + { + "cvss": "5.5", + "type": "cve", + "id": "CVE-2023-51384", + "is_exploit": "false" + }, + { + "cvss": "0.0", + "type": "packetstorm", + "id": "PACKETSTORM:140261", + "is_exploit": "true" + }, + { + "cvss": "0.0", + "type": "githubexploit", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", + "is_exploit": "true" + }, + { + "cvss": "0.0", + "type": "githubexploit", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", + "is_exploit": "true" + } + ] + } + }, { "service": { "name": "http", - "product": "Netlify", + "product": "Golang net/http server", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", - "product": "Netlify", + "name": "http", + "product": "Golang net/http server", "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "EtherNetIP-1", + "id": "2222", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "F" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -156596,7 +149540,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -156604,7 +149548,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -156612,7 +149556,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -156620,7 +149564,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -156628,477 +149572,449 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "RSA 4096 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "84D1318BEE30D01E4735933E8DE5F386" + "finding": "038AEAAA4131B5E39EF892C5BE4972DE1EDC" }, { "id": "cert_serialNumberLen", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" + "finding": "A6AD6E77F3915A5A7260938DAEB15921F9F70EB4" }, { "id": "cert_fingerprintSHA256", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "F4A135D851573B88E12483AD3381DFCBD2284DA5E0ED54EBB9771B2A4DC09979" }, { "id": "cert", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", - "finding": "mon-entreprise.urssaf.fr" + "finding": "mrs.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "*.netlify.app" + "finding": "TRAEFIK DEFAULT CERT" }, { "id": "cert_subjectAltName", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "mon-entreprise.urssaf.fr mycompanyinfrance.urssaf.fr www.mycompanyinfrance.urssaf.fr" + "finding": "mrs.beta.gouv.fr www.mrs.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "CRITICAL", - "finding": "failed (chain incomplete)." + "severity": "OK", + "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "HIGH", - "finding": "expires < 30 days (4)" + "severity": "OK", + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "2023-11-29 00:00" + "finding": "2024-11-15 00:20" }, { "id": "cert_notAfter", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "HIGH", - "finding": "2024-11-28 23:59" + "severity": "OK", + "finding": "2025-02-13 00:20" }, { "id": "cert_extlifeSpan", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "OK", - "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "2023-11-29 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "HIGH", - "finding": "2024-11-28 23:59" + "severity": "OK", + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "HIGH", - "finding": "expires <= 20 days" + "severity": "OK", + "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "1732427988" - }, - { - "id": "HTTP_headerAge", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "0 seconds" - }, - { - "id": "HSTS_time", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733034118" }, { - "id": "HSTS_preload", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "id": "HSTS", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "Netlify" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "Content-Security-Policy", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "OK", - "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "id": "security_headers", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "INFO", - "finding": "public,max-age=0,must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -157106,7 +150022,7 @@ }, { "id": "heartbleed", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -157115,7 +150031,7 @@ }, { "id": "CCS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -157124,7 +150040,7 @@ }, { "id": "ticketbleed", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -157133,7 +150049,7 @@ }, { "id": "ROBOT", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -157142,7 +150058,7 @@ }, { "id": "secure_renego", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -157150,7 +150066,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -157159,7 +150075,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -157168,16 +150084,16 @@ }, { "id": "BREACH", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -157186,14 +150102,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -157202,7 +150118,7 @@ }, { "id": "FREAK", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -157211,7 +150127,7 @@ }, { "id": "DROWN", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -157220,16 +150136,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F4A135D851573B88E12483AD3381DFCBD2284DA5E0ED54EBB9771B2A4DC09979" }, { "id": "LOGJAM", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -157238,7 +150154,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -157247,7 +150163,7 @@ }, { "id": "BEAST", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -157256,16 +150172,16 @@ }, { "id": "LUCKY13", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -157274,7 +150190,7 @@ }, { "id": "RC4", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -157283,399 +150199,2319 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", + "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "INFO", + "finding": "84" + }, + { + "id": "overall_grade", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "mrs.beta.gouv.fr/162.19.18.40", + "port": "443", + "severity": "INFO", + "finding": "55" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css?family=Barlow+Condensed|Barlow:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i|Faustina", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "sentry", + "url": "https://cdn.ravenjs.com/3.26.4/raven.min.js", + "details": { + "id": "sentry", + "message": "Ensure your TOS notify the Sentry usage" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css?family=Raleway:400,700|Roboto+Slab:400,700&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "jQuery", + "url": "https://code.jquery.com/jquery-3.3.1.slim.min.js", + "details": { + "id": "jQuery", + "message": "Hosts files directly" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/embed/KgMkHtFO-xs?rel=0", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/www-player.css", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/embed.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/www-embed-player.vflset/www-embed-player.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/base.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google analytics", + "url": "https://googleads.g.doubleclick.net/pagead/id", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google analytics", + "url": "https://static.doubleclick.net/instream/ad_status.js", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/remote.js", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google", + "url": "https://www.google.com/js/th/ol2Pwhg52TvQQNILWNhGlE6oofe6M6saszf4SS0CR3o.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://i.ytimg.com/vi_webp/KgMkHtFO-xs/sddefault.webp", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "youtube", + "url": "https://yt3.ggpht.com/ytc/AIdro_nMJtowLV_kC3h1laAxPvB8SvEIFx8dDIIgDHIRhWyRJQ=s68-c-k-c0x00ffffff-no-rj", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google analytics", + "url": "https://googleads.g.doubleclick.net/pagead/id?slf_rd=1", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/generate_204?XKj9dw", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, + { + "type": "google", + "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "youtube", + "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + } + ], + "cookies": [ + { + "name": "_pk_ses.40.3c86", + "value": "1", + "domain": "www.mrs.beta.gouv.fr", + "path": "/", + "expires": 1733035849, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.40.3c86", + "value": "3f30ff4bd50a9aad.1733034050.", + "domain": "www.mrs.beta.gouv.fr", + "path": "/", + "expires": 1766989250, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-language": "en", + "content-length": "12153", + "content-security-policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; form-action 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; frame-src 'self' https://www.youtube.com; upgrade-insecure-requests; img-src 'self' https://stats.data.gouv.fr; frame-ancestors 'self'; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; base-uri 'self'", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 06:20:49 GMT", + "referrer-policy": "same-origin", + "strict-transport-security": "max-age=15768000; includeSubDomains; preload", + "vary": "Accept-Language", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "mrs.beta.gouv.fr", + "ip": "162.19.18.40", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.251.179.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.ravenjs.com", + "ip": "151.101.130.217", + "geoip": { + "city": { + "geoname_id": 5391959, + "names": { + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "94107" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "code.jquery.com", + "ip": "151.101.194.137", + "geoip": { + "city": { + "geoname_id": 5391959, + "names": { + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "94107" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "www.youtube.com", + "ip": "142.251.163.91", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "142.251.111.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "googleads.g.doubleclick.net", + "ip": "64.233.180.154", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "static.doubleclick.net", + "ip": "142.251.179.149", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "jnn-pa.googleapis.com", + "ip": "172.253.63.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.google.com", + "ip": "172.253.122.103", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "i.ytimg.com", + "ip": "142.251.111.119", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "yt3.ggpht.com", + "ip": "142.251.16.132", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "play.google.com", + "ip": "64.233.180.113", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.gstatic.com", + "ip": "142.251.179.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mrs.beta.gouv.fr/": { + "status": 302 + }, + "https://www.mrs.beta.gouv.fr/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "youtube", + "name": "YouTube", + "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", + "confidence": 100, + "version": null, + "icon": "YouTube.png", + "website": "https://www.youtube.com", + "cpe": null, + "categories": [ + { + "id": 14, + "slug": "video-players", + "name": "Video players" + } + ], + "rootPath": true + }, + { + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", + "confidence": 100, + "version": "4.3.1", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "jquery-cdn", + "name": "jQuery CDN", + "description": "jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.", + "confidence": 100, + "version": null, + "icon": "jQuery.svg", + "website": "https://code.jquery.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.3.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "google-font-api", + "name": "Google Font API", + "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", + "confidence": 100, + "version": null, + "icon": "Google Font API.svg", + "website": "https://google.com/fonts", + "cpe": null, + "categories": [ + { + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "cipher_strength_score", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "0" - }, + "requestedUrl": "https://mrs.beta.gouv.fr/", + "finalUrl": "https://www.mrs.beta.gouv.fr/", + "fetchTime": "2024-12-01T06:20:21.498Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://mrs.beta.gouv.fr/) was redirected to https://www.mrs.beta.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.68 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.61 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.5 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 2961, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2961, + "firstMeaningfulPaint": 2961, + "largestContentfulPaint": 9025, + "interactive": 2961, + "speedIndex": 3937, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.0004814071655273438, + "cumulativeLayoutShiftMainFrame": 0.0004814071655273438, + "totalCumulativeLayoutShift": 0.0004814071655273438, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 401804639, + "observedNavigationStart": 0, + "observedNavigationStartTs": 401804639, + "observedFirstPaint": 1588, + "observedFirstPaintTs": 403392234, + "observedFirstContentfulPaint": 1588, + "observedFirstContentfulPaintTs": 403392234, + "observedFirstContentfulPaintAllFrames": 1588, + "observedFirstContentfulPaintAllFramesTs": 403392234, + "observedFirstMeaningfulPaint": 1588, + "observedFirstMeaningfulPaintTs": 403392234, + "observedLargestContentfulPaint": 1690, + "observedLargestContentfulPaintTs": 403495073, + "observedLargestContentfulPaintAllFrames": 1690, + "observedLargestContentfulPaintAllFramesTs": 403495073, + "observedTraceEnd": 4763, + "observedTraceEndTs": 406567260, + "observedLoad": 2080, + "observedLoadTs": 403884643, + "observedDomContentLoaded": 1643, + "observedDomContentLoadedTs": 403447687, + "observedCumulativeLayoutShift": 0.0004814071655273438, + "observedCumulativeLayoutShiftMainFrame": 0.0004814071655273438, + "observedTotalCumulativeLayoutShift": 0.0004814071655273438, + "observedFirstVisualChange": 1595, + "observedFirstVisualChangeTs": 403399639, + "observedLastVisualChange": 1695, + "observedLastVisualChangeTs": 403499639, + "observedSpeedIndex": 1616, + "observedSpeedIndexTs": 403420529 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 61, + "numScripts": 12, + "numStylesheets": 5, + "numFonts": 4, + "numTasks": 929, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 29052286.792976268, + "maxRtt": 88.77, + "maxServerLatency": 186.041, + "totalByteWeight": 1264037, + "totalTaskTime": 156.13899999999958, + "mainDocumentTransferSize": 12878 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score_weighted", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "0" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 3, + "missingWords": [ + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://mrs.beta.gouv.fr/mentions-legales" }, { - "id": "final_score", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "0" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "mrs", + "type": "startup", + "attributes": { + "name": "Mes remboursements simplifiés (MRS)", + "pitch": "Simplifier et accélérer le remboursement des frais d'utilisation de véhicule personnel ou transports en commun.", + "stats_url": "https://mrs.beta.gouv.fr/stats", + "link": "https://mrs.beta.gouv.fr", + "repository": "https://github.com/betagouv/mrs", + "contact": "frederic.boulay@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Fiche%20produit%0A%0ASur%20prescription%20de%20votre%20m%C3%A9decin%2C%20l%27Assurance%20Maladie%20rembourse%20les%20frais%20d%27utilisation%20de%20votre%20v%C3%A9hicule%20personnel%20ou%20de%20transports%20en%20commun.%20Plus%20flexible%2C%20plus%20rapide%2C%20plus%20%C3%A9conomique%2C%20le%20recours%20au%20v%C3%A9hicule%20personnel%20est%20pourtant%20le%20mode%20de%20transport%20le%20plus%20compliqu%C3%A9%20et%20le%20plus%20long%20%C3%A0%20se%20faire%20rembourser.%0A%0AAvec%20MRS%2C%20l%27assur%C3%A9%20peut%20d%C3%A9clarer%20en%20ligne%20ses%20frais%20%3A%0A%0A1.%20il%20renseigne%20son%20trajet%0A2.%20il%20prend%20en%20photo%20ses%20justificatifs%20%28prescription%2C%20tickets%20p%C3%A9ages%2Fparking%E2%80%A6%29%0A3.%20il%20valide%20sa%20demande%0A%0ALe%20transport%20est%20rembours%C3%A9%20en%20moins%20d%27une%20semaine.%0A%0ALe%20remboursement%20est%20possible%20aujourd%27hui%20via%20un%20formulaire%20papier%20CERFA%20S-3140C.%0ALa%20strat%C3%A9gie%20est%20en%20deux%20temps%20et%20consiste%20%3A%0A%0A1.%20Donner%20aux%20prescripteurs%20%28m%C3%A9decins%20en%20h%C3%B4pitaux%20et%2Fou%20lib%C3%A9raux%29%20une%20v%C3%A9ritable%20alternative%20au%20transport%20en%20Taxi%2FVSL%20en%20favorisant%20le%20recours%20au%20v%C3%A9hicule%20personnel%20ou%20aux%20transports%20en%20commun%20gr%C3%A2ce%20%C3%A0%20une%20application%20facilitant%20le%20remboursement%3B%0A2.%20Faire%20basculer%20les%20personnes%20utilisant%20le%20formulaire%20papier%20vers%20MRS.%0A%0AMRS%20permet%20la%20promotion%20du%20v%C3%A9hicule%20personnel%20ou%20des%20transports%20en%20commun%2C%20solution%20la%20plus%20avantageuse%20pour%20tous.%0A%0A%23%23%20D%C3%A9ploiement%20national%0A%0AEn%20juin%202019%2C%20au%20vu%20du%20succ%C3%A8s%20de%20MRS%2C%20la%20CNAM%20d%C3%A9cide%20de%20d%C3%A9ployer%20le%20service%20au%20national.%20La%20phase%20de%20transfert%20d%C3%A9bute%20%C3%A0%20l%27%C3%A9t%C3%A9%202019%20et%20se%20poursuit%20d%C3%A9but%202020%20pour%20assurer%20la%20p%C3%A9rennisation%20du%20service.%0A%0AEn%20f%C3%A9vrier%202023%2C%20le%20service%20MRS%20cumule%20plus%20de%20260%20000%20utilisateurs%2C%201%2C3%20million%20de%20demandes%20de%20remboursement%20et%20un%20d%C3%A9lai%20moyen%20de%20remboursement%20de%204%2C3%20jours.%20%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2017-10-01", + "end": "" + }, + { + "name": "construction", + "start": "2017-10-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2019-06-01", + "end": "" + }, + { + "name": "transfer", + "start": "2019-09-01", + "end": "" + }, + { + "name": "success", + "start": "2020-09-01", + "end": "" + } + ], + "sponsors": [ + "cnam" + ], + "thematiques": [] }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "overall_grade", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "CRITICAL", - "finding": "T" + "width": 1920, + "height": 1080, + "url": "https://mrs.beta.gouv.fr", + "size": 349.293, + "nodes": 143, + "requests": 33, + "grade": "A", + "score": 84, + "ges": 1.32, + "water": 1.98, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:17:23.234119", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 0.5, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-13T00:20:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "F", + "trackersCount": 36, + "lighthouse_performance": 0.68, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.61, + "lighthouse_accessibilityGrade": "C", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.5, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://nosgestesclimat.fr", + "category": "ademe", + "betaId": "nosgestesclimat", + "tags": [ + "production", + "ADEME" + ], + "repositories": [ + "incubateur-ademe/nosgestesclimat-site-nextjs", + "incubateur-ademe/nosgestesclimat" + ], + "http": { + "url": "https://nosgestesclimat.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 02:24:09 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Age": "0", + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 02:24:06 GMT", + "Link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"", + "Server": "Vercel", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", + "X-Matched-Path": "/", + "X-Next-I18n-Router-Locale": "fr", + "X-Powered-By": "Next.js", + "X-Vercel-Cache": "MISS", + "X-Vercel-Id": "pdx1::cdg1::sb46k-1729391045919-9ad45a28f6c9" }, - { - "id": "grade_cap_reason_1", - "ip": "mon-entreprise.urssaf.fr/13.52.115.166", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" + "scan_id": 57047874, + "score": 50, + "start_time": "Sun, 20 Oct 2024 02:24:04 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://nosgestesclimat.fr/", + "redirects": true, + "route": [ + "http://nosgestesclimat.fr/", + "https://nosgestesclimat.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "lejf", + "url": "https://nosgestesclimat.fr", + "alias": null, + "last_status": 200, + "uptime": 99.995, + "down": false, + "down_since": null, + "up_since": "2024-11-28T08:56:25Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T06:37:46Z", + "next_check_at": "2024-12-01T06:38:46Z", + "created_at": "2024-09-15T01:37:03Z", + "mute_until": null, + "favicon_url": "https://nosgestesclimat.fr/favicon.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:30:50Z", + "expires_at": "2025-01-28T08:35:47Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 0.497, + "timings": { + "redirect": 194, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 1139, + "total": 1333 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "nosgestesclimat.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Vercel", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "product": "Vercel", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157683,7 +152519,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157691,7 +152527,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157699,7 +152535,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157707,7 +152543,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -157715,7 +152551,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -157723,469 +152559,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "SHA384 with RSA" + "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "84D1318BEE30D01E4735933E8DE5F386" + "finding": "031CCF00AEF48F36F3B222FA0299CF3C2A8D" }, { "id": "cert_serialNumberLen", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" + "finding": "B8F8ED149DEEF1D5772B697973AB9336B5EA19FC" }, { "id": "cert_fingerprintSHA256", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "FEB6C6E69297AC0F339A08A421B38A7D521D293F1C90BA5BFD4215E99BCE0FCD" }, { "id": "cert", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "mon-entreprise.urssaf.fr" + "finding": "nosgestesclimat.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "*.netlify.app" + "finding": "no-sni.vercel-infra.com" }, { "id": "cert_subjectAltName", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "mon-entreprise.urssaf.fr mycompanyinfrance.urssaf.fr www.mycompanyinfrance.urssaf.fr" + "finding": "nosgestesclimat.fr" }, { "id": "cert_trust", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "CRITICAL", - "finding": "failed (chain incomplete)." + "severity": "OK", + "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "HIGH", - "finding": "expires < 30 days (4)" + "severity": "OK", + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "2023-11-29 00:00" + "finding": "2024-10-30 08:35" }, { "id": "cert_notAfter", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "HIGH", - "finding": "2024-11-28 23:59" + "severity": "OK", + "finding": "2025-01-28 08:35" }, { "id": "cert_extlifeSpan", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "nosgestesclimat.fr/76.76.21.21", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "OK", - "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "2023-11-29 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "HIGH", - "finding": "2024-11-28 23:59" + "severity": "OK", + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "HIGH", - "finding": "expires <= 20 days" + "severity": "OK", + "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "1732428027" + "finding": "1733034940" }, { "id": "HTTP_headerAge", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "0 seconds" }, { "id": "HSTS_time", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "Netlify" + "finding": "Vercel" }, { "id": "banner_application", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "Content-Security-Policy", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", - "port": "443", - "severity": "OK", - "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr" - }, { "id": "Cache-Control", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "public,max-age=0,must-revalidate" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -158193,7 +153029,7 @@ }, { "id": "heartbleed", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -158202,7 +153038,7 @@ }, { "id": "CCS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -158211,7 +153047,7 @@ }, { "id": "ticketbleed", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -158220,7 +153056,7 @@ }, { "id": "ROBOT", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -158229,7 +153065,7 @@ }, { "id": "secure_renego", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -158237,7 +153073,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -158246,7 +153082,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -158255,16 +153091,16 @@ }, { "id": "BREACH", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -158273,14 +153109,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -158289,7 +153125,7 @@ }, { "id": "FREAK", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -158298,7 +153134,7 @@ }, { "id": "DROWN", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -158307,16 +153143,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FEB6C6E69297AC0F339A08A421B38A7D521D293F1C90BA5BFD4215E99BCE0FCD" }, { "id": "LOGJAM", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -158325,16 +153161,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -158343,7 +153179,7 @@ }, { "id": "LUCKY13", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -158352,7 +153188,7 @@ }, { "id": "winshock", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -158361,7 +153197,7 @@ }, { "id": "RC4", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -158370,373 +153206,382 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "24" }, { "id": "final_score", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "81" }, { "id": "overall_grade", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", - "port": "443", - "severity": "CRITICAL", - "finding": "T" - }, - { - "id": "grade_cap_reason_1", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "INFO", - "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "mon-entreprise.urssaf.fr/54.215.62.21", + "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "80" + "finding": "53" } ], "thirdparties": { "trackers": [ { - "type": "unknown", - "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=940ff0f4-b5a9-47c3-98b9-c16d7e9600f3&vc=false&vm=exempt&ts=1732427952818&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" + "type": "cloudflare", + "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1eb-1f1f7.svg", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } + }, + { + "type": "cloudflare", + "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1ec-1f1e7.svg", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } + }, + { + "type": "cloudflare", + "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1ea-1f1f8.svg", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } } ], "cookies": [], "headers": { - "accept-ranges": "bytes", - "age": "1155", - "cache-control": "public,max-age=0,must-revalidate", - "cache-status": "\"Netlify Edge\"; hit", + "age": "0", + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "br", - "content-length": "11000", - "content-security-policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline'; connect-src 'self' *.incubateur.net raw.githubusercontent.com github.com tm.urssaf.fr recherche-entreprises.api.gouv.fr api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com github.com *.s3.amazonaws.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com https://conseillers-entreprises.service-public.fr", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 05:59:11 GMT", - "etag": "\"abb304236d8c9e0fd2edff59f5bb3a40-ssl-df\"", - "server": "Netlify", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-nf-request-id": "01JDEC1B8GPVG4AMX23VEDHVAT" + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 06:34:26 GMT", + "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"", + "server": "Vercel", + "strict-transport-security": "max-age=63072000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", + "x-matched-path": "/", + "x-next-i18n-router-locale": "fr", + "x-powered-by": "Next.js", + "x-vercel-cache": "MISS", + "x-vercel-id": "sfo1::cdg1::zxhjk-1733034866315-5bcc1a09ac85" }, "endpoints": [ { - "hostname": "mon-entreprise.urssaf.fr", - "ip": "54.215.62.21", + "hostname": "nosgestesclimat.fr", + "ip": "76.76.21.21", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5406976, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "en": "Walnut", + "ru": "Уолнат", + "zh-CN": "沃尔纳特" } }, "continent": { @@ -158768,14 +153613,14 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "accuracy_radius": 20, + "latitude": 34.0233, + "longitude": -117.8512, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "91789" }, "registered_country": { "geoname_id": 6252001, @@ -158810,43 +153655,9 @@ } }, { - "hostname": "tm.urssaf.fr", - "ip": "108.139.10.99", + "hostname": "cdnjs.cloudflare.com", + "ip": "104.17.24.14", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -158867,29 +153678,11 @@ }, "wappalyzer": { "urls": { - "https://mon-entreprise.urssaf.fr/": { + "https://nosgestesclimat.fr/": { "status": 200 } }, "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, { "slug": "sentry", "name": "Sentry", @@ -158909,32 +153702,14 @@ "rootPath": true }, { - "slug": "algolia", - "name": "Algolia", - "description": "Algolia offers a hosted web search product delivering real-time results.", - "confidence": 100, - "version": null, - "icon": "Algolia.svg", - "website": "https://www.algolia.com", - "cpe": null, - "categories": [ - { - "id": 29, - "slug": "search-engines", - "name": "Search engines" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -158961,13 +153736,13 @@ ] }, { - "slug": "amazon-web-services", - "name": "Amazon Web Services", - "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", + "slug": "vercel", + "name": "Vercel", + "description": "Vercel is a cloud platform for static frontends and serverless functions.", "confidence": 100, "version": null, - "icon": "Amazon Web Services.svg", - "website": "https://aws.amazon.com/", + "icon": "vercel.svg", + "website": "https://vercel.com", "cpe": null, "categories": [ { @@ -158975,17 +153750,18 @@ "slug": "paas", "name": "PaaS" } - ] + ], + "rootPath": true }, { - "slug": "styled-components", - "name": "styled-components", - "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": "6.0.7", - "icon": "styled-components.svg", - "website": "https://styled-components.com", - "cpe": null, + "version": "14.2.7", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, @@ -158993,22 +153769,49 @@ "name": "JavaScript frameworks" }, { - "id": 47, - "slug": "development", - "name": "Development" + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } ], "rootPath": true }, { - "slug": "at-internet-analyzer", - "name": "AT Internet Analyzer", - "description": null, + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", "confidence": 100, "version": null, - "icon": "AT Internet.png", - "website": "https://atinternet.com/en", + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ] + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { "id": 10, @@ -159019,20 +153822,33 @@ "rootPath": true }, { - "slug": "netlify", - "name": "Netlify", - "description": "Netlify providers hosting and server-less backend services for web applications and static websites.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "Netlify.svg", - "website": "https://www.netlify.com/", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "cdnjs", + "name": "cdnjs", + "description": "cdnjs is a free distributed JS library delivery service.", + "confidence": 100, + "version": null, + "icon": "cdnjs.svg", + "website": "https://cdnjs.com", + "cpe": null, + "categories": [ { "id": 31, "slug": "cdn", @@ -159060,31 +153876,30 @@ "rootPath": true }, { - "slug": "amazon-s3", - "name": "Amazon S3", - "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", "confidence": 100, "version": null, - "icon": "Amazon S3.svg", - "website": "https://aws.amazon.com/s3/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { - "id": 31, - "slug": "cdn", - "name": "CDN" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ], - "rootPath": true + ] }, { - "slug": "vite", - "name": "Vite", - "description": "Vite is a rapid development tool for modern web projects.", + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", "confidence": 100, "version": null, - "icon": "vite.svg", - "website": "https://vitejs.dev", + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", "cpe": null, "categories": [ { @@ -159096,13 +153911,13 @@ "rootPath": true }, { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "Open Graph.png", + "website": "https://ogp.me", "cpe": null, "categories": [ { @@ -159114,13 +153929,13 @@ "rootPath": true }, { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", "cpe": null, "categories": [ { @@ -159128,8 +153943,7 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ], - "rootPath": true + ] } ] }, @@ -159137,9 +153951,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://mon-entreprise.urssaf.fr/", - "finalUrl": "https://mon-entreprise.urssaf.fr/", - "fetchTime": "2024-11-24T05:58:47.317Z", + "requestedUrl": "https://nosgestesclimat.fr/", + "finalUrl": "https://nosgestesclimat.fr/", + "fetchTime": "2024-12-01T06:33:56.596Z", "runWarnings": [], "categories": { "performance": { @@ -159150,7 +153964,7 @@ "snapshot" ], "id": "performance", - "score": 0.46 + "score": 0.68 }, "accessibility": { "title": "Accessibility", @@ -159161,7 +153975,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.92 }, "best-practices": { "title": "Best Practices", @@ -159182,7 +153996,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.99 }, "pwa": { "title": "PWA", @@ -159192,7 +154006,7 @@ "navigation" ], "id": "pwa", - "score": 0.9 + "score": 0.4 } }, "audits": { @@ -159202,53 +154016,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6717, + "numericValue": 4052, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3852, - "firstMeaningfulPaint": 3852, - "largestContentfulPaint": 3936, - "interactive": 6717, - "speedIndex": 3852, - "totalBlockingTime": 2277, - "maxPotentialFID": 2327, - "cumulativeLayoutShift": 0.030655148294236923, - "cumulativeLayoutShiftMainFrame": 0.030655148294236923, - "totalCumulativeLayoutShift": 0.030655148294236923, + "firstContentfulPaint": 1315, + "firstMeaningfulPaint": 1315, + "largestContentfulPaint": 6279, + "interactive": 4052, + "speedIndex": 2535, + "totalBlockingTime": 345, + "maxPotentialFID": 365, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 532249147, + "observedTimeOriginTs": 442556175, "observedNavigationStart": 0, - "observedNavigationStartTs": 532249147, - "observedFirstPaint": 135, - "observedFirstPaintTs": 532383820, - "observedFirstContentfulPaint": 135, - "observedFirstContentfulPaintTs": 532383820, - "observedFirstContentfulPaintAllFrames": 135, - "observedFirstContentfulPaintAllFramesTs": 532383820, - "observedFirstMeaningfulPaint": 135, - "observedFirstMeaningfulPaintTs": 532383820, - "observedLargestContentfulPaint": 135, - "observedLargestContentfulPaintTs": 532383820, - "observedLargestContentfulPaintAllFrames": 135, - "observedLargestContentfulPaintAllFramesTs": 532383820, - "observedTraceEnd": 4509, - "observedTraceEndTs": 536758350, - "observedLoad": 241, - "observedLoadTs": 532489786, - "observedDomContentLoaded": 231, - "observedDomContentLoadedTs": 532479785, - "observedCumulativeLayoutShift": 0.030655148294236923, - "observedCumulativeLayoutShiftMainFrame": 0.030655148294236923, - "observedTotalCumulativeLayoutShift": 0.030655148294236923, - "observedFirstVisualChange": 146, - "observedFirstVisualChangeTs": 532395147, - "observedLastVisualChange": 262, - "observedLastVisualChangeTs": 532511147, - "observedSpeedIndex": 156, - "observedSpeedIndexTs": 532404870 + "observedNavigationStartTs": 442556175, + "observedFirstPaint": 1319, + "observedFirstPaintTs": 443875603, + "observedFirstContentfulPaint": 1319, + "observedFirstContentfulPaintTs": 443875603, + "observedFirstContentfulPaintAllFrames": 1319, + "observedFirstContentfulPaintAllFramesTs": 443875603, + "observedFirstMeaningfulPaint": 1319, + "observedFirstMeaningfulPaintTs": 443875603, + "observedLargestContentfulPaint": 1319, + "observedLargestContentfulPaintTs": 443875603, + "observedLargestContentfulPaintAllFrames": 1319, + "observedLargestContentfulPaintAllFramesTs": 443875603, + "observedTraceEnd": 5881, + "observedTraceEndTs": 448437312, + "observedLoad": 1559, + "observedLoadTs": 444115113, + "observedDomContentLoaded": 1558, + "observedDomContentLoadedTs": 444114630, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1326, + "observedFirstVisualChangeTs": 443882175, + "observedLastVisualChange": 2009, + "observedLastVisualChangeTs": 444565175, + "observedSpeedIndex": 1379, + "observedSpeedIndexTs": 443934742 }, { "lcpInvalidated": false @@ -159266,23 +154080,23 @@ "type": "debugdata", "items": [ { - "numRequests": 37, - "numScripts": 6, - "numStylesheets": 1, - "numFonts": 4, - "numTasks": 1060, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 1.3430000000000009, - "throughput": 115583791.65300569, - "maxRtt": 144.194, - "maxServerLatency": 183.673, - "totalByteWeight": 714539, - "totalTaskTime": 861.737000000001, - "mainDocumentTransferSize": 11939 + "numRequests": 74, + "numScripts": 31, + "numStylesheets": 2, + "numFonts": 6, + "numTasks": 2222, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 3, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 23398579.501209054, + "maxRtt": 148.383, + "maxServerLatency": 141.69100000000003, + "totalByteWeight": 1852284, + "totalTaskTime": 716.8160000000009, + "mainDocumentTransferSize": 35138 } ] } @@ -159294,1102 +154108,468 @@ "stats": { "grade": "A" }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://mon-entreprise.urssaf.fr/accessibilité" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "mon-entreprise", - "type": "startup", - "attributes": { - "name": "Mon-entreprise", - "pitch": "Guider les créateurs et créatrices d’entreprise.", - "stats_url": "https://mon-entreprise.urssaf.fr/stats", - "budget_url": "https://mon-entreprise.urssaf.fr/budget", - "link": "https://mon-entreprise.urssaf.fr", - "repository": "https://github.com/betagouv/mon-entreprise", - "contact": "contact@mon-entreprise.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20drame%0AEn%202021%2C%20on%20a%20observ%C3%A9%20une%20augmentation%20de%2016%E2%80%89%25%20de%20cr%C3%A9ations%20d%E2%80%99auto-entreprises%2C%20et%20de%2024%E2%80%89%25%20des%20cr%C3%A9ations%20de%20soci%C3%A9t%C3%A9s%2C%20pour%20atteindre%20le%20chiffre%20record%20d%E2%80%99un%20million%20de%20nouvelles%20entreprises.%0A%0AChaque%20jour%2C%20ces%20nouveaux%20cr%C3%A9ateurs%20d%E2%80%99entreprises%20doivent%20prendre%20de%20nombreuses%20d%C3%A9cisions%20dans%20la%20gestion%20juridique%2C%20fiscale%20et%20sociale%20de%20leur%20entreprise.%0A%0APar%20exemple%20%3A%0A-%20Opter%20pour%20la%20bonne%20forme%20juridique%20avec%20une%20protection%20sociale%20ad%C3%A9quate%20%3B%0A-%20Recruter%20un%20salari%C3%A9%2C%20un%20alternant%20ou%20un%20stagiaire%20%3B%0A-%20Anticiper%20sa%20r%C3%A9mun%C3%A9ration%20en%20fonction%20des%20r%C3%A9sultats%20pr%C3%A9vus%20pour%20l%E2%80%99entreprise.%0A%0ACes%20choix%20sont%20tous%20li%C3%A9s%20aux%20dispositifs%20l%C3%A9gislatifs%20en%20cours%2C%20qui%20%C3%A9voluent%20constamment.%20Un%20mauvais%20choix%20peut%20avoir%20pour%20cons%C3%A9quence%20%3A%0A-%20Des%20difficult%C3%A9s%20de%20tr%C3%A9sorerie%20suite%20%C3%A0%20une%20mauvaise%20estimation%20des%20obligations%20sociales%20et%20fiscales%20%3B%0A-%20Une%20pr%C3%A9carit%C3%A9%20due%20%C3%A0%20une%20couverture%20sociale%20non%20adapt%C3%A9e%20%3B%0A-%20Un%20manque%20%C3%A0%20gagner%20%C3%A0%20cause%20d%E2%80%99un%20statut%20non%20adapt%C3%A9%20%28charges%20non%20d%C3%A9ductibles%20en%20auto-entreprise%29%0A%0A%C3%80%20l%E2%80%99heure%20actuel%2C%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20prennent%20ces%20d%C3%A9cisions%20%3A%0A-%20En%20%2A%2Amimant%20les%20d%C3%A9cisions%20de%20pairs%2A%2A%2C%20qui%20ne%20sont%20pas%20forc%C3%A9ment%20adapt%C3%A9es%20%C3%A0%20son%20cas%20%3B%0A-%20En%20%2A%2Afaisant%20appel%20%C3%A0%20des%20professionnels%2A%2A%20%28comptable%2C%20avocats%2C%20chambres%29%2C%20ce%20qui%20a%20un%20co%C3%BBt%2C%20pour%20des%20conseils%20qui%20peuvent%20%C3%AAtre%20de%20qualit%C3%A9%20et%20de%20pr%C3%A9cision%20variables%20%3B%0A-%20De%20mani%C3%A8re%20autonome%20%C3%A0%20l%E2%80%99aide%20de%20la%20%2A%2Adocumentation%20en%20ligne%2A%2A.%0A%0AConcernant%20ce%20dernier%20cas%2C%20il%20est%20%C3%A0%20noter%20que%20l%E2%80%99offre%20publique%20s%E2%80%99est%20r%C3%A9ellement%20am%C3%A9lior%C3%A9e%20ces%20derni%C3%A8res%20ann%C3%A9es%20%28on%20peut%20citer%20la%20cr%C3%A9ation%20du%20portail%20unique%20d%E2%80%99information%20entreprendre.service-public.fr%29.%20Ces%20sites%20proposent%20des%20textes%20%C3%A0%20jour%2C%20fiables%2C%20et%20non%20int%C3%A9ress%C3%A9s%2C%20ce%20qui%20n%E2%80%99est%20pas%20le%20cas%20de%20sa%20contrepartie%20priv%C3%A9e.%0A%0ACependant%2C%20les%20informations%20disponibles%20restent%20souvent%20pr%C3%A9sent%C3%A9es%20sous%20forme%20de%20%C2%AB%20mur%20de%20texte%20%C2%BB.%20C%E2%80%99est%20alors%20au%20lecteur%20de%20s%C3%A9lectionner%20les%20dispositifs%20applicables%2C%20d%E2%80%99interpr%C3%A9ter%20les%20explications%20et%20d%E2%80%99effectuer%20les%20calculs%20et%20les%20recoupements%20entre%20ses%20choix%20et%20les%20cons%C3%A9quences%20sur%20sa%20situation%20personnelle%20%28couverture%20sociale%2C%20co%C3%BBt%2C%20etc.%29..%0A%0ACela%20prend%20du%20temps%20et%20de%20l%E2%80%99%C3%A9nergie%2C%20au%20d%C3%A9triment%20du%20d%C3%A9veloppement%20de%20l%E2%80%99activit%C3%A9%20%C3%A9conomique.%20Finalement%2C%20cela%20cr%C3%A9e%20beaucoup%20de%20frustration%20et%20d%E2%80%99incompr%C3%A9hension.%0A%0A%2A%2AEn%20r%C3%A9sum%C3%A9%2C%20les%20cr%C3%A9ateurs%20et%20cr%C3%A9atrices%20d%E2%80%99entreprises%20ne%20sont%20pas%20suffisamment%20outill%C3%A9s%20dans%20leur%20prise%20de%20d%C3%A9cisions.%2A%2A%0A%0A%23%23%20Solution%0A%0AMon-entreprise.urssaf.fr%20propose%20des%20simulateurs%20et%20des%20assistants%20pour%20accompagner%20les%20acteurs%20%C3%A9conomiques%20-%20de%20la%20sph%C3%A8re%20des%20entrepreneurs%2C%20salari%C3%A9s%2C%20demandeurs%20d%E2%80%99emploi%20-%20au%20plus%20pr%C3%A8s%20de%20leurs%20parcours%20de%20recherche%20d%E2%80%99informations.%0A%0APar%20exemple%2C%20pour%20aider%20les%20entreprises%20%C3%A0%20anticiper%20le%20co%C3%BBt%20d%E2%80%99un%20recrutement%2C%20nous%20mettons%20%C3%A0%20disposition%20un%20simulateur%20salari%C3%A9.%20Ce%20dernier%20est%20int%C3%A9gr%C3%A9%20directement%20sur%20p%C3%B4le-emploi%2C%20economie.gouv.fr%2C%20entreprendre.service-public.fr%20et%20code.travail.gouv.fr%2C%20ce%20afin%20de%20garantir%20%C3%A0%20l%E2%80%99usager%20le%20parcours%20le%20plus%20fluide%20possible.%0A%0AIl%20existe%20aujourd%E2%80%99hui%20une%20vingtaine%20de%20simulateurs%20et%20assistants%2C%20qui%20couvrent%20un%20ensemble%20de%20questions%20relatives%20%C3%A0%20la%20cr%C3%A9ation%20et%20%C3%A0%20la%20gestion%20d%E2%80%99une%20entreprise.%20%0A%0ACes%20derniers%20proposent%20des%20r%C3%A9sultats%20%2A%2Apersonnalis%C3%A9s%20et%20fiables%2A%2A%2C%20et%20couvrent%20un%20%2A%2Agrand%20nombre%20de%20cas%20sp%C3%A9cifiques%2A%2A.%20Ils%20sont%20%2A%2Amaintenus%20%C3%A0%20jour%2A%2A%20au%20fur%20et%20%C3%A0%20mesure%20des%20%C3%A9volutions%20l%C3%A9gislatives%2C%20et%20proposent%20une%20%2A%2Aexplication%20des%20calculs%2A%2A%20auto-g%C3%A9n%C3%A9r%C3%A9s%2C%20gr%C3%A2ce%20au%20moteur%20de%20calcul%20sp%C3%A9cialement%20con%C3%A7u%20pour%20le%20besoin%20%3A%20%5BPublicodes%5D%28https%3A%2F%2Fpubli.codes%29%0A%0ATous%20les%20simulateurs%20et%20assistant%20peuvent%20%C3%AAtre%20%5Bint%C3%A9gr%C3%A9s%20via%20un%20simple%20script%5D%28https%3A%2F%2Fmon-entreprise.urssaf.fr%2Fd%25C3%25A9veloppeur%2Fiframe%3Fmodule%3Dsalari%25C3%25A9%29%20dans%20n%27importe%20quelle%20page%20web.%20Par%20ailleurs%2C%20nous%20mettons%20%C3%A0%20disposition%20une%20%5BAPI%20REST%5D%28https%3A%2F%2Fmon-entreprise.urssaf.fr%2Fd%25C3%25A9veloppeur%2Fapi%29%20pour%20int%C3%A9grer%20les%20calculs%20des%20simulateur%20dans%20n%27importe%20quelle%20application.%0A%0A%23%23%23%20Internationalisation%20%F0%9F%8C%8D%0A%0ALe%20service%20est%20%C3%A9galement%20disponible%20en%20anglais%20%C3%A0%20l%27adresse%20%5Bmycompanyinfrance.fr%5D%28https%3A%2F%2Fmycompanyinfrance.fr%29%0A%0A%23%23%23%20Transfert%20%C3%A0%20l%E2%80%99Urssaf%0A%0AEn%202020%2C%20le%20service%20et%20l%27%C3%A9quipe%20Mon%20Entreprise%20sont%20transf%C3%A9r%C3%A9s%20hors%20de%20l%27incubateur%20de%20la%20DINUM%20vers%20l%E2%80%99Urssaf%20Caisse%20nationale.%20%0A%0AFin%202021%2C%20le%20site%20est%20int%C3%A9gr%C3%A9%20dans%20l%27%C3%A9cosyst%C3%A8me%20Urssaf%20avec%20une%20nouvelle%20charte%20graphique%20et%20une%20nouvelle%20adresse%20%3A%20https%3A%2F%2Fmon-entreprise.urssaf.fr%0A%20%0A", - "events": [ - { - "name": "national_impact", - "date": "2020-03-01", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2014-10-01", - "end": "" - }, - { - "name": "construction", - "start": "2014-10-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2019-01-01", - "end": "" - }, - { - "name": "transfer", - "start": "2019-09-01", - "end": "" - }, - { - "name": "success", - "start": "2020-03-01", - "end": "" - } - ], - "sponsors": [ - "urssaf" - ], - "thematiques": [], - "dashlord_url": "https://dashlord.incubateur.net/url/mon-entreprise-urssaf-fr/", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://mon-entreprise.urssaf.fr", - "size": 836.78, - "nodes": 231, - "requests": 36, - "grade": "B", - "score": 78, - "ges": 1.44, - "water": 2.16, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 05:55:48.488016", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "F", - "apdex": 0.986, - "apdexGrade": "B", - "uptime": 99.526, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-11-28T23:59:00.000Z", - "testsslGrade": "T", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.46, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.9, - "lighthouse_pwaGrade": "A", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "B", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://mrs.beta.gouv.fr", - "category": "dinum", - "betaId": "mrs", - "http": { - "url": "https://mrs.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:20:03 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Content-Language": "fr", - "Content-Length": "12153", - "Content-Security-Policy": "default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; frame-ancestors 'self'; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; frame-src 'self' https://www.youtube.com; base-uri 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; img-src 'self' https://stats.data.gouv.fr; form-action 'self'", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 05:20:01 GMT", - "Referrer-Policy": "same-origin", - "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", - "Vary": "Accept-Language", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-Xss-Protection": "1; mode=block" - }, - "scan_id": 57051445, - "score": 70, - "start_time": "Sun, 20 Oct 2024 05:19:57 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "default-src": [ - "'unsafe-inline'", - "https://stats.data.gouv.fr", - "https://cdnjs.cloudflare.com", - "'self'", - "https://fonts.gstatic.com" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "https://www.youtube.com", - "'self'" - ], - "img-src": [ - "https://stats.data.gouv.fr", - "'self'" - ], - "script-src": [ - "https://stackpath.bootstrapcdn.com", - "'unsafe-inline'", - "https://stats.data.gouv.fr", - "'unsafe-eval'", - "https://cdnjs.cloudflare.com", - "https://fonts.googleapis.com", - "'self'", - "https://code.jquery.com", - "https://cdn.ravenjs.com", - "https://fonts.gstatic.com" - ], - "style-src": [ - "https://stackpath.bootstrapcdn.com", - "'unsafe-inline'", - "https://cdnjs.cloudflare.com", - "https://fonts.googleapis.com", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.mrs.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://mrs.beta.gouv.fr/", - "https://www.mrs.beta.gouv.fr/" - ], - "status_code": 302 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=15768000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 15768000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.ravenjs.com/3.26.4/raven.min.js": { - "crossorigin": "anonymous", - "integrity": null - }, - "https://code.jquery.com/jquery-3.3.1.slim.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo" - }, - "https://stats.data.gouv.fr/matomo.js": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "cq7r", - "url": "https://mrs.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T21:58:35Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T06:11:49Z", - "next_check_at": "2024-11-24T06:16:47Z", - "created_at": "2021-04-22T19:59:34Z", - "mute_until": null, - "favicon_url": "https://www.mrs.beta.gouv.fr/static/img/logos/launcher-icon-2x.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:56:58Z", - "expires_at": "2025-02-13T00:20:25Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.5, - "timings": { - "redirect": 732, - "namelookup": 470, - "connection": 180, - "handshake": 195, - "response": 845, - "total": 2423 - } - }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "mrs.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "is_exploit": "true", - "cvss": "10.0", - "type": "githubexploit", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" - }, - { - "is_exploit": "true", - "cvss": "10.0", - "type": "githubexploit", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" - }, - { - "is_exploit": "false", - "cvss": "9.8", - "type": "cve", - "id": "CVE-2023-38408" - }, - { - "is_exploit": "false", - "cvss": "9.8", - "type": "cve", - "id": "CVE-2023-28531" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "packetstorm", - "id": "PACKETSTORM:179290" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "D1E049F1-393E-552D-80D1-675022B26911" - }, - { - "is_exploit": "false", - "cvss": "8.1", - "type": "cve", - "id": "CVE-2024-6387" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "6FD8F914-B663-533D-8866-23313FD37804" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "452ADB71-199C-561E-B949-FCDE6288B925" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "zdt", - "id": "1337DAY-ID-39674" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "11F020AC-F907-5606-8805-0516E06160EE" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "type": "githubexploit", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" - }, - { - "is_exploit": "true", - "cvss": "7.5", - "type": "seebug", - "id": "SSV:92579" - }, - { - "is_exploit": "true", - "cvss": "7.5", - "type": "packetstorm", - "id": "PACKETSTORM:173661" - }, - { - "is_exploit": "true", - "cvss": "7.5", - "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" - }, - { - "is_exploit": "true", - "cvss": "7.5", - "type": "zdt", - "id": "1337DAY-ID-26576" - }, - { - "is_exploit": "false", - "cvss": "6.5", - "type": "cve", - "id": "CVE-2023-51385" - }, - { - "is_exploit": "false", - "cvss": "5.9", - "type": "cve", - "id": "CVE-2023-48795" - }, - { - "is_exploit": "false", - "cvss": "5.5", - "type": "cve", - "id": "CVE-2023-51384" - }, - { - "is_exploit": "true", - "cvss": "0.0", - "type": "packetstorm", - "id": "PACKETSTORM:140261" - }, - { - "is_exploit": "true", - "cvss": "0.0", - "type": "githubexploit", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" - }, - { - "is_exploit": "true", - "cvss": "0.0", - "type": "githubexploit", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" - } - ] + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://nosgestesclimat.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://nosgestesclimat.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://nosgestesclimat.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "nosgestesclimat", + "type": "startup", + "attributes": { + "name": "Nos Gestes Climat", + "pitch": "Permettre le calcul de son empreinte carbone individuelle et le passage à l'action pour la réduire", + "stats_url": "https://nosgestesclimat.fr/stats", + "budget_url": "https://nosgestesclimat.fr/budget", + "link": "https://nosgestesclimat.fr", + "repository": "https://github.com/incubateur-ademe/nosgestesclimat", + "contact": "contact@nosgestesclimat.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AOn%20ne%20pr%C3%A9sente%20plus%20le%20changement%20climatique.%201%2C5%20degr%C3%A9s%20ou%202%20degr%C3%A9s%20sont%20des%20objectifs%20aujourd%27hui%20bien%20connus.%20Seulement%2C%20%C3%A0%20partir%20des%20faits%20et%20m%C3%A9canismes%20physiques%20et%20des%20chiffres%20de%20r%C3%A9chauffement%20plan%C3%A9taire%2C%20comment%20se%20traduisent%20les%20objectifs%20de%20l%27accord%20de%20Paris%20dans%20notre%20vie%20quotidienne%20%3F%20Autrement%20dit%2C%20quelle%20est%C2%A0%2Amon%2A%C2%A0empreinte%20sur%20le%20climat%2C%20de%20quoi%20est-elle%20constitu%C3%A9e%20%3F%20Et%20comment%20puis-je%20agir%20dessus%2C%20efficacement%20%3F%0A%0A%23%23%20Probl%C3%A8me%0A%0AUne%20des%20incompr%C3%A9hensions%20les%20plus%20courantes%20identifi%C3%A9es%20est%20la%20m%C3%A9connaissance%20des%20ordres%20de%20grandeur%20de%20l%27empreinte%20personnelle%20et%20sa%20d%C3%A9composition.%20%C3%80%20titre%20d%27exemple%2C%20un%20coup%20de%20projecteur%20immense%20a%20%C3%A9t%C3%A9%20mis%20par%20les%20m%C3%A9dias%20sur%20l%27empreinte%20climat%20du%20num%C3%A9rique%2C%20%C3%A0%20tel%20point%20que%20de%20nombreux%20citoyens%20se%20donnent%20pour%20objectif%20prioritaire%20de%20trier%20leur%20bo%C3%AEte%20mail%2C%20alors%20m%C3%AAme%20que%20l%27empreinte%20de%20ce%20%22geste%22%20est%20tr%C3%A8s%20faible%20relativement%20aux%20autres%20postes%20%28voiture%2C%20avion%2C%20chauffage%2C%20etc.%29.%0A%0ADe%20nombreux%20calculateurs%20d%27empreinte%20climat%20individuelle%20de%20consommation%20existent%2C%20mais%20aucun%20ne%20se%20distingue%20en%20termes%20de%20simplicit%C3%A9%20et%20d%27attractivit%C3%A9%20de%20l%27interface%20%28de%20nombreuses%20autres%20applications%20de%20contenu%20pour%20attirer%20l%27attention%20sur%20le%20sujet%20climatique%2C%20souvent%20jug%C3%A9es%20barbantes%29%20et%20de%20fiabilit%C3%A9%20du%20calcul%20%28p%C3%A9rim%C3%A8tre%20complet%2C%20mise%20%C3%A0%20jour%20r%C3%A9guli%C3%A8re%20et%20it%C3%A9ration%20collaborative%29%2C%20aussi%20bien%20effective%20que%20per%C3%A7ue%20%28importance%20de%20la%20marque%20publique%29.%0A%0A%23%23%20Solution%0A%0ANos%20Gestes%20Climat%20est%20un%20site%20public%20et%20gratuit%2C%20qui%20permet%20au%20citoyen%20sans%20connaissances%20pr%C3%A9alables%20de%20calculer%20son%20empreinte%20climat%20individuelle%20de%20consommation%2C%20en%2010%2F15%20minutes%20dans%20une%20application%20Web%20interactive%20disponible%20sur%20un%20maximum%20de%20terminaux%20utilisateurs.%0A%0ALe%20mod%C3%A8le%20est%20open%20source%20et%20les%20choix%20m%C3%A9thodologiques%20transparents%20et%20document%C3%A9s%2C%20afin%20que%20les%20personnes%20qui%20souhaitent%20entrer%20dans%20le%20d%C3%A9tail%20le%20puissent.%0A%0ANos%20Gestes%20Climat%20inclut%20%C3%A9galement%20un%20parcours%20de%20passage%20%C3%A0%20l%27action%20%C2%A0pour%20pr%C3%A9senter%20%C3%A0%20ceux%20qui%20le%20veulent%20les%20moyens%20d%27action%20concr%C3%A8te%20pour%20r%C3%A9duire%20leur%20empreinte%20carbone%2C%20et%20participer%20%C3%A0%20atteindre%20les%20objectifs%20climat.%0A%0A%23%23%20Strat%C3%A9gie%0A%0AL%E2%80%99objectif%20de%20Nos%20Gestes%20Climat%20est%20d%E2%80%99%C3%AAtre%20diffus%C3%A9%20facilement%20au%20niveau%20individuel%2C%20par%20exemple%20via%20les%20r%C3%A9seaux%20sociaux%2C%20avec%20un%20objectif%20de%20viralit%C3%A9.%0A%0AUn%20autre%20axe%20de%20diffusion%20sont%20les%20m%C3%A9dias%20Web%20d%C3%A9j%C3%A0%20existants%20%28sites%20d%27associations%2C%20m%C3%A9dias%2C%20blogs%2C%20administrations%2C%20etc.%29%20via%20une%20int%C3%A9gration%20en%20quelques%20clics%20sous%20forme%20d%E2%80%99iframe.%20Des%20dizaines%20d%27int%C3%A9grations%20ont%20d%E2%80%99ores%20et%20d%C3%A9j%C3%A0%20%C3%A9t%C3%A9%20r%C3%A9alis%C3%A9es.%0A%0ANos%20Gestes%20Climat%20compte%20aujourd%E2%80%99hui%20plus%20d%E2%80%99un%20million%20de%20tests%20r%C3%A9alis%C3%A9s%20%28juillet%202023%29%20et%20s%27est%20impos%C3%A9%20comme%20un%20calculateur%20de%20r%C3%A9f%C3%A9rence%20%21", + "events": [ + { + "name": "national_impact", + "date": "2022-12-31", + "comment": "" + }, + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 230000€ pour la promotion 12" + } + ], + "phases": [ + { + "name": "success", + "start": "2022-06-13", + "end": "" + } + ], + "sponsors": [ + "ademe" + ], + "thematiques": [ + "Écologie" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/incubateur-ademe/incubateur-ademe/blob/master/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/nosgestesclimat", + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "ademe" } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://nosgestesclimat.fr", + "size": 4710.573, + "nodes": 687, + "requests": 99, + "grade": "E", + "score": 37, + "ges": 2.26, + "water": 3.39, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:30:40.840857", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 0.497, + "apdexGrade": "F", + "uptime": 99.995, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-28T08:35:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.68, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.92, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "E", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://longuevieauxobjets.ademe.fr", + "category": "ademe", + "betaId": "longuevieauxobjets", + "tags": [ + "production", + "ADEME" + ], + "repositories": [ + "incubateur-ademe/longuevieauxobjets" + ], + "http": { + "url": "https://longuevieauxobjets.ademe.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 02:29:58 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Language": "fr", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 02:29:57 GMT", + "Referrer-Policy": "same-origin", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Language, Cookie", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "a50a1227-7e46-4947-aaab-38896bf2fac4" + }, + "scan_id": 57047941, + "score": 35, + "start_time": "Sun, 20 Oct 2024 02:29:56 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://longuevieauxobjets.ademe.fr/", + "redirects": false, + "route": [ + "http://longuevieauxobjets.ademe.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-implemented-and-all-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", + "score_modifier": 5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "jik8", + "url": "https://longuevieauxobjets.ademe.fr/", + "alias": "", + "last_status": 200, + "uptime": 99.954, + "down": false, + "down_since": null, + "up_since": "2024-11-28T13:01:25Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [ + "lan", + "mia", + "bhs", + "sin", + "tok", + "syd" + ], + "recipients": [], + "last_check_at": "2024-12-01T06:38:33Z", + "next_check_at": "2024-12-01T06:43:33Z", + "created_at": "2023-11-27T10:07:47Z", + "mute_until": null, + "favicon_url": "https://longuevieauxobjets.ademe.fr/static/dsfr/dist/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:53:46Z", + "expires_at": "2025-01-18T12:37:39Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 10, + "connection": 25, + "handshake": 31, + "response": 125, + "total": 190 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "longuevieauxobjets.ademe.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ { "service": { "name": "http", - "product": "Golang net/http server", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "Golang net/http server", + "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "EtherNetIP-1", - "id": "2222", - "vulnerabilities": [] - } } ], - "grade": "F" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160397,7 +154577,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160405,7 +154585,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160413,7 +154593,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160421,7 +154601,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -160429,2946 +154609,2113 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-11-15 00:20" + "finding": "2024-10-20 12:37" }, { "id": "cert_notAfter", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-02-13 00:20" + "finding": "2025-01-18 12:37" + }, + { + "id": "cert_extlifeSpan", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1733035000" + }, + { + "id": "HSTS", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" + }, + { + "id": "LOGJAM", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cert_extlifeSpan", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cert_eTLS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-safari_121_ios_122", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "not present" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cert_crlDistributionPoints", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-safari_130_osx_10146", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cert_ocspURL", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-safari_154_osx_1231", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "OCSP_stapling", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-java_7u25", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cert_mustStapleExtension", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-java_8u161", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "DNS_CAArecord", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-java1102", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "certificate_transparency", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-java1703", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "certs_countServer", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-go_1178", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "certs_list_ordering_problem", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-libressl_283", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "no" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cert_caIssuers", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-openssl_102e", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "intermediate_cert <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-openssl_110l", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-openssl_111d", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-openssl_303", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-apple_mail_16_0", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "clientsimulation-thunderbird_91_9", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "rating_spec", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "intermediate_cert_badOCSP", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "rating_doc", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "id": "HTTP_status_code", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "protocol_support_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "100" }, { - "id": "HTTP_clock_skew", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "protocol_support_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "30" }, { - "id": "HTTP_headerTime", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "key_exchange_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732428815" + "finding": "90" }, { - "id": "HSTS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "key_exchange_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "INFO", + "finding": "27" }, { - "id": "HPKP", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipher_strength_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "60" }, { - "id": "banner_server", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipher_strength_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "24" }, { - "id": "banner_application", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "final_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "81" }, { - "id": "cookie_count", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "overall_grade", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "security_headers", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "service", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "HTTP" }, { - "id": "banner_reverseproxy", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "pre_128cipher", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" + "finding": "No 128 cipher limit bug" }, { - "id": "heartbleed", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "SSLv2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" + "finding": "not offered" }, { - "id": "CCS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "SSLv3", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "not offered" }, { - "id": "ticketbleed", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS1", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "not offered" }, { - "id": "ROBOT", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS1_1", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "severity": "INFO", + "finding": "not offered" }, { - "id": "secure_renego", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS1_2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" + "finding": "offered" }, { - "id": "secure_client_renego", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS1_3", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered with final" }, { - "id": "CRIME_TLS", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "ALPN_HTTP2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "h2" }, { - "id": "BREACH", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "ALPN", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "severity": "INFO", + "finding": "http/1.1" }, { - "id": "POODLE_SSL", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_NULL", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "fallback_SCSV", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_aNULL", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "SWEET32", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_EXPORT", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "not offered" }, { - "id": "FREAK", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_LOW", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "DROWN", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_3DES_IDEA", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", + "severity": "INFO", "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" + "finding": "not offered" }, { - "id": "DROWN_hint", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_OBSOLETED", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F4A135D851573B88E12483AD3381DFCBD2284DA5E0ED54EBB9771B2A4DC09979" + "finding": "not offered" }, { - "id": "LOGJAM", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_STRONG_NOFS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "severity": "INFO", + "finding": "not offered" }, { - "id": "LOGJAM-common_primes", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherlist_STRONG_FS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "offered" }, { - "id": "BEAST", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipher_order-tls1_2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "server" }, { - "id": "LUCKY13", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipherorder_TLSv1_2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "winshock", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cipher_order", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" + "finding": "server" }, { - "id": "RC4", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "FS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "clientsimulation-android_60", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "FS_ciphers", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-android_70", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "FS_ECDHE_curves", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" }, { - "id": "clientsimulation-android_81", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS_extensions", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { - "id": "clientsimulation-android_90", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "TLS_session_ticket", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "valid for 300 seconds only (= 30 days" }, { - "id": "clientsimulation-go_1178", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_notBefore", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "2024-10-20 12:37" }, { - "id": "clientsimulation-libressl_283", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_notAfter", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "severity": "OK", + "finding": "2025-01-18 12:37" }, { - "id": "clientsimulation-openssl_102e", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_extlifeSpan", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "clientsimulation-openssl_110l", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_eTLS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "not present" }, { - "id": "clientsimulation-openssl_111d", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_crlDistributionPoints", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "--" }, { - "id": "clientsimulation-openssl_303", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_ocspURL", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "http://r11.o.lencr.org" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "OCSP_stapling", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "LOW", + "finding": "not offered" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_mustStapleExtension", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "--" }, { - "id": "rating_spec", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "DNS_CAArecord", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "severity": "LOW", + "finding": "--" }, { - "id": "rating_doc", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "certificate_transparency", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "severity": "OK", + "finding": "yes (certificate extension)" }, { - "id": "protocol_support_score", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "certs_countServer", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "2" }, { - "id": "protocol_support_score_weighted", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "certs_list_ordering_problem", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "no" }, { - "id": "key_exchange_score", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "cert_caIssuers", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "key_exchange_score_weighted", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "intermediate_cert <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cipher_strength_score", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "cipher_strength_score_weighted", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "intermediate_cert_notBefore <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "2024-03-13 00:00" }, { - "id": "final_score", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "intermediate_cert_notAfter <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "84" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "overall_grade", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "intermediate_cert_badOCSP", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "A" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "grade_cap_reason_1", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "HTTP_status_code", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "200 OK ('/')" }, { - "id": "scanTime", - "ip": "mrs.beta.gouv.fr/162.19.18.40", + "id": "HTTP_clock_skew", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "54" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css?family=Barlow+Condensed|Barlow:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i|Faustina", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "sentry", - "url": "https://cdn.ravenjs.com/3.26.4/raven.min.js", - "details": { - "id": "sentry", - "message": "Ensure your TOS notify the Sentry usage" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css?family=Raleway:400,700|Roboto+Slab:400,700&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "jQuery", - "url": "https://code.jquery.com/jquery-3.3.1.slim.min.js", - "details": { - "id": "jQuery", - "message": "Hosts files directly" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/embed/KgMkHtFO-xs?rel=0", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-player.css", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/embed.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-embed-player.vflset/www-embed-player.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/base.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/id", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google analytics", - "url": "https://static.doubleclick.net/instream/ad_status.js", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/remote.js", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google", - "url": "https://www.google.com/js/th/qYKp54bxMdgPywYfc-yhqguRPCT31YTVhLYxMebccTE.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://i.ytimg.com/vi_webp/KgMkHtFO-xs/sddefault.webp", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "youtube", - "url": "https://yt3.ggpht.com/ytc/AIdro_nMJtowLV_kC3h1laAxPvB8SvEIFx8dDIIgDHIRhWyRJQ=s68-c-k-c0x00ffffff-no-rj", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/id?slf_rd=1", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/generate_204?pYLSCg", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://play.google.com/log?format=json&hasfast=true&authuser=0", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "youtube", - "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.40.3c86", - "value": "1", - "domain": "www.mrs.beta.gouv.fr", - "path": "/", - "expires": 1732430548, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.40.3c86", - "value": "3527d88579ffe0c6.1732428749.", - "domain": "www.mrs.beta.gouv.fr", - "path": "/", - "expires": 1766383949, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-language": "en", - "content-length": "12153", - "content-security-policy": "form-action 'self'; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; frame-ancestors 'self'; frame-src 'self' https://www.youtube.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; base-uri 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; img-src 'self' https://stats.data.gouv.fr; upgrade-insecure-requests", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 06:12:28 GMT", - "referrer-policy": "same-origin", - "strict-transport-security": "max-age=15768000; includeSubDomains; preload", - "vary": "Accept-Language", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-xss-protection": "1; mode=block" + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "1733035053" + }, + { + "id": "HSTS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, - "endpoints": [ - { - "hostname": "mrs.beta.gouv.fr", - "ip": "162.19.18.40", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "142.251.16.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.ravenjs.com", - "ip": "151.101.130.217", - "geoip": { - "city": { - "geoname_id": 5391959, - "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.7642, - "longitude": -122.3993, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94107" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "code.jquery.com", - "ip": "151.101.130.137", - "geoip": { - "city": { - "geoname_id": 5391959, - "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.7642, - "longitude": -122.3993, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94107" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "www.youtube.com", - "ip": "142.251.16.93", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "172.253.62.94", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "googleads.g.doubleclick.net", - "ip": "172.253.115.155", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "static.doubleclick.net", - "ip": "142.251.167.149", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "jnn-pa.googleapis.com", - "ip": "142.251.179.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.google.com", - "ip": "172.253.62.147", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "i.ytimg.com", - "ip": "172.253.122.119", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "yt3.ggpht.com", - "ip": "142.251.16.132", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "play.google.com", - "ip": "142.251.167.138", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.gstatic.com", - "ip": "64.233.180.94", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mrs.beta.gouv.fr/": { - "status": 302 - }, - "https://www.mrs.beta.gouv.fr/": { - "status": 200 - } + { + "id": "banner_server", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" + }, + { + "id": "LOGJAM", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" }, - "technologies": [ - { - "slug": "youtube", - "name": "YouTube", - "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", - "confidence": 100, - "version": null, - "icon": "YouTube.png", - "website": "https://www.youtube.com", - "cpe": null, - "categories": [ - { - "id": 14, - "slug": "video-players", - "name": "Video players" - } - ], - "rootPath": true - }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "4.3.1", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "jquery-cdn", - "name": "jQuery CDN", - "description": "jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.", - "confidence": 100, - "version": null, - "icon": "jQuery.svg", - "website": "https://code.jquery.com/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.3.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "google-font-api", - "name": "Google Font API", - "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", - "confidence": 100, - "version": null, - "icon": "Google Font API.svg", - "website": "https://google.com/fonts", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://mrs.beta.gouv.fr/", - "finalUrl": "https://www.mrs.beta.gouv.fr/", - "fetchTime": "2024-11-24T06:12:02.577Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://mrs.beta.gouv.fr/) was redirected to https://www.mrs.beta.gouv.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.65 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.61 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.5 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4249, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3305, - "firstMeaningfulPaint": 3305, - "largestContentfulPaint": 9096, - "interactive": 4249, - "speedIndex": 4595, - "totalBlockingTime": 30, - "maxPotentialFID": 65, - "cumulativeLayoutShift": 0.0004814071655273438, - "cumulativeLayoutShiftMainFrame": 0.0004814071655273438, - "totalCumulativeLayoutShift": 0.0004814071655273438, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 403539073, - "observedNavigationStart": 0, - "observedNavigationStartTs": 403539073, - "observedFirstPaint": 1372, - "observedFirstPaintTs": 404911539, - "observedFirstContentfulPaint": 1372, - "observedFirstContentfulPaintTs": 404911539, - "observedFirstContentfulPaintAllFrames": 1372, - "observedFirstContentfulPaintAllFramesTs": 404911539, - "observedFirstMeaningfulPaint": 1372, - "observedFirstMeaningfulPaintTs": 404911539, - "observedLargestContentfulPaint": 1470, - "observedLargestContentfulPaintTs": 405009369, - "observedLargestContentfulPaintAllFrames": 1470, - "observedLargestContentfulPaintAllFramesTs": 405009369, - "observedTraceEnd": 4410, - "observedTraceEndTs": 407948867, - "observedLoad": 1731, - "observedLoadTs": 405270376, - "observedDomContentLoaded": 1419, - "observedDomContentLoadedTs": 404957637, - "observedCumulativeLayoutShift": 0.0004814071655273438, - "observedCumulativeLayoutShiftMainFrame": 0.0004814071655273438, - "observedTotalCumulativeLayoutShift": 0.0004814071655273438, - "observedFirstVisualChange": 1378, - "observedFirstVisualChangeTs": 404917073, - "observedLastVisualChange": 1478, - "observedLastVisualChangeTs": 405017073, - "observedSpeedIndex": 1398, - "observedSpeedIndexTs": 404937135 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 61, - "numScripts": 12, - "numStylesheets": 5, - "numFonts": 4, - "numTasks": 904, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 23786682.486098032, - "maxRtt": 87.58999999999999, - "maxServerLatency": 91.17299999999999, - "totalByteWeight": 1263165, - "totalTaskTime": 147.36399999999998, - "mainDocumentTransferSize": 12878 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "LUCKY13", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 3, - "missingWords": [ - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://mrs.beta.gouv.fr/mentions-legales" + "id": "winshock", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "mrs", - "type": "startup", - "attributes": { - "name": "Mes remboursements simplifiés (MRS)", - "pitch": "Simplifier et accélérer le remboursement des frais d'utilisation de véhicule personnel ou transports en commun.", - "stats_url": "https://mrs.beta.gouv.fr/stats", - "link": "https://mrs.beta.gouv.fr", - "repository": "https://github.com/betagouv/mrs", - "contact": "frederic.boulay@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Fiche%20produit%0A%0ASur%20prescription%20de%20votre%20m%C3%A9decin%2C%20l%27Assurance%20Maladie%20rembourse%20les%20frais%20d%27utilisation%20de%20votre%20v%C3%A9hicule%20personnel%20ou%20de%20transports%20en%20commun.%20Plus%20flexible%2C%20plus%20rapide%2C%20plus%20%C3%A9conomique%2C%20le%20recours%20au%20v%C3%A9hicule%20personnel%20est%20pourtant%20le%20mode%20de%20transport%20le%20plus%20compliqu%C3%A9%20et%20le%20plus%20long%20%C3%A0%20se%20faire%20rembourser.%0A%0AAvec%20MRS%2C%20l%27assur%C3%A9%20peut%20d%C3%A9clarer%20en%20ligne%20ses%20frais%20%3A%0A%0A1.%20il%20renseigne%20son%20trajet%0A2.%20il%20prend%20en%20photo%20ses%20justificatifs%20%28prescription%2C%20tickets%20p%C3%A9ages%2Fparking%E2%80%A6%29%0A3.%20il%20valide%20sa%20demande%0A%0ALe%20transport%20est%20rembours%C3%A9%20en%20moins%20d%27une%20semaine.%0A%0ALe%20remboursement%20est%20possible%20aujourd%27hui%20via%20un%20formulaire%20papier%20CERFA%20S-3140C.%0ALa%20strat%C3%A9gie%20est%20en%20deux%20temps%20et%20consiste%20%3A%0A%0A1.%20Donner%20aux%20prescripteurs%20%28m%C3%A9decins%20en%20h%C3%B4pitaux%20et%2Fou%20lib%C3%A9raux%29%20une%20v%C3%A9ritable%20alternative%20au%20transport%20en%20Taxi%2FVSL%20en%20favorisant%20le%20recours%20au%20v%C3%A9hicule%20personnel%20ou%20aux%20transports%20en%20commun%20gr%C3%A2ce%20%C3%A0%20une%20application%20facilitant%20le%20remboursement%3B%0A2.%20Faire%20basculer%20les%20personnes%20utilisant%20le%20formulaire%20papier%20vers%20MRS.%0A%0AMRS%20permet%20la%20promotion%20du%20v%C3%A9hicule%20personnel%20ou%20des%20transports%20en%20commun%2C%20solution%20la%20plus%20avantageuse%20pour%20tous.%0A%0A%23%23%20D%C3%A9ploiement%20national%0A%0AEn%20juin%202019%2C%20au%20vu%20du%20succ%C3%A8s%20de%20MRS%2C%20la%20CNAM%20d%C3%A9cide%20de%20d%C3%A9ployer%20le%20service%20au%20national.%20La%20phase%20de%20transfert%20d%C3%A9bute%20%C3%A0%20l%27%C3%A9t%C3%A9%202019%20et%20se%20poursuit%20d%C3%A9but%202020%20pour%20assurer%20la%20p%C3%A9rennisation%20du%20service.%0A%0AEn%20f%C3%A9vrier%202023%2C%20le%20service%20MRS%20cumule%20plus%20de%20260%20000%20utilisateurs%2C%201%2C3%20million%20de%20demandes%20de%20remboursement%20et%20un%20d%C3%A9lai%20moyen%20de%20remboursement%20de%204%2C3%20jours.%20%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2017-10-01", - "end": "" - }, - { - "name": "construction", - "start": "2017-10-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2019-06-01", - "end": "" - }, - { - "name": "transfer", - "start": "2019-09-01", - "end": "" - }, - { - "name": "success", - "start": "2020-09-01", - "end": "" - } - ], - "sponsors": [ - "cnam" - ], - "thematiques": [] + "id": "RC4", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://mrs.beta.gouv.fr", - "size": 349.322, - "nodes": 143, - "requests": 33, - "grade": "A", - "score": 84, - "ges": 1.32, - "water": 1.98, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:09:04.414935", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 0.5, - "apdexGrade": "F", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-13T00:20:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "F", - "trackersCount": 36, - "lighthouse_performance": 0.65, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.61, - "lighthouse_accessibilityGrade": "C", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.5, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "A", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://nosgestesclimat.fr", - "category": "ademe", - "betaId": "nosgestesclimat", - "tags": [ - "production", - "ADEME" - ], - "repositories": [ - "incubateur-ademe/nosgestesclimat-site-nextjs", - "incubateur-ademe/nosgestesclimat" - ], - "http": { - "url": "https://nosgestesclimat.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:24:09 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Age": "0", - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 02:24:06 GMT", - "Link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"", - "Server": "Vercel", - "Strict-Transport-Security": "max-age=63072000", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", - "X-Matched-Path": "/", - "X-Next-I18n-Router-Locale": "fr", - "X-Powered-By": "Next.js", - "X-Vercel-Cache": "MISS", - "X-Vercel-Id": "pdx1::cdg1::sb46k-1729391045919-9ad45a28f6c9" + "id": "clientsimulation-android_60", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, - "scan_id": 57047874, - "score": 50, - "start_time": "Sun, 20 Oct 2024 02:24:04 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://nosgestesclimat.fr/", - "redirects": true, - "route": [ - "http://nosgestesclimat.fr/", - "https://nosgestesclimat.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000", - "includeSubDomains": false, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "lejf", - "url": "https://nosgestesclimat.fr", - "alias": null, - "last_status": 200, - "uptime": 99.996, - "down": false, - "down_since": null, - "up_since": "2024-11-24T05:40:07Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T06:16:37Z", - "next_check_at": "2024-11-24T06:17:37Z", - "created_at": "2024-09-15T01:37:03Z", - "mute_until": null, - "favicon_url": "https://nosgestesclimat.fr/favicon.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T06:12:41Z", - "expires_at": "2025-01-28T08:35:47Z", - "valid": true, - "error": null + { + "id": "clientsimulation-android_70", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 0.494, - "timings": { - "redirect": 186, - "namelookup": 80, - "connection": 55, - "handshake": 0, - "response": 1011, - "total": 1331 - } + { + "id": "clientsimulation-android_81", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "nosgestesclimat.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Vercel", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "product": "Vercel", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163376,7 +156723,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163384,7 +156731,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163392,7 +156739,7 @@ }, { "id": "cipherlist_LOW", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163400,7 +156747,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163408,7 +156755,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163416,469 +156763,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-30 08:35" + "finding": "2024-10-20 12:37" }, { "id": "cert_notAfter", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-28 08:35" + "finding": "2025-01-18 12:37" }, { "id": "cert_extlifeSpan", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "1732428923" - }, - { - "id": "HTTP_headerAge", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "0 seconds" - }, - { - "id": "HSTS_time", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733035107" }, { - "id": "HSTS_preload", - "ip": "nosgestesclimat.fr/76.76.21.21", + "id": "HSTS", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Vercel" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "Cache-Control", - "ip": "nosgestesclimat.fr/76.76.21.21", + "id": "X-Frame-Options", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -163886,7 +157219,7 @@ }, { "id": "heartbleed", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -163895,7 +157228,7 @@ }, { "id": "CCS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -163904,7 +157237,7 @@ }, { "id": "ticketbleed", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -163913,7 +157246,7 @@ }, { "id": "ROBOT", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -163922,7 +157255,7 @@ }, { "id": "secure_renego", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -163930,7 +157263,7 @@ }, { "id": "secure_client_renego", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -163939,7 +157272,7 @@ }, { "id": "CRIME_TLS", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -163948,16 +157281,16 @@ }, { "id": "BREACH", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -163966,14 +157299,14 @@ }, { "id": "fallback_SCSV", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -163982,7 +157315,7 @@ }, { "id": "FREAK", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -163991,7 +157324,7 @@ }, { "id": "DROWN", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -164000,16 +157333,16 @@ }, { "id": "DROWN_hint", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FEB6C6E69297AC0F339A08A421B38A7D521D293F1C90BA5BFD4215E99BCE0FCD" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" }, { "id": "LOGJAM", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164018,7 +157351,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164027,7 +157360,7 @@ }, { "id": "BEAST", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -164036,7 +157369,7 @@ }, { "id": "LUCKY13", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -164045,7 +157378,7 @@ }, { "id": "winshock", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -164054,7 +157387,7 @@ }, { "id": "RC4", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -164063,1370 +157396,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-go_1178", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "nosgestesclimat.fr/76.76.21.21", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "OK", - "finding": "A+" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanTime", - "ip": "nosgestesclimat.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "46" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "cloudflare", - "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1eb-1f1f7.svg", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1ec-1f1e7.svg", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudflare", - "url": "https://cdnjs.cloudflare.com/ajax/libs/twemoji/15.1.0/svg/1f1ea-1f1f8.svg", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - } - ], - "cookies": [], - "headers": { - "age": "0", - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", - "content-encoding": "br", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 06:14:20 GMT", - "link": "; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\", ; rel=preload; as=\"font\"; crossorigin=\"\"; type=\"font/woff2\"", - "server": "Vercel", - "strict-transport-security": "max-age=63072000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", - "x-matched-path": "/", - "x-next-i18n-router-locale": "fr", - "x-powered-by": "Next.js", - "x-vercel-cache": "MISS", - "x-vercel-id": "cle1::cdg1::782x6-1732428859179-2e22ecc63379" - }, - "endpoints": [ - { - "hostname": "nosgestesclimat.fr", - "ip": "76.76.21.21", - "geoip": { - "city": { - "geoname_id": 5406976, - "names": { - "en": "Walnut", - "ru": "Уолнат", - "zh-CN": "沃尔纳特" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 34.0233, - "longitude": -117.8512, - "metro_code": 803, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "91789" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.25.14", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://nosgestesclimat.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "vercel", - "name": "Vercel", - "description": "Vercel is a cloud platform for static frontends and serverless functions.", - "confidence": 100, - "version": null, - "icon": "vercel.svg", - "website": "https://vercel.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.7", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "cdnjs", - "name": "cdnjs", - "description": "cdnjs is a free distributed JS library delivery service.", - "confidence": 100, - "version": null, - "icon": "cdnjs.svg", - "website": "https://cdnjs.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "id": "clientsimulation-android_11", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "requestedUrl": "https://nosgestesclimat.fr/", - "finalUrl": "https://nosgestesclimat.fr/", - "fetchTime": "2024-11-24T06:13:53.007Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.5 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.92 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.99 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 8609, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1231, - "firstMeaningfulPaint": 1231, - "largestContentfulPaint": 6323, - "interactive": 8609, - "speedIndex": 1612, - "totalBlockingTime": 900, - "maxPotentialFID": 549, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 465109131, - "observedNavigationStart": 0, - "observedNavigationStartTs": 465109131, - "observedFirstPaint": 701, - "observedFirstPaintTs": 465809908, - "observedFirstContentfulPaint": 701, - "observedFirstContentfulPaintTs": 465809908, - "observedFirstContentfulPaintAllFrames": 701, - "observedFirstContentfulPaintAllFramesTs": 465809908, - "observedFirstMeaningfulPaint": 701, - "observedFirstMeaningfulPaintTs": 465809908, - "observedLargestContentfulPaint": 701, - "observedLargestContentfulPaintTs": 465809908, - "observedLargestContentfulPaintAllFrames": 701, - "observedLargestContentfulPaintAllFramesTs": 465809908, - "observedTraceEnd": 5054, - "observedTraceEndTs": 470163479, - "observedLoad": 856, - "observedLoadTs": 465965177, - "observedDomContentLoaded": 825, - "observedDomContentLoadedTs": 465933819, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 705, - "observedFirstVisualChangeTs": 465814131, - "observedLastVisualChange": 1322, - "observedLastVisualChangeTs": 466431131, - "observedSpeedIndex": 759, - "observedSpeedIndexTs": 465868031 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 74, - "numScripts": 31, - "numStylesheets": 2, - "numFonts": 6, - "numTasks": 2116, - "numTasksOver10ms": 6, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 34645297.36695717, - "maxRtt": 103.79, - "maxServerLatency": 88.688, - "totalByteWeight": 1840301, - "totalTaskTime": 763.1189999999999, - "mainDocumentTransferSize": 34981 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://nosgestesclimat.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-android_12", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://nosgestesclimat.fr/mentions-legales" + "id": "clientsimulation-chrome_79_win10", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://nosgestesclimat.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "nosgestesclimat", - "type": "startup", - "attributes": { - "name": "Nos Gestes Climat", - "pitch": "Permettre le calcul de son empreinte carbone individuelle et le passage à l'action pour la réduire", - "stats_url": "https://nosgestesclimat.fr/stats", - "budget_url": "https://nosgestesclimat.fr/budget", - "link": "https://nosgestesclimat.fr", - "repository": "https://github.com/incubateur-ademe/nosgestesclimat", - "contact": "contact@nosgestesclimat.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AOn%20ne%20pr%C3%A9sente%20plus%20le%20changement%20climatique.%201%2C5%20degr%C3%A9s%20ou%202%20degr%C3%A9s%20sont%20des%20objectifs%20aujourd%27hui%20bien%20connus.%20Seulement%2C%20%C3%A0%20partir%20des%20faits%20et%20m%C3%A9canismes%20physiques%20et%20des%20chiffres%20de%20r%C3%A9chauffement%20plan%C3%A9taire%2C%20comment%20se%20traduisent%20les%20objectifs%20de%20l%27accord%20de%20Paris%20dans%20notre%20vie%20quotidienne%20%3F%20Autrement%20dit%2C%20quelle%20est%C2%A0%2Amon%2A%C2%A0empreinte%20sur%20le%20climat%2C%20de%20quoi%20est-elle%20constitu%C3%A9e%20%3F%20Et%20comment%20puis-je%20agir%20dessus%2C%20efficacement%20%3F%0A%0A%23%23%20Probl%C3%A8me%0A%0AUne%20des%20incompr%C3%A9hensions%20les%20plus%20courantes%20identifi%C3%A9es%20est%20la%20m%C3%A9connaissance%20des%20ordres%20de%20grandeur%20de%20l%27empreinte%20personnelle%20et%20sa%20d%C3%A9composition.%20%C3%80%20titre%20d%27exemple%2C%20un%20coup%20de%20projecteur%20immense%20a%20%C3%A9t%C3%A9%20mis%20par%20les%20m%C3%A9dias%20sur%20l%27empreinte%20climat%20du%20num%C3%A9rique%2C%20%C3%A0%20tel%20point%20que%20de%20nombreux%20citoyens%20se%20donnent%20pour%20objectif%20prioritaire%20de%20trier%20leur%20bo%C3%AEte%20mail%2C%20alors%20m%C3%AAme%20que%20l%27empreinte%20de%20ce%20%22geste%22%20est%20tr%C3%A8s%20faible%20relativement%20aux%20autres%20postes%20%28voiture%2C%20avion%2C%20chauffage%2C%20etc.%29.%0A%0ADe%20nombreux%20calculateurs%20d%27empreinte%20climat%20individuelle%20de%20consommation%20existent%2C%20mais%20aucun%20ne%20se%20distingue%20en%20termes%20de%20simplicit%C3%A9%20et%20d%27attractivit%C3%A9%20de%20l%27interface%20%28de%20nombreuses%20autres%20applications%20de%20contenu%20pour%20attirer%20l%27attention%20sur%20le%20sujet%20climatique%2C%20souvent%20jug%C3%A9es%20barbantes%29%20et%20de%20fiabilit%C3%A9%20du%20calcul%20%28p%C3%A9rim%C3%A8tre%20complet%2C%20mise%20%C3%A0%20jour%20r%C3%A9guli%C3%A8re%20et%20it%C3%A9ration%20collaborative%29%2C%20aussi%20bien%20effective%20que%20per%C3%A7ue%20%28importance%20de%20la%20marque%20publique%29.%0A%0A%23%23%20Solution%0A%0ANos%20Gestes%20Climat%20est%20un%20site%20public%20et%20gratuit%2C%20qui%20permet%20au%20citoyen%20sans%20connaissances%20pr%C3%A9alables%20de%20calculer%20son%20empreinte%20climat%20individuelle%20de%20consommation%2C%20en%2010%2F15%20minutes%20dans%20une%20application%20Web%20interactive%20disponible%20sur%20un%20maximum%20de%20terminaux%20utilisateurs.%0A%0ALe%20mod%C3%A8le%20est%20open%20source%20et%20les%20choix%20m%C3%A9thodologiques%20transparents%20et%20document%C3%A9s%2C%20afin%20que%20les%20personnes%20qui%20souhaitent%20entrer%20dans%20le%20d%C3%A9tail%20le%20puissent.%0A%0ANos%20Gestes%20Climat%20inclut%20%C3%A9galement%20un%20parcours%20de%20passage%20%C3%A0%20l%27action%20%C2%A0pour%20pr%C3%A9senter%20%C3%A0%20ceux%20qui%20le%20veulent%20les%20moyens%20d%27action%20concr%C3%A8te%20pour%20r%C3%A9duire%20leur%20empreinte%20carbone%2C%20et%20participer%20%C3%A0%20atteindre%20les%20objectifs%20climat.%0A%0A%23%23%20Strat%C3%A9gie%0A%0AL%E2%80%99objectif%20de%20Nos%20Gestes%20Climat%20est%20d%E2%80%99%C3%AAtre%20diffus%C3%A9%20facilement%20au%20niveau%20individuel%2C%20par%20exemple%20via%20les%20r%C3%A9seaux%20sociaux%2C%20avec%20un%20objectif%20de%20viralit%C3%A9.%0A%0AUn%20autre%20axe%20de%20diffusion%20sont%20les%20m%C3%A9dias%20Web%20d%C3%A9j%C3%A0%20existants%20%28sites%20d%27associations%2C%20m%C3%A9dias%2C%20blogs%2C%20administrations%2C%20etc.%29%20via%20une%20int%C3%A9gration%20en%20quelques%20clics%20sous%20forme%20d%E2%80%99iframe.%20Des%20dizaines%20d%27int%C3%A9grations%20ont%20d%E2%80%99ores%20et%20d%C3%A9j%C3%A0%20%C3%A9t%C3%A9%20r%C3%A9alis%C3%A9es.%0A%0ANos%20Gestes%20Climat%20compte%20aujourd%E2%80%99hui%20plus%20d%E2%80%99un%20million%20de%20tests%20r%C3%A9alis%C3%A9s%20%28juillet%202023%29%20et%20s%27est%20impos%C3%A9%20comme%20un%20calculateur%20de%20r%C3%A9f%C3%A9rence%20%21", - "events": [ - { - "name": "national_impact", - "date": "2022-12-31", - "comment": "" - }, - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 230000€ pour la promotion 12" - } - ], - "phases": [ - { - "name": "success", - "start": "2022-06-13", - "end": "" - } - ], - "sponsors": [ - "ademe" - ], - "thematiques": [ - "Écologie" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/incubateur-ademe/incubateur-ademe/blob/master/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/nosgestesclimat", - "accessibility_status": "partiellement conforme" + "id": "clientsimulation-chrome_101_win10", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "ademe" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://nosgestesclimat.fr", - "size": 4773.929, - "nodes": 695, - "requests": 94, - "grade": "E", - "score": 37, - "ges": 2.26, - "water": 3.39, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:10:50.250852", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 0.494, - "apdexGrade": "F", - "uptime": 99.996, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-28T08:35:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.5, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.92, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "E", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://longuevieauxobjets.ademe.fr", - "category": "ademe", - "betaId": "longuevieauxobjets", - "tags": [ - "production", - "ADEME" - ], - "repositories": [ - "incubateur-ademe/longuevieauxobjets" - ], - "http": { - "url": "https://longuevieauxobjets.ademe.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:29:58 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Language": "fr", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 02:29:57 GMT", - "Referrer-Policy": "same-origin", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Language, Cookie", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "a50a1227-7e46-4947-aaab-38896bf2fac4" + "id": "clientsimulation-firefox_66_win81", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 57047941, - "score": 35, - "start_time": "Sun, 20 Oct 2024 02:29:56 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "http://longuevieauxobjets.ademe.fr/", - "redirects": false, - "route": [ - "http://longuevieauxobjets.ademe.fr/" - ], - "status_code": 200 - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-implemented-and-all-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", - "score_modifier": 5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "jik8", - "url": "https://longuevieauxobjets.ademe.fr/", - "alias": "", - "last_status": 200, - "uptime": 99.978, - "down": false, - "down_since": null, - "up_since": "2024-11-20T07:39:46Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [ - "lan", - "mia", - "bhs", - "sin", - "tok", - "syd" - ], - "recipients": [], - "last_check_at": "2024-11-24T06:27:39Z", - "next_check_at": "2024-11-24T06:32:39Z", - "created_at": "2023-11-27T10:07:47Z", - "mute_until": null, - "favicon_url": "https://longuevieauxobjets.ademe.fr/static/dsfr/dist/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T05:42:53Z", - "expires_at": "2025-01-18T12:37:39Z", - "valid": true, - "error": null + { + "id": "clientsimulation-firefox_100_win10", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 8, - "connection": 24, - "handshake": 30, - "response": 125, - "total": 186 - } + { + "id": "clientsimulation-ie_6_xp", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "longuevieauxobjets.ademe.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -165434,7 +157796,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -165442,7 +157804,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -165450,7 +157812,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -165458,7 +157820,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -165466,7 +157828,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -165474,455 +157836,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-10-20 12:37" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-01-18 12:37" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732429638" + "finding": "1733035160" }, { "id": "HSTS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -165930,7 +158292,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -165939,7 +158301,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -165948,7 +158310,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -165957,7 +158319,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -165966,7 +158328,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -165974,7 +158336,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -165983,7 +158345,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -165992,7 +158354,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -166001,7 +158363,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -166010,14 +158372,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -166026,7 +158388,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -166035,7 +158397,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -166044,7 +158406,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -166053,7 +158415,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -166062,7 +158424,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -166071,7 +158433,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -166080,7 +158442,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -166089,7 +158451,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -166098,7 +158460,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -166107,399 +158469,1283 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "service", + "id": "scanTime", "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", + "finding": "218" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "_pk_ses.120.3f48", + "value": "1", + "domain": "longuevieauxobjets.ademe.fr", + "path": "/", + "expires": 1733036728, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.120.3f48", + "value": "9b79914136868596.1733034928.", + "domain": "longuevieauxobjets.ademe.fr", + "path": "/", + "expires": 1766990128, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-language": "fr", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 06:35:27 GMT", + "referrer-policy": "same-origin", + "vary": "Accept-Language, Cookie", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "9ad5bb50-95d0-41b6-a28f-a416b7a632c0" + }, + "endpoints": [ + { + "hostname": "longuevieauxobjets.ademe.fr", + "ip": "5.104.101.30", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://longuevieauxobjets.ademe.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wagtail", + "name": "Wagtail", + "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "confidence": 100, + "version": null, + "icon": "Wagtail.svg", + "website": "https://wagtail.org", + "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "confidence": 100, + "version": null, + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, + "categories": [ + { + "id": 73, + "slug": "surveys", + "name": "Surveys" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://longuevieauxobjets.ademe.fr/", + "finalUrl": "https://longuevieauxobjets.ademe.fr/", + "fetchTime": "2024-12-01T06:35:00.448Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.84 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1714, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1714, + "firstMeaningfulPaint": 1714, + "largestContentfulPaint": 4297, + "interactive": 1714, + "speedIndex": 2180, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.0868599582248264, + "cumulativeLayoutShiftMainFrame": 0.0868599582248264, + "totalCumulativeLayoutShift": 0.0868599582248264, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 376942685, + "observedNavigationStart": 0, + "observedNavigationStartTs": 376942685, + "observedFirstPaint": 864, + "observedFirstPaintTs": 377806924, + "observedFirstContentfulPaint": 864, + "observedFirstContentfulPaintTs": 377806924, + "observedFirstContentfulPaintAllFrames": 864, + "observedFirstContentfulPaintAllFramesTs": 377806924, + "observedFirstMeaningfulPaint": 864, + "observedFirstMeaningfulPaintTs": 377806924, + "observedLargestContentfulPaint": 1088, + "observedLargestContentfulPaintTs": 378030746, + "observedLargestContentfulPaintAllFrames": 1088, + "observedLargestContentfulPaintAllFramesTs": 378030746, + "observedTraceEnd": 3903, + "observedTraceEndTs": 380845392, + "observedLoad": 1504, + "observedLoadTs": 378446703, + "observedDomContentLoaded": 847, + "observedDomContentLoadedTs": 377789387, + "observedCumulativeLayoutShift": 0.0868599582248264, + "observedCumulativeLayoutShiftMainFrame": 0.0868599582248264, + "observedTotalCumulativeLayoutShift": 0.0868599582248264, + "observedFirstVisualChange": 875, + "observedFirstVisualChangeTs": 377817685, + "observedLastVisualChange": 1092, + "observedLastVisualChangeTs": 378034685, + "observedSpeedIndex": 940, + "observedSpeedIndexTs": 377882384 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 38, + "numScripts": 2, + "numStylesheets": 4, + "numFonts": 4, + "numTasks": 34, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 76.041, + "throughput": 24383971.613537747, + "maxRtt": 86.388, + "maxServerLatency": 14.823999999999998, + "totalByteWeight": 2618232, + "totalTaskTime": 3.2079999999999997, + "mainDocumentTransferSize": 8260 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://longuevieauxobjets.ademe.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://longuevieauxobjets.ademe.fr/mentions-legales/" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://longuevieauxobjets.ademe.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "longuevieauxobjets", + "type": "startup", + "attributes": { + "name": "Longue vie aux objets", + "pitch": "Encourager le tri et la consommation responsable pour donner une nouvelle vie aux objets, éviter l'achat neuf et réduire les déchets", + "stats_url": "https://longuevieauxobjets.ademe.fr/stats", + "budget_url": "https://longuevieauxobjets.ademe.fr/budget", + "link": "https://longuevieauxobjets.ademe.fr", + "repository": "https://github.com/incubateur-ademe/quefairedemesobjets", + "contact": "longuevieauxobjets@ademe.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%20%F0%9F%91%80%0A%0A%0A%2A77%25%20des%20citoyens%20sont%20motiv%C3%A9s%20%C3%A0%20changer%20leurs%20habitudes%20de%20consommation%20pour%20assurer%20l%E2%80%99avenir%20des%20g%C3%A9n%C3%A9rations%20futures.%2A%20%28Barom%C3%A8tre%20Greenflex%2C%20ADEME%20de%20la%20consommation%20responsable%2C%202023%29%0A%0AAnn%C3%A9e%20apr%C3%A8s%20ann%C3%A9e%2C%20les%20fran%C3%A7ais%20se%20d%C3%A9clarent%20de%20plus%20en%20plus%20nombreux%20%C3%A0%20vouloir%20agir%20en%20faveur%20de%20l%E2%80%99environnement.%20Et%20le%C2%A0%2A%2Atri%20et%20la%20consommation%20responsable%2A%2A%C2%A0sont%C2%A0%2A%2Aau%20c%C5%93ur%20des%20pr%C3%A9occupations%2A%2A%C2%A0%2A%2Aet%20des%20gestes%2A%2A%C2%A0que%20les%20citoyens%20peuvent%20mettre%20en%20place.%0A%0APour%20se%20d%C3%A9sencombrer%20et%20consommer%20de%20mani%C3%A8re%20plus%20responsable%2C%20les%20citoyens%20comme%20les%20professionnels%20du%20secteur%20ont%20besoin%20de%20conna%C3%AEtre%C2%A0%2A%2Al%E2%80%99ensemble%20des%20lieux%20o%C3%B9%20ils%20pourront%20r%C3%A9parer%2C%20partager%2C%20donner%20ou%20vendre%20ces%20objets%2A%2A.%0A%0ASi%20le%20tri%20des%20principaux%20emballages%20est%20d%C3%A9sormais%20bien%20connu%2C%20il%20est%20loin%20d%E2%80%99%C3%AAtre%20g%C3%A9n%C3%A9ralis%C3%A9%20pour%20tous%20les%20objets.%20De%20plus%2C%20les%20pratiques%20de%20r%C3%A9paration%20et%20de%20partage%20peinent%20%C3%A0%20s%E2%80%99inscrire%20de%20mani%C3%A8re%20p%C3%A9renne%20dans%20les%20pratiques%20de%20citoyens.%0A%0AParall%C3%A8lement%2C%20le%20dispositif%20des%20fili%C3%A8res%20de%C2%A0%2AResponsabilit%C3%A9%20%C3%A9largie%20du%20producteur%2A%C2%A0%28REP%29%20continue%20de%20s%E2%80%99%C3%A9largir%20et%20de%20nouvelles%20fili%C3%A8res%20REP%20s%E2%80%99appr%C3%AAtent%20%C3%A0%20%C3%AAtre%20lanc%C3%A9es.%0AInspir%C3%A9%20du%20principe%20%C2%AB%20pollueur-payeur%20%C2%BB%2C%20le%20dispositif%20de%20REP%20implique%20que%20les%C2%A0acteurs%20%C3%A9conomiques%C2%A0%28fabricants%2C%20distributeurs%2C%20importateurs%29%20sont%C2%A0responsables%20de%20l%E2%80%99ensemble%20du%20cycle%20de%20vie%20des%20produits%C2%A0qu%E2%80%99ils%20mettent%20sur%20le%20march%C3%A9%20%3A%20%C3%A9co-conception%20des%20produits%2C%20pr%C3%A9vention%20des%20d%C3%A9chets%2C%20allongement%20de%20la%20dur%C3%A9e%20d%E2%80%99usage%20et%20gestion%20de%20fin%20de%20vie.%0A%0A%23%23%20Solution%20%F0%9F%92%A1%0A%5BLongue%20vie%20aux%20objets%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%20accompagne%20les%20%2A%2Acitoyens%2A%2A%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2C%20gr%C3%A2ce%20%C3%A0%20%2A%2Ades%20bonnes%20pratiques%20et%20adresses%20autour%20de%20chez%20eux%2A%2A%2C%20pour%20%C3%A9viter%20l%27achat%20neuf%20et%20r%C3%A9duire%20les%20d%C3%A9chets.%0A%0APour%20les%20%2A%2Acollectivit%C3%A9s%2C%20associations%2C%20entreprises%20et%20m%C3%A9dias%2A%2A%2C%20Longue%20vie%20aux%20objets%20met%20%C3%A0%20disposition%20des%20%2A%2Aoutils%20num%C3%A9riques%20gratuits%20de%20sensibilisation%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2A%2A%20qui%20valorisent%20les%20acteurs%20de%20l%27%C3%A9conomie%20sur%20chaque%20territoire.%0A%0ADeux%20outils%20sont%20disponibles%20%3A%0A%2A%20%2A%2A%5BL%27Assistant%20%22Que%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%22%5D%28https%3A%2F%2Fquefairedemesdechets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20conseil%2A%2A%2C%20aide%20les%20citoyens%20%C3%A0%20%2A%2Acomprendre%20le%20cycle%20de%20vie%20des%20objets%2C%20pour%20cesser%20de%20les%20jeter%2A%2A.%20Les%20citoyens%20sont%20guid%C3%A9s%20pour%20se%20d%C3%A9sencombrer%20de%20fa%C3%A7on%20responsable.%0A%2A%20%2A%2A%5BLa%20Carte%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Flacarte%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20g%C3%A9olocalis%C3%A9e%2A%2A%2C%20met%20en%20avant%20les%20%2A%2Asolutions%20locales%20pour%20prolonger%20la%20vie%20de%20ses%20objets%2A%2A.%20Les%20citoyens%20d%C3%A9couvrent%20de%20bonnes%20adresses%20autour%20de%20chez%20eux%20pour%20mieux%20consommer.%0A%0ANous%20allons%20rendre%20progressivement%20toutes%20nos%20%20%2A%2A%5Bdonn%C3%A9es%20accessibles%20en%20open-data%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Freutiliser-nos-donnees%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%20pour%20qu%27elles%20puissent%20%C3%AAtre%20r%C3%A9utilis%C3%A9es%20facilement.%0A%0ANous%20souhaitons%20devenir%20la%20%2A%2Ar%C3%A9f%C3%A9rence%20nationale%20des%20solutions%20de%20tri%20et%20de%20consommation%20responsable%2A%2A%2C%20en%20valorisant%20les%20acteurs%20de%20l%E2%80%99%C3%A9conomie%20circulaire%20et%20en%20diffusant%20nos%20outils%20gratuitement.%0A%0A%23%23%20Strat%C3%A9gie%20de%20diffusion%20%F0%9F%93%88%0A%0APour%20augmenter%20la%20diffusion%20de%20nos%20outils%20et%20d%C3%A9multiplier%20leur%20usage%2C%20nous%20nous%20appuyons%20sur%20une%20strat%C3%A9gie%20B2B2C%2C%20avec%20des%20%2A%2Arelais%20locaux%2C%20collectivit%C3%A9s%2C%20associations%2C%20%20entreprises%20et%20m%C3%A9dias%2A%2A.%0A%0ANos%20objectifs%20pour%20nos%20relais%20sont%20%3A%20%0A-%20%2A%2ACollectivit%C3%A9s%2A%2A%20%3A%20Communiquer%20facilement%20aupr%C3%A8s%20de%20leurs%20administr%C3%A9s%20sur%20les%20lieux%20de%20r%C3%A9paration%2C%20r%C3%A9emploi%20ou%20recyclage.%0A-%20%2A%2AM%C3%A9dias%2A%2A%20%3A%20Donner%20des%20pistes%20d%27action%20concr%C3%A8tes%20%C3%A0%20leurs%20lecteurs%20pour%20r%C3%A9duire%20leurs%20d%C3%A9chets%20en%20prolongeant%20la%20vie%20de%20leurs%20objets.%0A-%20%2A%2AAssociations%20et%20entreprises%2A%2A%20%3A%20Incarner%20leurs%20engagements%20en%20faveur%20du%20r%C3%A9emploi.%0A%0ALa%20carte%20a%20%C3%A9t%C3%A9%20mise%20en%20avant%20lors%20de%20la%20campagne%20de%20communication%20de%20l%E2%80%99ADEME%20%E2%80%9C%5BEpargnons%20nos%20ressources%5D%28https%3A%2F%2Fepargnonsnosressources.gouv.fr%2F%29%E2%80%9D%20lanc%C3%A9e%20en%20novembre%202023.%0A%0AComme%20point%20d%E2%80%99entr%C3%A9e%20unique%20pour%20les%20citoyens%2C%20l%27assistant%20%E2%80%9CQue%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%E2%80%9D%20est%20connu%20depuis%2010%20ans%2C%20relay%C3%A9%20chaque%20ann%C3%A9e%20par%20les%20%5Bcampagnes%20minist%C3%A9rielles%20sur%20l%27Info-tri%5D%28https%3A%2F%2Fwww.ecologie.gouv.fr%2Finfo-tri%29%20et%20mentionn%C3%A9%20sur%20les%20%C3%A9tiquettes%20de%20nombreux%20objets%2C%20pour%20toucher%20le%20maximum%20de%20citoyens.%20%0A%0ANous%20pr%C3%A9voyons%20un%20d%C3%A9ploiement%20progressif%20de%20nos%20outils%20sur%20les%20sites%20des%20collectivit%C3%A9s%20pour%20toucher%20leurs%20usagers%2C%20en%20commen%C3%A7ant%20par%20les%20collectivit%C3%A9s%20de%20tailles%20petite%20et%20moyenne%2C%20n%E2%80%99ayant%20pas%20de%20solutions%20num%C3%A9riques%20ou%20incompl%C3%A8tes%20sur%20ce%20sujet.%0A%0A%0A%0A%23%23%20Impact%20%F0%9F%8C%8E%0A%0ALongue%20vie%20aux%20objets%20est%20un%20service%20num%C3%A9rique%20con%C3%A7u%20selon%20l%E2%80%99%2A%2Aapproche%20Startup%20d%E2%80%99%C3%89tat%20et%20pilot%C3%A9%20par%20l%E2%80%99impact%2A%2A.%0A%0APour%20mesurer%20l%27impact%20de%20nos%20produits%2C%20nous%20nous%20fixons%20des%20objectifs%20et%20des%20indicateurs.%0A%0ANos%203%20principaux%20objectifs%20avec%20leur%20indicateur%20%20%22%C3%A9toile%20du%20nord%22%20suivi%20sont%20%3A%0A%2A%20%2A%2AFiabiliser%20et%20enrichir%20les%20donn%C3%A9es%2A%2A%20%3A%20suivi%20du%20pourcentage%20des%20acteurs%20de%20notre%20base%20de%20donn%C3%A9es%20avec%20un%20SIRET%0A%2A%20%2A%2AD%C3%A9multiplier%20la%20r%C3%A9utilisation%20de%20nos%20outils%2A%2A%20%28avec%20un%20focus%20sur%20les%20collectivit%C3%A9s%29%20%3A%20suivi%20du%20nombre%20de%20collectivit%C3%A9s%20r%C3%A9utilisant%20un%20de%20nos%20outils%0A%2A%20%2A%2AOrienter%20nos%20utilisateurs%20vers%20les%20pratiques%20les%20plus%20responsables%2A%2A%20%3A%20suivi%20du%20nombre%20d%27interactions%20mensuelles%20avec%20les%20solutions%20propos%C3%A9es%20sur%20notre%20carte%0A%0ATous%20nos%20indicateurs%20peuvent%20%C3%AAtre%20suivis%20sur%20le%20%5Bsite%20de%20notre%20startup%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Fstats%2F%29.%0A%0AAujourd%E2%80%99hui%2C%20nos%20m%C3%A9triques%20d%E2%80%99impact%20et%20d%27usage%20sont%20suivies%20gr%C3%A2ce%20aux%20outils%20Posthog%2C%20Matomo%20et%20Metabase.%0A%0AUn%20%2A%2Acomit%C3%A9%20d%E2%80%99investissement%2A%2A%2C%20instance%20de%20pilotage%20principal%20d%E2%80%99un%20service%20num%C3%A9rique%20dans%20le%20programme%20beta.gouv.fr%2C%20a%20lieu%20tous%20les%206%20mois%20pour%20faire%20le%20point%20sur%20l%E2%80%99impact%20obtenu%20par%20l%E2%80%99%C3%A9quipe%20et%20arbitrer%20sur%20les%20objectifs%20et%20les%20investissements%20consentis%20pour%20la%20poursuite%20du%20service.%0A", + "events": [ + { + "name": "committee", + "date": "2023-04-06", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2023-01-01", + "end": "" + }, + { + "name": "construction", + "start": "2023-06-01", + "end": "" + } + ], + "sponsors": [ + "ademe" + ], + "thematiques": [ + "Écologie" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/incubateur-ademe/quefairedemesobjets/blob/main/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur.ademe.fr/startup/longuevieauxobjets", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "ademe" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://longuevieauxobjets.ademe.fr", + "size": 2822.539, + "nodes": 290, + "requests": 34, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:32:02.024213", + "page_type": "article" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "D", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.954, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-18T12:37:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.84, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "category": "startup", + "http": { + "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:33:06 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Access-Control-Allow-Origin": "*", + "Connection": "keep-alive", + "Content-Length": "258", + "Content-Type": "application/json", + "Country-Package": "openfisca-france", + "Country-Package-Version": "168.0.14", + "Date": "Sun, 20 Oct 2024 05:33:05 GMT", + "Server": "nginx/1.18.0" + }, + "scan_id": 57051754, + "score": 30, + "start_time": "Sun, 20 Oct 2024 05:33:04 GMT", + "state": "FINISHED", + "status_code": 300, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://http-observatory.security.mozilla.org", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", + "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/" + ], + "status_code": 300 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": null, + "nmap": { + "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "995", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.4p1 Debian 5+deb11u3", + "vulnerabilities": [ + { + "id": "CVE-2023-38408", + "is_exploit": "false", + "cvss": "9.8", + "type": "cve" + }, + { + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "SSV:92579", + "is_exploit": "true", + "cvss": "7.5", + "type": "seebug" + }, + { + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "cvss": "7.5", + "type": "packetstorm" + }, + { + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "cvss": "7.5", + "type": "githubexploit" + }, + { + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "cvss": "7.5", + "type": "zdt" + }, + { + "id": "CVE-2021-28041", + "is_exploit": "false", + "cvss": "7.1", + "type": "cve" + }, + { + "id": "CVE-2021-41617", + "is_exploit": "false", + "cvss": "7.0", + "type": "cve" + }, + { + "id": "CVE-2023-51385", + "is_exploit": "false", + "cvss": "6.5", + "type": "cve" + }, + { + "id": "CVE-2023-48795", + "is_exploit": "false", + "cvss": "5.9", + "type": "cve" + }, + { + "id": "CVE-2020-14145", + "is_exploit": "false", + "cvss": "5.9", + "type": "cve" + }, + { + "id": "CVE-2016-20012", + "is_exploit": "false", + "cvss": "5.3", + "type": "cve" + }, + { + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "cvss": "0.0", + "type": "packetstorm" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Node.js Express framework", + "id": "8001", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Node.js Express framework", + "id": "8002", + "vulnerabilities": [] + } + } + ], + "grade": "E" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166507,7 +159753,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166515,7 +159761,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166523,7 +159769,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166531,7 +159777,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -166539,7 +159785,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -166547,455 +159793,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "id": "cipher-tls1_2_x9f", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "2024-10-20 12:37" + "finding": "2024-10-24 21:12" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "2025-01-18 12:37" + "finding": "2025-01-22 21:12" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "WARN", + "finding": "Unexpected 300 MULTIPLE CHOICES @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "1732429690" + "finding": "1733035817" }, { "id": "HSTS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.18.0" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "nosniff" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "id": "Access-Control-Allow-Origin", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "*" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -167003,7 +160263,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -167012,7 +160272,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -167021,7 +160281,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -167030,7 +160290,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -167039,7 +160299,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -167047,7 +160307,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -167056,7 +160316,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -167065,16 +160325,16 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -167083,14 +160343,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -167099,7 +160359,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -167108,7 +160368,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -167117,16 +160377,16 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=298AC8F3BA66CCB22F85C8C9C63DEB78129EE437E57A16D8BDD8EAF9D6B24681" }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167135,7 +160395,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167144,7 +160404,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -167153,7 +160413,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -167162,7 +160422,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -167171,7 +160431,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -167180,399 +160440,880 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, + { + "id": "scanTime", + "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "port": "443", + "severity": "INFO", + "finding": "66" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "access-control-allow-origin": "*", + "content-length": "258", + "content-type": "application/json", + "country-package": "openfisca-france", + "country-package-version": "169.7.1", + "date": "Sun, 01 Dec 2024 06:49:22 GMT", + "server": "nginx/1.18.0" + }, + "endpoints": [ + { + "hostname": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/": { + "status": 300 + } + }, + "technologies": [ + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D", + "nmapGrade": "E", + "nmapOpenPortsCount": 5, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-22T21:12:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://pad.incubateur.net", + "category": "betagouv", + "http": { + "url": "https://pad.incubateur.net", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:37:58 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-321a3fd3-09c0-443b-b199-e6296d3db82b' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 05:37:57 GMT", + "ETag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", + "HedgeDoc-Version": "1.8.2", + "Referrer-Policy": "same-origin", + "Set-Cookie": "connect.sid=s%3ASp42FsOG_QAlW51sJWAuwYeMNUuN6gHJ.DKK%2Bxa2oHs7%2BT1uLffPPDF3at44MsEAHbNWn6Jr64QU; Path=/; Expires=Sun, 03 Nov 2024 05:37:57 GMT; HttpOnly; Secure; SameSite=Lax", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Powered-By": "Express", + "X-Request-ID": "c2dff74e-a7ff-4efe-8600-112519225e26" + }, + "scan_id": 57051960, + "score": 55, + "start_time": "Sun, 20 Oct 2024 05:37:56 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "child-src": [ + "*" + ], + "connect-src": [ + "*" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "data:", + "https://*.disquscdn.com", + "https://public.slidesharecdn.com", + "'self'" + ], + "img-src": [ + "*" + ], + "media-src": [ + "*" + ], + "object-src": [ + "*" + ], + "script-src": [ + "https://*.disquscdn.com", + "https://www.google-analytics.com", + "vimeo.com", + "'sha256-81aclznzisnygyzrsuoyhpzwdttxi7vc1ym4unxqwam='", + "https://disqus.com", + "'self'", + "https://*.disqus.com", + "'unsafe-eval'", + "https://gist.github.com", + "'nonce-321a3fd3-09c0-443b-b199-e6296d3db82b'", + "www.slideshare.net" + ], + "style-src": [ + "'unsafe-inline'", + "https://*.disquscdn.com", + "https://github.githubassets.com", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "connect.sid": { + "domain": "pad.incubateur.net", + "expires": 1730612278, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://pad.incubateur.net/", + "redirects": true, + "route": [ + "http://pad.incubateur.net/", + "https://pad.incubateur.net/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "jmd1", + "url": "https://pad.incubateur.net", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T14:11:05Z", + "error": null, + "period": 120, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T06:55:46Z", + "next_check_at": "2024-12-01T06:57:46Z", + "created_at": "2021-03-31T16:12:07Z", + "mute_until": null, + "favicon_url": "https://pad.incubateur.net/icons/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:41:47Z", + "expires_at": "2025-01-13T17:02:39Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 68, + "connection": 124, + "handshake": 130, + "response": 193, + "total": 515 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "pad.incubateur.net", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167580,7 +161321,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167588,7 +161329,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167596,7 +161337,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167604,7 +161345,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167612,7 +161353,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167620,455 +161361,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-10-20 12:37" + "finding": "2024-10-15 17:02" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-01-18 12:37" + "finding": "2025-01-13 17:02" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732429742" + "finding": "1733035944" }, { - "id": "HSTS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "id": "HSTS_time", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pad.incubateur.net/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pad.incubateur.net/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "id": "cookie_secure", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "id": "cookie_httponly", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "Content-Security-Policy", + "ip": "pad.incubateur.net/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-f9baef1b-b282-4f9e-aca8-94c29b7bcfd7' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -168076,7 +161838,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -168085,7 +161847,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -168094,7 +161856,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -168103,7 +161865,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -168112,7 +161874,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -168120,7 +161882,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -168129,7 +161891,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -168138,16 +161900,16 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -168156,14 +161918,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -168172,7 +161934,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -168181,7 +161943,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -168190,16 +161952,16 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168208,7 +161970,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168217,7 +161979,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -168226,7 +161988,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -168235,7 +161997,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -168244,7 +162006,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -168253,399 +162015,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168653,7 +162408,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168661,7 +162416,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168669,7 +162424,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168677,7 +162432,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -168685,7 +162440,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -168693,455 +162448,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-10-20 12:37" + "finding": "2024-10-15 17:02" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-18 12:37" + "finding": "2025-01-13 17:02" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732429795" + "finding": "1733036007" }, { - "id": "HSTS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "id": "HSTS_time", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "id": "cookie_secure", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "id": "cookie_httponly", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "Content-Security-Policy", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-563c2b26-51ee-4333-a2a0-0506a0d2066e' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -169149,7 +162925,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -169158,7 +162934,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -169167,7 +162943,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -169176,7 +162952,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -169185,7 +162961,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -169193,7 +162969,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -169202,7 +162978,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -169211,16 +162987,16 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -169229,14 +163005,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -169245,7 +163021,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -169254,7 +163030,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -169263,16 +163039,16 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=268425B5B475D173C27007F7190219AD9C7AFFA50815867886271557A8844661" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -169281,7 +163057,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -169290,7 +163066,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -169299,7 +163075,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -169308,7 +163084,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -169317,7 +163093,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -169326,1283 +163102,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, - { - "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "214" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.120.3f48", - "value": "1", - "domain": "longuevieauxobjets.ademe.fr", - "path": "/", - "expires": 1732431365, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.120.3f48", - "value": "0f8aaea7bcee6f5d.1732429566.", - "domain": "longuevieauxobjets.ademe.fr", - "path": "/", - "expires": 1766384766, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-language": "fr", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 06:26:04 GMT", - "referrer-policy": "same-origin", - "vary": "Accept-Language, Cookie", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "ae1319e2-23e8-44c3-8828-0f05ff868fed" - }, - "endpoints": [ - { - "hostname": "longuevieauxobjets.ademe.fr", - "ip": "109.232.236.90", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://longuevieauxobjets.ademe.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", - "confidence": 100, - "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", - "confidence": 100, - "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", - "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ] - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", - "confidence": 100, - "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", - "cpe": null, - "categories": [ - { - "id": 73, - "slug": "surveys", - "name": "Surveys" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://longuevieauxobjets.ademe.fr/", - "finalUrl": "https://longuevieauxobjets.ademe.fr/", - "fetchTime": "2024-11-24T06:25:39.588Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.81 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 1830, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1830, - "firstMeaningfulPaint": 1830, - "largestContentfulPaint": 4665, - "interactive": 1830, - "speedIndex": 2096, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0868599582248264, - "cumulativeLayoutShiftMainFrame": 0.0868599582248264, - "totalCumulativeLayoutShift": 0.0868599582248264, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 442114505, - "observedNavigationStart": 0, - "observedNavigationStartTs": 442114505, - "observedFirstPaint": 719, - "observedFirstPaintTs": 442833841, - "observedFirstContentfulPaint": 719, - "observedFirstContentfulPaintTs": 442833841, - "observedFirstContentfulPaintAllFrames": 719, - "observedFirstContentfulPaintAllFramesTs": 442833841, - "observedFirstMeaningfulPaint": 719, - "observedFirstMeaningfulPaintTs": 442833841, - "observedLargestContentfulPaint": 1033, - "observedLargestContentfulPaintTs": 443147260, - "observedLargestContentfulPaintAllFrames": 1033, - "observedLargestContentfulPaintAllFramesTs": 443147260, - "observedTraceEnd": 3764, - "observedTraceEndTs": 445878924, - "observedLoad": 1366, - "observedLoadTs": 443480454, - "observedDomContentLoaded": 738, - "observedDomContentLoadedTs": 442852996, - "observedCumulativeLayoutShift": 0.0868599582248264, - "observedCumulativeLayoutShiftMainFrame": 0.0868599582248264, - "observedTotalCumulativeLayoutShift": 0.0868599582248264, - "observedFirstVisualChange": 717, - "observedFirstVisualChangeTs": 442831505, - "observedLastVisualChange": 1351, - "observedLastVisualChangeTs": 443465505, - "observedSpeedIndex": 826, - "observedSpeedIndexTs": 442940615 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 37, - "numScripts": 2, - "numStylesheets": 4, - "numFonts": 4, - "numTasks": 18, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 14.797, - "throughput": 26315887.83630858, - "maxRtt": 88.769, - "maxServerLatency": 90.22299999999998, - "totalByteWeight": 2604990, - "totalTaskTime": 3385.848, - "mainDocumentTransferSize": 8218 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://longuevieauxobjets.ademe.fr/accessibilite/" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://longuevieauxobjets.ademe.fr/mentions-legales/" - }, - { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://longuevieauxobjets.ademe.fr/donnees-personnelles/" - } - ], - "betagouv": { - "id": "longuevieauxobjets", - "type": "startup", - "attributes": { - "name": "Longue vie aux objets", - "pitch": "Encourager le tri et la consommation responsable pour donner une nouvelle vie aux objets, éviter l'achat neuf et réduire les déchets", - "stats_url": "https://longuevieauxobjets.ademe.fr/stats", - "budget_url": "https://longuevieauxobjets.ademe.fr/budget", - "link": "https://longuevieauxobjets.ademe.fr", - "repository": "https://github.com/incubateur-ademe/quefairedemesobjets", - "contact": "longuevieauxobjets@ademe.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%20%F0%9F%91%80%0A%0A%0A%2A77%25%20des%20citoyens%20sont%20motiv%C3%A9s%20%C3%A0%20changer%20leurs%20habitudes%20de%20consommation%20pour%20assurer%20l%E2%80%99avenir%20des%20g%C3%A9n%C3%A9rations%20futures.%2A%20%28Barom%C3%A8tre%20Greenflex%2C%20ADEME%20de%20la%20consommation%20responsable%2C%202023%29%0A%0AAnn%C3%A9e%20apr%C3%A8s%20ann%C3%A9e%2C%20les%20fran%C3%A7ais%20se%20d%C3%A9clarent%20de%20plus%20en%20plus%20nombreux%20%C3%A0%20vouloir%20agir%20en%20faveur%20de%20l%E2%80%99environnement.%20Et%20le%C2%A0%2A%2Atri%20et%20la%20consommation%20responsable%2A%2A%C2%A0sont%C2%A0%2A%2Aau%20c%C5%93ur%20des%20pr%C3%A9occupations%2A%2A%C2%A0%2A%2Aet%20des%20gestes%2A%2A%C2%A0que%20les%20citoyens%20peuvent%20mettre%20en%20place.%0A%0APour%20se%20d%C3%A9sencombrer%20et%20consommer%20de%20mani%C3%A8re%20plus%20responsable%2C%20les%20citoyens%20comme%20les%20professionnels%20du%20secteur%20ont%20besoin%20de%20conna%C3%AEtre%C2%A0%2A%2Al%E2%80%99ensemble%20des%20lieux%20o%C3%B9%20ils%20pourront%20r%C3%A9parer%2C%20partager%2C%20donner%20ou%20vendre%20ces%20objets%2A%2A.%0A%0ASi%20le%20tri%20des%20principaux%20emballages%20est%20d%C3%A9sormais%20bien%20connu%2C%20il%20est%20loin%20d%E2%80%99%C3%AAtre%20g%C3%A9n%C3%A9ralis%C3%A9%20pour%20tous%20les%20objets.%20De%20plus%2C%20les%20pratiques%20de%20r%C3%A9paration%20et%20de%20partage%20peinent%20%C3%A0%20s%E2%80%99inscrire%20de%20mani%C3%A8re%20p%C3%A9renne%20dans%20les%20pratiques%20de%20citoyens.%0A%0AParall%C3%A8lement%2C%20le%20dispositif%20des%20fili%C3%A8res%20de%C2%A0%2AResponsabilit%C3%A9%20%C3%A9largie%20du%20producteur%2A%C2%A0%28REP%29%20continue%20de%20s%E2%80%99%C3%A9largir%20et%20de%20nouvelles%20fili%C3%A8res%20REP%20s%E2%80%99appr%C3%AAtent%20%C3%A0%20%C3%AAtre%20lanc%C3%A9es.%0AInspir%C3%A9%20du%20principe%20%C2%AB%20pollueur-payeur%20%C2%BB%2C%20le%20dispositif%20de%20REP%20implique%20que%20les%C2%A0acteurs%20%C3%A9conomiques%C2%A0%28fabricants%2C%20distributeurs%2C%20importateurs%29%20sont%C2%A0responsables%20de%20l%E2%80%99ensemble%20du%20cycle%20de%20vie%20des%20produits%C2%A0qu%E2%80%99ils%20mettent%20sur%20le%20march%C3%A9%20%3A%20%C3%A9co-conception%20des%20produits%2C%20pr%C3%A9vention%20des%20d%C3%A9chets%2C%20allongement%20de%20la%20dur%C3%A9e%20d%E2%80%99usage%20et%20gestion%20de%20fin%20de%20vie.%0A%0A%23%23%20Solution%20%F0%9F%92%A1%0A%5BLongue%20vie%20aux%20objets%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%20accompagne%20les%20%2A%2Acitoyens%2A%2A%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2C%20gr%C3%A2ce%20%C3%A0%20%2A%2Ades%20bonnes%20pratiques%20et%20adresses%20autour%20de%20chez%20eux%2A%2A%2C%20pour%20%C3%A9viter%20l%27achat%20neuf%20et%20r%C3%A9duire%20les%20d%C3%A9chets.%0A%0APour%20les%20%2A%2Acollectivit%C3%A9s%2C%20associations%2C%20entreprises%20et%20m%C3%A9dias%2A%2A%2C%20Longue%20vie%20aux%20objets%20met%20%C3%A0%20disposition%20des%20%2A%2Aoutils%20num%C3%A9riques%20gratuits%20de%20sensibilisation%20au%20tri%20et%20%C3%A0%20la%20consommation%20responsable%2A%2A%20qui%20valorisent%20les%20acteurs%20de%20l%27%C3%A9conomie%20sur%20chaque%20territoire.%0A%0ADeux%20outils%20sont%20disponibles%20%3A%0A%2A%20%2A%2A%5BL%27Assistant%20%22Que%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%22%5D%28https%3A%2F%2Fquefairedemesdechets.ademe.fr%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20conseil%2A%2A%2C%20aide%20les%20citoyens%20%C3%A0%20%2A%2Acomprendre%20le%20cycle%20de%20vie%20des%20objets%2C%20pour%20cesser%20de%20les%20jeter%2A%2A.%20Les%20citoyens%20sont%20guid%C3%A9s%20pour%20se%20d%C3%A9sencombrer%20de%20fa%C3%A7on%20responsable.%0A%2A%20%2A%2A%5BLa%20Carte%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Flacarte%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%2C%20avec%20une%20%2A%2Aapproche%20g%C3%A9olocalis%C3%A9e%2A%2A%2C%20met%20en%20avant%20les%20%2A%2Asolutions%20locales%20pour%20prolonger%20la%20vie%20de%20ses%20objets%2A%2A.%20Les%20citoyens%20d%C3%A9couvrent%20de%20bonnes%20adresses%20autour%20de%20chez%20eux%20pour%20mieux%20consommer.%0A%0ANous%20allons%20rendre%20progressivement%20toutes%20nos%20%20%2A%2A%5Bdonn%C3%A9es%20accessibles%20en%20open-data%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Freutiliser-nos-donnees%2F%3Fmtm_campaign%3DFicheBetaGouv%29%2A%2A%20pour%20qu%27elles%20puissent%20%C3%AAtre%20r%C3%A9utilis%C3%A9es%20facilement.%0A%0ANous%20souhaitons%20devenir%20la%20%2A%2Ar%C3%A9f%C3%A9rence%20nationale%20des%20solutions%20de%20tri%20et%20de%20consommation%20responsable%2A%2A%2C%20en%20valorisant%20les%20acteurs%20de%20l%E2%80%99%C3%A9conomie%20circulaire%20et%20en%20diffusant%20nos%20outils%20gratuitement.%0A%0A%23%23%20Strat%C3%A9gie%20de%20diffusion%20%F0%9F%93%88%0A%0APour%20augmenter%20la%20diffusion%20de%20nos%20outils%20et%20d%C3%A9multiplier%20leur%20usage%2C%20nous%20nous%20appuyons%20sur%20une%20strat%C3%A9gie%20B2B2C%2C%20avec%20des%20%2A%2Arelais%20locaux%2C%20collectivit%C3%A9s%2C%20associations%2C%20%20entreprises%20et%20m%C3%A9dias%2A%2A.%0A%0ANos%20objectifs%20pour%20nos%20relais%20sont%20%3A%20%0A-%20%2A%2ACollectivit%C3%A9s%2A%2A%20%3A%20Communiquer%20facilement%20aupr%C3%A8s%20de%20leurs%20administr%C3%A9s%20sur%20les%20lieux%20de%20r%C3%A9paration%2C%20r%C3%A9emploi%20ou%20recyclage.%0A-%20%2A%2AM%C3%A9dias%2A%2A%20%3A%20Donner%20des%20pistes%20d%27action%20concr%C3%A8tes%20%C3%A0%20leurs%20lecteurs%20pour%20r%C3%A9duire%20leurs%20d%C3%A9chets%20en%20prolongeant%20la%20vie%20de%20leurs%20objets.%0A-%20%2A%2AAssociations%20et%20entreprises%2A%2A%20%3A%20Incarner%20leurs%20engagements%20en%20faveur%20du%20r%C3%A9emploi.%0A%0ALa%20carte%20a%20%C3%A9t%C3%A9%20mise%20en%20avant%20lors%20de%20la%20campagne%20de%20communication%20de%20l%E2%80%99ADEME%20%E2%80%9C%5BEpargnons%20nos%20ressources%5D%28https%3A%2F%2Fepargnonsnosressources.gouv.fr%2F%29%E2%80%9D%20lanc%C3%A9e%20en%20novembre%202023.%0A%0AComme%20point%20d%E2%80%99entr%C3%A9e%20unique%20pour%20les%20citoyens%2C%20l%27assistant%20%E2%80%9CQue%20faire%20de%20mes%20objets%20%26%20d%C3%A9chets%E2%80%9D%20est%20connu%20depuis%2010%20ans%2C%20relay%C3%A9%20chaque%20ann%C3%A9e%20par%20les%20%5Bcampagnes%20minist%C3%A9rielles%20sur%20l%27Info-tri%5D%28https%3A%2F%2Fwww.ecologie.gouv.fr%2Finfo-tri%29%20et%20mentionn%C3%A9%20sur%20les%20%C3%A9tiquettes%20de%20nombreux%20objets%2C%20pour%20toucher%20le%20maximum%20de%20citoyens.%20%0A%0ANous%20pr%C3%A9voyons%20un%20d%C3%A9ploiement%20progressif%20de%20nos%20outils%20sur%20les%20sites%20des%20collectivit%C3%A9s%20pour%20toucher%20leurs%20usagers%2C%20en%20commen%C3%A7ant%20par%20les%20collectivit%C3%A9s%20de%20tailles%20petite%20et%20moyenne%2C%20n%E2%80%99ayant%20pas%20de%20solutions%20num%C3%A9riques%20ou%20incompl%C3%A8tes%20sur%20ce%20sujet.%0A%0A%0A%0A%23%23%20Impact%20%F0%9F%8C%8E%0A%0ALongue%20vie%20aux%20objets%20est%20un%20service%20num%C3%A9rique%20con%C3%A7u%20selon%20l%E2%80%99%2A%2Aapproche%20Startup%20d%E2%80%99%C3%89tat%20et%20pilot%C3%A9%20par%20l%E2%80%99impact%2A%2A.%0A%0APour%20mesurer%20l%27impact%20de%20nos%20produits%2C%20nous%20nous%20fixons%20des%20objectifs%20et%20des%20indicateurs.%0A%0ANos%203%20principaux%20objectifs%20avec%20leur%20indicateur%20%20%22%C3%A9toile%20du%20nord%22%20suivi%20sont%20%3A%0A%2A%20%2A%2AFiabiliser%20et%20enrichir%20les%20donn%C3%A9es%2A%2A%20%3A%20suivi%20du%20pourcentage%20des%20acteurs%20de%20notre%20base%20de%20donn%C3%A9es%20avec%20un%20SIRET%0A%2A%20%2A%2AD%C3%A9multiplier%20la%20r%C3%A9utilisation%20de%20nos%20outils%2A%2A%20%28avec%20un%20focus%20sur%20les%20collectivit%C3%A9s%29%20%3A%20suivi%20du%20nombre%20de%20collectivit%C3%A9s%20r%C3%A9utilisant%20un%20de%20nos%20outils%0A%2A%20%2A%2AOrienter%20nos%20utilisateurs%20vers%20les%20pratiques%20les%20plus%20responsables%2A%2A%20%3A%20suivi%20du%20nombre%20d%27interactions%20mensuelles%20avec%20les%20solutions%20propos%C3%A9es%20sur%20notre%20carte%0A%0ATous%20nos%20indicateurs%20peuvent%20%C3%AAtre%20suivis%20sur%20le%20%5Bsite%20de%20notre%20startup%5D%28https%3A%2F%2Flonguevieauxobjets.ademe.fr%2Fstats%2F%29.%0A%0AAujourd%E2%80%99hui%2C%20nos%20m%C3%A9triques%20d%E2%80%99impact%20et%20d%27usage%20sont%20suivies%20gr%C3%A2ce%20aux%20outils%20Posthog%2C%20Matomo%20et%20Metabase.%0A%0AUn%20%2A%2Acomit%C3%A9%20d%E2%80%99investissement%2A%2A%2C%20instance%20de%20pilotage%20principal%20d%E2%80%99un%20service%20num%C3%A9rique%20dans%20le%20programme%20beta.gouv.fr%2C%20a%20lieu%20tous%20les%206%20mois%20pour%20faire%20le%20point%20sur%20l%E2%80%99impact%20obtenu%20par%20l%E2%80%99%C3%A9quipe%20et%20arbitrer%20sur%20les%20objectifs%20et%20les%20investissements%20consentis%20pour%20la%20poursuite%20du%20service.%0A", - "events": [ - { - "name": "committee", - "date": "2023-04-06", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2023-01-01", - "end": "" - }, - { - "name": "construction", - "start": "2023-06-01", - "end": "" - } - ], - "sponsors": [ - "ademe" - ], - "thematiques": [ - "Écologie" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/incubateur-ademe/quefairedemesobjets/blob/main/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur.ademe.fr/startup/longuevieauxobjets", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "ademe" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://longuevieauxobjets.ademe.fr", - "size": 2822.935, - "nodes": 290, - "requests": 34, - "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:22:35.981208", - "page_type": "article" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "D", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.978, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-18T12:37:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.81, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "category": "startup", - "http": { - "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:33:06 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Access-Control-Allow-Origin": "*", - "Connection": "keep-alive", - "Content-Length": "258", - "Content-Type": "application/json", - "Country-Package": "openfisca-france", - "Country-Package-Version": "168.0.14", - "Date": "Sun, 20 Oct 2024 05:33:05 GMT", - "Server": "nginx/1.18.0" + { + "id": "key_exchange_score", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pad.incubateur.net/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "scan_id": 57051754, - "score": 30, - "start_time": "Sun, 20 Oct 2024 05:33:04 GMT", - "state": "FINISHED", - "status_code": 300, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "https://http-observatory.security.mozilla.org", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", - "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/" - ], - "status_code": 300 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": null, - "nmap": { - "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "995", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.4p1 Debian 5+deb11u3", - "vulnerabilities": [ - { - "is_exploit": "false", - "id": "CVE-2023-38408", - "type": "cve", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "SSV:92579", - "type": "seebug", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "1337DAY-ID-26576", - "type": "zdt", - "cvss": "7.5" - }, - { - "is_exploit": "false", - "id": "CVE-2021-28041", - "type": "cve", - "cvss": "7.1" - }, - { - "is_exploit": "false", - "id": "CVE-2021-41617", - "type": "cve", - "cvss": "7.0" - }, - { - "is_exploit": "false", - "id": "CVE-2023-51385", - "type": "cve", - "cvss": "6.5" - }, - { - "is_exploit": "false", - "id": "CVE-2023-48795", - "type": "cve", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "id": "CVE-2020-14145", - "type": "cve", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "id": "CVE-2016-20012", - "type": "cve", - "cvss": "5.3" - }, - { - "is_exploit": "true", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "cvss": "0.0" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Node.js Express framework", - "id": "8001", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Node.js Express framework", - "id": "8002", - "vulnerabilities": [] - } - } - ], - "grade": "E" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -170610,7 +163495,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -170618,7 +163503,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -170626,7 +163511,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -170634,7 +163519,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -170642,7 +163527,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -170650,469 +163535,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "id": "cipherorder_TLSv1_2", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-24 21:12" + "finding": "2024-10-15 17:02" }, { "id": "cert_notAfter", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-22 21:12" + "finding": "2025-01-13 17:02" }, { "id": "cert_extlifeSpan", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", - "severity": "WARN", - "finding": "Unexpected 300 MULTIPLE CHOICES @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732429801" + "finding": "1733036072" }, { - "id": "HSTS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "id": "HSTS_time", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "nginx/1.18.0" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" }, { - "id": "Access-Control-Allow-Origin", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "id": "cookie_secure", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "Content-Security-Policy", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-aa96f7d9-b605-4bfd-b930-f31b0fedb782' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + }, + { + "id": "Referrer-Policy", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "*" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -171120,7 +164012,7 @@ }, { "id": "heartbleed", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -171129,7 +164021,7 @@ }, { "id": "CCS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -171138,7 +164030,7 @@ }, { "id": "ticketbleed", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -171147,7 +164039,7 @@ }, { "id": "ROBOT", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -171156,7 +164048,7 @@ }, { "id": "secure_renego", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -171164,7 +164056,7 @@ }, { "id": "secure_client_renego", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -171173,7 +164065,7 @@ }, { "id": "CRIME_TLS", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -171182,16 +164074,16 @@ }, { "id": "BREACH", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -171200,14 +164092,14 @@ }, { "id": "fallback_SCSV", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -171216,7 +164108,7 @@ }, { "id": "FREAK", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -171225,7 +164117,7 @@ }, { "id": "DROWN", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -171234,16 +164126,16 @@ }, { "id": "DROWN_hint", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=298AC8F3BA66CCB22F85C8C9C63DEB78129EE437E57A16D8BDD8EAF9D6B24681" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" }, { "id": "LOGJAM", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -171252,7 +164144,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -171261,7 +164153,7 @@ }, { "id": "BEAST", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -171270,7 +164162,7 @@ }, { "id": "LUCKY13", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -171279,7 +164171,7 @@ }, { "id": "winshock", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -171288,7 +164180,7 @@ }, { "id": "RC4", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -171297,880 +164189,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "cipher_strength_score_weighted", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", - "port": "443", - "severity": "INFO", - "finding": "57" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "access-control-allow-origin": "*", - "content-length": "258", - "content-type": "application/json", - "country-package": "openfisca-france", - "country-package-version": "169.5.0", - "date": "Sun, 24 Nov 2024 06:29:13 GMT", - "server": "nginx/1.18.0" - }, - "endpoints": [ - { - "hostname": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/": { - "status": 300 - } - }, - "technologies": [ - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "nmapGrade": "E", - "nmapOpenPortsCount": 5, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-22T21:12:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://pad.incubateur.net", - "category": "betagouv", - "http": { - "url": "https://pad.incubateur.net", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:37:58 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-321a3fd3-09c0-443b-b199-e6296d3db82b' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 05:37:57 GMT", - "ETag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", - "HedgeDoc-Version": "1.8.2", - "Referrer-Policy": "same-origin", - "Set-Cookie": "connect.sid=s%3ASp42FsOG_QAlW51sJWAuwYeMNUuN6gHJ.DKK%2Bxa2oHs7%2BT1uLffPPDF3at44MsEAHbNWn6Jr64QU; Path=/; Expires=Sun, 03 Nov 2024 05:37:57 GMT; HttpOnly; Secure; SameSite=Lax", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Powered-By": "Express", - "X-Request-ID": "c2dff74e-a7ff-4efe-8600-112519225e26" + "id": "key_exchange_score_weighted", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "scan_id": 57051960, - "score": 55, - "start_time": "Sun, 20 Oct 2024 05:37:56 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "child-src": [ - "*" - ], - "connect-src": [ - "*" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "data:", - "https://*.disquscdn.com", - "https://public.slidesharecdn.com", - "'self'" - ], - "img-src": [ - "*" - ], - "media-src": [ - "*" - ], - "object-src": [ - "*" - ], - "script-src": [ - "https://*.disquscdn.com", - "https://www.google-analytics.com", - "vimeo.com", - "'sha256-81aclznzisnygyzrsuoyhpzwdttxi7vc1ym4unxqwam='", - "https://disqus.com", - "'self'", - "https://*.disqus.com", - "'unsafe-eval'", - "https://gist.github.com", - "'nonce-321a3fd3-09c0-443b-b199-e6296d3db82b'", - "www.slideshare.net" - ], - "style-src": [ - "'unsafe-inline'", - "https://*.disquscdn.com", - "https://github.githubassets.com", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": true - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "connect.sid": { - "domain": "pad.incubateur.net", - "expires": 1730612278, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://pad.incubateur.net/", - "redirects": true, - "route": [ - "http://pad.incubateur.net/", - "https://pad.incubateur.net/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "jmd1", - "url": "https://pad.incubateur.net", - "alias": "", - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T16:04:32Z", - "error": null, - "period": 120, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T06:49:10Z", - "next_check_at": "2024-11-24T06:51:09Z", - "created_at": "2021-03-31T16:12:07Z", - "mute_until": null, - "favicon_url": "https://pad.incubateur.net/icons/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T06:31:15Z", - "expires_at": "2025-01-13T17:02:39Z", - "valid": true, - "error": null + { + "id": "cipher_strength_score", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" }, - "metrics": { - "apdex": 0.994, - "timings": { - "redirect": 0, - "namelookup": 28, - "connection": 143, - "handshake": 149, - "response": 225, - "total": 544 - } + { + "id": "cipher_strength_score_weighted", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pad.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "pad.incubateur.net", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -172178,7 +164582,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -172186,7 +164590,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -172194,7 +164598,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -172202,7 +164606,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -172210,7 +164614,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -172218,476 +164622,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-10-15 17:02" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-01-13 17:02" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732430617" + "finding": "1733036130" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-80e2c6e1-bd1e-4aba-a335-2ef1320652eb' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-72a58c35-44c8-4d06-b94a-1fa9dd41e20d' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -172695,7 +165099,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -172704,7 +165108,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -172713,7 +165117,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -172722,7 +165126,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -172731,7 +165135,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -172739,7 +165143,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -172748,7 +165152,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -172757,7 +165161,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -172766,7 +165170,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -172775,14 +165179,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -172791,7 +165195,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -172800,7 +165204,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -172809,7 +165213,7 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -172818,7 +165222,7 @@ }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -172827,7 +165231,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -172836,7 +165240,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -172845,7 +165249,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -172854,7 +165258,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -172863,7 +165267,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -172872,392 +165276,1217 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/109.232.233.130", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" + "id": "key_exchange_score_weighted", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "pad.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "254" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "loginstate", + "value": "false", + "domain": "pad.incubateur.net", + "path": "/", + "expires": 1764571889, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "connect.sid", + "value": "s%3APsZNCGj4hhGpbq-_hCf9I8vLuNCXioO1.TIFy%2FIOXUevvW6vhR1asqowyu2FN8YR03qL0A13nb7I", + "domain": "pad.incubateur.net", + "path": "/", + "expires": 1734245489.668464, + "size": 93, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-6a491e4a-6823-4589-9f51-15ec09046a95' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 06:51:28 GMT", + "etag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", + "hedgedoc-version": "1.8.2", + "referrer-policy": "same-origin", + "set-cookie": "connect.sid=s%3APsZNCGj4hhGpbq-_hCf9I8vLuNCXioO1.TIFy%2FIOXUevvW6vhR1asqowyu2FN8YR03qL0A13nb7I; Path=/; Expires=Sun, 15 Dec 2024 06:51:28 GMT; HttpOnly; Secure; SameSite=Lax", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload", + "vary": "Accept-Encoding", + "x-powered-by": "Express", + "x-request-id": "d066ca6e-f8fd-483d-963d-9bcba7f2c8b8" + }, + "endpoints": [ + { + "hostname": "pad.incubateur.net", + "ip": "109.232.233.130", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://pad.incubateur.net/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", + "confidence": 100, + "version": "3.4.1", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "express", + "name": "Express", + "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", + "confidence": 100, + "version": null, + "icon": "Express.svg", + "website": "https://expressjs.com", + "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + }, + { + "slug": "select2", + "name": "Select2", + "description": "Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.", + "confidence": 100, + "version": null, + "icon": "Select2.png", + "website": "https://select2.org/", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "moment-js", + "name": "Moment.js", + "description": "Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.", + "confidence": 100, + "version": "2.29.1", + "icon": "Moment.js.svg", + "website": "https://momentjs.com", + "cpe": "cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.6.0", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "2.6.12", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "babel", + "name": "Babel", + "description": "Babel is a free and open-source transcompiler for writing next generation JavaScript.", + "confidence": 100, + "version": null, + "icon": "Babel.svg", + "website": "https://babeljs.io", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://pad.incubateur.net/", + "finalUrl": "https://pad.incubateur.net/", + "fetchTime": "2024-12-01T06:51:05.733Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.86 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.67 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.69 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.6 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4617, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1063, + "firstMeaningfulPaint": 3252, + "largestContentfulPaint": 3792, + "interactive": 4617, + "speedIndex": 3177, + "totalBlockingTime": 65, + "maxPotentialFID": 179, + "cumulativeLayoutShift": 0.008749795277913412, + "cumulativeLayoutShiftMainFrame": 0.008749795277913412, + "totalCumulativeLayoutShift": 0.008749795277913412, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 355642833, + "observedNavigationStart": 0, + "observedNavigationStartTs": 355642833, + "observedFirstPaint": 955, + "observedFirstPaintTs": 356597528, + "observedFirstContentfulPaint": 955, + "observedFirstContentfulPaintTs": 356597528, + "observedFirstContentfulPaintAllFrames": 955, + "observedFirstContentfulPaintAllFramesTs": 356597528, + "observedFirstMeaningfulPaint": 1074, + "observedFirstMeaningfulPaintTs": 356716615, + "observedLargestContentfulPaint": 955, + "observedLargestContentfulPaintTs": 356597528, + "observedLargestContentfulPaintAllFrames": 955, + "observedLargestContentfulPaintAllFramesTs": 356597528, + "observedTraceEnd": 3482, + "observedTraceEndTs": 359124770, + "observedLoad": 1058, + "observedLoadTs": 356700673, + "observedDomContentLoaded": 1023, + "observedDomContentLoadedTs": 356665977, + "observedCumulativeLayoutShift": 0.008749795277913412, + "observedCumulativeLayoutShiftMainFrame": 0.008749795277913412, + "observedTotalCumulativeLayoutShift": 0.008749795277913412, + "observedFirstVisualChange": 959, + "observedFirstVisualChangeTs": 356601833, + "observedLastVisualChange": 1076, + "observedLastVisualChangeTs": 356718833, + "observedSpeedIndex": 980, + "observedSpeedIndexTs": 356622568 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 16, + "numScripts": 3, + "numStylesheets": 3, + "numFonts": 4, + "numTasks": 424, + "numTasksOver10ms": 2, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 101.012, + "throughput": 14208761.807992274, + "maxRtt": 101.012, + "maxServerLatency": 12.559000000000012, + "totalByteWeight": 853039, + "totalTaskTime": 167.57399999999953, + "mainDocumentTransferSize": 4174 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "pad.incubateur.net/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" - }, + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://pad.incubateur.net", + "size": 885.789, + "nodes": 227, + "requests": 16, + "grade": "A", + "score": 81, + "ges": 1.38, + "water": 2.07, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:48:06.970448", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-13T17:02:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.86, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.67, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.69, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.6, + "lighthouse_pwaGrade": "C", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://partaj.beta.gouv.fr", + "category": "mtes", + "betaId": "partaj", + "http": { + "url": "https://partaj.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:15:17 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 05:15:17 GMT", + "Set-Cookie": "csrftoken=Ml1Fq8XNcMKNMieyrw7WEeFP65i9s0TNcLNhHyZMj50mc3ip9UFCl0EwnpuuDQVi; expires=Sun, 19 Oct 2025 05:15:17 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Transfer-Encoding": "chunked", + "Vary": "Cookie", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "559f97fe-cc96-47e0-add2-b282aa2cb965", + "X-XSS-Protection": "1; mode=block", + "strict-transport-security": "max-age=31536000" }, - { - "id": "final_score", - "ip": "pad.incubateur.net/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57051352, + "score": 70, + "start_time": "Sun, 20 Oct 2024 05:15:15 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "partaj.ecologie.gouv.fr", + "expires": 1760850917, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://partaj.ecologie.gouv.fr/", + "redirects": true, + "route": [ + "http://partaj.beta.gouv.fr/", + "https://partaj.ecologie.gouv.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "2v4l", + "url": "https://partaj.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T04:32:17Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T07:01:41Z", + "next_check_at": "2024-12-01T07:06:39Z", + "created_at": "2021-04-22T19:59:35Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:51:44Z", + "expires_at": "2025-02-08T07:38:55Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "pad.incubateur.net/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 786, + "namelookup": 107, + "connection": 151, + "handshake": 156, + "response": 159, + "total": 1360 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "partaj.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Apache", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "product": "Apache", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -173265,7 +166494,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -173273,7 +166502,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -173281,7 +166510,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -173289,7 +166518,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -173297,7 +166526,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -173305,484 +166534,449 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "69 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "2024-10-15 17:02" + "finding": "2024-11-10 07:38" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", - "finding": "2025-01-13 17:02" + "finding": "2025-02-08 07:38" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "1732430712" - }, - { - "id": "HSTS_time", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1733036585" }, { - "id": "HSTS_preload", - "ip": "pad.incubateur.net/5.104.101.30", + "id": "HSTS", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Apache" }, { "id": "banner_application", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-d3dc2085-5635-4b7d-8cfc-c38a70e90288' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "pad.incubateur.net/5.104.101.30", + "id": "security_headers", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -173791,7 +166985,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -173800,7 +166994,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -173809,7 +167003,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -173818,7 +167012,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -173826,7 +167020,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -173835,7 +167029,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -173844,16 +167038,16 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -173862,14 +167056,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -173878,7 +167072,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -173887,7 +167081,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -173896,16 +167090,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7DB3730D5C10372260D917D5E66F865A98F0B5171C1FBEB5F5A8AF996B4E8A0D" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -173914,16 +167108,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -173932,7 +167126,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -173941,7 +167135,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -173950,7 +167144,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -173959,392 +167153,1102 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "partaj.beta.gouv.fr/185.31.40.17", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "27" + "id": "key_exchange_score_weighted", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "partaj.beta.gouv.fr/185.31.40.17", + "port": "443", + "severity": "INFO", + "finding": "52" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [ + { + "name": "csrftoken", + "value": "fig2DyLIInI6dAjq62VAgIuv2FJMcLkqdAL5I9XMO6RuQM1rFS9ld9IErxeNXdD1", + "domain": "partaj.ecologie.gouv.fr", + "path": "/", + "expires": 1764486123.380659, + "size": 73, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 07:02:03 GMT", + "set-cookie": "csrftoken=fig2DyLIInI6dAjq62VAgIuv2FJMcLkqdAL5I9XMO6RuQM1rFS9ld9IErxeNXdD1; expires=Sun, 30 Nov 2025 07:02:03 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "strict-transport-security": "max-age=31536000", + "vary": "Cookie", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "65ced692-716f-4171-8671-1aa3d4298879", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "partaj.beta.gouv.fr", + "ip": "185.31.40.17", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://partaj.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://partaj.beta.gouv.fr/ (https://partaj.beta.gouv.fr/)" + } + }, + "technologies": [ + { + "slug": "apache-http-server", + "name": "Apache HTTP Server", + "description": "Apache is a free and open-source cross-platform web server software.", + "confidence": 100, + "version": null, + "icon": "Apache.svg", + "website": "https://httpd.apache.org/", + "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://partaj.beta.gouv.fr/", + "finalUrl": "https://partaj.ecologie.gouv.fr/", + "fetchTime": "2024-12-01T07:01:37.246Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://partaj.beta.gouv.fr/) was redirected to https://partaj.ecologie.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.79 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.88 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 8110, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2428, + "firstMeaningfulPaint": 2890, + "largestContentfulPaint": 2890, + "interactive": 8110, + "speedIndex": 2774, + "totalBlockingTime": 310, + "maxPotentialFID": 476, + "cumulativeLayoutShift": 0.012304726494683157, + "cumulativeLayoutShiftMainFrame": 0.012304726494683157, + "totalCumulativeLayoutShift": 0.012304726494683157, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 443748723, + "observedNavigationStart": 0, + "observedNavigationStartTs": 443748723, + "observedFirstPaint": 771, + "observedFirstPaintTs": 444519322, + "observedFirstContentfulPaint": 771, + "observedFirstContentfulPaintTs": 444519322, + "observedFirstContentfulPaintAllFrames": 771, + "observedFirstContentfulPaintAllFramesTs": 444519322, + "observedFirstMeaningfulPaint": 1177, + "observedFirstMeaningfulPaintTs": 444925742, + "observedLargestContentfulPaint": 1177, + "observedLargestContentfulPaintTs": 444925742, + "observedLargestContentfulPaintAllFrames": 1177, + "observedLargestContentfulPaintAllFramesTs": 444925742, + "observedTraceEnd": 3775, + "observedTraceEndTs": 447523591, + "observedLoad": 1378, + "observedLoadTs": 445126268, + "observedDomContentLoaded": 1328, + "observedDomContentLoadedTs": 445076920, + "observedCumulativeLayoutShift": 0.012304726494683157, + "observedCumulativeLayoutShiftMainFrame": 0.012304726494683157, + "observedTotalCumulativeLayoutShift": 0.012304726494683157, + "observedFirstVisualChange": 783, + "observedFirstVisualChangeTs": 444531723, + "observedLastVisualChange": 1783, + "observedLastVisualChangeTs": 445531723, + "observedSpeedIndex": 1033, + "observedSpeedIndexTs": 444781875 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 18, + "numScripts": 2, + "numStylesheets": 1, + "numFonts": 3, + "numTasks": 561, + "numTasksOver10ms": 2, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 1.2039999999999997, + "throughput": 24580734.884219453, + "maxRtt": 83.833, + "maxServerLatency": 122.61600000000001, + "totalByteWeight": 1038910, + "totalTaskTime": 188.08099999999988, + "mainDocumentTransferSize": 4050 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://partaj.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 1, + "missingWords": [ + "publication", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://partaj.beta.gouv.fr/legal/" }, { - "id": "cipher_strength_score", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "partaj", + "type": "startup", + "attributes": { + "name": "PARTAJ", + "pitch": "Faciliter l'accès à une expertise juridique de qualité", + "stats_url": "", + "link": "https://partaj.beta.gouv.fr", + "repository": "https://github.com/MTES-MCT/partaj", + "contact": "contact@partaj.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APARTAJ%20est%20une%20application%2C%20d%C3%A9velopp%C3%A9e%20dans%20le%20cadre%20de%20la%20%C2%AB%20Fabrique%20Num%C3%A9rique%20%C2%BB%20du%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20par%20une%20start-up%20d%E2%80%99Etat%20qui%20a%20vocation%20%C3%A0%20simplifier%20l%E2%80%99acc%C3%A8s%20au%20droit%20et%20am%C3%A9liorer%20sa%20qualit%C3%A9%20au%20sein%20de%20ce%20minist%C3%A8re.%0A%0AL%E2%80%99application%20met%20en%20relation%20les%20experts%20de%20la%20Direction%20des%20affaires%20juridiques%20%28DAJ%29%20et%20les%20services%20du%20minist%C3%A8re%20engag%C3%A9s%20dans%20la%20lutte%20contre%20le%20d%C3%A9r%C3%A8glement%20climatique%2C%20la%20pr%C3%A9servation%20de%20la%20biodiversit%C3%A9%20et%20l%27organisation%20de%20mobilit%C3%A9s%20plus%20durables.%0A%0ALe%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20et%20le%20minist%C3%A8re%20de%20la%20Mer%20assurent%20la%20mise%20en%20%C5%93uvre%20de%20politiques%20publiques%20techniques.%20Les%20services%20charg%C3%A9s%20de%20la%20mise%20en%20%C5%93uvre%20de%20ces%20politiques%20tant%20en%20administration%20centrale%20qu%E2%80%99en%20services%20d%C3%A9concentr%C3%A9s%20%28DREAL%2C%20DDT%28M%29%2C%20DIR%29%20ont%20besoin%20de%20conseil%20juridique%20pour%20r%C3%A9aliser%20leurs%20missions.%20Ils%20sollicitent%20donc%20les%20bureaux%20de%20la%20DAJ%20par%20courriel%20ou%20courrier.%0A%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20m%C3%A9tiers%20font%20face%20%C3%A0%20plusieurs%20difficult%C3%A9s%20pour%20acc%C3%A9der%20au%20droit%20via%20la%20DAJ%20%3A%20%0A-%20Qui%20est%20comp%C3%A9tent%20pour%20r%C3%A9pondre%20%C3%A0%20ma%20question%20juridique%20%3F%0A-%20Ma%20question%20juridique%20a-t-elle%20bien%20%C3%A9t%C3%A9%20r%C3%A9ceptionn%C3%A9e%20%3F%20Est-elle%20prise%20en%20charge%20%3F%0A-%20Dans%20combien%20de%20temps%20aurai-je%20ma%20r%C3%A9ponse%20%3F%20%0A-%20L%E2%80%99urgence%20de%20ma%20demande%20est-elle%20prise%20en%20compte%20%3F%0A-%20Comment%20suivre%20l%E2%80%99avancement%20de%20toutes%20mes%20questions%20juridiques%20%3F%0A%0ALes%20services%20de%20la%20DAJ%20rencontrent%20%C3%A9galement%20des%20difficult%C3%A9s%20pour%20traiter%20les%20nombreuses%20questions%20juridiques%20%3A%0A-%20Les%20questions%20juridiques%20sont%20parfois%20incompl%C3%A8tes%20et%20demandent%20de%20nombreux%20%C3%A9changes%20par%20t%C3%A9l%C3%A9phone%20et%20courriels%20impliquant%20des%20t%C3%A2ches%20administratives%20chronophages%0A-%20La%20question%20juridique%20doit%20parfois%20%C3%AAtre%20dirig%C3%A9e%20vers%20un%20autre%20bureau%20de%20la%20DAJ%20en%20transmettant%20toutes%20les%20informations%20n%C3%A9cessaires%20%C3%A0%20sa%20r%C3%A9solution%0A-%20Comment%20capitaliser%20sur%20des%20avis%20juridiques%20d%C3%A9j%C3%A0%20rendus%20sur%20des%20questions%20similaires%20%3F%0A-%20Comment%20assurer%20le%20pilotage%20et%20le%20suivi%2C%20en%20temps%20r%C3%A9el%2C%20du%20flux%20de%20demandes%20r%C3%A9ceptionn%C3%A9es%20en%20respectant%20des%20d%C3%A9lais%20raisonnables%20%3F%0A-%20Comment%20valoriser%20quantitativement%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20en%20termes%20de%20d%C3%A9lais%20de%20r%C3%A9ponse%20et%20de%20stock%20de%20demandes%20trait%C3%A9es%20%3F%0A%0A%0A%23%23%20Le%20produit%C2%A0%3A%20l%E2%80%99application%20PARTAJ%0A%0APARTAJ%20assure%20aux%20agents%20du%20minist%C3%A8re%20une%20prestation%20juridique%20de%20meilleure%20qualit%C3%A9.%20En%20supprimant%20les%20t%C3%A2ches%20administratives%20accessoires%2C%20l%E2%80%99application%20permet%20aux%20juristes%20de%20se%20recentrer%20sur%20leur%20c%C5%93ur%20de%20m%C3%A9tier%20et%20de%20fournir%20un%20avis%20dans%20de%20meilleurs%20d%C3%A9lais%20aux%20demandeurs.%0A%0ALes%20juristes%20re%C3%A7oivent%20des%20demandes%20plus%20compl%C3%A8tes%20gr%C3%A2ce%20au%20cadrage%20du%20formulaire%20unique%20de%20saisine.%20L%E2%80%99application%20supprime%20les%20nombreux%20mails%20n%C3%A9cessaires%20pour%20traiter%20la%20demande.%20Ils%20peuvent%20collaborer%20avec%20leurs%20coll%C3%A8gues%20et%20leur%20hi%C3%A9rarchie%20dans%20leur%20espace%20de%20travail%20tout%20en%20se%20lib%C3%A9rant%20des%20t%C3%A2ches%20administratives%20chronophages.%20La%20base%20de%20connaissance%20leur%20permet%20de%20capitaliser%20sur%20les%20avis%20juridiques%20d%C3%A9j%C3%A0%20rendus%20par%20la%20DAJ%20et%20facilite%20la%20recherche%20juridique.%20%0A%0AL%E2%80%99application%20harmonise%20les%20outils%20de%20suivi%20%C3%A9labor%C3%A9s%20au%20sein%20des%20diff%C3%A9rents%20bureaux%20de%20la%20DAJ.%20Elle%20g%C3%A9n%C3%A8re%2C%20en%20temps%20r%C3%A9el%2C%20les%20statistiques%20li%C3%A9es%20%C3%A0%20la%20fonction%20de%20conseil%2C%20qui%20n%E2%80%99ont%20plus%20%C3%A0%20%C3%AAtre%20renseign%C3%A9es%20manuellement%20a%20posteriori%20dans%20un%20progiciel.%20La%20direction%20peut%20prioriser%20les%20dossiers%20en%20fonction%20des%20d%C3%A9lais%20indiqu%C3%A9s%20par%20les%20demandeurs%20et%20du%20flux%20de%20demandes%20suivi%20en%20temps%20r%C3%A9el.%20Elle%20peut%20valoriser%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%C3%A0%20l%E2%80%99ext%C3%A9rieur%20gr%C3%A2ce%20au%20suivi%20statistique.%20%0A%0AUn%20outil%20de%20simplification%20de%20l%E2%80%99acc%C3%A8s%20au%20droit%20pour%20les%20services%20demandeurs%0A-%20un%20formulaire%20unique%20de%20saisine%20de%20la%20DAJ%20permettant%20d%E2%80%99orienter%20facilement%20les%20questions%20vers%20le%20bureau%20comp%C3%A9tent%20et%20de%20moduler%20le%20d%C3%A9lai%20attendu%20en%20fonction%20de%20l%E2%80%99urgence%20de%20la%20demande%0A-%20un%20suivi%20transparent%20du%20traitement%20de%20la%20saisine%20de%20type%20%E2%80%9Csuivi%20de%20colis%E2%80%9D%20%20en%20temps%20r%C3%A9el%20avec%20un%20syst%C3%A8me%20d%E2%80%99accus%C3%A9%20r%C3%A9ception%20et%20de%20notification%0A-%20une%20interface%20utilisateur%20avec%20la%20DAJ%20dans%20laquelle%20les%20demandeurs%20retrouvent%20l%E2%80%99ensemble%20de%20leurs%20consultations%20avec%20leur%20statut%20et%20les%20avis%20juridiques%0A%0AUn%20outil%20d%E2%80%99am%C3%A9lioration%20du%20travail%20juridique%20%0A-%20un%20espace%20de%20travail%20par%20saisine%20qui%20centralise%20tous%20les%20%C3%A9l%C3%A9ments%20structurants%20de%20la%20question%20juridique%20avec%20une%20messagerie%20d%C3%A9di%C3%A9e%20pour%20l%E2%80%99%C3%A9change%20de%20documents%20compl%C3%A9mentaires%0A-%20un%20parapheur%20num%C3%A9rique%20qui%20assure%20la%20pr%C3%A9paration%20collaborative%20de%20l%E2%80%99avis%20juridique%20avec%20d%E2%80%99autres%20services%20si%20besoin%20assurant%20le%20circuit%20des%20r%C3%A9visions%20et%20de%20la%20validation%20des%20projets%20de%20r%C3%A9ponse%20%0A-%20une%20base%20de%20documentation%20juridique%20qui%20mutualise%20tous%20les%20avis%20juridiques%20de%20la%20DAJ%20et%20facilite%20la%20recherche%20juridique%20%0A%0AUn%20outil%20de%20pilotage%20et%20de%20gestion%20de%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%0A-%20un%20tableau%20de%20bord%20adapt%C3%A9%20aux%20utilisateurs%20qui%20donne%20une%20vision%20synth%C3%A9tique%20des%20actions%20%C3%A0%20r%C3%A9aliser%20pour%20traiter%20les%20dossiers%20du%20bureau%20%0A-%20un%20tableau%20de%20suivi%20des%20indicateurs%20d%E2%80%99activit%C3%A9%20g%C3%A9n%C3%A9r%C3%A9es%20automatiquement%20permettant%20de%20mesurer%20en%20temps%20r%C3%A9el%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%0A%0A%0A%23%23%23%20Un%20exemple%20d%27impact%0A%0AVous%20voulez%20en%20savoir%20plus%20%3F%20Vous%20voulez%20une%20d%C3%A9mo%20%3F%0A%0AContactez-nous%20%C3%A0%20l%E2%80%99adresse%20suivante%20%3A%20contact%40partaj.beta.gouv.fr%0A%0A%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2019-11-01", + "end": "" + }, + { + "name": "construction", + "start": "2019-11-01", + "end": "" + }, + { + "name": "transfer", + "start": "2021-09-01", + "end": "" + } + ], + "sponsors": [ + "mtes" + ], + "thematiques": [] }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://partaj.beta.gouv.fr", + "size": 1225.021, + "nodes": 119, + "requests": 22, + "grade": "A", + "score": 82, + "ges": 1.36, + "water": 2.04, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 06:58:41.418524", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-08T07:38:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.79, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.88, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://passculture.app", + "category": "dinum", + "repositories": [ + "pass-culture/pass-culture-app-native" + ], + "betaId": "pass-culture", + "http": { + "url": "https://passculture.app", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:47:02 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Age": "735", + "Cache-Control": "public, max-age=3600", + "Content-Encoding": "gzip", + "Content-Length": "5672", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 05:34:46 GMT", + "ETag": "W/\"9ba4b782743739781aec26220f30c0e6\"", + "Expires": "Sun, 20 Oct 2024 06:24:57 GMT", + "Last-Modified": "Thu, 17 Oct 2024 07:59:16 GMT", + "Server": "Google Frontend", + "Vary": "Accept-Encoding", + "Via": "1.1 google", + "X-Cloud-Trace-Context": "8db0a71af0619ca46715825e48a46cea", + "X-Powered-By": "Express", + "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "x-goog-generation": "1729151956212713", + "x-goog-hash": "crc32c=r/BtEQ==, md5=m6S3gnQ3OXga7CYiDzDA5g==", + "x-goog-metageneration": "1", + "x-goog-storage-class": "STANDARD", + "x-goog-stored-content-encoding": "identity", + "x-goog-stored-content-length": "16353", + "x-guploader-uploadid": "AHmUCY3DL8LxHbUfNOLKvW8uCTlia72Hf0AkvlsobvSdw0N0bU74mkg2S120goo_cK4pLAdzmqcLb_XJpw" }, - { - "id": "final_score", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57052112, + "score": 50, + "start_time": "Sun, 20 Oct 2024 05:47:01 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://passculture.app:443/", + "redirects": true, + "route": [ + "http://passculture.app/", + "https://passculture.app:443/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-all-redirects-preloaded", + "score_description": "All hosts redirected to are in the HTTP Strict Transport Security (HSTS) preload list", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": true, + "max-age": null, + "preload": false, + "preloaded": true + }, + "pass": true, + "result": "hsts-preloaded", + "score_description": "Preloaded via the HTTP Strict Transport Security (HSTS) preloading process", + "score_modifier": 5 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "i8jo", + "url": "https://passculture.app", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T03:40:12Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [], + "last_check_at": "2024-12-01T07:11:21Z", + "next_check_at": "2024-12-01T07:12:21Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://passculture.app/images/app-icon-iphone.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:03:25Z", + "expires_at": "2025-02-17T22:59:59Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "pad.incubateur.net/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 41, + "connection": 2, + "handshake": 33, + "response": 187, + "total": 263 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "passculture.app", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "product": "Google Frontend", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "http/1.1grpc-exp" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174352,7 +168256,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174360,7 +168264,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174368,7 +168272,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174376,7 +168280,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -174384,7 +168288,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -174392,484 +168296,456 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 60 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "2024-10-15 17:02" + "finding": "2024-03-21 23:00" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "2025-01-13 17:02" + "finding": "2025-02-17 22:59" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+914 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1732430808" - }, - { - "id": "HSTS_time", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "1733036993" }, { - "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/148.253.75.120", + "id": "HTTP_headerAge", + "ip": "passculture.app/34.111.135.217", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "927 seconds" }, { - "id": "HSTS_preload", - "ip": "pad.incubateur.net/148.253.75.120", + "id": "HSTS", + "ip": "passculture.app/34.111.135.217", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Google Frontend" }, { "id": "banner_application", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-594d0217-adac-48ec-bd69-8d15bc2cb2ee' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "0 at '/'" }, { - "id": "Referrer-Policy", - "ip": "pad.incubateur.net/148.253.75.120", + "id": "Cache-Control", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "public, max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "Via: 1.1 google" }, { "id": "heartbleed", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -174878,7 +168754,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -174887,7 +168763,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -174896,7 +168772,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -174905,7 +168781,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -174913,7 +168789,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -174922,7 +168798,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -174931,16 +168807,16 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -174949,14 +168825,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -174965,7 +168841,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -174974,7 +168850,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -174983,16 +168859,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=667FEBD4EF55A96203086649EB57FDE3F120F0B719B8F8C671AC5A082BC73D94" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -175001,16 +168877,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -175019,7 +168895,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -175028,7 +168904,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -175037,7 +168913,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -175046,392 +168922,2329 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", "finding": "90" }, - { - "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "27" + { + "id": "key_exchange_score_weighted", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "passculture.app/34.111.135.217", + "port": "443", + "severity": "INFO", + "finding": "42" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://websdk.appsflyer.com/?st=banners&" + }, + { + "type": "google", + "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:378830896130:web:36273377e9720998307b1b/webConfig", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_ZpC3gnD_g.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://cdn.contentful.com/spaces/2bg01iqy0isv/environments/master/entries?include=3&content_type=homepageNatif&access_token=oqkcaGmPpBLYASc-Tl2yTC1Jg6sK5_LviP0yrmUG8ug" + }, + { + "type": "unknown", + "url": "https://sentry.passculture.team/api/6/envelope/?sentry_key=cbc513d8ef954df7910196a236ed3b6c&sentry_version=7&sentry_client=sentry.javascript.react%2F7.62.0" + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_ZpC3gnD_g.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google", + "url": "https://firebaseinstallations.googleapis.com/v1/projects/pc-native-production/installations", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:378830896130:web:36273377e9720998307b1b/webConfig", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://cdn.contentful.com/spaces/2bg01iqy0isv/environments/master/entries?include=3&content_type=homepageNatif&access_token=oqkcaGmPpBLYASc-Tl2yTC1Jg6sK5_LviP0yrmUG8ug" + }, + { + "type": "google", + "url": "https://firebaseinstallations.googleapis.com/v1/projects/pc-native-production/installations", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google tag manager", + "url": "https://www.googletagmanager.com/gtag/js?l=dataLayer&id=G-VN2DW38XLX", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&VER=8&RID=29345&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F9.6.11%0D%0AContent-Type%3Atext%2Fplain%0D%0AX-Firebase-GMPID%3A1%3A378830896130%3Aweb%3A36273377e9720998307b1b%0D%0A&zx=jzvq3mdx4i84&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&gsessionid=-dVnfgyFZwRUetQxVOzW7hGvQN4JKOtbbatoz29-iB0&VER=8&RID=rpc&SID=hMP_pR3zPXrCmrLNMnBSQQ&CI=0&AID=0&TYPE=xmlhttp&zx=yjzv1svzo6cm&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firebaseremoteconfig.googleapis.com/v1/projects/pc-native-production/namespaces/firebase:fetch?key=AIzaSyCtHqbRqlMCFkeXEaidiOnrQ0xq_0gMXMc", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firebaseremoteconfig.googleapis.com/v1/projects/pc-native-production/namespaces/firebase:fetch?key=AIzaSyCtHqbRqlMCFkeXEaidiOnrQ0xq_0gMXMc", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&gsessionid=-dVnfgyFZwRUetQxVOzW7hGvQN4JKOtbbatoz29-iB0&VER=8&RID=rpc&SID=hMP_pR3zPXrCmrLNMnBSQQ&CI=1&AID=0&TYPE=xmlhttp&zx=4fs9vnz7ufe9&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&gsessionid=-dVnfgyFZwRUetQxVOzW7hGvQN4JKOtbbatoz29-iB0&VER=8&RID=rpc&SID=hMP_pR3zPXrCmrLNMnBSQQ&CI=1&AID=4&TYPE=xmlhttp&zx=mgaajz0yn9t&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&VER=8&gsessionid=-dVnfgyFZwRUetQxVOzW7hGvQN4JKOtbbatoz29-iB0&SID=hMP_pR3zPXrCmrLNMnBSQQ&RID=29346&AID=4&zx=auhmzil92cw6&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&gsessionid=-dVnfgyFZwRUetQxVOzW7hGvQN4JKOtbbatoz29-iB0&VER=8&RID=rpc&SID=hMP_pR3zPXrCmrLNMnBSQQ&CI=1&AID=6&TYPE=xmlhttp&zx=li1qcwnoioaf&t=1", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + } + ], + "cookies": [], + "headers": { + "age": "900", + "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "cache-control": "public, max-age=3600", + "content-encoding": "gzip", + "content-length": "5675", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 07:09:26 GMT", + "etag": "W/\"75e194d3d9a334638e373b72384c7d8d\"", + "expires": "Sun, 01 Dec 2024 07:54:26 GMT", + "last-modified": "Tue, 26 Nov 2024 11:37:03 GMT", + "server": "Google Frontend", + "vary": "Accept-Encoding", + "via": "1.1 google", + "x-cloud-trace-context": "f9084b3a8595434ffd248a96c890ed65", + "x-goog-generation": "1732621023452507", + "x-goog-hash": "crc32c=RLzZSw==, md5=deGU09mjNGOONztyOEx9jQ==", + "x-goog-metageneration": "1", + "x-goog-storage-class": "STANDARD", + "x-goog-stored-content-encoding": "identity", + "x-goog-stored-content-length": "16353", + "x-guploader-uploadid": "AFiumC69MocAbFkeVdsIqYKHS3w-M5unTxGCLHW9hWq5oYr2C9TZp_9Jd62TljlZKpSLqgDuMNFBWIugrQ", + "x-powered-by": "Express" + }, + "endpoints": [ + { + "hostname": "passculture.app", + "ip": "34.111.135.217", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "websdk.appsflyer.com", + "ip": "18.160.10.92", + "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] + } + }, + { + "hostname": "firebase.googleapis.com", + "ip": "64.233.180.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "142.251.163.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.contentful.com", + "ip": "199.232.91.18", + "geoip": { + "city": { + "geoname_id": 5101798, + "names": { + "de": "Newark", + "en": "Newark", + "es": "Newark", + "fr": "Newark", + "ja": "ニューアーク", + "pt-BR": "Newark", + "ru": "Ньюарк" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 40.738, + "longitude": -74.1634, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "07192" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5101760, + "iso_code": "NJ", + "names": { + "de": "New Jersey", + "en": "New Jersey", + "es": "Nueva Jersey", + "fr": "New Jersey", + "ja": "ニュージャージー州", + "pt-BR": "Nova Jérsei", + "ru": "Нью-Джерси", + "zh-CN": "新泽西州" + } + } + ] + } + }, + { + "hostname": "sentry.passculture.team", + "ip": "34.107.224.170", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "firebaseinstallations.googleapis.com", + "ip": "172.253.122.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.googletagmanager.com", + "ip": "172.253.122.97", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "firestore.googleapis.com", + "ip": "172.253.63.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "firebaseremoteconfig.googleapis.com", + "ip": "142.251.163.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://passculture.app/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "skolengo", + "name": "Skolengo", + "description": "Skolengo is an Education Management Software developed by Kosmos Education.", + "confidence": 0, + "version": "1.316.3", + "icon": "Skolengo.svg", + "website": "https://www.skolengo.com", + "cpe": null, + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + }, + { + "id": 21, + "slug": "lms", + "name": "LMS" + } + ], + "rootPath": true + }, + { + "slug": "fourthwall", + "name": "Fourthwall", + "description": "Fourthwall helps to create and launch a branded website.", + "confidence": 0, + "version": "1.316.3", + "icon": "Fourthwall.svg", + "website": "https://fourthwall.com/", + "cpe": null, + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "magento", + "name": "Magento", + "description": "Magento is an open-source ecommerce platform written in PHP.", + "confidence": 100, + "version": null, + "icon": "Magento.svg", + "website": "https://magento.com", + "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "mariadb", + "name": "MariaDB", + "description": "MariaDB is an open-source relational database management system compatible with MySQL.", + "confidence": 0, + "version": null, + "icon": "mariadb.svg", + "website": "https://mariadb.org", + "cpe": "cpe:2.3:a:mariadb_project:mariadb:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "java", + "name": "Java", + "description": "Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.", + "confidence": 0, + "version": null, + "icon": "Java.svg", + "website": "https://java.com", + "cpe": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "apache-tomcat", + "name": "Apache Tomcat", + "description": "Apache Tomcat is an open-source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and WebSocket technologies.", + "confidence": 0, + "version": null, + "icon": "Apache Tomcat.svg", + "website": "https://tomcat.apache.org", + "cpe": "cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "google-cloud", + "name": "Google Cloud", + "description": "Google Cloud is a suite of cloud computing services.", + "confidence": 100, + "version": null, + "icon": "Google Cloud.svg", + "website": "https://cloud.google.com", + "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 63, + "slug": "iaas", + "name": "IaaS" + } + ] + }, + { + "slug": "styled-components", + "name": "styled-components", + "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "confidence": 100, + "version": "5.3.11", + "icon": "styled-components.svg", + "website": "https://styled-components.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "express", + "name": "Express", + "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", + "confidence": 100, + "version": null, + "icon": "Express.svg", + "website": "https://expressjs.com", + "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.19.3", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "appsflyer", + "name": "Appsflyer", + "description": "AppsFlyer is a SaaS mobile marketing analytics and attribution platform.", + "confidence": 100, + "version": null, + "icon": "Appsflyer.svg", + "website": "https://www.appsflyer.com/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "zendesk", + "name": "Zendesk", + "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", + "confidence": 100, + "version": null, + "icon": "Zendesk.svg", + "website": "https://zendesk.com", + "cpe": null, + "categories": [ + { + "id": 4, + "slug": "documentation", + "name": "Documentation" + }, + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + }, + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "google-workspace", + "name": "Google Workspace", + "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", + "confidence": 100, + "version": null, + "icon": "Google.svg", + "website": "https://workspace.google.com/", + "cpe": null, + "categories": [ + { + "id": 30, + "slug": "webmail", + "name": "Webmail" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud-trace", + "name": "Google Cloud Trace", + "description": "Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.", + "confidence": 100, + "version": null, + "icon": "google-cloud-trace.svg", + "website": "https://cloud.google.com/trace", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud-cdn", + "name": "Google Cloud CDN", + "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", + "confidence": 100, + "version": null, + "icon": "google-cloud-cdn.svg", + "website": "https://cloud.google.com/cdn", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "docusign", + "name": "DocuSign", + "description": "DocuSign allows organisations to manage electronic agreements.", + "confidence": 100, + "version": null, + "icon": "DocuSign.svg", + "website": "https://www.docusign.com", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud-storage", + "name": "Google Cloud Storage", + "description": "Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.", + "confidence": 100, + "version": null, + "icon": "google-cloud-storage.svg", + "website": "https://cloud.google.com/storage", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "cipher_strength_score", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "60" - }, + "requestedUrl": "https://passculture.app/", + "finalUrl": "https://passculture.app/", + "fetchTime": "2024-12-01T07:07:47.101Z", + "runWarnings": [ + "The page loaded too slowly to finish within the time limit. Results may be incomplete." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.24 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.87 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.8 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 20436, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 770, + "firstMeaningfulPaint": 13042, + "largestContentfulPaint": 21579, + "interactive": 20436, + "speedIndex": 13514, + "totalBlockingTime": 2870, + "maxPotentialFID": 720, + "cumulativeLayoutShift": 0.1165220906999376, + "cumulativeLayoutShiftMainFrame": 0.1165220906999376, + "totalCumulativeLayoutShift": 0.1165220906999376, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 452555091, + "observedNavigationStart": 0, + "observedNavigationStartTs": 452555091, + "observedFirstPaint": 78, + "observedFirstPaintTs": 452633144, + "observedFirstContentfulPaint": 78, + "observedFirstContentfulPaintTs": 452633144, + "observedFirstContentfulPaintAllFrames": 78, + "observedFirstContentfulPaintAllFramesTs": 452633144, + "observedFirstMeaningfulPaint": 1202, + "observedFirstMeaningfulPaintTs": 453756606, + "observedLargestContentfulPaint": 2937, + "observedLargestContentfulPaintTs": 455492314, + "observedLargestContentfulPaintAllFrames": 2937, + "observedLargestContentfulPaintAllFramesTs": 455492314, + "observedTraceEnd": 45013, + "observedTraceEndTs": 497568336, + "observedLoad": 1312, + "observedLoadTs": 453867483, + "observedDomContentLoaded": 541, + "observedDomContentLoadedTs": 453096478, + "observedCumulativeLayoutShift": 0.1165220906999376, + "observedCumulativeLayoutShiftMainFrame": 0.1165220906999376, + "observedTotalCumulativeLayoutShift": 0.1165220906999376, + "observedFirstVisualChange": 76, + "observedFirstVisualChangeTs": 452631091, + "observedLastVisualChange": 2943, + "observedLastVisualChangeTs": 455498091, + "observedSpeedIndex": 997, + "observedSpeedIndexTs": 453552191 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 79, + "numScripts": 5, + "numStylesheets": 2, + "numFonts": 5, + "numTasks": 14967, + "numTasksOver10ms": 43, + "numTasksOver25ms": 23, + "numTasksOver50ms": 8, + "numTasksOver100ms": 3, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 682282.2044881352, + "maxRtt": 85.755, + "maxServerLatency": 449.899, + "totalByteWeight": 3887453, + "totalTaskTime": 6791.794000000359, + "mainDocumentTransferSize": 6237 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "final_score", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "81" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "pass-culture", + "type": "startup", + "attributes": { + "name": "Pass Culture", + "pitch": "Faciliter l'accès des jeunes à la culture", + "stats_url": "", + "link": "https://pass.culture.fr", + "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", + "contact": "support.passculture@beta.gouv.fr", + "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", + "events": [ + { + "name": "national_impact", + "date": "2021-12-31", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2017-12-01", + "end": "" + }, + { + "name": "construction", + "start": "2018-02-28", + "end": "" + }, + { + "name": "acceleration", + "start": "2019-07-22", + "end": "" + }, + { + "name": "transfer", + "start": "2019-07-22", + "end": "" + }, + { + "name": "success", + "start": "2021-05-01", + "end": "" + } + ], + "sponsors": [ + "dgca", + "mc" + ], + "thematiques": [], + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "overall_grade", - "ip": "pad.incubateur.net/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "A+" + "width": 1920, + "height": 1080, + "url": "https://passculture.app", + "size": 4211.671, + "nodes": 855, + "requests": 72, + "grade": "E", + "score": 38, + "ges": 2.24, + "water": 3.36, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 07:04:18.058278", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-17T22:59:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 23, + "lighthouse_performance": 0.24, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.87, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.8, + "lighthouse_pwaGrade": "B", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "E", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://backend.passculture.pro", + "category": "dinum", + "tags": [ + "api" + ], + "repositories": [ + "pass-culture/pass-culture-main" + ], + "betaId": "pass-culture", + "tools": { + "lighthouse": false, + "thirdparties": false, + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false, + "dsfr": false, + "ecoindex": false, + "screenshot": false + }, + "http": { + "url": "https://backend.passculture.pro", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:52:15 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Alt-Svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "Content-Length": "3", + "Content-Type": "application/json", + "Date": "Sun, 20 Oct 2024 05:52:15 GMT", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Via": "1.1 google", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-XSS-Protection": "1; mode=block" }, + "scan_id": 57052191, + "score": 75, + "start_time": "Sun, 20 Oct 2024 05:52:14 GMT", + "state": "FINISHED", + "status_code": 404, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": true, + "route": [ + "http://backend.passculture.pro/", + "https://backend.passculture.pro:443/" + ], + "status_code": null + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": null, + "nmap": { + "host": "backend.passculture.pro", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "http/1.1grpc-exp" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175439,7 +171252,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175447,7 +171260,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175455,7 +171268,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175463,7 +171276,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -175471,7 +171284,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -175479,484 +171292,519 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 60 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "2024-10-15 17:02" + "finding": "2024-11-30 03:57" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "2025-01-13 17:02" + "finding": "2025-02-28 04:53" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/wr3/ooWtebs1w0g.crl" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://o.pki.goog/s/wr3/Fg8" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WR3 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFCzCCAvOgAwIBAgIQf/AFqRVo1jq8IoYWhKpLWjANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPNHWHr4RyFI0HEJFvA6zx1Ag1mhnymxiJNGyYj3rU3eoF6N4bfIxUErp5ivsYDQ18nPO9OOSoXsYzy0aJb0ag6TdjjdzM1ZdOMq17HSMFufV7SUOY0LxXx1N4GLHtp1SyfIa+8FRFvIe6mVkd9LjbAPuBT0YrYl6xOqUqFyOsor7FjuVe/XEefaS0I30EUrI00t+ZrIfGTFlf+OZPjnWSwrIwRpLQtg3H5Iln/z9UlCdl4wHISiyEL2Vfza1c/aatQVvcTD8XlpF9qdg8Uyoc0ObUd+ZDSsK3+Eiiza1jtSVrlnIdgUVvhmnE5OZ4TDHmoX+nAXMKh++HiXLM08WNAgMBAAGjgf4wgfswDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBTHgfX9jojZADxNY6JQMSSgziP+IzAfBgNVHSMEGDAWgBTkrysmcRorSCeFL1JmLO/wiRNxPjA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUHMAKGGGh0dHA6Ly9pLnBraS5nb29nL3IxLmNydDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vYy5wa2kuZ29vZy9yL3IxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAgEAnI1DlJQzSKcWbyXXrJSsgKMo6KG74TMqhsuTg67a0FX02752+eiJb5YsOJc8DVOHalwpOvbuPdl5BuAEgIK4Va7l9j3J9M1/EjeWjGTM3RoszmBJGu82oz6EWi5q75xeF+onJmh2Hm98a/yJAI/mODXq5LofYcQ9AffKP9ZMZu+YwW+/qHqyX2JhaOntvl7i8S+l1Y8CcKEqM1NFK4s4EBYPRFjZDawOHX7fSchbSMVPn5Nu04lrU6xufuZqRosEQw2o0UAyzDoyA52NXzJTWr1G2FVg/0A9hdrQ/6fe9G3167zKxNqXErs6MpHttEouGbpm2ftzrmcvruYxTfxc4G2GwBi3LFLozNpy042gDfXBzDyn1staWsy7+QnzMlR59Fz6jBOk5R4LT+ma0+KjnfRhMh5T2ucm69HkvNQtDZlVa1tLUlzs0zLEdQSehTCjZ6SYsGt2bMVK6dvtxzcyCP0QDUFnNXCwgw12+mGSkAuj4ORi8kMRpnL8UEjkNbdw9KL1eYbEC3D0GPue2Yk2AGhxkmcdm1BoOp05kYw/Nnqgh7QV8DKyBTUHbjH0pXlLiOsSOY+CLh1eTM+Do6rSjqGnDQeUXylZmPCmuveaw38IVnBaa6Eiz6pngZ1u6OeO/1UzfhmyTm0n0G+9JZ3KS2Mq08isNgXHLnhlHJaphpE=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "2FE357DB13751FF9160E87354975B3407498F41C9BD16A48657866E6E5A9B4C7" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WR3 <-- GTS Root R1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "2020-06-19 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "backend.passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "1732430904" + "finding": "1733037094" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "pad.incubateur.net/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "cookie_httponly", - "ip": "pad.incubateur.net/109.232.236.90", + "id": "X-Frame-Options", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" + "finding": "SAMEORIGIN" }, { - "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "id": "X-Content-Type-Options", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-e5f7d49c-182d-4dfa-b309-ff4058a4a7ad' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "nosniff" }, { - "id": "Referrer-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "id": "X-XSS-Protection", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "Via: 1.1 google" }, { "id": "heartbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -175965,7 +171813,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -175974,7 +171822,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -175983,7 +171831,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -175992,7 +171840,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -176000,7 +171848,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -176009,7 +171857,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -176018,16 +171866,16 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -176036,14 +171884,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -176052,7 +171900,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -176061,7 +171909,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -176070,16 +171918,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=707BB78ABD15DBC15E48F3E8E2B75865C1D58FE2497BBAED358DA41FDE2BAD45" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=60EEB50EC63F6583E9AD6E82D3C80B30BACF79BCA73BA191887F50513E847C6D" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -176088,16 +171936,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -176106,7 +171954,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -176115,7 +171963,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -176124,7 +171972,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -176133,556 +171981,352 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "backend.passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "388" + "finding": "37" } ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "connect.sid", - "value": "s%3A2OsWTzR9254tVj2KRIaM2Hue8wdtthCb.ZDVg%2BVsS6x7iKbSq%2FytXeHOZ%2BP2q7fep4WP8%2B9aNR7k", - "domain": "pad.incubateur.net", - "path": "/", - "expires": 1733640138.278194, - "size": 99, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-9a128c5b-7642-4938-97b6-2ec29665e3a1' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 06:42:17 GMT", - "etag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", - "hedgedoc-version": "1.8.2", - "referrer-policy": "same-origin", - "set-cookie": "connect.sid=s%3A2OsWTzR9254tVj2KRIaM2Hue8wdtthCb.ZDVg%2BVsS6x7iKbSq%2FytXeHOZ%2BP2q7fep4WP8%2B9aNR7k; Path=/; Expires=Sun, 08 Dec 2024 06:42:17 GMT; HttpOnly; Secure; SameSite=Lax", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload", - "vary": "Accept-Encoding", - "x-powered-by": "Express", - "x-request-id": "36f5a43c-59db-4951-b554-24a01dd9c166" - }, - "endpoints": [ - { - "hostname": "pad.incubateur.net", - "ip": "109.232.233.130", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, + "thirdparties": null, "wappalyzer": { "urls": { - "https://pad.incubateur.net/": { - "status": 200 + "https://backend.passculture.pro/": { + "status": 404 } }, "technologies": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "google-cloud", + "name": "Google Cloud", + "description": "Google Cloud is a suite of cloud computing services.", "confidence": 100, "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "icon": "Google Cloud.svg", + "website": "https://cloud.google.com", + "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 63, + "slug": "iaas", + "name": "IaaS" } ] }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "3.4.1", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "express", - "name": "Express", - "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", - "confidence": 100, - "version": null, - "icon": "Express.svg", - "website": "https://expressjs.com", - "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ], - "rootPath": true - }, - { - "slug": "select2", - "name": "Select2", - "description": "Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.", - "confidence": 100, - "version": null, - "icon": "Select2.png", - "website": "https://select2.org/", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "moment-js", - "name": "Moment.js", - "description": "Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.", - "confidence": 100, - "version": "2.29.1", - "icon": "Moment.js.svg", - "website": "https://momentjs.com", - "cpe": "cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.6.0", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "2.6.12", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -176702,49 +172346,31 @@ "rootPath": true }, { - "slug": "babel", - "name": "Babel", - "description": "Babel is a free and open-source transcompiler for writing next generation JavaScript.", - "confidence": 100, - "version": null, - "icon": "Babel.svg", - "website": "https://babeljs.io", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "google-cloud-cdn", + "name": "Google Cloud CDN", + "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "google-cloud-cdn.svg", + "website": "https://cloud.google.com/cdn", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 31, + "slug": "cdn", + "name": "CDN" } ], "rootPath": true }, { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", "confidence": 100, "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", "cpe": null, "categories": [ { @@ -176759,322 +172385,189 @@ }, "zap": null, "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://pad.incubateur.net/", - "finalUrl": "https://pad.incubateur.net/", - "fetchTime": "2024-11-24T06:41:51.015Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.84 + "lhr": null, + "screenshot": false, + "stats": null, + "github_repository": { + "grade": "A" + }, + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, + "betagouv": { + "id": "pass-culture", + "type": "startup", + "attributes": { + "name": "Pass Culture", + "pitch": "Faciliter l'accès des jeunes à la culture", + "stats_url": "", + "link": "https://pass.culture.fr", + "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", + "contact": "support.passculture@beta.gouv.fr", + "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", + "events": [ + { + "name": "national_impact", + "date": "2021-12-31", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2017-12-01", + "end": "" }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.67 + { + "name": "construction", + "start": "2018-02-28", + "end": "" }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 + { + "name": "acceleration", + "start": "2019-07-22", + "end": "" }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.69 + { + "name": "transfer", + "start": "2019-07-22", + "end": "" }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.6 + { + "name": "success", + "start": "2021-05-01", + "end": "" } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4848, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1216, - "firstMeaningfulPaint": 3444, - "largestContentfulPaint": 3873, - "interactive": 4848, - "speedIndex": 3535, - "totalBlockingTime": 104, - "maxPotentialFID": 257, - "cumulativeLayoutShift": 0.008749795277913412, - "cumulativeLayoutShiftMainFrame": 0.008749795277913412, - "totalCumulativeLayoutShift": 0.008749795277913412, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 488371753, - "observedNavigationStart": 0, - "observedNavigationStartTs": 488371753, - "observedFirstPaint": 1313, - "observedFirstPaintTs": 489684836, - "observedFirstContentfulPaint": 1313, - "observedFirstContentfulPaintTs": 489684836, - "observedFirstContentfulPaintAllFrames": 1313, - "observedFirstContentfulPaintAllFramesTs": 489684836, - "observedFirstMeaningfulPaint": 1479, - "observedFirstMeaningfulPaintTs": 489851112, - "observedLargestContentfulPaint": 1313, - "observedLargestContentfulPaintTs": 489684836, - "observedLargestContentfulPaintAllFrames": 1313, - "observedLargestContentfulPaintAllFramesTs": 489684836, - "observedTraceEnd": 3922, - "observedTraceEndTs": 492294015, - "observedLoad": 1457, - "observedLoadTs": 489828985, - "observedDomContentLoaded": 1420, - "observedDomContentLoadedTs": 489791625, - "observedCumulativeLayoutShift": 0.008749795277913412, - "observedCumulativeLayoutShiftMainFrame": 0.008749795277913412, - "observedTotalCumulativeLayoutShift": 0.008749795277913412, - "observedFirstVisualChange": 1325, - "observedFirstVisualChangeTs": 489696753, - "observedLastVisualChange": 1491, - "observedLastVisualChangeTs": 489862753, - "observedSpeedIndex": 1353, - "observedSpeedIndexTs": 489724910 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 16, - "numScripts": 3, - "numStylesheets": 3, - "numFonts": 4, - "numTasks": 415, - "numTasksOver10ms": 4, - "numTasksOver25ms": 3, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 142.294, - "throughput": 10538130.474410094, - "maxRtt": 142.294, - "maxServerLatency": 15.908999999999992, - "totalByteWeight": 852706, - "totalTaskTime": 333.723999999999, - "mainDocumentTransferSize": 4176 - } - ] - } + ], + "sponsors": [ + "dgca", + "mc" + ], + "thematiques": [], + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" } } } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://pad.incubateur.net", - "size": 885.586, - "nodes": 227, - "requests": 16, - "grade": "A", - "score": 81, - "ges": 1.38, - "water": 2.07, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:38:31.012970", - "page_type": "website" - } - ], + "ecoindex": null, "sonarcloud": null, - "dsfr": { - "detected": false - }, + "dsfr": null, "summary": { - "httpGrade": "C", - "apdex": 0.994, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", + "httpGrade": "B", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-13T17:02:00.000Z", + "testsslExpireDate": "2025-02-28T04:53:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.84, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.67, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.69, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.6, - "lighthouse_pwaGrade": "C", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "A", - "dsfrGrade": "F" + "githubRepositoryGrade": "A" } }, { "404": null, - "url": "https://partaj.beta.gouv.fr", - "category": "mtes", - "betaId": "partaj", + "url": "https://passculture.pro", + "category": "dinum", + "repositories": [ + "pass-culture/pass-culture-main" + ], + "betaId": "pass-culture", "http": { - "url": "https://partaj.beta.gouv.fr", + "url": "https://passculture.pro", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:15:17 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 05:57:00 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Connection": "keep-alive", + "Accept-Ranges": "bytes", + "Alt-Svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "Cache-Control": "max-age=3600", "Content-Encoding": "gzip", + "Content-Security-Policy-Report-Only": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 05:15:17 GMT", - "Set-Cookie": "csrftoken=Ml1Fq8XNcMKNMieyrw7WEeFP65i9s0TNcLNhHyZMj50mc3ip9UFCl0EwnpuuDQVi; expires=Sun, 19 Oct 2025 05:15:17 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Date": "Sun, 20 Oct 2024 05:57:00 GMT", + "ETag": "\"40767c8fbdf87cf750bbf0035f8e1f704685f9583b0aa8e7ee636133eaa87bde\"", + "Last-Modified": "Wed, 16 Oct 2024 07:59:40 GMT", + "Strict-Transport-Security": "max-age=31556926; includeSubDomains; preload", "Transfer-Encoding": "chunked", - "Vary": "Cookie", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "559f97fe-cc96-47e0-add2-b282aa2cb965", - "X-XSS-Protection": "1; mode=block", - "strict-transport-security": "max-age=31536000" + "Vary": "x-fh-requested-host, accept-encoding", + "Via": "1.1 google", + "X-Cache": "HIT", + "X-Cache-Hits": "1", + "X-Served-By": "cache-bfi-kbfi7400083-BFI", + "X-Timer": "S1729403820.487366,VS0,VE1" }, - "scan_id": 57051352, - "score": 70, - "start_time": "Sun, 20 Oct 2024 05:15:15 GMT", + "scan_id": 57052274, + "score": 55, + "start_time": "Sun, 20 Oct 2024 05:57:00 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, + "tests_failed": 3, + "tests_passed": 7, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, + "data": { + "default-src": [ + "blob:", + "gap://ready", + "https://*.hotjar.com:*", + "https:", + "data:", + "'self'", + "https://*.hotjar.io", + "wss://*.hotjar.com", + "http:" + ], + "style-src": [ + "'unsafe-inline'", + "https://app.getbeamer.com/styles/beamer-embed.css", + "https://fonts.googleapis.com/css", + "'self'" + ] + }, "http": false, - "meta": false, - "numPolicies": 0, - "policy": null + "meta": true, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": true, + "insecureSchemePassive": true, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "csrftoken": { - "domain": "partaj.ecologie.gouv.fr", - "expires": 1760850917, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true + "data": null, + "sameSite": null }, "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -177095,18 +172588,18 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://partaj.ecologie.gouv.fr/", + "destination": "https://passculture.pro:443/", "redirects": true, "route": [ - "http://partaj.beta.gouv.fr/", - "https://partaj.ecologie.gouv.fr/" + "http://passculture.pro/", + "https://passculture.pro:443/" ], - "status_code": 301 + "status_code": 200 }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -177125,10 +172618,10 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, + "data": "max-age=31556926; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31556926, + "preload": true, "preloaded": false }, "pass": true, @@ -177151,93 +172644,92 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "2v4l", - "url": "https://partaj.beta.gouv.fr", + "token": "xksk", + "url": "https://passculture.pro", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T00:10:04Z", + "up_since": "2024-11-30T03:30:57Z", "error": null, - "period": 300, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T06:43:23Z", - "next_check_at": "2024-11-24T06:48:21Z", - "created_at": "2021-04-22T19:59:35Z", + "last_check_at": "2024-12-01T07:24:47Z", + "next_check_at": "2024-12-01T07:25:46Z", + "created_at": "2024-01-15T13:37:42Z", "mute_until": null, - "favicon_url": null, + "favicon_url": "https://passculture.pro/icon/app-icon-iphone.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T06:38:26Z", - "expires_at": "2025-02-08T07:38:55Z", + "tested_at": "2024-12-01T07:15:50Z", + "expires_at": "2025-02-17T22:59:59Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 569, - "namelookup": 90, - "connection": 113, - "handshake": 127, - "response": 120, - "total": 1019 + "redirect": 0, + "namelookup": 55, + "connection": 4, + "handshake": 34, + "response": 20, + "total": 113 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "partaj.beta.gouv.fr", + "host": "passculture.pro", "protocol": "tcp", "closed_ports": "998", "open_ports": [ { "service": { "name": "http", - "product": "Apache", "id": "80", "vulnerabilities": [] } @@ -177245,7 +172737,6 @@ { "service": { "name": "https", - "product": "Apache", "id": "443", "vulnerabilities": [] } @@ -177258,77 +172749,77 @@ "testssl": [ { "id": "service", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "http/1.1grpc-exp" }, { "id": "cipherlist_NULL", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -177336,7 +172827,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -177344,7 +172835,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -177352,7 +172843,7 @@ }, { "id": "cipherlist_LOW", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -177360,7 +172851,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -177368,7 +172859,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -177376,449 +172867,484 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "78 >= 60 days" }, { "id": "cert_notBefore", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "2024-11-10 07:38" + "finding": "2024-03-21 23:00" }, { "id": "cert_notAfter", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "2025-02-08 07:38" + "finding": "2025-02-17 22:59" }, { "id": "cert_extlifeSpan", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "1732430574" + "finding": "1733037799" }, { - "id": "HSTS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "id": "HSTS_time", + "ip": "passculture.pro/34.107.224.170", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31556926 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "passculture.pro/34.107.224.170", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "passculture.pro/34.107.224.170", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "Apache" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "id": "Content-Security-Policy", + "ip": "passculture.pro/34.107.224.170", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "frame-ancestors 'self' https://bv.ac-versailles.fr https://adage-pr.phm.education.gouv.fr https://adage-pp.hp.in.phm.education.gouv.fr https://adage-qp.hp.in.phm.education.gouv.fr https://adage-pr.in.phm.education.gouv.fr" + }, + { + "id": "Content-Security-Policy-Report-Only", + "ip": "passculture.pro/34.107.224.170", + "port": "443", + "severity": "OK", + "finding": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;" + }, + { + "id": "X-Served-By", + "ip": "passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "cache-chi-klot8100167-CHI" + }, + { + "id": "Cache-Control", + "ip": "passculture.pro/34.107.224.170", + "port": "443", + "severity": "INFO", + "finding": "max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "X-Cache: HITX-Cache-Hits: 1Via: 1.1 google" }, { "id": "heartbleed", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -177827,7 +173353,7 @@ }, { "id": "CCS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -177836,7 +173362,7 @@ }, { "id": "ticketbleed", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -177845,7 +173371,7 @@ }, { "id": "ROBOT", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -177854,7 +173380,7 @@ }, { "id": "secure_renego", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -177862,7 +173388,7 @@ }, { "id": "secure_client_renego", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -177871,7 +173397,7 @@ }, { "id": "CRIME_TLS", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -177880,16 +173406,16 @@ }, { "id": "BREACH", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -177898,14 +173424,14 @@ }, { "id": "fallback_SCSV", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -177914,7 +173440,7 @@ }, { "id": "FREAK", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -177923,7 +173449,7 @@ }, { "id": "DROWN", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -177932,16 +173458,16 @@ }, { "id": "DROWN_hint", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7DB3730D5C10372260D917D5E66F865A98F0B5171C1FBEB5F5A8AF996B4E8A0D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E650FC1CB3FB2237237348D0B38628D5371EB4F87A2A199DF354774C02B83DF8" }, { "id": "LOGJAM", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -177950,7 +173476,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -177959,7 +173485,7 @@ }, { "id": "BEAST", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -177968,7 +173494,7 @@ }, { "id": "LUCKY13", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -177977,7 +173503,7 @@ }, { "id": "winshock", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -177986,7 +173512,7 @@ }, { "id": "RC4", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -177995,435 +173521,810 @@ }, { "id": "clientsimulation-android_60", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "partaj.beta.gouv.fr/185.31.40.17", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "partaj.beta.gouv.fr/185.31.40.17", + "ip": "passculture.pro/34.107.224.170", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "40" } ], "thirdparties": { "trackers": [ { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } - } - ], - "cookies": [ + }, { - "name": "csrftoken", - "value": "gqPcNTwjUNNiVLlLJreGqLcaVmhGWvk8ZwCdtnZ7PZ1doNKxArBXwY14BLAPEm1S", - "domain": "partaj.ecologie.gouv.fr", - "path": "/", - "expires": 1763880109.798601, - "size": 73, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnbtg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4KLg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq5Z9WXh0oJC8MLnbtg.woff", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://sentry.passculture.team/api/2/envelope/?sentry_key=50f5694849704813b4154c5868b73365&sentry_version=7&sentry_client=sentry.javascript.browser%2F8.39.0" + }, + { + "type": "google", + "url": "https://www.google.com/recaptcha/api.js?render=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/recaptcha__en.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=pPK749sccDmVW_9DSeTMVvh2&size=invisible&cb=awu57lbn2n1q", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/styles__ltr.css", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/recaptcha__en.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.google.com/js/bg/4pbpW_rAqcOeS6hEUaHQz4OxZ89eKEymdS8KphqvIV8.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://www.gstatic.com/recaptcha/api2/logo_48.png", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google", + "url": "https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=pPK749sccDmVW_9DSeTMVvh2", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } } ], + "cookies": [], "headers": { - "content-encoding": "gzip", + "accept-ranges": "bytes", + "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "cache-control": "max-age=3600", + "content-encoding": "br", + "content-length": "601", + "content-security-policy": "frame-ancestors 'self' https://bv.ac-versailles.fr https://adage-pr.phm.education.gouv.fr https://adage-pp.hp.in.phm.education.gouv.fr https://adage-qp.hp.in.phm.education.gouv.fr https://adage-pr.in.phm.education.gouv.fr", + "content-security-policy-report-only": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 06:41:49 GMT", - "set-cookie": "csrftoken=gqPcNTwjUNNiVLlLJreGqLcaVmhGWvk8ZwCdtnZ7PZ1doNKxArBXwY14BLAPEm1S; expires=Sun, 23 Nov 2025 06:41:49 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "strict-transport-security": "max-age=31536000", - "vary": "Cookie", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "3be6c505-5b21-4444-8c5f-cb2be62e97cb", - "x-xss-protection": "1; mode=block" + "date": "Sun, 01 Dec 2024 07:22:29 GMT", + "etag": "\"b99a3b466de7c24b64c61f5738cd8258d43af8b68b4bb881c34d46d29ebba30e-br\"", + "last-modified": "Tue, 26 Nov 2024 16:08:00 GMT", + "strict-transport-security": "max-age=31556926; includeSubDomains; preload", + "vary": "x-fh-requested-host, accept-encoding", + "via": "1.1 google", + "x-cache": "HIT", + "x-cache-hits": "1", + "x-served-by": "cache-chi-klot8100086-CHI", + "x-timer": "S1733037750.604802,VS0,VE1" }, "endpoints": [ { - "hostname": "partaj.beta.gouv.fr", - "ip": "185.31.40.17", + "hostname": "passculture.pro", + "ip": "34.107.224.170", "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, "continent": { - "code": "EU", - "geoname_id": 6255148, + "code": "NA", + "geoname_id": 6255149, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" } }, "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" + "accuracy_radius": 20, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" }, "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "142.250.190.3", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } } } }, { - "hostname": "client.crisp.chat", - "ip": "104.18.29.104", + "hostname": "sentry.passculture.team", + "ip": "34.107.224.170", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "www.google.com", + "ip": "142.250.190.68", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.gstatic.com", + "ip": "142.250.190.35", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -178444,26 +174345,153 @@ }, "wappalyzer": { "urls": { - "https://partaj.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://partaj.beta.gouv.fr/ (https://partaj.beta.gouv.fr/)" + "https://passculture.pro/": { + "status": 200 } }, "technologies": [ { - "slug": "apache-http-server", - "name": "Apache HTTP Server", - "description": "Apache is a free and open-source cross-platform web server software.", + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", "confidence": 100, "version": null, - "icon": "Apache.svg", - "website": "https://httpd.apache.org/", - "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": null, + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud", + "name": "Google Cloud", + "description": "Google Cloud is a suite of cloud computing services.", + "confidence": 100, + "version": null, + "icon": "Google Cloud.svg", + "website": "https://cloud.google.com", + "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 63, + "slug": "iaas", + "name": "IaaS" + } + ] + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud-cdn", + "name": "Google Cloud CDN", + "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", + "confidence": 100, + "version": null, + "icon": "google-cloud-cdn.svg", + "website": "https://cloud.google.com/cdn", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true @@ -178474,12 +174502,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://partaj.beta.gouv.fr/", - "finalUrl": "https://partaj.ecologie.gouv.fr/", - "fetchTime": "2024-11-24T06:41:24.544Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://partaj.beta.gouv.fr/) was redirected to https://partaj.ecologie.gouv.fr/. Try testing the second URL directly." - ], + "requestedUrl": "https://passculture.pro/", + "finalUrl": "https://passculture.pro/", + "fetchTime": "2024-12-01T07:22:06.515Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -178489,7 +174515,7 @@ "snapshot" ], "id": "performance", - "score": 0.76 + "score": 0.74 }, "accessibility": { "title": "Accessibility", @@ -178500,7 +174526,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.98 }, "best-practices": { "title": "Best Practices", @@ -178521,7 +174547,7 @@ "snapshot" ], "id": "seo", - "score": 0.88 + "score": 0.83 }, "pwa": { "title": "PWA", @@ -178531,7 +174557,7 @@ "navigation" ], "id": "pwa", - "score": 0.2 + "score": 0.7 } }, "audits": { @@ -178541,53 +174567,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8269, + "numericValue": 4423, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2615, - "firstMeaningfulPaint": 3119, - "largestContentfulPaint": 3119, - "interactive": 8269, - "speedIndex": 3205, - "totalBlockingTime": 312, - "maxPotentialFID": 488, - "cumulativeLayoutShift": 0.012304726494683157, - "cumulativeLayoutShiftMainFrame": 0.012304726494683157, - "totalCumulativeLayoutShift": 0.012304726494683157, + "firstContentfulPaint": 2451, + "firstMeaningfulPaint": 2694, + "largestContentfulPaint": 5142, + "interactive": 4423, + "speedIndex": 3027, + "totalBlockingTime": 164, + "maxPotentialFID": 174, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 473765268, + "observedTimeOriginTs": 377918248, "observedNavigationStart": 0, - "observedNavigationStartTs": 473765268, - "observedFirstPaint": 925, - "observedFirstPaintTs": 474690328, - "observedFirstContentfulPaint": 925, - "observedFirstContentfulPaintTs": 474690328, - "observedFirstContentfulPaintAllFrames": 925, - "observedFirstContentfulPaintAllFramesTs": 474690328, - "observedFirstMeaningfulPaint": 1436, - "observedFirstMeaningfulPaintTs": 475200845, - "observedLargestContentfulPaint": 1436, - "observedLargestContentfulPaintTs": 475200845, - "observedLargestContentfulPaintAllFrames": 1436, - "observedLargestContentfulPaintAllFramesTs": 475200845, - "observedTraceEnd": 4039, - "observedTraceEndTs": 477804072, - "observedLoad": 1621, - "observedLoadTs": 475386554, - "observedDomContentLoaded": 1589, - "observedDomContentLoadedTs": 475354151, - "observedCumulativeLayoutShift": 0.012304726494683157, - "observedCumulativeLayoutShiftMainFrame": 0.012304726494683157, - "observedTotalCumulativeLayoutShift": 0.012304726494683157, - "observedFirstVisualChange": 932, - "observedFirstVisualChangeTs": 474697268, - "observedLastVisualChange": 2032, - "observedLastVisualChangeTs": 475797268, - "observedSpeedIndex": 1254, - "observedSpeedIndexTs": 475019498 + "observedNavigationStartTs": 377918248, + "observedFirstPaint": 242, + "observedFirstPaintTs": 378160134, + "observedFirstContentfulPaint": 242, + "observedFirstContentfulPaintTs": 378160134, + "observedFirstContentfulPaintAllFrames": 242, + "observedFirstContentfulPaintAllFramesTs": 378160134, + "observedFirstMeaningfulPaint": 494, + "observedFirstMeaningfulPaintTs": 378412027, + "observedLargestContentfulPaint": 410, + "observedLargestContentfulPaintTs": 378328449, + "observedLargestContentfulPaintAllFrames": 410, + "observedLargestContentfulPaintAllFramesTs": 378328449, + "observedTraceEnd": 3045, + "observedTraceEndTs": 380963483, + "observedLoad": 229, + "observedLoadTs": 378147455, + "observedDomContentLoaded": 229, + "observedDomContentLoadedTs": 378147011, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 366, + "observedFirstVisualChangeTs": 378284248, + "observedLastVisualChange": 549, + "observedLastVisualChangeTs": 378467248, + "observedSpeedIndex": 466, + "observedSpeedIndexTs": 378384197 }, { "lcpInvalidated": false @@ -178605,23 +174631,23 @@ "type": "debugdata", "items": [ { - "numRequests": 18, - "numScripts": 2, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 575, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numRequests": 45, + "numScripts": 14, + "numStylesheets": 5, + "numFonts": 8, + "numTasks": 1000, + "numTasksOver10ms": 7, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 19799301.774159558, - "maxRtt": 102.90100000000001, - "maxServerLatency": 143.527, - "totalByteWeight": 1039063, - "totalTaskTime": 188.0549999999997, - "mainDocumentTransferSize": 4096 + "throughput": 98193480.5233307, + "maxRtt": 1.9270000000000005, + "maxServerLatency": 106.103, + "totalByteWeight": 1097132, + "totalTaskTime": 322.0199999999987, + "mainDocumentTransferSize": 2200 } ] } @@ -178641,70 +174667,86 @@ }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://partaj.beta.gouv.fr/accessibilite/" + "declarationUrl": "https://passculture.pro/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 1, - "missingWords": [ - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://partaj.beta.gouv.fr/legal/" - }, - { - "slug": "pc", "mention": null, "maxScore": 0, "score": 0, "missingWords": [], "missingTrackers": [] + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 6, + "score": 5, + "missingWords": [], + "missingTrackers": [ + "googlefonts" + ], + "declarationUrl": "https://pass.culture.fr/donnees-personnelles/" } ], "betagouv": { - "id": "partaj", + "id": "pass-culture", "type": "startup", "attributes": { - "name": "PARTAJ", - "pitch": "Faciliter l'accès à une expertise juridique de qualité", + "name": "Pass Culture", + "pitch": "Faciliter l'accès des jeunes à la culture", "stats_url": "", - "link": "https://partaj.beta.gouv.fr", - "repository": "https://github.com/MTES-MCT/partaj", - "contact": "contact@partaj.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APARTAJ%20est%20une%20application%2C%20d%C3%A9velopp%C3%A9e%20dans%20le%20cadre%20de%20la%20%C2%AB%20Fabrique%20Num%C3%A9rique%20%C2%BB%20du%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20par%20une%20start-up%20d%E2%80%99Etat%20qui%20a%20vocation%20%C3%A0%20simplifier%20l%E2%80%99acc%C3%A8s%20au%20droit%20et%20am%C3%A9liorer%20sa%20qualit%C3%A9%20au%20sein%20de%20ce%20minist%C3%A8re.%0A%0AL%E2%80%99application%20met%20en%20relation%20les%20experts%20de%20la%20Direction%20des%20affaires%20juridiques%20%28DAJ%29%20et%20les%20services%20du%20minist%C3%A8re%20engag%C3%A9s%20dans%20la%20lutte%20contre%20le%20d%C3%A9r%C3%A8glement%20climatique%2C%20la%20pr%C3%A9servation%20de%20la%20biodiversit%C3%A9%20et%20l%27organisation%20de%20mobilit%C3%A9s%20plus%20durables.%0A%0ALe%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20et%20le%20minist%C3%A8re%20de%20la%20Mer%20assurent%20la%20mise%20en%20%C5%93uvre%20de%20politiques%20publiques%20techniques.%20Les%20services%20charg%C3%A9s%20de%20la%20mise%20en%20%C5%93uvre%20de%20ces%20politiques%20tant%20en%20administration%20centrale%20qu%E2%80%99en%20services%20d%C3%A9concentr%C3%A9s%20%28DREAL%2C%20DDT%28M%29%2C%20DIR%29%20ont%20besoin%20de%20conseil%20juridique%20pour%20r%C3%A9aliser%20leurs%20missions.%20Ils%20sollicitent%20donc%20les%20bureaux%20de%20la%20DAJ%20par%20courriel%20ou%20courrier.%0A%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20m%C3%A9tiers%20font%20face%20%C3%A0%20plusieurs%20difficult%C3%A9s%20pour%20acc%C3%A9der%20au%20droit%20via%20la%20DAJ%20%3A%20%0A-%20Qui%20est%20comp%C3%A9tent%20pour%20r%C3%A9pondre%20%C3%A0%20ma%20question%20juridique%20%3F%0A-%20Ma%20question%20juridique%20a-t-elle%20bien%20%C3%A9t%C3%A9%20r%C3%A9ceptionn%C3%A9e%20%3F%20Est-elle%20prise%20en%20charge%20%3F%0A-%20Dans%20combien%20de%20temps%20aurai-je%20ma%20r%C3%A9ponse%20%3F%20%0A-%20L%E2%80%99urgence%20de%20ma%20demande%20est-elle%20prise%20en%20compte%20%3F%0A-%20Comment%20suivre%20l%E2%80%99avancement%20de%20toutes%20mes%20questions%20juridiques%20%3F%0A%0ALes%20services%20de%20la%20DAJ%20rencontrent%20%C3%A9galement%20des%20difficult%C3%A9s%20pour%20traiter%20les%20nombreuses%20questions%20juridiques%20%3A%0A-%20Les%20questions%20juridiques%20sont%20parfois%20incompl%C3%A8tes%20et%20demandent%20de%20nombreux%20%C3%A9changes%20par%20t%C3%A9l%C3%A9phone%20et%20courriels%20impliquant%20des%20t%C3%A2ches%20administratives%20chronophages%0A-%20La%20question%20juridique%20doit%20parfois%20%C3%AAtre%20dirig%C3%A9e%20vers%20un%20autre%20bureau%20de%20la%20DAJ%20en%20transmettant%20toutes%20les%20informations%20n%C3%A9cessaires%20%C3%A0%20sa%20r%C3%A9solution%0A-%20Comment%20capitaliser%20sur%20des%20avis%20juridiques%20d%C3%A9j%C3%A0%20rendus%20sur%20des%20questions%20similaires%20%3F%0A-%20Comment%20assurer%20le%20pilotage%20et%20le%20suivi%2C%20en%20temps%20r%C3%A9el%2C%20du%20flux%20de%20demandes%20r%C3%A9ceptionn%C3%A9es%20en%20respectant%20des%20d%C3%A9lais%20raisonnables%20%3F%0A-%20Comment%20valoriser%20quantitativement%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20en%20termes%20de%20d%C3%A9lais%20de%20r%C3%A9ponse%20et%20de%20stock%20de%20demandes%20trait%C3%A9es%20%3F%0A%0A%0A%23%23%20Le%20produit%C2%A0%3A%20l%E2%80%99application%20PARTAJ%0A%0APARTAJ%20assure%20aux%20agents%20du%20minist%C3%A8re%20une%20prestation%20juridique%20de%20meilleure%20qualit%C3%A9.%20En%20supprimant%20les%20t%C3%A2ches%20administratives%20accessoires%2C%20l%E2%80%99application%20permet%20aux%20juristes%20de%20se%20recentrer%20sur%20leur%20c%C5%93ur%20de%20m%C3%A9tier%20et%20de%20fournir%20un%20avis%20dans%20de%20meilleurs%20d%C3%A9lais%20aux%20demandeurs.%0A%0ALes%20juristes%20re%C3%A7oivent%20des%20demandes%20plus%20compl%C3%A8tes%20gr%C3%A2ce%20au%20cadrage%20du%20formulaire%20unique%20de%20saisine.%20L%E2%80%99application%20supprime%20les%20nombreux%20mails%20n%C3%A9cessaires%20pour%20traiter%20la%20demande.%20Ils%20peuvent%20collaborer%20avec%20leurs%20coll%C3%A8gues%20et%20leur%20hi%C3%A9rarchie%20dans%20leur%20espace%20de%20travail%20tout%20en%20se%20lib%C3%A9rant%20des%20t%C3%A2ches%20administratives%20chronophages.%20La%20base%20de%20connaissance%20leur%20permet%20de%20capitaliser%20sur%20les%20avis%20juridiques%20d%C3%A9j%C3%A0%20rendus%20par%20la%20DAJ%20et%20facilite%20la%20recherche%20juridique.%20%0A%0AL%E2%80%99application%20harmonise%20les%20outils%20de%20suivi%20%C3%A9labor%C3%A9s%20au%20sein%20des%20diff%C3%A9rents%20bureaux%20de%20la%20DAJ.%20Elle%20g%C3%A9n%C3%A8re%2C%20en%20temps%20r%C3%A9el%2C%20les%20statistiques%20li%C3%A9es%20%C3%A0%20la%20fonction%20de%20conseil%2C%20qui%20n%E2%80%99ont%20plus%20%C3%A0%20%C3%AAtre%20renseign%C3%A9es%20manuellement%20a%20posteriori%20dans%20un%20progiciel.%20La%20direction%20peut%20prioriser%20les%20dossiers%20en%20fonction%20des%20d%C3%A9lais%20indiqu%C3%A9s%20par%20les%20demandeurs%20et%20du%20flux%20de%20demandes%20suivi%20en%20temps%20r%C3%A9el.%20Elle%20peut%20valoriser%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%C3%A0%20l%E2%80%99ext%C3%A9rieur%20gr%C3%A2ce%20au%20suivi%20statistique.%20%0A%0AUn%20outil%20de%20simplification%20de%20l%E2%80%99acc%C3%A8s%20au%20droit%20pour%20les%20services%20demandeurs%0A-%20un%20formulaire%20unique%20de%20saisine%20de%20la%20DAJ%20permettant%20d%E2%80%99orienter%20facilement%20les%20questions%20vers%20le%20bureau%20comp%C3%A9tent%20et%20de%20moduler%20le%20d%C3%A9lai%20attendu%20en%20fonction%20de%20l%E2%80%99urgence%20de%20la%20demande%0A-%20un%20suivi%20transparent%20du%20traitement%20de%20la%20saisine%20de%20type%20%E2%80%9Csuivi%20de%20colis%E2%80%9D%20%20en%20temps%20r%C3%A9el%20avec%20un%20syst%C3%A8me%20d%E2%80%99accus%C3%A9%20r%C3%A9ception%20et%20de%20notification%0A-%20une%20interface%20utilisateur%20avec%20la%20DAJ%20dans%20laquelle%20les%20demandeurs%20retrouvent%20l%E2%80%99ensemble%20de%20leurs%20consultations%20avec%20leur%20statut%20et%20les%20avis%20juridiques%0A%0AUn%20outil%20d%E2%80%99am%C3%A9lioration%20du%20travail%20juridique%20%0A-%20un%20espace%20de%20travail%20par%20saisine%20qui%20centralise%20tous%20les%20%C3%A9l%C3%A9ments%20structurants%20de%20la%20question%20juridique%20avec%20une%20messagerie%20d%C3%A9di%C3%A9e%20pour%20l%E2%80%99%C3%A9change%20de%20documents%20compl%C3%A9mentaires%0A-%20un%20parapheur%20num%C3%A9rique%20qui%20assure%20la%20pr%C3%A9paration%20collaborative%20de%20l%E2%80%99avis%20juridique%20avec%20d%E2%80%99autres%20services%20si%20besoin%20assurant%20le%20circuit%20des%20r%C3%A9visions%20et%20de%20la%20validation%20des%20projets%20de%20r%C3%A9ponse%20%0A-%20une%20base%20de%20documentation%20juridique%20qui%20mutualise%20tous%20les%20avis%20juridiques%20de%20la%20DAJ%20et%20facilite%20la%20recherche%20juridique%20%0A%0AUn%20outil%20de%20pilotage%20et%20de%20gestion%20de%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%0A-%20un%20tableau%20de%20bord%20adapt%C3%A9%20aux%20utilisateurs%20qui%20donne%20une%20vision%20synth%C3%A9tique%20des%20actions%20%C3%A0%20r%C3%A9aliser%20pour%20traiter%20les%20dossiers%20du%20bureau%20%0A-%20un%20tableau%20de%20suivi%20des%20indicateurs%20d%E2%80%99activit%C3%A9%20g%C3%A9n%C3%A9r%C3%A9es%20automatiquement%20permettant%20de%20mesurer%20en%20temps%20r%C3%A9el%20l%E2%80%99activit%C3%A9%20de%20conseil%20juridique%20%0A%0A%0A%23%23%23%20Un%20exemple%20d%27impact%0A%0AVous%20voulez%20en%20savoir%20plus%20%3F%20Vous%20voulez%20une%20d%C3%A9mo%20%3F%0A%0AContactez-nous%20%C3%A0%20l%E2%80%99adresse%20suivante%20%3A%20contact%40partaj.beta.gouv.fr%0A%0A%0A", - "events": [], + "link": "https://pass.culture.fr", + "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", + "contact": "support.passculture@beta.gouv.fr", + "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", + "events": [ + { + "name": "national_impact", + "date": "2021-12-31", + "comment": "" + } + ], "phases": [ { "name": "investigation", - "start": "2019-11-01", + "start": "2017-12-01", "end": "" }, { "name": "construction", - "start": "2019-11-01", + "start": "2018-02-28", + "end": "" + }, + { + "name": "acceleration", + "start": "2019-07-22", "end": "" }, { "name": "transfer", - "start": "2021-09-01", + "start": "2019-07-22", + "end": "" + }, + { + "name": "success", + "start": "2021-05-01", "end": "" } ], "sponsors": [ - "mtes" + "dgca", + "mc" ], - "thematiques": [] + "thematiques": [], + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mtes" + "id": "dinum" } } } @@ -178713,16 +174755,16 @@ { "width": 1920, "height": 1080, - "url": "https://partaj.beta.gouv.fr", - "size": 1224.511, - "nodes": 119, - "requests": 22, + "url": "https://passculture.pro", + "size": 797.989, + "nodes": 138, + "requests": 37, "grade": "A", - "score": 82, - "ges": 1.36, - "water": 2.04, + "score": 81, + "ges": 1.38, + "water": 2.07, "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:38:26.895334", + "date": "2024-12-01 07:19:12.138214", "page_type": null } ], @@ -178731,7 +174773,7 @@ "detected": false }, "summary": { - "httpGrade": "B", + "httpGrade": "C", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -178740,78 +174782,68 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-08T07:38:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.76, + "testsslExpireDate": "2025-02-17T22:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 18, + "lighthouse_performance": 0.74, "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.88, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.7, + "lighthouse_pwaGrade": "B", "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "D", "ecoindexGrade": "A", "dsfrGrade": "F" } }, { "404": null, - "url": "https://passculture.app", - "category": "dinum", - "repositories": [ - "pass-culture/pass-culture-app-native" + "url": "https://pilotage.inclusion.beta.gouv.fr", + "tags": [ + "itou" ], - "betaId": "pass-culture", + "category": "gip-inclusion", + "betaId": "pilotage.de.linclusion", "http": { - "url": "https://passculture.app", + "url": "https://pilotage.inclusion.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:47:02 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 06:00:20 GMT", + "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Age": "735", - "Cache-Control": "public, max-age=3600", - "Content-Encoding": "gzip", - "Content-Length": "5672", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 05:34:46 GMT", - "ETag": "W/\"9ba4b782743739781aec26220f30c0e6\"", - "Expires": "Sun, 20 Oct 2024 06:24:57 GMT", - "Last-Modified": "Thu, 17 Oct 2024 07:59:16 GMT", - "Server": "Google Frontend", - "Vary": "Accept-Encoding", - "Via": "1.1 google", - "X-Cloud-Trace-Context": "8db0a71af0619ca46715825e48a46cea", - "X-Powered-By": "Express", - "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "x-goog-generation": "1729151956212713", - "x-goog-hash": "crc32c=r/BtEQ==, md5=m6S3gnQ3OXga7CYiDzDA5g==", - "x-goog-metageneration": "1", - "x-goog-storage-class": "STANDARD", - "x-goog-stored-content-encoding": "identity", - "x-goog-stored-content-length": "16353", - "x-guploader-uploadid": "AHmUCY3DL8LxHbUfNOLKvW8uCTlia72Hf0AkvlsobvSdw0N0bU74mkg2S120goo_cK4pLAdzmqcLb_XJpw" + "Connection": "keep-alive", + "Content-Length": "54300", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 06:00:18 GMT", + "Referrer-Policy": "same-origin", + "Set-Cookie": "csrftoken=aPGiH1bUtoCu99STtVXTqWtRuxx432j0; expires=Sun, 19 Oct 2025 06:00:18 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01JAM8682QR7YD4VT3HYBERKCP", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Vary": "Cookie", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY" }, - "scan_id": 57052112, - "score": 50, - "start_time": "Sun, 20 Oct 2024 05:47:01 GMT", + "scan_id": 57052322, + "score": 25, + "start_time": "Sun, 20 Oct 2024 06:00:17 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { @@ -178833,13 +174865,24 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, - "sameSite": null + "data": { + "csrftoken": { + "domain": "pilotage.inclusion.beta.gouv.fr", + "expires": 1760853619, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true }, "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -178860,79 +174903,92 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://passculture.app:443/", + "destination": "https://pilotage.inclusion.beta.gouv.fr/", "redirects": true, "route": [ - "http://passculture.app/", - "https://passculture.app:443/" + "http://pilotage.inclusion.beta.gouv.fr/", + "https://pilotage.inclusion.beta.gouv.fr/" ], "status_code": 200 }, "pass": true, - "result": "redirection-all-redirects-preloaded", - "score_description": "All hosts redirected to are in the HTTP Strict Transport Security (HSTS) preload list", + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "same-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, + "data": "max-age=31536000; includeSubDomains; preload", "includeSubDomains": true, - "max-age": null, - "preload": false, - "preloaded": true + "max-age": 31536000, + "preload": true, + "preloaded": false }, "pass": true, - "result": "hsts-preloaded", - "score_description": "Preloaded via the HTTP Strict Transport Security (HSTS) preloading process", - "score_modifier": 5 + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "//cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.js": { + "crossorigin": null, + "integrity": null + }, + "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-I7E8VVD/ismYTF4hNIPjVp/Zjvgyol6VFvRkX/vR+Vc4jQkC+hVqc2pM8ODewa9r" + }, + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-fbbOQedDUMZZ5KreZpsbe1LCZPVmfTnH7ois6mU1QK+m14rQ1l2bGBq41eYeM/fS" + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src=\"//...\"", + "score_modifier": -50 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "DENY" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -178948,54 +175004,57 @@ } }, "updownio": { - "token": "i8jo", - "url": "https://passculture.app", + "token": "13is", + "url": "https://pilotage.inclusion.beta.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T01:50:22Z", + "up_since": "2024-11-26T04:14:06Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], - "recipients": [], - "last_check_at": "2024-11-24T06:58:02Z", - "next_check_at": "2024-11-24T06:59:01Z", - "created_at": "2024-01-15T13:37:42Z", + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T07:32:32Z", + "next_check_at": "2024-12-01T07:37:31Z", + "created_at": "2021-04-22T19:59:36Z", "mute_until": null, - "favicon_url": "https://passculture.app/images/app-icon-iphone.png", + "favicon_url": "https://pilotage.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T06:53:04Z", - "expires_at": "2025-02-17T22:59:59Z", + "tested_at": "2024-12-01T07:22:40Z", + "expires_at": "2025-01-02T18:06:36Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.967, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 44, - "connection": 3, - "handshake": 28, - "response": 291, - "total": 366 + "namelookup": 555, + "connection": 169, + "handshake": 172, + "response": 176, + "total": 1071 } }, "uptimeGrade": "A", - "apdexGrade": "D" + "apdexGrade": "A" }, "nmap": { - "host": "passculture.app", + "host": "pilotage.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "986", "open_ports": [ { "service": { @@ -179004,93 +175063,171 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", - "product": "Google Frontend", "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "passculture.app/34.111.135.217", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http/1.1grpc-exp" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -179098,7 +175235,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -179106,7 +175243,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -179114,7 +175251,7 @@ }, { "id": "cipherlist_LOW", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -179122,7 +175259,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -179130,7 +175267,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -179138,456 +175275,505 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "passculture.app/34.111.135.217", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 60 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-03-21 23:00" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-02-17 22:59" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "+1974 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732431422" + "finding": "1733037915" }, { - "id": "HTTP_headerAge", - "ip": "passculture.app/34.111.135.217", + "id": "HSTS_time", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "1975 seconds" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HSTS", - "ip": "passculture.app/34.111.135.217", + "id": "HSTS_subdomains", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "Google Frontend" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "Cache-Control", - "ip": "passculture.app/34.111.135.217", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "public, max-age=3600" + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 google" + "finding": "--" }, { "id": "heartbleed", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -179596,7 +175782,7 @@ }, { "id": "CCS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -179605,16 +175791,16 @@ }, { "id": "ticketbleed", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -179623,7 +175809,7 @@ }, { "id": "secure_renego", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -179631,16 +175817,16 @@ }, { "id": "secure_client_renego", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -179649,16 +175835,16 @@ }, { "id": "BREACH", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -179667,14 +175853,14 @@ }, { "id": "fallback_SCSV", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -179683,7 +175869,7 @@ }, { "id": "FREAK", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -179692,7 +175878,7 @@ }, { "id": "DROWN", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -179701,16 +175887,16 @@ }, { "id": "DROWN_hint", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=667FEBD4EF55A96203086649EB57FDE3F120F0B719B8F8C671AC5A082BC73D94" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -179719,7 +175905,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -179728,7 +175914,7 @@ }, { "id": "BEAST", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -179737,7 +175923,7 @@ }, { "id": "LUCKY13", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -179746,7 +175932,7 @@ }, { "id": "winshock", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -179755,7 +175941,7 @@ }, { "id": "RC4", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -179764,2273 +175950,1486 @@ }, { "id": "clientsimulation-android_60", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "passculture.app/34.111.135.217", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { - "id": "clientsimulation-android_11", - "ip": "passculture.app/34.111.135.217", + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "no -- no lifetime advertised" }, { - "id": "clientsimulation-android_12", - "ip": "passculture.app/34.111.135.217", + "id": "SSL_sessionID_support", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "yes" }, { - "id": "clientsimulation-chrome_79_win10", - "ip": "passculture.app/34.111.135.217", + "id": "sessionresumption_ticket", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "not supported" }, { - "id": "clientsimulation-chrome_101_win10", - "ip": "passculture.app/34.111.135.217", + "id": "sessionresumption_ID", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "not supported" }, { - "id": "clientsimulation-firefox_66_win81", - "ip": "passculture.app/34.111.135.217", + "id": "TLS_timestamp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "random" }, { - "id": "clientsimulation-firefox_100_win10", - "ip": "passculture.app/34.111.135.217", + "id": "certificate_compression", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "none" }, { - "id": "clientsimulation-ie_6_xp", - "ip": "passculture.app/34.111.135.217", + "id": "clientAuth", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "none" }, { - "id": "clientsimulation-ie_8_win7", - "ip": "passculture.app/34.111.135.217", + "id": "cert_numbers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "1" }, { - "id": "clientsimulation-ie_8_xp", - "ip": "passculture.app/34.111.135.217", + "id": "cert_signatureAlgorithm", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "No connection" + "severity": "OK", + "finding": "SHA256 with RSA" }, { - "id": "clientsimulation-ie_11_win7", - "ip": "passculture.app/34.111.135.217", + "id": "cert_keySize", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "clientsimulation-ie_11_win81", - "ip": "passculture.app/34.111.135.217", + "id": "cert_keyUsage", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "passculture.app/34.111.135.217", + "id": "cert_extKeyUsage", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "clientsimulation-ie_11_win10", - "ip": "passculture.app/34.111.135.217", + "id": "cert_serialNumber", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "049CE2A4A0B254DE717CA8503B9E9C6D7E78" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "passculture.app/34.111.135.217", + "id": "cert_serialNumberLen", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "18" }, { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "passculture.app/34.111.135.217", + "id": "cert_fingerprintSHA1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "53C156250FC9A03B1545A208E9A3F58553DFAA9A" }, { - "id": "clientsimulation-safari_121_ios_122", - "ip": "passculture.app/34.111.135.217", + "id": "cert_fingerprintSHA256", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "passculture.app/34.111.135.217", + "id": "cert", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "passculture.app/34.111.135.217", + "id": "cert_commonName", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "pilotage.inclusion.beta.gouv.fr" }, { - "id": "clientsimulation-java_7u25", - "ip": "passculture.app/34.111.135.217", + "id": "cert_commonName_wo_SNI", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "request w/o SNI didn't succeed" }, { - "id": "clientsimulation-java_8u161", - "ip": "passculture.app/34.111.135.217", + "id": "cert_subjectAltName", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { - "id": "clientsimulation-java1102", - "ip": "passculture.app/34.111.135.217", + "id": "cert_trust", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "clientsimulation-java1703", - "ip": "passculture.app/34.111.135.217", + "id": "cert_chain_of_trust", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "passed." }, { - "id": "clientsimulation-go_1178", - "ip": "passculture.app/34.111.135.217", + "id": "cert_certificatePolicies_EV", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "no" }, { - "id": "clientsimulation-libressl_283", - "ip": "passculture.app/34.111.135.217", + "id": "cert_expirationStatus", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "severity": "OK", + "finding": "32 >= 30 days" }, { - "id": "clientsimulation-openssl_102e", - "ip": "passculture.app/34.111.135.217", + "id": "cert_notBefore", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "2024-10-04 18:06" }, { - "id": "clientsimulation-openssl_110l", - "ip": "passculture.app/34.111.135.217", + "id": "cert_notAfter", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "severity": "OK", + "finding": "2025-01-02 18:06" }, { - "id": "clientsimulation-openssl_111d", - "ip": "passculture.app/34.111.135.217", + "id": "cert_extlifeSpan", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "clientsimulation-openssl_303", - "ip": "passculture.app/34.111.135.217", + "id": "cert_eTLS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "not present" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "passculture.app/34.111.135.217", + "id": "cert_crlDistributionPoints", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "--" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "passculture.app/34.111.135.217", + "id": "cert_ocspURL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "http://r10.o.lencr.org" }, { - "id": "rating_spec", - "ip": "passculture.app/34.111.135.217", + "id": "OCSP_stapling", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "severity": "LOW", + "finding": "not offered" }, { - "id": "rating_doc", - "ip": "passculture.app/34.111.135.217", + "id": "cert_mustStapleExtension", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "--" }, { - "id": "protocol_support_score", - "ip": "passculture.app/34.111.135.217", + "id": "DNS_CAArecord", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "100" + "severity": "LOW", + "finding": "--" }, { - "id": "protocol_support_score_weighted", - "ip": "passculture.app/34.111.135.217", + "id": "certificate_transparency", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "30" + "severity": "OK", + "finding": "yes (certificate extension)" }, { - "id": "key_exchange_score", - "ip": "passculture.app/34.111.135.217", + "id": "certs_countServer", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "2" }, { - "id": "key_exchange_score_weighted", - "ip": "passculture.app/34.111.135.217", + "id": "certs_list_ordering_problem", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "no" }, { - "id": "cipher_strength_score", - "ip": "passculture.app/34.111.135.217", + "id": "cert_caIssuers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "R10 (Let's Encrypt from US)" }, { - "id": "cipher_strength_score_weighted", - "ip": "passculture.app/34.111.135.217", + "id": "intermediate_cert <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "final_score", - "ip": "passculture.app/34.111.135.217", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { - "id": "overall_grade", - "ip": "passculture.app/34.111.135.217", + "id": "intermediate_cert_notBefore <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "A" + "severity": "INFO", + "finding": "2024-03-13 00:00" }, { - "id": "grade_cap_reason_1", - "ip": "passculture.app/34.111.135.217", + "id": "intermediate_cert_notAfter <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "severity": "OK", + "finding": "2027-03-12 23:59" }, { - "id": "scanTime", - "ip": "passculture.app/34.111.135.217", + "id": "intermediate_cert_expiration <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "39" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://websdk.appsflyer.com/?st=banners&" - }, - { - "type": "google", - "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:378830896130:web:36273377e9720998307b1b/webConfig", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_ZpC3gnD_g.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://cdn.contentful.com/spaces/2bg01iqy0isv/environments/master/entries?include=3&content_type=homepageNatif&access_token=oqkcaGmPpBLYASc-Tl2yTC1Jg6sK5_LviP0yrmUG8ug" - }, - { - "type": "unknown", - "url": "https://sentry.passculture.team/api/6/envelope/?sentry_key=cbc513d8ef954df7910196a236ed3b6c&sentry_version=7&sentry_client=sentry.javascript.react%2F7.62.0" - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_ZpC3gnD_g.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google", - "url": "https://firebaseinstallations.googleapis.com/v1/projects/pc-native-production/installations", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:378830896130:web:36273377e9720998307b1b/webConfig", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&VER=8&RID=62430&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F9.6.11%0D%0AContent-Type%3Atext%2Fplain%0D%0AX-Firebase-GMPID%3A1%3A378830896130%3Aweb%3A36273377e9720998307b1b%0D%0A&zx=gp5nu4xe5hyq&t=1", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "unknown", - "url": "https://cdn.contentful.com/spaces/2bg01iqy0isv/environments/master/entries?include=3&content_type=homepageNatif&access_token=oqkcaGmPpBLYASc-Tl2yTC1Jg6sK5_LviP0yrmUG8ug" - }, - { - "type": "google", - "url": "https://firebaseinstallations.googleapis.com/v1/projects/pc-native-production/installations", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google tag manager", - "url": "https://www.googletagmanager.com/gtag/js?l=dataLayer&id=G-VN2DW38XLX", - "details": { - "id": "google tag manager", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&gsessionid=qF2XKTbX3gGysugiX4AwV9sa_CeIQ9_0xsh_YRsUfiI&VER=8&RID=rpc&SID=TTrNyRscpVzL1c4CEp4agw&CI=0&AID=0&TYPE=xmlhttp&zx=imkdkn2i499o&t=1", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firebaseremoteconfig.googleapis.com/v1/projects/pc-native-production/namespaces/firebase:fetch?key=AIzaSyCtHqbRqlMCFkeXEaidiOnrQ0xq_0gMXMc", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firebaseremoteconfig.googleapis.com/v1/projects/pc-native-production/namespaces/firebase:fetch?key=AIzaSyCtHqbRqlMCFkeXEaidiOnrQ0xq_0gMXMc", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fpc-native-production%2Fdatabases%2F(default)&VER=8&gsessionid=qF2XKTbX3gGysugiX4AwV9sa_CeIQ9_0xsh_YRsUfiI&SID=TTrNyRscpVzL1c4CEp4agw&RID=62431&AID=4&zx=vsz8h1wjdw0x&t=1", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - } - ], - "cookies": [], - "headers": { - "age": "1604", - "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "cache-control": "public, max-age=3600", - "content-encoding": "gzip", - "content-length": "5670", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 06:50:51 GMT", - "etag": "W/\"8decd64f697afbbee0f11eb0fa33c1f9\"", - "expires": "Sun, 24 Nov 2024 07:24:07 GMT", - "last-modified": "Tue, 19 Nov 2024 14:57:32 GMT", - "server": "Google Frontend", - "vary": "Accept-Encoding", - "via": "1.1 google", - "x-cloud-trace-context": "fd0cb7ab676a644472247345255d68a1", - "x-goog-generation": "1732028252458532", - "x-goog-hash": "crc32c=g+Y9Yg==, md5=jezWT2l6+77g8R6w+jPB+Q==", - "x-goog-metageneration": "1", - "x-goog-storage-class": "STANDARD", - "x-goog-stored-content-encoding": "identity", - "x-goog-stored-content-length": "16353", - "x-guploader-uploadid": "AFiumC7rze-NJzDsfyAGbtdXxMw4Iz5ciW4gtm0RnUaUbS-gx-Xjc2fBKtT7tCus66OlmLq0ESg", - "x-powered-by": "Express" + "severity": "OK", + "finding": "ok > 40 days" }, - "endpoints": [ - { - "hostname": "passculture.app", - "ip": "34.111.135.217", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "websdk.appsflyer.com", - "ip": "18.155.192.79", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "firebase.googleapis.com", - "ip": "142.250.189.170", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "142.251.32.35", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.contentful.com", - "ip": "151.101.203.18", - "geoip": { - "city": { - "geoname_id": 5380748, - "names": { - "de": "Palo Alto", - "en": "Palo Alto", - "es": "Palo Alto", - "fr": "Palo Alto", - "ja": "パロアルト", - "pt-BR": "Palo Alto", - "ru": "Пало Альто" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.4433, - "longitude": -122.141, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94302" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "sentry.passculture.team", - "ip": "34.107.224.170", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "firebaseinstallations.googleapis.com", - "ip": "142.251.32.42", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "firestore.googleapis.com", - "ip": "142.251.46.170", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.googletagmanager.com", - "ip": "142.251.46.232", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "firebaseremoteconfig.googleapis.com", - "ip": "142.250.189.170", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://passculture.app/": { - "status": 200 - } + { + "id": "intermediate_cert_chain <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "R10 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "1733037966" + }, + { + "id": "HSTS_time", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" + }, + { + "id": "LOGJAM", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "technologies": [ - { - "slug": "skolengo", - "name": "Skolengo", - "description": "Skolengo is an Education Management Software developed by Kosmos Education.", - "confidence": 0, - "version": "1.314.2", - "icon": "Skolengo.svg", - "website": "https://www.skolengo.com", - "cpe": null, - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - }, - { - "id": 21, - "slug": "lms", - "name": "LMS" - } - ], - "rootPath": true - }, - { - "slug": "fourthwall", - "name": "Fourthwall", - "description": "Fourthwall helps to create and launch a branded website.", - "confidence": 0, - "version": "1.314.2", - "icon": "Fourthwall.svg", - "website": "https://fourthwall.com/", - "cpe": null, - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "magento", - "name": "Magento", - "description": "Magento is an open-source ecommerce platform written in PHP.", - "confidence": 100, - "version": null, - "icon": "Magento.svg", - "website": "https://magento.com", - "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "mariadb", - "name": "MariaDB", - "description": "MariaDB is an open-source relational database management system compatible with MySQL.", - "confidence": 0, - "version": null, - "icon": "mariadb.svg", - "website": "https://mariadb.org", - "cpe": "cpe:2.3:a:mariadb_project:mariadb:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "java", - "name": "Java", - "description": "Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.", - "confidence": 0, - "version": null, - "icon": "Java.svg", - "website": "https://java.com", - "cpe": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "apache-tomcat", - "name": "Apache Tomcat", - "description": "Apache Tomcat is an open-source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and WebSocket technologies.", - "confidence": 0, - "version": null, - "icon": "Apache Tomcat.svg", - "website": "https://tomcat.apache.org", - "cpe": "cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "google-cloud", - "name": "Google Cloud", - "description": "Google Cloud is a suite of cloud computing services.", - "confidence": 100, - "version": null, - "icon": "Google Cloud.svg", - "website": "https://cloud.google.com", - "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 63, - "slug": "iaas", - "name": "IaaS" - } - ] - }, - { - "slug": "styled-components", - "name": "styled-components", - "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", - "confidence": 100, - "version": "5.3.11", - "icon": "styled-components.svg", - "website": "https://styled-components.com", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "express", - "name": "Express", - "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", - "confidence": 100, - "version": null, - "icon": "Express.svg", - "website": "https://expressjs.com", - "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.19.3", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "appsflyer", - "name": "Appsflyer", - "description": "AppsFlyer is a SaaS mobile marketing analytics and attribution platform.", - "confidence": 100, - "version": null, - "icon": "Appsflyer.svg", - "website": "https://www.appsflyer.com/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "zendesk", - "name": "Zendesk", - "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", - "confidence": 100, - "version": null, - "icon": "Zendesk.svg", - "website": "https://zendesk.com", - "cpe": null, - "categories": [ - { - "id": 4, - "slug": "documentation", - "name": "Documentation" - }, - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - }, - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "google-workspace", - "name": "Google Workspace", - "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", - "confidence": 100, - "version": null, - "icon": "Google.svg", - "website": "https://workspace.google.com/", - "cpe": null, - "categories": [ - { - "id": 30, - "slug": "webmail", - "name": "Webmail" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-trace", - "name": "Google Cloud Trace", - "description": "Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.", - "confidence": 100, - "version": null, - "icon": "google-cloud-trace.svg", - "website": "https://cloud.google.com/trace", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-cdn", - "name": "Google Cloud CDN", - "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", - "confidence": 100, - "version": null, - "icon": "google-cloud-cdn.svg", - "website": "https://cloud.google.com/cdn", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "docusign", - "name": "DocuSign", - "description": "DocuSign allows organisations to manage electronic agreements.", - "confidence": 100, - "version": null, - "icon": "DocuSign.svg", - "website": "https://www.docusign.com", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-storage", - "name": "Google Cloud Storage", - "description": "Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.", - "confidence": 100, - "version": null, - "icon": "google-cloud-storage.svg", - "website": "https://cloud.google.com/storage", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://passculture.app/", - "finalUrl": "https://passculture.app/", - "fetchTime": "2024-11-24T06:54:44.861Z", - "runWarnings": [ - "The page loaded too slowly to finish within the time limit. Results may be incomplete." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.26 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.87 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.8 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 20173, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 787, - "firstMeaningfulPaint": 12952, - "largestContentfulPaint": 21584, - "interactive": 20173, - "speedIndex": 12683, - "totalBlockingTime": 1773, - "maxPotentialFID": 665, - "cumulativeLayoutShift": 0.1165220906999376, - "cumulativeLayoutShiftMainFrame": 0.1165220906999376, - "totalCumulativeLayoutShift": 0.1165220906999376, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 409107924, - "observedNavigationStart": 0, - "observedNavigationStartTs": 409107924, - "observedFirstPaint": 81, - "observedFirstPaintTs": 409188566, - "observedFirstContentfulPaint": 81, - "observedFirstContentfulPaintTs": 409188566, - "observedFirstContentfulPaintAllFrames": 81, - "observedFirstContentfulPaintAllFramesTs": 409188566, - "observedFirstMeaningfulPaint": 1082, - "observedFirstMeaningfulPaintTs": 410190174, - "observedLargestContentfulPaint": 4298, - "observedLargestContentfulPaintTs": 413405743, - "observedLargestContentfulPaintAllFrames": 4298, - "observedLargestContentfulPaintAllFramesTs": 413405743, - "observedTraceEnd": 45017, - "observedTraceEndTs": 454124464, - "observedLoad": 1254, - "observedLoadTs": 410361440, - "observedDomContentLoaded": 543, - "observedDomContentLoadedTs": 409651337, - "observedCumulativeLayoutShift": 0.1165220906999376, - "observedCumulativeLayoutShiftMainFrame": 0.1165220906999376, - "observedTotalCumulativeLayoutShift": 0.1165220906999376, - "observedFirstVisualChange": 75, - "observedFirstVisualChangeTs": 409182924, - "observedLastVisualChange": 4308, - "observedLastVisualChangeTs": 413415924, - "observedSpeedIndex": 970, - "observedSpeedIndexTs": 410077430 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 72, - "numScripts": 5, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 15077, - "numTasksOver10ms": 36, - "numTasksOver25ms": 18, - "numTasksOver50ms": 7, - "numTasksOver100ms": 2, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 665316.1042714954, - "maxRtt": 152.864, - "maxServerLatency": 463.85, - "totalByteWeight": 3821195, - "totalTaskTime": 6199.017000000285, - "mainDocumentTransferSize": 6228 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "30" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "90" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "pass-culture", - "type": "startup", - "attributes": { - "name": "Pass Culture", - "pitch": "Faciliter l'accès des jeunes à la culture", - "stats_url": "", - "link": "https://pass.culture.fr", - "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", - "contact": "support.passculture@beta.gouv.fr", - "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", - "events": [ - { - "name": "national_impact", - "date": "2021-12-31", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2017-12-01", - "end": "" - }, - { - "name": "construction", - "start": "2018-02-28", - "end": "" - }, - { - "name": "acceleration", - "start": "2019-07-22", - "end": "" - }, - { - "name": "transfer", - "start": "2019-07-22", - "end": "" - }, - { - "name": "success", - "start": "2021-05-01", - "end": "" - } - ], - "sponsors": [ - "dgca", - "mc" - ], - "thematiques": [], - "accessibility_status": "partiellement conforme" + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://passculture.app", - "size": 4285.059, - "nodes": 1043, - "requests": 62, - "grade": "E", - "score": 36, - "ges": 2.28, - "water": 3.42, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 06:51:34.520820", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 0.967, - "apdexGrade": "D", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-17T22:59:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 20, - "lighthouse_performance": 0.26, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.87, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.8, - "lighthouse_pwaGrade": "B", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "E", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://backend.passculture.pro", - "category": "dinum", - "tags": [ - "api" - ], - "repositories": [ - "pass-culture/pass-culture-main" - ], - "betaId": "pass-culture", - "tools": { - "lighthouse": false, - "thirdparties": false, - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false, - "dsfr": false, - "ecoindex": false, - "screenshot": false - }, - "http": { - "url": "https://backend.passculture.pro", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:52:15 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Alt-Svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "Content-Length": "3", - "Content-Type": "application/json", - "Date": "Sun, 20 Oct 2024 05:52:15 GMT", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", - "Via": "1.1 google", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-XSS-Protection": "1; mode=block" + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "scan_id": 57052191, - "score": 75, - "start_time": "Sun, 20 Oct 2024 05:52:14 GMT", - "state": "FINISHED", - "status_code": 404, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": true, - "route": [ - "http://backend.passculture.pro/", - "https://backend.passculture.pro:443/" - ], - "status_code": null - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": null, - "nmap": { - "host": "backend.passculture.pro", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http/1.1grpc-exp" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182038,7 +177437,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182046,7 +177445,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182054,7 +177453,7 @@ }, { "id": "cipherlist_LOW", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182062,7 +177461,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -182070,7 +177469,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -182078,519 +177477,505 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "backend.passculture.pro/34.107.224.170", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2024-10-04 12:47" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-02 13:43" + "severity": "OK", + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr3/xHGNLJifGCE.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr3/FPI" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "WR3 (Google Trust Services from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2FE357DB13751FF9160E87354975B3407498F41C9BD16A48657866E6E5A9B4C7" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "WR3 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732431979" + "finding": "1733038017" }, { "id": "HSTS_time", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "backend.passculture.pro/34.107.224.170", + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 google" + "finding": "--" }, { "id": "heartbleed", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -182599,7 +177984,7 @@ }, { "id": "CCS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -182608,16 +177993,16 @@ }, { "id": "ticketbleed", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -182626,7 +178011,7 @@ }, { "id": "secure_renego", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -182634,16 +178019,16 @@ }, { "id": "secure_client_renego", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -182652,7 +178037,7 @@ }, { "id": "BREACH", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -182661,7 +178046,7 @@ }, { "id": "POODLE_SSL", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -182670,14 +178055,14 @@ }, { "id": "fallback_SCSV", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -182686,7 +178071,7 @@ }, { "id": "FREAK", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -182695,7 +178080,7 @@ }, { "id": "DROWN", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -182704,16 +178089,16 @@ }, { "id": "DROWN_hint", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=94092B6D697E4A5558774DC057E4B4C3D4356EBEE2DD7D00A57CC527103DEC35" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182722,7 +178107,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182731,7 +178116,7 @@ }, { "id": "BEAST", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -182740,7 +178125,7 @@ }, { "id": "LUCKY13", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -182749,7 +178134,7 @@ }, { "id": "winshock", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -182758,7 +178143,7 @@ }, { "id": "RC4", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -182767,845 +178152,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "backend.passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "backend.passculture.pro/34.107.224.170", - "port": "443", - "severity": "INFO", - "finding": "37" - } - ], - "thirdparties": null, - "wappalyzer": { - "urls": { - "https://backend.passculture.pro/": { - "status": 404 - } - }, - "technologies": [ - { - "slug": "google-cloud", - "name": "Google Cloud", - "description": "Google Cloud is a suite of cloud computing services.", - "confidence": 100, - "version": null, - "icon": "Google Cloud.svg", - "website": "https://cloud.google.com", - "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 63, - "slug": "iaas", - "name": "IaaS" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-cdn", - "name": "Google Cloud CDN", - "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", - "confidence": 100, - "version": null, - "icon": "google-cloud-cdn.svg", - "website": "https://cloud.google.com/cdn", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": null, - "github_repository": { - "grade": "A" - }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, - "betagouv": { - "id": "pass-culture", - "type": "startup", - "attributes": { - "name": "Pass Culture", - "pitch": "Faciliter l'accès des jeunes à la culture", - "stats_url": "", - "link": "https://pass.culture.fr", - "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", - "contact": "support.passculture@beta.gouv.fr", - "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", - "events": [ - { - "name": "national_impact", - "date": "2021-12-31", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2017-12-01", - "end": "" - }, - { - "name": "construction", - "start": "2018-02-28", - "end": "" - }, - { - "name": "acceleration", - "start": "2019-07-22", - "end": "" - }, - { - "name": "transfer", - "start": "2019-07-22", - "end": "" - }, - { - "name": "success", - "start": "2021-05-01", - "end": "" - } - ], - "sponsors": [ - "dgca", - "mc" - ], - "thematiques": [], - "accessibility_status": "partiellement conforme" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": null, - "summary": { - "httpGrade": "B", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-02T13:43:00.000Z", - "testsslGrade": "A+", - "githubRepositoryGrade": "A" - } - }, - { - "404": null, - "url": "https://passculture.pro", - "category": "dinum", - "repositories": [ - "pass-culture/pass-culture-main" - ], - "betaId": "pass-culture", - "http": { - "url": "https://passculture.pro", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:57:00 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Accept-Ranges": "bytes", - "Alt-Svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "Cache-Control": "max-age=3600", - "Content-Encoding": "gzip", - "Content-Security-Policy-Report-Only": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 05:57:00 GMT", - "ETag": "\"40767c8fbdf87cf750bbf0035f8e1f704685f9583b0aa8e7ee636133eaa87bde\"", - "Last-Modified": "Wed, 16 Oct 2024 07:59:40 GMT", - "Strict-Transport-Security": "max-age=31556926; includeSubDomains; preload", - "Transfer-Encoding": "chunked", - "Vary": "x-fh-requested-host, accept-encoding", - "Via": "1.1 google", - "X-Cache": "HIT", - "X-Cache-Hits": "1", - "X-Served-By": "cache-bfi-kbfi7400083-BFI", - "X-Timer": "S1729403820.487366,VS0,VE1" + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "scan_id": 57052274, - "score": 55, - "start_time": "Sun, 20 Oct 2024 05:57:00 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "default-src": [ - "blob:", - "gap://ready", - "https://*.hotjar.com:*", - "https:", - "data:", - "'self'", - "https://*.hotjar.io", - "wss://*.hotjar.com", - "http:" - ], - "style-src": [ - "'unsafe-inline'", - "https://app.getbeamer.com/styles/beamer-embed.css", - "https://fonts.googleapis.com/css", - "'self'" - ] - }, - "http": false, - "meta": true, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": true, - "insecureSchemePassive": true, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": true - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://passculture.pro:443/", - "redirects": true, - "route": [ - "http://passculture.pro/", - "https://passculture.pro:443/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31556926; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31556926, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "xksk", - "url": "https://passculture.pro", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T02:29:07Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T07:19:06Z", - "next_check_at": "2024-11-24T07:20:06Z", - "created_at": "2024-01-15T13:37:42Z", - "mute_until": null, - "favicon_url": "https://passculture.pro/icon/app-icon-iphone.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T07:14:09Z", - "expires_at": "2025-02-17T22:59:59Z", - "valid": true, - "error": null + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 45, - "connection": 3, - "handshake": 23, - "response": 23, - "total": 93 - } + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "passculture.pro", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "passculture.pro/34.107.224.170", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "http/1.1grpc-exp" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183613,7 +178538,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183621,7 +178546,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183629,7 +178554,7 @@ }, { "id": "cipherlist_LOW", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183637,7 +178562,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -183645,7 +178570,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -183653,477 +178578,505 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "passculture.pro/34.107.224.170", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'server name/#0' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 60 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2024-03-21 23:00" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "2025-02-17 22:59" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732432702" + "finding": "1733038069" }, { "id": "HSTS_time", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "365 days (=31556926 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "Content-Security-Policy-Report-Only", - "ip": "passculture.pro/34.107.224.170", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Served-By", - "ip": "passculture.pro/34.107.224.170", + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200072-IAD" + "finding": "1/1 at '/' marked as HttpOnly" }, { - "id": "Cache-Control", - "ip": "passculture.pro/34.107.224.170", + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "max-age=3600" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "X-Cache: HITX-Cache-Hits: 1Via: 1.1 google" + "finding": "--" }, { "id": "heartbleed", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -184132,7 +179085,7 @@ }, { "id": "CCS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -184141,16 +179094,16 @@ }, { "id": "ticketbleed", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -184159,7 +179112,7 @@ }, { "id": "secure_renego", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -184167,16 +179120,16 @@ }, { "id": "secure_client_renego", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -184185,16 +179138,16 @@ }, { "id": "BREACH", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -184203,14 +179156,14 @@ }, { "id": "fallback_SCSV", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -184219,7 +179172,7 @@ }, { "id": "FREAK", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -184228,7 +179181,7 @@ }, { "id": "DROWN", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -184237,16 +179190,16 @@ }, { "id": "DROWN_hint", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E650FC1CB3FB2237237348D0B38628D5371EB4F87A2A199DF354774C02B83DF8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -184255,7 +179208,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -184264,7 +179217,7 @@ }, { "id": "BEAST", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -184273,7 +179226,7 @@ }, { "id": "LUCKY13", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -184282,7 +179235,7 @@ }, { "id": "winshock", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -184291,7 +179244,7 @@ }, { "id": "RC4", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -184300,3017 +179253,1486 @@ }, { "id": "clientsimulation-android_60", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "passculture.pro/34.107.224.170", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "049CE2A4A0B254DE717CA8503B9E9C6D7E78" + }, + { + "id": "cert_serialNumberLen", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "18" }, { - "id": "clientsimulation-ie_11_win81", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_fingerprintSHA1", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "53C156250FC9A03B1545A208E9A3F58553DFAA9A" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_fingerprintSHA256", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { - "id": "clientsimulation-ie_11_win10", - "ip": "passculture.pro/34.107.224.170", + "id": "cert", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBJzipKCyVN5xfKhQO56cbX54MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDA0MTgwNjM3WhcNMjUwMTAyMTgwNjM2WjAqMSgwJgYDVQQDEx9waWxvdGFnZS5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAini1Hdd4jD68+KTK1KhuZbwy+hzBA4N2ZdoexIwCrtD3D2Wdak18RY1k3POk8PAtM7titrSuOFU0pd/SRsNHG7HDfmimb1YgpsvoktLHvqPzQHJMtQhNF00d7qSkStJL6K7Pvq53VnaFIZYZesuHgWQXQLWGD68MdUhWdl7ODlnNdaRqr0CpZt0taEge1I/Nb0IN6f2MFASxFuIv8A6c5C5Q3TiA8cXLIBO0ZCx/YVEQ405hcSXBEyaVxW7smBNCvLjHNdGGnmZxCKGakp9chM/GQvERgC8MuI4ncLZ2LdlhvWjwBI3m9WfjxY65gwJCHxG/8ntqeZDai4ErX45LHQIDAQABo4ICITCCAh0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSKlPfKxy3q9crC5db9+VyQ71SgvTAfBgNVHSMEGDAWgBS7vMNHpeS8qcbDpHIMEI2iNeHI6DBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9yMTAuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTAuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH3BpbG90YWdlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZJY6+bBAAAEAwBGMEQCIGcaec4gbAI4C/YHij+sKGd4cFPLDBZAryc8zlA5AAulAiAPBJKtImHzTcJBA+oRYRAdG+2yjPYsRzyYEhpvDXS0dgB1AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkljr5sEAAAQDAEYwRAIgcQ+le6vS6SiTgAuBSKHFa9JvOQbdfbvB6/PUcEvuOt8CIHXdoY8S7KeC9Am/00kpAa4IM6e637seSowjxj6jHYh/MA0GCSqGSIb3DQEBCwUAA4IBAQAFRhi0JVJj9F0pK9uXwbSbHvNEZfywyuBcNMBH5P6CGhkMGnb0Z5+20Xr0IMcQf1V/oY/K5qe+uNqKPizrDgmms1PFy9A4APxsj33RaxPIt01uvUV8IXHhWJ2Go3tQdgGdNibaALLjNspLneC/2iFmpNs+z6p8cvhlcR31OCIkDEINZ5zf1NHjfcOjtB2/Vr3IFMLBvLGmQAAgcMKf4zgccqaMm4gcXL5fYt++kexEdwnJnPQRQTCEc1zNTdNJs0O9137b1CvwZQkKV1CyXZQHm408U7hYwYkhPld1T0IfpkVOYj4aVaMdy+IRD0HB+t3dKcPd0njawt+SIPnmJuCx\n-----END CERTIFICATE-----" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_commonName", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "pilotage.inclusion.beta.gouv.fr" }, { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_commonName_wo_SNI", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "request w/o SNI didn't succeed" }, { - "id": "clientsimulation-safari_121_ios_122", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_subjectAltName", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_trust", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_chain_of_trust", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "passed." }, { - "id": "clientsimulation-java_7u25", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_certificatePolicies_EV", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "no" }, { - "id": "clientsimulation-java_8u161", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_expirationStatus", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "32 >= 30 days" }, { - "id": "clientsimulation-java1102", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_notBefore", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "2024-10-04 18:06" }, { - "id": "clientsimulation-java1703", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_notAfter", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "2025-01-02 18:06" }, { - "id": "clientsimulation-go_1178", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_extlifeSpan", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "clientsimulation-libressl_283", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_eTLS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "not present" }, { - "id": "clientsimulation-openssl_102e", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_crlDistributionPoints", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "--" }, { - "id": "clientsimulation-openssl_110l", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_ocspURL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "http://r10.o.lencr.org" }, { - "id": "clientsimulation-openssl_111d", - "ip": "passculture.pro/34.107.224.170", + "id": "OCSP_stapling", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "LOW", + "finding": "not offered" }, { - "id": "clientsimulation-openssl_303", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_mustStapleExtension", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "--" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "passculture.pro/34.107.224.170", + "id": "DNS_CAArecord", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "severity": "LOW", + "finding": "--" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "passculture.pro/34.107.224.170", + "id": "certificate_transparency", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "yes (certificate extension)" }, { - "id": "rating_spec", - "ip": "passculture.pro/34.107.224.170", + "id": "certs_countServer", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "2" }, { - "id": "rating_doc", - "ip": "passculture.pro/34.107.224.170", + "id": "certs_list_ordering_problem", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "no" }, { - "id": "protocol_support_score", - "ip": "passculture.pro/34.107.224.170", + "id": "cert_caIssuers", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "R10 (Let's Encrypt from US)" }, { - "id": "protocol_support_score_weighted", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "key_exchange_score", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { - "id": "key_exchange_score_weighted", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_notBefore <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "2024-03-13 00:00" }, { - "id": "cipher_strength_score", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_notAfter <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "60" + "severity": "OK", + "finding": "2027-03-12 23:59" }, { - "id": "cipher_strength_score_weighted", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_expiration <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "24" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "final_score", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_chain <#1>", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "R10 <-- ISRG Root X1" }, { - "id": "overall_grade", - "ip": "passculture.pro/34.107.224.170", + "id": "intermediate_cert_badOCSP", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "scanTime", - "ip": "passculture.pro/34.107.224.170", + "id": "HTTP_status_code", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "40" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0oJC8MLnbtg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXx-p7K4KLg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/montserrat/v26/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq5Z9WXh0oJC8MLnbtg.woff", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://sentry.passculture.team/api/2/envelope/?sentry_key=50f5694849704813b4154c5868b73365&sentry_version=7&sentry_client=sentry.javascript.browser%2F8.37.1" - }, - { - "type": "google", - "url": "https://www.google.com/recaptcha/api.js?render=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/recaptcha__en.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=pPK749sccDmVW_9DSeTMVvh2&size=invisible&cb=fm8dt8rwxii", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/styles__ltr.css", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/recaptcha__en.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.google.com/js/bg/1WJ41Y3FKQ963wNVVah2aO2i1At8ivplN5CN6DwMHdo.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://www.gstatic.com/recaptcha/api2/logo_48.png", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google", - "url": "https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=pPK749sccDmVW_9DSeTMVvh2", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - } - ], - "cookies": [], - "headers": { - "accept-ranges": "bytes", - "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "cache-control": "max-age=3600", - "content-encoding": "br", - "content-length": "600", - "content-security-policy-report-only": "style-src 'self' https://app.getbeamer.com 'unsafe-inline'; img-src 'self' blob: data: https://*.getbeamer.com https://storage.googleapis.com https://www.googletagmanager.com; object-src 'none'; frame-src https://*.getbeamer.com https://www.google.com https://data-analytics.passculture.team; script-src 'self' 'nonce-recaptcha' https://www.gstatic.com https://*.getbeamer.com https://*.hotjar.com https://www.googletagmanager.com https://firebaseinstallations.googleapis.com https://firebaseremoteconfig.googleapis.com https://api-adresse.data.gouv.fr https://*.hotjar.io; connect-src 'self' https://*.algolianet.com https://www.googletagmanager.com https://www.google-analytics.com wss://ws.hotjar.com https://*.hotjar.com https://*.hotjar.io https://api-adresse.data.gouv.fr https://storage.googleapis.com https://backend.getbeamer.com https://firebaseremoteconfig.googleapis.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://sentry.passculture.team https://backend.integration.passculture.pro https://backend.testing.passculture.team https://backend.staging.passculture.team https://backend.passculture.pro https://region1.google-analytics.com https://*.algolia.net https://insights.algolia.io; base-uri; report-uri https://sentry.passculture.team/api/2/security/?sentry_key=50f5694849704813b4154c5868b73365;", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 07:17:32 GMT", - "etag": "\"d5fe785f9ef1df5d5037d31e4f4964e6f30dc7e81b03167ba64fb1d03c72a570-br\"", - "last-modified": "Thu, 14 Nov 2024 10:31:19 GMT", - "strict-transport-security": "max-age=31556926; includeSubDomains; preload", - "vary": "x-fh-requested-host, accept-encoding", - "via": "1.1 google", - "x-cache": "HIT", - "x-cache-hits": "1", - "x-served-by": "cache-iad-kiad7000159-IAD", - "x-timer": "S1732432653.757767,VS0,VE1" - }, - "endpoints": [ - { - "hostname": "passculture.pro", - "ip": "34.107.224.170", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "142.251.163.94", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "sentry.passculture.team", - "ip": "34.107.224.170", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "www.google.com", - "ip": "142.250.31.103", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.gstatic.com", - "ip": "142.251.167.94", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://passculture.pro/": { - "status": 200 - } + "finding": "200 OK ('/')" }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": null, - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud", - "name": "Google Cloud", - "description": "Google Cloud is a suite of cloud computing services.", - "confidence": 100, - "version": null, - "icon": "Google Cloud.svg", - "website": "https://cloud.google.com", - "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 63, - "slug": "iaas", - "name": "IaaS" - } - ] - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-cdn", - "name": "Google Cloud CDN", - "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", - "confidence": 100, - "version": null, - "icon": "google-cloud-cdn.svg", - "website": "https://cloud.google.com/cdn", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://passculture.pro/", - "finalUrl": "https://passculture.pro/", - "fetchTime": "2024-11-24T07:17:10.318Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.74 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.7 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4367, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2561, - "firstMeaningfulPaint": 2802, - "largestContentfulPaint": 5119, - "interactive": 4367, - "speedIndex": 2855, - "totalBlockingTime": 139, - "maxPotentialFID": 142, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 337306903, - "observedNavigationStart": 0, - "observedNavigationStartTs": 337306903, - "observedFirstPaint": 218, - "observedFirstPaintTs": 337525355, - "observedFirstContentfulPaint": 218, - "observedFirstContentfulPaintTs": 337525355, - "observedFirstContentfulPaintAllFrames": 218, - "observedFirstContentfulPaintAllFramesTs": 337525355, - "observedFirstMeaningfulPaint": 418, - "observedFirstMeaningfulPaintTs": 337724654, - "observedLargestContentfulPaint": 378, - "observedLargestContentfulPaintTs": 337684850, - "observedLargestContentfulPaintAllFrames": 378, - "observedLargestContentfulPaintAllFramesTs": 337684850, - "observedTraceEnd": 3012, - "observedTraceEndTs": 340319331, - "observedLoad": 204, - "observedLoadTs": 337510938, - "observedDomContentLoaded": 202, - "observedDomContentLoadedTs": 337509353, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 312, - "observedFirstVisualChangeTs": 337618903, - "observedLastVisualChange": 446, - "observedLastVisualChangeTs": 337752903, - "observedSpeedIndex": 407, - "observedSpeedIndexTs": 337714158 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 45, - "numScripts": 14, - "numStylesheets": 5, - "numFonts": 8, - "numTasks": 1028, - "numTasksOver10ms": 8, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 80502744.2773721, - "maxRtt": 6.632999999999999, - "maxServerLatency": 99.28599999999999, - "totalByteWeight": 1096661, - "totalTaskTime": 359.21099999999853, - "mainDocumentTransferSize": 2020 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://passculture.pro/accessibilite" - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "HTTP_clock_skew", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 6, - "score": 5, - "missingWords": [], - "missingTrackers": [ - "googlefonts" - ], - "declarationUrl": "https://pass.culture.fr/donnees-personnelles/" - } - ], - "betagouv": { - "id": "pass-culture", - "type": "startup", - "attributes": { - "name": "Pass Culture", - "pitch": "Faciliter l'accès des jeunes à la culture", - "stats_url": "", - "link": "https://pass.culture.fr", - "repository": "https://pass-culture.gitbook.io/documents/informations-techniques#code-source", - "contact": "support.passculture@beta.gouv.fr", - "content_url_encoded_markdown": "Retrouvez%20toutes%20les%20informations%20sur%20l%27exp%C3%A9rimentation%20du%20Pass%20Culture%20sur%20notre%20site%20%5Bpass.culture.fr%5D%28https%3A%2F%2Fpass.culture.fr%29%0A%0AL%27ensemble%20de%20notre%20documentation%20est%20par%20ailleurs%20disponible%20sur%20notre%20%5BGitbook%5D%28https%3A%2F%2Fpass-culture.gitbook.io%2Fdocuments%2Fle-pass-culture-en-quelques-mots%29%0A%0A%23%23%20Le%20pass%20Culture%20en%20quelques%20mots%0A%0ALe%20pass%20Culture%20a%20e%CC%81te%CC%81%20imagine%CC%81%20pour%20tous%20les%20publics%2C%20et%20surtout%20ceux%20qui%20sont%20ou%20se%20sentent%20exclus%20de%20la%20culture%2C%20et%20il%20a%20e%CC%81te%CC%81%20conc%CC%A7u%20pour%20tous%20les%20acteurs%20culturels%2C%20y%20compris%20les%20plus%20modestes%20et%20les%20moins%20outille%CC%81s%20pour%20des%20pratiques%20nume%CC%81riques.%20Le%20pass%20Culture%20a%20pour%20vocation%20de%20rapprocher%20la%20culture%20de%20tous%20les%20citoyens%2C%20en%20donnant%20acce%CC%80s%20a%CC%80%20l%E2%80%99information%20sur%20les%20propositions%20artistiques%20et%20culturelles%20a%CC%80%20proximite%CC%81%2C%20en%20suscitant%20l%E2%80%99envie%20des%20jeunes%20ge%CC%81ne%CC%81rations%20d%E2%80%99y%20participer%2C%20en%20proposant%20des%20actions%20et%20des%20services%20partout%20sur%20le%20territoire.%0A%0ANouvelle%20forme%20de%20service%20public%20de%20la%20culture%2C%20le%20pass%20Culture%20est%20un%20outil%20%3A%0A%2A%20%2A%2Aau%20service%20des%20citoyens%2A%2A%20%3A%20il%20re%CC%81fe%CC%81rence%20des%20expe%CC%81riences%20%E2%80%93%20the%CC%81a%CC%82tre%2C%20cine%CC%81ma%2C%20muse%CC%81es%2C%20monuments%2C%20cours%20de%20pratique%20artistique%2C%20rencontres%20avec%20des%20artistes%20-%20et%20des%20biens%20culturels%20%28mate%CC%81riels%2C%20nume%CC%81riques%29%20gratuits%20ou%20payants%2C%20en%20mettant%20500%20euros%20a%CC%80%20la%20disposition%20des%20jeunes%20de%2018%20ans%20a%CC%80%20utiliser%20via%20l%E2%80%99application%20pass%20Culture%20%3B%0A%2A%20%2A%2Aau%20service%20des%20acteurs%20culturels%2C%20publics%20et%20prive%CC%81s%2C%20dans%20toute%20leur%20diversite%CC%81%2A%2A%20%3A%20il%20constitue%20un%20canal%20ine%CC%81dit%20de%20distribution%20de%20leur%20programmation%20culturelle%20et%20de%20leurs%20actions%20de%20me%CC%81diation%2C%20leur%20offrant%20ainsi%20un%20surcroi%CC%82t%20de%20visibilite%CC%81%20aupre%CC%80s%20de%20ces%20nouveaux%20publics%20%3B%0A%2A%20%2A%2Aau%20service%20des%20territoires%20et%20des%20politiques%20publiques%2A%2A%20%3A%20il%20offre%20un%20canal%20de%20communication%20mettant%20en%20valeur%20la%20vie%20culturelle%20de%20proximite%CC%81%20et%20la%20vitalite%CC%81%20culturelle%20partout%20en%20France.%0A%0A%23%23%20Comment%20%C3%A7a%20marche%20%3F%0A%0AConcre%CC%80tement%2C%20le%20pass%20Culture%20prend%20la%20forme%20d%E2%80%99une%20application%20web%20et%20mobile%20te%CC%81le%CC%81chargeable%20gratuitement%2C%20qui%20re%CC%81ve%CC%80le%20et%20relaie%20les%20possibilite%CC%81s%20culturelles%20et%20artistiques%20accessibles%20a%CC%80%20proximite%CC%81.%20Gra%CC%82ce%20a%CC%80%20un%20dispositif%20de%20ge%CC%81olocalisation%2C%20les%20citoyens%20peuvent%20repe%CC%81rer%2C%20choisir%20et%20re%CC%81server%20une%20grande%20diversite%CC%81%20de%20biens%20et%20de%20propositions%20culturels%2C%20du%20concert%20au%20the%CC%81a%CC%82tre%20en%20passant%20par%20le%20livre%2C%20la%20pratique%20artistique%20et%20les%20jeux%20vide%CC%81os.%0A%0A%23%23%20Une%20application%20co-construite%20avec%20ses%20futurs%20utilisateurs%0A%0AL%E2%80%99application%20pass%20Culture%20est%20re%CC%81solument%20pense%CC%81e%20comme%20ouverte%20et%20partage%CC%81e%2C%20dans%20sa%20finalite%CC%81%20mais%20aussi%20dans%20sa%20conception.%20C%E2%80%99est%20pourquoi%20une%20phase%20de%20tests%20et%20d%E2%80%99expe%CC%81rimentation%20a%20e%CC%81te%CC%81%20mise%20en%20place%20pour%20accompagner%20le%20de%CC%81veloppement%20de%20l%E2%80%99application%2C%20afin%20de%20re%CC%81pondre%20au%20mieux%20aux%20aspirations%2C%20aux%20pratiques%2C%20aux%20usages%20et%20aux%20besoins%20des%20futurs%20utilisateurs%20%3A%20les%20jeunes%20de%2018%20ans%20et%20tous%20les%20acteurs%20culturels.%0A%0APour%20mener%20a%CC%80%20bien%20cette%20se%CC%81quence%20essentielle%20pour%20la%20re%CC%81ussite%20du%20pass%20Culture%2C%205%20de%CC%81partements%20pilotes%20ont%20e%CC%81te%CC%81%20choisis%20%3A%20le%20Bas-Rhin%2C%20le%20Finiste%CC%80re%2C%20la%20Guyane%2C%20l%E2%80%99He%CC%81rault%20et%20la%20Seine-Saint-Denis.%20Ils%20repre%CC%81sentent%20au%20plus%20pre%CC%80s%20la%20re%CC%81alite%CC%81%20et%20la%20diversite%CC%81%20territoriales%2C%20sociales%20et%20de%CC%81mographiques%20de%20notre%20pays%2C%20y%20compris%20en%20termes%20d%E2%80%99offres%20culturelles%20et%20d%E2%80%99acce%CC%80s%20a%CC%80%20une%20connexion%20Internet.%0A%0ADans%20un%20premier%20temps%2C%20une%20phase%20de%20co-design%20de%20l%E2%80%99application%20a%20e%CC%81te%CC%81%20mene%CC%81e%20de%CC%81but%202018%20avec%20500%20be%CC%82ta-testeurs%20de%2018%20ans%20ayant%20manifeste%CC%81%20leur%20inte%CC%81re%CC%82t%20pour%20le%20pass%20Culture.%20Ces%20jeunes%2C%20sensibilise%CC%81s%20notamment%20par%20des%20structures%20relais%20be%CC%81ne%CC%81ficiant%20d%E2%80%99un%20fort%20ancrage%20territorial%20%28telles%20que%20les%20associations%2C%20missions%20locales%2C%20lyce%CC%81es%2C%20MJC%2C%20etc.%29%2C%20ont%20participe%CC%81%20a%CC%80%20des%20ateliers%20re%CC%81guliers%20qui%20ont%20permis%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20de%20l%E2%80%99application%20en%20mai%202018.%20Cette%20phase%20a%20e%CC%81galement%20fait%20l%E2%80%99objet%20de%20l%E2%80%99implication%20de%20nombreux%20acteurs%20culturels%2C%20dont%20l%E2%80%99expe%CC%81rience%20a%20permis%20de%20soutenir%20le%20de%CC%81veloppement%20d%E2%80%99une%20premie%CC%80re%20version%20du%20portail%20professionnel%20du%20pass%20Culture%2C%20le%20pass%20Culture%20Pro%2C%20en%20juillet%202018.%0A%0AAujourd%E2%80%99hui%2C%20la%20phase%20d%E2%80%99expe%CC%81rimentation%20change%20d%E2%80%99e%CC%81chelle%20et%20s%E2%80%99ouvre%20a%CC%80%20un%20panel%20de%20plus%20de%2010%20000%20jeunes%20volontaires%2C%20dans%20les%205%20de%CC%81partements%20d%E2%80%99expe%CC%81rimentation%20a%CC%80%20compter%20du%201er%20fe%CC%81vrier%202019.%20Ces%20jeunes%20de%2018%20ans%20be%CC%81ne%CC%81ficieront%20de%20500%20euros%2C%20disponibles%20directement%20dans%20l%E2%80%99application%2C%20qui%20leur%20permettront%20de%20profiter%20de%20divers%20expe%CC%81riences%20et%20biens%20culturels.%0A%0AAu%20me%CC%82me%20titre%20que%20pour%20la%20phase%20de%20co-design%2C%20tous%20les%20acteurs%20culturels%20sont%20invite%CC%81s%20a%CC%80%20participer%20a%CC%80%20cette%20premie%CC%80re%20expe%CC%81rimentation%20e%CC%81tendue%2C%20ils%20peuvent%20proposer%20leurs%20activite%CC%81s%20et%20produits%20culturels%20sur%20l%E2%80%99application.%20Plus%20le%20catalogue%20du%20pass%20Culture%20sera%20e%CC%81toffe%CC%81%20et%20varie%CC%81%2C%20plus%20les%20conditions%20de%20l%E2%80%99expe%CC%81rimentation%20seront%20proches%20des%20futures%20conditions%20re%CC%81elles%20d%E2%80%99utilisation.%0A%0ADivers%20outils%2C%20notamment%20l%E2%80%99organisation%20d%E2%80%99ateliers%2C%20ont%20e%CC%81te%CC%81%20mis%20en%20place%20pour%20permettre%20un%20retour%20d%E2%80%99expe%CC%81rience%20direct%20et%20une%20remonte%CC%81e%20d%E2%80%99informations%20fluide.%20En%20paralle%CC%80le%2C%20les%20e%CC%81le%CC%81ments%20qui%20seront%20recueillis%20permettront%20d%E2%80%99alimenter%20les%20re%CC%81flexions%20sur%20les%20usages%20a%CC%80%20privile%CC%81gier%20dans%20l%E2%80%99application.%0A%0A%23%23%20Le%20portail%20pass%20Culture%20pro%0A%0AL%E2%80%99ensemble%20des%20acteurs%20culturels%2C%20partout%20en%20France%2C%20y%20compris%20s%E2%80%99ils%20ne%20sont%20pas%20situe%CC%81s%20dans%20les%205%20de%CC%81partements%20pilotes%2C%20sont%20invite%CC%81s%20a%CC%80%20prendre%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20du%20pass%20Culture%20de%CC%80s%20maintenant%20pour%20permettre%20aux%20jeunes%20expe%CC%81rimentateurs%20l%E2%80%99acce%CC%80s%20a%CC%80%20un%20catalogue%20de%20propositions%20riche%20et%20divers%20afin%20de%20provoquer%20la%20curiosite%CC%81%20des%20expe%CC%81rimentateurs.%0A%0ALes%20acteurs%20culturels%20prenant%20part%20a%CC%80%20l%E2%80%99expe%CC%81rimentation%20pourront%20s%E2%80%99exprimer%20sur%20les%20diffe%CC%81rents%20aspects%20du%20pass%20Culture%20et%20influer%20sur%20lui.%20En%20effet%2C%20les%20acteurs%20culturels%20y%20participant%20contribueront%20activement%20au%20travail%20de%20co-construction%20du%20futur%20pass%20Culture%2C%20tel%20qu%E2%80%99il%20sera%20ge%CC%81ne%CC%81ralise%CC%81.%20Ils%20de%CC%81finiront%20avec%20l%E2%80%99e%CC%81quipe%20du%20pass%20Culture%20notamment%20les%20contours%20et%20modalite%CC%81s%20du%20pass%20Culture%20Pro%2C%20la%20version%20du%20pass%20Culture%20destine%CC%81e%20aux%20professionnels.%0A%0ASur%20cette%20plateforme%2C%20la%20proce%CC%81dure%20de%20cre%CC%81ation%20d%E2%80%99une%20proposition%20est%2C%20a%CC%80%20ce%20stade%20de%20l%E2%80%99expe%CC%81rimentation%2C%20aussi%20simple%20que%20la%20cre%CC%81ation%20d%E2%80%99un%20e%CC%81ve%CC%81nement%20sur%20un%20re%CC%81seau%20social.%20Elle%20ne%CC%81cessite%2C%20a%20minima%2C%20une%20image%2C%20une%20localisation%20et%20une%20courte%20description.%20Un%20espace%20%C2%AB%20guichet%20%C2%BB%20permet%20aux%20professionnels%20de%20ge%CC%81rer%20les%20re%CC%81servations%20qu%E2%80%99ils%20rec%CC%A7oivent%20et%20de%20suivre%20les%20transactions%20financie%CC%80res%20qui%20s%E2%80%99effectuent%20via%20le%20pass%20Culture.%20Aujourd%E2%80%99hui%2C%20plus%20de%20900%20acteurs%20culturels%20disposent%20de%CC%81ja%CC%80%2C%20dans%20les%20de%CC%81partements%20pilotes%2C%20d%E2%80%99un%20compte%20pass%20Culture%20Pro.%0A%0AS%E2%80%99inscrire%20sur%20la%20plateforme%20pass%20Culture%20pro%20pre%CC%81sente%20par%20ailleurs%20un%20triple%20avantage%20pour%20les%20acteurs%20culturels.%20C%E2%80%99est%20non%20seulement%20un%20canal%20fiable%20de%20visibilite%CC%81%20et%20de%20promotion%20qui%20touchera%20a%CC%80%20terme%20tous%20les%20publics%2C%20un%20vecteur%20de%20proximite%CC%81%20pour%20se%20faire%20connai%CC%82tre%20aupre%CC%80s%20des%20jeunes%20de%2018%20ans%20qui%20forment%20le%20public%20de%20demain%2C%20mais%20c%E2%80%99est%20aussi%20une%20plateforme%20en%20phase%20avec%20les%20nouveaux%20usages%20de%20la%20socie%CC%81te%CC%81%2C%20qui%20incite%20a%CC%80%20la%20consommation%20d%E2%80%99offres%20le%CC%81gales.%20Elle%20pourra%20constituer%20a%CC%80%20ce%20titre%20pour%20les%20acteurs%20culturels%20un%20ve%CC%81ritable%20laboratoire%20d%E2%80%99expe%CC%81rimentation%2C%20a%CC%80%20travers%20lequel%20ils%20auront%20la%20possibilite%CC%81%20de%20tester%20des%20activite%CC%81s%20ine%CC%81dites%2C%20gratuites%20ou%20payantes%2C%20propose%CC%81es%20sur%20l%E2%80%99application%20avant%20de%20les%20ouvrir%20au%20grand%20public.%0A%0A%23%23%20Sortie%20d%27incubation%0A%0ALe%2022%20juillet%202019%2C%20le%20Pass%20Culture%20sort%20de%20sa%20phase%20d%27incubation%20%3A%20elle%20devient%20la%20SAS%20%22Pass%20Culture%22%20%28d%C3%A9cret%20n%C2%B02019-755%20du%2022%20juillet%202019%29.%20Mont%C3%A9e%20avec%20la%20Banque%20des%20Territoires%2C%20cette%20SAS%20a%20pour%20mission%20de%20%22de%20d%C3%A9ployer%20progressivement%20le%20pass%20Culture%20sur%20l%27ensemble%20du%20territoire%2C%20de%20r%C3%A9f%C3%A9rencer%20et%20mettre%20en%20valeur%20les%20offres%20des%20op%C3%A9rateurs%20culturels%20et%20d%27assurer%20une%20gestion%20dynamique%20des%20comptes%20des%20b%C3%A9n%C3%A9ficiaires%22.%20Elle%20devra%20aussi%20%22cr%C3%A9er%20les%20conditions%20ad%C3%A9quates%20pour%20la%20p%C3%A9rennisation%20du%20pass%20Culture%2C%20incluant%20sa%20g%C3%A9n%C3%A9ralisation%20%C3%A0%20tous%20les%20jeunes%20de%2018%20ans%20%C3%A9ligibles%20et%20envisagera%20le%20d%C3%A9veloppement%20d%27activit%C3%A9s%20commerciales%20permettant%20d%27assurer%20une%20partie%20significative%20de%20son%20financement%22.%20%0A", - "events": [ - { - "name": "national_impact", - "date": "2021-12-31", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2017-12-01", - "end": "" - }, - { - "name": "construction", - "start": "2018-02-28", - "end": "" - }, - { - "name": "acceleration", - "start": "2019-07-22", - "end": "" - }, - { - "name": "transfer", - "start": "2019-07-22", - "end": "" - }, - { - "name": "success", - "start": "2021-05-01", - "end": "" - } - ], - "sponsors": [ - "dgca", - "mc" - ], - "thematiques": [], - "accessibility_status": "partiellement conforme" + "id": "HTTP_headerTime", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1733038120" + }, + { + "id": "HSTS_time", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://passculture.pro", - "size": 797.077, - "nodes": 138, - "requests": 37, - "grade": "A", - "score": 81, - "ges": 1.38, - "water": 2.07, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:14:15.831830", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-17T22:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 18, - "lighthouse_performance": 0.74, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.7, - "lighthouse_pwaGrade": "B", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "A", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://pilotage.inclusion.beta.gouv.fr", - "tags": [ - "itou" - ], - "category": "gip-inclusion", - "betaId": "pilotage.de.linclusion", - "http": { - "url": "https://pilotage.inclusion.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:00:20 GMT", - "grade": "D-", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Length": "54300", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 06:00:18 GMT", - "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=aPGiH1bUtoCu99STtVXTqWtRuxx432j0; expires=Sun, 19 Oct 2025 06:00:18 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01JAM8682QR7YD4VT3HYBERKCP", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", - "Vary": "Cookie", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY" + "id": "HSTS_subdomains", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" }, - "scan_id": 57052322, - "score": 25, - "start_time": "Sun, 20 Oct 2024 06:00:17 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "csrftoken": { - "domain": "pilotage.inclusion.beta.gouv.fr", - "expires": 1760853619, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://pilotage.inclusion.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://pilotage.inclusion.beta.gouv.fr/", - "https://pilotage.inclusion.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "//cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.js": { - "crossorigin": null, - "integrity": null - }, - "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-I7E8VVD/ismYTF4hNIPjVp/Zjvgyol6VFvRkX/vR+Vc4jQkC+hVqc2pM8ODewa9r" - }, - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-fbbOQedDUMZZ5KreZpsbe1LCZPVmfTnH7ois6mU1QK+m14rQ1l2bGBq41eYeM/fS" - } - } - }, - "pass": false, - "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src=\"//...\"", - "score_modifier": -50 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "13is", - "url": "https://pilotage.inclusion.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T22:12:07Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T07:28:08Z", - "next_check_at": "2024-11-24T07:33:08Z", - "created_at": "2021-04-22T19:59:36Z", - "mute_until": null, - "favicon_url": "https://pilotage.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T06:58:15Z", - "expires_at": "2025-01-02T18:06:36Z", - "valid": true, - "error": null + { + "id": "HSTS_preload", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 396, - "connection": 130, - "handshake": 134, - "response": 137, - "total": 797 - } + { + "id": "HPKP", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "pilotage.inclusion.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": null, - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://app.livestorm.co/itou/upcoming?limit=3" - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&family=Roboto:wght@500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/css/chunk-style.f6b4d9cd.css" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/css/chunk-common.f5299c0e.css" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/css/company.c985f988.css" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-style.4ffc58b5.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-vendors.45b16291.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-vendors-group-registration.7bf2a032.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-company-vendors.fc5d2be4.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-common.a559700b.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/runtime-company.514ba1fa.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/company.cdab6305.js" - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/uploads/identity/avatar/ecc8832d-b458-4ff0-bf3d-84c7194e7644/size_120x120_806aa411-ae6f-4731-93c3-b293c773b4b0.jpeg?v=1647357235" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/img/chevron-down-dark.8668fd32.svg" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/uploads/identity/avatar/f7d2e066-3d66-471e-818a-d7099e4d3dea/size_120x120_48b51e75-d945-42aa-9c9b-ca99f220ba90.jpeg?v=1594201471" - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/sentry.88d50f80.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/chunk-locale-en.f3522053.js" - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://o573056.ingest.sentry.io/api/5723202/envelope/?sentry_key=c7e55625ee004a3ab83004836a5b223e&sentry_version=7" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/84025.3244fada.js" - }, - { - "type": "unknown", - "url": "https://cdn.livestorm.co/dist/js/moment.d09e77b6.js" - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.services.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - } - ], - "cookies": [ - { - "name": "csrftoken", - "value": "0CGlcYIZ6nzwQQ1azg9VYYzrPlqVDCne", - "domain": "pilotage.inclusion.beta.gouv.fr", - "path": "/", - "expires": 1763882341.968527, - "size": 41, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-length": "54300", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 07:19:01 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=0CGlcYIZ6nzwQQ1azg9VYYzrPlqVDCne; expires=Sun, 23 Nov 2025 07:19:01 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01JDEGKHBKZ60M1900B2MBM7A2", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload", - "vary": "Cookie", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" + { + "id": "banner_server", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" }, - "endpoints": [ - { - "hostname": "pilotage.inclusion.beta.gouv.fr", - "ip": "91.208.207.220", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "app.livestorm.co", - "ip": "54.155.223.238", - "geoip": { - "city": { - "geoname_id": 2964574, - "names": { - "de": "Dublin", - "en": "Dublin", - "es": "Dublín", - "fr": "Dublin", - "ja": "ダブリン", - "pt-BR": "Dublin", - "ru": "Дублин", - "zh-CN": "都柏林" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2963597, - "is_in_european_union": true, - "iso_code": "IE", - "names": { - "de": "Irland", - "en": "Ireland", - "es": "Irlanda", - "fr": "Irlande", - "ja": "アイルランド", - "pt-BR": "Irlanda", - "ru": "Ирландия", - "zh-CN": "爱尔兰" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 53.3379, - "longitude": -6.2591, - "time_zone": "Europe/Dublin" - }, - "postal": { - "code": "D02" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 7521314, - "iso_code": "L", - "names": { - "en": "Leinster", - "fr": "Leinster", - "ja": "レンスター", - "ru": "Ленстер" - } - } - ] - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "104.18.186.31", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "142.250.72.138", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.livestorm.co", - "ip": "3.168.132.44", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "142.250.72.163", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "o573056.ingest.sentry.io", - "ip": "34.120.195.249", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://pilotage.inclusion.beta.gouv.fr/": { - "status": 200 - } + { + "id": "banner_application", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, - "technologies": [ - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": "8.6.2", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "5.3.0", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", - "confidence": 100, - "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "popper", - "name": "Popper", - "description": "Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.", - "confidence": 100, - "version": "2.11.8", - "icon": "Popper.svg", - "website": "https://popper.js.org", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://pilotage.inclusion.beta.gouv.fr/", - "finalUrl": "https://pilotage.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T07:18:33.499Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.47 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.94 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 11919, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 11919, - "firstMeaningfulPaint": 11919, - "largestContentfulPaint": 15721, - "interactive": 11919, - "speedIndex": 11919, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.027229540506998696, - "cumulativeLayoutShiftMainFrame": 0.027229540506998696, - "totalCumulativeLayoutShift": 0.027229540506998696, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 357550992, - "observedNavigationStart": 0, - "observedNavigationStartTs": 357550992, - "observedFirstPaint": 1622, - "observedFirstPaintTs": 359173064, - "observedFirstContentfulPaint": 1622, - "observedFirstContentfulPaintTs": 359173064, - "observedFirstContentfulPaintAllFrames": 1622, - "observedFirstContentfulPaintAllFramesTs": 359173064, - "observedFirstMeaningfulPaint": 1622, - "observedFirstMeaningfulPaintTs": 359173064, - "observedLargestContentfulPaint": 1622, - "observedLargestContentfulPaintTs": 359173064, - "observedLargestContentfulPaintAllFrames": 1622, - "observedLargestContentfulPaintAllFramesTs": 359173064, - "observedTraceEnd": 4765, - "observedTraceEndTs": 362316147, - "observedLoad": 2315, - "observedLoadTs": 359865723, - "observedDomContentLoaded": 1621, - "observedDomContentLoadedTs": 359172377, - "observedCumulativeLayoutShift": 0.027229540506998696, - "observedCumulativeLayoutShiftMainFrame": 0.027229540506998696, - "observedTotalCumulativeLayoutShift": 0.027229540506998696, - "observedFirstVisualChange": 1617, - "observedFirstVisualChangeTs": 359167992, - "observedLastVisualChange": 2367, - "observedLastVisualChangeTs": 359917992, - "observedSpeedIndex": 1929, - "observedSpeedIndexTs": 359479787 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 57, - "numScripts": 22, - "numStylesheets": 7, - "numFonts": 6, - "numTasks": 37, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 2.6880000000000006, - "throughput": 19914115.269020777, - "maxRtt": 133.18300000000002, - "maxServerLatency": 170.13500000000005, - "totalByteWeight": 3136625, - "totalTaskTime": 3.044, - "mainDocumentTransferSize": 54837 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/accessibilite/" - }, - "declaration-rgpd": [ + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/mentions-legales/" + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "DENY" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 6, - "score": 6, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/politique-de-confidentialite/" - } - ], - "betagouv": { - "id": "pilotage.de.linclusion", - "type": "startup", - "attributes": { - "name": "Pilotage de l'inclusion", - "pitch": "Valoriser et diffuser la donnée pour favoriser les dispositifs d'inclusion", - "stats_url": "https://pilotage.inclusion.beta.gouv.fr/stats/", - "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?usp=sharing", - "link": "https://pilotage.inclusion.beta.gouv.fr/", - "repository": "https://github.com/gip-inclusion/pilotage", - "contact": "contact@inclusion.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%E2%80%99%2A%2Ainsertion%20par%20l%E2%80%99activit%C3%A9%20%C3%A9conomique%2A%2A%20%28IAE%29%20est%20un%20dispositif%20dans%20lequel%20l%E2%80%99%C3%89tat%20confie%20une%20mission%20d%E2%80%99accompagnement%20socio-professionnel%20de%20personnes%20en%20difficult%C3%A9s%20%C3%A0%20plus%20de%204%20500%20structures%20associatives%20ou%20priv%C3%A9es.%20Il%20s%27agit%20d%27un%20programme%20d%27accompagnement%20socio-professionnel%20pour%20les%20personnes%20ayant%20des%20difficult%C3%A9s%20%C3%A0%20trouver%20un%20emploi.%20Ce%20dispotif%20b%C3%A9n%C3%A9ficie%20%C3%A0%20un%20public%20tr%C3%A8s%20%C3%A9loign%C3%A9%20de%20l%27emploi%2C%20soit%20134%20000%20personnes%20en%20parcours%20d%27insertion%20%C3%A0%20la%20fin%20de%20l%27ann%C3%A9e%202017.%20L%27IAE%20repose%20sur%20trois%20%C3%A9l%C3%A9ments%20cl%C3%A9s%20%3A%20une%20mise%20en%20situation%20professionnelle%2C%20un%20accompagnement%20professionnel%20et%20social%2C%20ainsi%20que%20la%20mobilisation%20d%27actions%20de%20formation.%0A%0AL%27%2A%2Ainclusion%20par%20et%20dans%20l%27emploi%2A%2A%20concerne%20le%20vaste%20dispositif%20de%20l%27IAE%2C%20les%20%5BEntreprises%20Adapt%C3%A9es%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi%2Femploi-et-handicap%2Farticle%2Femploi-et-handicap-les-entreprises-adaptees-ea%29%20%28EA%29%20dont%20la%20sp%C3%A9cificit%C3%A9%20est%20d%27employer%20au%20moins%2080%25%20de%20travailleurs%20en%20situation%20de%20handicap%2C%20les%20%5BGroupements%20d%E2%80%99Employeurs%20pour%20l%E2%80%99Insertion%20et%20la%20Qualification%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi%2Finsertion-activite-economique%2Farticle%2Fgroupements-d-employeurs-pour-l-insertion-et-la-qualification-geiq%29%20%28GEIQ%29%20et%20les%20%5BEtablissements%20et%20Services%20d%27Aide%20par%20le%20Travail%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Fdroit-du-travail%2Fhandicap-et-travail%2Farticle%2Fesat-etablissements-ou-services-d-aide-par-le-travail%29%20%28ESAT%29%20des%20%C3%A9tablissements%20m%C3%A9dico-sociaux%20qui%20accueillent%20des%20personnes%20en%20situation%20de%20handicap.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ADeux%20probl%C3%A8mes%20majeurs%20se%20posent%20%3A%0A-%20Le%20manque%20d%27expertise%20dans%20la%20collecte%20et%20le%20traitement%20de%20donn%C3%A9es%2C%20qui%20se%20traduit%20par%20une%20charge%20administrative%20importante%20pour%20les%20structures%20et%20leurs%20partenaires%20publics%20lorsqu%27ils%20doivent%20rendre%20compte%20de%20leur%20activit%C3%A9%20%3B%0A-%20L%27absence%20de%20donn%C3%A9es%20partag%C3%A9es%20sur%20les%20politiques%20publiques%20d%27insertion%20et%20d%27un%20outil%20de%20pilotage%20commun%2C%20qui%20compliquent%20le%20suivi%20et%20la%20mise%20en%20oeuvre%20des%20plans%20d%27actions%20des%20acteurs%2C%20ainsi%20que%20la%20communication%20entre%20les%20partenaires.%0A%0A%23%23%20Notre%20service%0A%0ANotre%20solution%20vise%20%C3%A0%20aider%20les%20charg%C3%A9s%20de%20mission%2C%20responsables%2C%20d%C3%A9cideurs%20politiques%2C%20r%C3%A9f%C3%A9rents%20IAE%20et%20professionnels%20de%20l%27accompagnement%20dans%20leur%20mission%20en%20leur%20fournissant%20des%20connaissances%20et%20des%20apprentissages%20sur%20les%20politiques%20publiques%20d%27insertion.%0A%0ANotre%20approche%20consiste%20%C3%A0%20collecter%20et%20%C3%A0%20traiter%20les%20donn%C3%A9es%20relatives%20aux%20dispositifs%20d%27inclusion%2C%20qui%20sont%20%C3%A0%20disposition%20de%20l%27administration%2C%20des%20partenaires%20ou%20des%20start-up%20d%27%C3%89tat%2C%20tel%20que%20le%20service%20des%20emplois%20de%20l%27inclusion.%20Ensuite%2C%20nous%20partageons%20ces%20donn%C3%A9es%20sous%20forme%20d%27outils%20et%20de%20ressources%20pr%C3%AAtes%20%C3%A0%20l%27emploi%2C%20tels%20que%20des%20indicateurs%2C%20des%20tableaux%20de%20bord%2C%20des%20notes%20d%27analyse%20et%20des%20donn%C3%A9es%20brutes%2C%20que%20nous%20diffusons%20aux%20acteurs%20concern%C3%A9s%2C%20comme%20les%20cabinets%2C%20les%20administrations%20et%20services%20de%20l%27%C3%89tat%2C%20les%20conseils%20d%C3%A9partementaux%2C%20les%20r%C3%A9seaux%20de%20l%27IAE%2C%20les%20entreprises%20solidaires%2C%20les%20prescripteurs%2C%20etc.%0A%0ANos%20outils%20permettent%20d%27%C3%A9tablir%20un%20%C3%A9tat%20des%20lieux%20de%20la%20situation%20dans%20un%20territoire%20%28national%2C%20r%C3%A9gional%2C%20d%C3%A9partemental%2C%20bassin%20d%27emploi%29%20pour%20chaque%20dispositif%20ou%20de%20r%C3%A9aliser%20des%20analyses%20plus%20pr%C3%A9cises%20%C3%A0%20l%27%C3%A9chelle%20d%27une%20organisation.%20Ces%20donn%C3%A9es%20peuvent%20%C3%AAtre%20utiles%20pour%20enrichir%20les%20instances%20de%20pilotage%2C%20faciliter%20un%20reporting%2C%20pr%C3%A9parer%20un%20%C3%A9change%20avec%20un%20partenaire%20ou%20r%C3%A9aliser%20un%20diagnostic.%0A%0A%23%23%20Strat%C3%A9gie%20et%20dates%20cl%C3%A9s%0A%0AApporter%20des%20r%C3%A9ponses%20aux%20irritants%20des%20utilisateurs%20en%20traitant%20chaque%20cas%20d%27usage%20comme%20un%20mini-produit%20avec%20la%20m%C3%A9thode%20beta.gouv.%0A%0A%2A%2AMai%202022%2A%2A%20%3A%20arr%C3%AAt%20de%20l%27exp%C3%A9rimentation%20et%20de%20la%20mise%20%C3%A0%20disposition%20de%20donn%C3%A9es%20sur%20les%20personnes%20en%20insertion%20pour%20simplifier%20le%20reporting%20des%20services%20de%20l%27Etat%2C%20collectivit%C3%A9s%20territoriales%20et%20structures%20de%20l%27IAE.%0A%0A%2A%2AA%20partir%20de%20juin%202022%2A%2A%20%3A%20acc%C3%A9l%C3%A9ration%20du%20d%C3%A9ploiement%20d%27outils%20pour%20l%27analyse%20de%20l%27activit%C3%A9%20de%20prescription%20dans%20l%27IAE%20et%20contribuer%20%C3%A0%20apporter%20des%20r%C3%A9ponses%20aux%20difficult%C3%A9s%20de%20recrutement.%0A%0A%2A%2ASeptembre%202022%2A%2A%20%3A%20lancement%20de%20l%27investigation%20pour%20faire%20un%20%C3%A9tat%20des%20lieux%20du%20plan%20de%20transformation%20des%20Esat.%0A%0A%2A%2ASeptembre%202023%2A%2A%20%3A%20exp%C3%A9rimentation%20sur%20quelques%20territoires%20et%20structures%20de%20nouvelles%20donn%C3%A9es%20et%20d%27outils%20sur%20le%20pilotage%20du%20budget%20IAE%20et%20publication%20du%20tableau%20de%20bord%20Esat.%0A%0A%2A%2ANovembre%202023%2A%2A%20%3A%20publication%20d%27un%20outil%20public%20sur%20le%20conventionnement%20des%20ETP%20en%20IAE%20et%20d%27une%20note%20d%27analse%20sur%20les%20femmes%20face%20%C3%A0%20la%20politique%20publique%20d%27insertion.%0A", - "events": [], - "phases": [ - { - "name": "construction", - "start": "2020-06-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-06-01", - "end": "" - } - ], - "sponsors": [ - "francetravail", - "mtei", - "mtfp" - ], - "thematiques": [ - "Travail / Emploi", - "Open-Data" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/pilotage-inclusion-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "gip-inclusion" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://pilotage.inclusion.beta.gouv.fr", - "size": 2360.922, - "nodes": 606, - "requests": 32, - "grade": "C", - "score": 57, - "ges": 1.86, - "water": 2.79, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:15:28.918107", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D-", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "F", - "trackersCount": 28, - "lighthouse_performance": 0.47, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.94, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://pix.fr", - "category": "dinum", - "betaId": "pix", - "http": { - "url": "https://pix.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:04:35 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "no-cache", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 06:04:34 GMT", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=63072000", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-XSS-Protection": "1; mode=block" + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, - "scan_id": 57052441, - "score": 75, - "start_time": "Sun, 20 Oct 2024 06:04:33 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://pix.fr/", - "redirects": true, - "route": [ - "http://pix.fr/", - "https://pix.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000", - "includeSubDomains": false, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "f90c", - "url": "https://pix.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-21T13:50:26Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T07:28:37Z", - "next_check_at": "2024-11-24T07:33:36Z", - "created_at": "2021-04-22T19:59:36Z", - "mute_until": null, - "favicon_url": null, - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T06:43:49Z", - "expires_at": "2025-10-03T21:59:59Z", - "valid": true, - "error": null + { + "id": "banner_reverseproxy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" + }, + { + "id": "LOGJAM", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 119, - "connection": 168, - "handshake": 176, - "response": 172, - "total": 634 - } + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "pix.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187318,7 +180740,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187326,7 +180748,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187334,7 +180756,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187342,7 +180764,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -187350,491 +180772,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "pix.fr/185.179.149.141", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "RSA 3072 bits (exponent is 65537)" + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "D60AB50FC69A48D5D95FA95C06A760BB" + "finding": "049CE2A4A0B254DE717CA8503B9E9C6D7E78" }, { "id": "cert_serialNumberLen", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "47094499B0B87B129DAB15A62BD38AC6A9EFFF66" + "finding": "53C156250FC9A03B1545A208E9A3F58553DFAA9A" }, { "id": "cert_fingerprintSHA256", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "46EA35FCF27DAE7EE87CD03B7F22596C62F9D183FF2E3442A0F4ECFBBF5D5096" + "finding": "58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "cert", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "pix.fr" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "pix.fr" + "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "orga.pix.fr certif.pix.org pix.org app.pix.org app.pix.fr certif.pix.fr admin.pix.org pix.fr orga.pix.org admin.pix.fr" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "313 >= 60 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2024-10-03 22:00" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "2025-10-03 21:59" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732433507" + "finding": "1733038172" }, { "id": "HSTS_time", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "pix.fr/185.179.149.141", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Content-Type-Options", - "ip": "pix.fr/185.179.149.141", + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "nosniff" + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" }, { - "id": "X-XSS-Protection", - "ip": "pix.fr/185.179.149.141", + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "1; mode=block" + "severity": "OK", + "finding": "DENY" }, { - "id": "Referrer-Policy", - "ip": "pix.fr/185.179.149.141", + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "OK", + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "pix.fr/185.179.149.141", + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -187842,1777 +181278,562 @@ }, { "id": "heartbleed", - "ip": "pix.fr/185.179.149.141", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=46EA35FCF27DAE7EE87CD03B7F22596C62F9D183FF2E3442A0F4ECFBBF5D5096" - }, - { - "id": "LOGJAM", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" - }, - { - "id": "winshock", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "pix.fr/185.179.149.141", - "port": "443", - "severity": "INFO", - "finding": "61" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://analytics.pix.fr/js/container_I6rhBBhV.js" - }, - { - "type": "unknown", - "url": "https://static.cdn.prismic.io/prismic.min.js?repo=pix-site&new=true" - }, - { - "type": "unknown", - "url": "https://pix-site.prismic.io/prismic-toolbar/4.1.1/iframe.html" - } - ], - "cookies": [ - { - "name": "cookiename", - "value": "cookievalue", - "domain": ".pix.fr", - "path": "/", - "expires": -1, - "size": 21, - "httpOnly": false, - "secure": false, - "session": true, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "challenge", - "value": "8MzryQDI-EHIUCy5Kr8SriknTpPgL09wNbvRQ5r-nsxHrJiYF-TCVhLzGL2jN0fojQ3vBA-FE8JZZAAIg67OYjopuT03O7bjEnbk3VxHN0fgN5zCgHPE2IqVnJGUxFOpFBuIYWfkV4UeqFXXTezN8Q1DlM56HgF6C2OF01tcokHhlI9OYbnY-ZaaAlAhu3YRCJCCVKFkmtjxPphPM6fmlYX9UaTpKAnTTYcQmobnwvkmhzi6qJDUUoSjpc-51wgTEZ0D3b9GDLGbVdy_MaOfn2sEF88t-fXfunqCh1HX-LZToFNY4hlKKVq4Qo98zA4y", - "domain": ".pix.fr", - "path": "/", - "expires": 1732437041.66634, - "size": 329, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "accept-ranges": "bytes", - "age": "0", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 07:30:41 GMT", - "etag": "W/\"6740bd88-2236b\"", - "last-modified": "Fri, 22 Nov 2024 17:21:12 GMT", - "referrer-policy": "origin-when-cross-origin", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "2fe1749d66f2cbbaf7f67d732d111f0c", - "x-varnish": "185487441", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "pix.fr", - "ip": "185.179.149.141", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "142.250.191.170", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "analytics.pix.fr", - "ip": "154.41.70.3", - "geoip": { - "city": { - "geoname_id": 2972191, - "names": { - "de": "Tours", - "en": "Tours", - "es": "Tours", - "fr": "Tours", - "ja": "トゥール", - "pt-BR": "Tours", - "ru": "Тур", - "zh-CN": "图尔" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 47.3983, - "longitude": 0.7037, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3027939, - "iso_code": "CVL", - "names": { - "de": "Centre-Val de Loire", - "en": "Centre-Val de Loire", - "es": "Centro-Valle de Loira", - "fr": "Centre-Val de Loire", - "ja": "サントル=ヴァル・ド・ロワール地域圏", - "pt-BR": "Centro", - "ru": "Центр — Долина Луары" - } - }, - { - "geoname_id": 3012804, - "iso_code": "37", - "names": { - "de": "Indre-et-Loire", - "en": "Indre-et-Loire", - "es": "Indre y Loira", - "fr": "Indre-et-Loire", - "ja": "アンドル=エ=ロワール県", - "pt-BR": "Indre-et-Loire", - "ru": "Эндр и Луара", - "zh-CN": "安德尔-卢瓦尔省" - } - } - ] - } - }, - { - "hostname": "static.cdn.prismic.io", - "ip": "13.32.164.102", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "pix-site.prismic.io", - "ip": "54.204.201.12", - "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://pix.fr/": { - "status": 200 - } + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "sendgrid", - "name": "Sendgrid", - "description": "SendGrid is a cloud-based email delivery platform for transactional and marketing emails.", - "confidence": 100, - "version": null, - "icon": "SendGrid.svg", - "website": "https://sendgrid.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "google-workspace", - "name": "Google Workspace", - "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", - "confidence": 100, - "version": null, - "icon": "Google.svg", - "website": "https://workspace.google.com/", - "cpe": null, - "categories": [ - { - "id": 30, - "slug": "webmail", - "name": "Webmail" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://pix.fr/", - "finalUrl": "https://pix.fr/", - "fetchTime": "2024-11-24T07:30:17.415Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.68 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.9 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.81 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 3943, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2007, - "firstMeaningfulPaint": 2007, - "largestContentfulPaint": 4822, - "interactive": 3943, - "speedIndex": 2139, - "totalBlockingTime": 261, - "maxPotentialFID": 290, - "cumulativeLayoutShift": 0.22784145567152236, - "cumulativeLayoutShiftMainFrame": 0.22784145567152236, - "totalCumulativeLayoutShift": 0.22784145567152236, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 464649538, - "observedNavigationStart": 0, - "observedNavigationStartTs": 464649538, - "observedFirstPaint": 393, - "observedFirstPaintTs": 465042775, - "observedFirstContentfulPaint": 393, - "observedFirstContentfulPaintTs": 465042775, - "observedFirstContentfulPaintAllFrames": 393, - "observedFirstContentfulPaintAllFramesTs": 465042775, - "observedFirstMeaningfulPaint": 393, - "observedFirstMeaningfulPaintTs": 465042775, - "observedLargestContentfulPaint": 721, - "observedLargestContentfulPaintTs": 465370553, - "observedLargestContentfulPaintAllFrames": 721, - "observedLargestContentfulPaintAllFramesTs": 465370553, - "observedTraceEnd": 3518, - "observedTraceEndTs": 468167629, - "observedLoad": 895, - "observedLoadTs": 465544895, - "observedDomContentLoaded": 491, - "observedDomContentLoadedTs": 465140170, - "observedCumulativeLayoutShift": 0.22784145567152236, - "observedCumulativeLayoutShiftMainFrame": 0.22784145567152236, - "observedTotalCumulativeLayoutShift": 0.22784145567152236, - "observedFirstVisualChange": 398, - "observedFirstVisualChangeTs": 465047538, - "observedLastVisualChange": 1231, - "observedLastVisualChangeTs": 465880538, - "observedSpeedIndex": 724, - "observedSpeedIndexTs": 465373218 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 89, - "numScripts": 15, - "numStylesheets": 5, - "numFonts": 6, - "numTasks": 3068, - "numTasksOver10ms": 8, - "numTasksOver25ms": 4, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 1.8529999999999998, - "throughput": 68910874.5836271, - "maxRtt": 120.592, - "maxServerLatency": 96.24099999999999, - "totalByteWeight": 5828499, - "totalTaskTime": 549.6699999999935, - "mainDocumentTransferSize": 7757 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://pix.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "CCS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://pix.fr/mentions-legales" + "id": "ticketbleed", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "pix", - "type": "startup", - "attributes": { - "name": "Pix", - "pitch": "Mesurer, développer et valoriser ses compétences numériques.", - "stats_url": "https://pix.fr/statistiques", - "link": "https://pix.fr", - "repository": "https://github.com/1024pix/pix/", - "contact": "contact@pix.fr", - "content_url_encoded_markdown": "Pix%20s%27adresse%20aux%20fran%C3%A7aises%2C%20fran%C3%A7ais%20et%20francophones%20%28en%20%C3%A9tudes%2C%20en%20situation%20de%20d%C3%A9crochage%2C%20en%20activit%C3%A9%20professionnelle%2C%20%C3%A0%20la%20recherche%20d%27un%20emploi%2C%20etc.%29%20qui%20souhaitent%20mesurer%2C%20d%C3%A9velopper%20et%20valoriser%20leurs%20comp%C3%A9tences%20num%C3%A9riques.%0A%0ALe%20service%20se%20pr%C3%A9sente%20sous%20la%20forme%20d%27une%20plateforme%20en%20ligne%20d%27%C3%A9valuation%20et%20de%20certification%20des%20comp%C3%A9tences%20num%C3%A9riques.%0A%0ALe%20but%20de%20Pix%20est%20de%20susciter%20l%27envie%20de%20se%20former%20tout%20au%20long%20de%20la%20vie%20en%20proposant%20des%20m%C3%A9thodes%20d%27%C3%A9valuation%20innovantes%2C%20exigeantes%20et%20bienveillantes%20ainsi%20que%20des%20recommandations%20de%20formations%20cibl%C3%A9es.", - "events": [ - { - "name": "national_impact", - "date": "2019-09-01", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2016-06-08", - "end": "" - }, - { - "name": "construction", - "start": "2016-06-08", - "end": "" - }, - { - "name": "success", - "start": "2019-09-01", - "end": "" - } - ], - "sponsors": [ - "menjs" - ], - "thematiques": [ - "Education", - "Inclusion numérique" - ], - "accessibility_status": "partiellement conforme" + "id": "ROBOT", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://pix.fr", - "size": 4909.936, - "nodes": 638, - "requests": 96, - "grade": "E", - "score": 39, - "ges": 2.22, - "water": 3.33, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:27:20.413474", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-10-03T21:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 4, - "lighthouse_performance": 0.68, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.9, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 0.81, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "E", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://conseillers-entreprises.service-public.fr", - "category": "dinum", - "betaId": "conseillers-entreprises", - "http": { - "url": "https://conseillers-entreprises.service-public.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:10:46 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Accept-Ranges": "bytes", - "Age": "0", - "Cache-Control": "no-store", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com 'nonce-UgtT7GM6VnSMu0nZ5cPfZw=='; frame-src 'self' stats.data.gouv.fr stats.beta.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 06:10:45 GMT", - "ETag": "W/\"7acd73ed86848f6c94cb041c6541ca16\"", - "Expires": "0", - "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", - "Pragma": "no-cache", - "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_ConseillersEntreprises_session=x7iKpVXxz2unC3wDxOHrCZEa9%2BlrXzlumLufFBwyvNT5Hn7Eaz%2BcAApk9v7GEaRfu24rdYM5TpdJ4Xwc3xZh56W5rrE0wm7F53Ivz%2F6BDy3w9yVSNscmSFB09aay5As0g5hwcOfEV3epI%2BOx3VNsLWBY7X8HCSN0ORqUbSxC1gwZ0vJU78CdYPVjj3yhfkMVMQflEkwtqGYPxdzToqjsmJKiPMCpqYT5O7qsUw2OZOOLjF2xWE5J%2FpyFasMTTXZFg53lwYr2FWTOwP%2B3P7FapZ6ShLZpMXxQMyL4kth9FSVOd3MpaFsc--v7HpanPn%2BIGwaOnu--EL7JUUIERPFWgyaE55L9%2Fg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", - "Transfer-Encoding": "chunked", - "Vary": "Accept, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "1f18eb3fe905ae434c2fabe4eef1bc58, 1f18eb3fe905ae434c2fabe4eef1bc58", - "X-Runtime": "0.111575", - "X-Varnish": "5721926", - "X-XSS-Protection": "0" + "id": "secure_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" }, - "scan_id": 57052546, - "score": 80, - "start_time": "Sun, 20 Oct 2024 06:10:44 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://pagead2.googlesyndication.com", - "https://tpc.googlesyndication.com", - "*.sentry.io", - "*.google.com", - "https://cdn.jsdelivr.net/", - "https://browser.sentry-cdn.com", - "https://googleads.g.doubleclick.net", - "https://adservice.google.com", - "https://api-adresse.data.gouv.fr/", - "https://stats.beta.gouv.fr/", - "'self'", - "https://www.googletagmanager.com" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://fonts.gstatic.com", - "data:", - "'self'" - ], - "frame-src": [ - "https://tpc.googlesyndication.com", - "https://cdn.jsdelivr.net/", - "https://bid.g.doubleclick.net", - "stats.data.gouv.fr", - "https://www.youtube-nocookie.com", - "'self'", - "browser.sentry-cdn.com", - "stats.beta.gouv.fr" - ], - "img-src": [ - "https://www.gstatic.com", - "https://jedonnemonavis.numerique.gouv.fr", - "'self'", - "https://www.googletagmanager.com", - "415474841.privacysandbox.googleadservices.com", - "https://googleads.g.doubleclick.net", - "https://adservice.google.com", - "https://stats.beta.gouv.fr/", - "data:", - "https://www.googleadservices.com", - "https://www.google.fr", - "https://www.google.com" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "sentry.io", - "blob:", - "https://cdn.jsdelivr.net/", - "https://browser.sentry-cdn.com", - "'nonce-ugtt7gm6vnsmu0nz5cpfzw=='", - "https://googleads.g.doubleclick.net", - "https://www.googletagmanager.com/", - "https://stats.beta.gouv.fr/", - "'self'", - "https://www.googleadservices.com", - "https://www.google.com" - ], - "style-src": [ - "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_ConseillersEntreprises_session": { - "domain": "conseillers-entreprises.service-public.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Strict", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "http://conseillers-entreprises.service-public.fr/", - "redirects": false, - "route": [ - "http://conseillers-entreprises.service-public.fr/" - ], - "status_code": 200 - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.min.js": { - "crossorigin": "anonymous", - "integrity": "sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6" - } - } - }, - "pass": true, - "result": "sri-implemented-and-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded securely", - "score_modifier": 5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "15zr", - "url": "https://conseillers-entreprises.service-public.fr", - "alias": null, - "last_status": 200, - "uptime": 99.986, - "down": false, - "down_since": null, - "up_since": "2024-11-23T17:10:27Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T07:45:47Z", - "next_check_at": "2024-11-24T07:46:47Z", - "created_at": "2024-05-21T21:45:32Z", - "mute_until": null, - "favicon_url": null, - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T07:36:37Z", - "expires_at": "2025-05-06T21:59:59Z", - "valid": true, - "error": null + { + "id": "secure_client_renego", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" + }, + { + "id": "LOGJAM", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 161, - "connection": 112, - "handshake": 117, - "response": 203, - "total": 592 - } + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "conseillers-entreprises.service-public.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189620,7 +181841,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189628,7 +181849,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189636,7 +181857,7 @@ }, { "id": "cipherlist_LOW", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189644,7 +181865,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -189652,470 +181873,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "61C438A14F2AC35725DBECA9E8F6A4F5" + "finding": "049CE2A4A0B254DE717CA8503B9E9C6D7E78" }, { "id": "cert_serialNumberLen", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "A7E9B50421605BC8CD94CE107649882FC7A6121B" + "finding": "53C156250FC9A03B1545A208E9A3F58553DFAA9A" }, { "id": "cert_fingerprintSHA256", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "03F1492706D01D32461E1E9C9EFB483DEDDE63E33A8D7359AF83DEF11F81184C" + "finding": "58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "cert", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "conseillers-entreprises.service-public.fr" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "conseillers-entreprises.service-public.fr" + "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "www.conseillers-entreprises.service-public.fr conseillers-entreprises.service-public.fr" + "finding": "pilotage.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "163 >= 60 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2024-05-06 22:00" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2025-05-06 21:59" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732434304" + "finding": "1733038224" }, { - "id": "HSTS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "HSTS_time", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-XSS-Protection", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "1/1 at '/' marked as HttpOnly" }, { - "id": "Referrer-Policy", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "OK", + "finding": "DENY" }, { - "id": "Cache-Control", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -190123,7 +182379,7 @@ }, { "id": "heartbleed", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -190132,7 +182388,7 @@ }, { "id": "CCS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -190141,7 +182397,7 @@ }, { "id": "ticketbleed", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -190150,7 +182406,7 @@ }, { "id": "ROBOT", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -190159,7 +182415,7 @@ }, { "id": "secure_renego", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -190167,16 +182423,16 @@ }, { "id": "secure_client_renego", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -190185,16 +182441,16 @@ }, { "id": "BREACH", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -190203,14 +182459,14 @@ }, { "id": "fallback_SCSV", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -190219,7 +182475,7 @@ }, { "id": "FREAK", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -190228,7 +182484,7 @@ }, { "id": "DROWN", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -190237,16 +182493,16 @@ }, { "id": "DROWN_hint", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=03F1492706D01D32461E1E9C9EFB483DEDDE63E33A8D7359AF83DEF11F81184C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -190255,16 +182511,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -190273,16 +182529,16 @@ }, { "id": "LUCKY13", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -190291,7 +182547,7 @@ }, { "id": "RC4", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -190300,1433 +182556,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", - "port": "443", - "severity": "INFO", - "finding": "56" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/lang/tarteaucitron.fr.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.services.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "google tag manager", - "url": "https://www.googletagmanager.com/gtag/js?id=AW-415474841", - "details": { - "id": "google tag manager", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google tag manager", - "url": "https://pagead2.googlesyndication.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fconseillers-entreprises.service-public.fr%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=822181293.1732434229&npa=1>m=45be4bk0v9116231455za200&gcs=G100&gcd=13p3p3p3p5l1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&tft=1732434228779&tfd=1614&apve=1", - "details": { - "id": "google tag manager", - "message": "Use hosted Matomo instance" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.74.0be8", - "value": "1", - "domain": "conseillers-entreprises.service-public.fr", - "path": "/", - "expires": 1732436028, - "size": 16, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.74.0be8", - "value": "11911aacfe3305d5.1732434228.", - "domain": "conseillers-entreprises.service-public.fr", - "path": "/", - "expires": 1766389428, - "size": 42, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_ConseillersEntreprises_session", - "value": "BaXP9XJGLau7aDCik73OIceeEAVO68zbD%2B2WsWubWioyZlde7%2B5RjJhIe5ZqVhCJrR2q0j3rUH%2B8Q7P4%2FKErvC6aKDkW1lMw5t5zmUqCDzCgwHC6iHwm9vEoaTnWLoPeGG6dcy6amq3Oy8HMDCxsKUljBLvKOSx%2B7%2FLDhcDPKrATbE%2Bp36J1BwHCy%2Ft2GJVahOYmNbC6DgiACJREpqh8my2KgPD8yMy30HxiUjWtjgKj%2FoTjyWbY5sihr%2Bg4oD57JLVC6tdEKbnBjiHbh7neDFXqZRyfvYMG5%2FEDyR8M50ty0Hxa2nzC--yPuelMZYP3FRp2fB--CuYDR%2B2nY5qkp77vmyhRFg%3D%3D", - "domain": "conseillers-entreprises.service-public.fr", - "path": "/", - "expires": -1, - "size": 411, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Strict", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "bln_challengejs", - "value": "biAiKq5DkseMfuMlEC01MNwQikq8iXYFEclxT8DMMg1Y8n9Z3ScVLORrtjK9iVUa6IMD77jfBbCf1kthT7NcA3koyMHQc9xvoGyB7sef_HPO6R5QnpVk6QYdDre9wAI_jHqrDG3wlmVbXJIsBq3EeXgoq2wB8B1vHpyf3yhwOmDUBJ7WxcP9R_HMw9BfFf9G2jGvu_dC6klrkxoVdzAzo0IWfYUXkyhBoyaXyF65-TgSH2j_RQkGpYUY4k2mqbrbCwN4I--xD4STKLLyg0TYgjD2fsVUxuRsGvqUVEEMDa3G5ixeq6Pms3vFufGknIJd", - "domain": ".service-public.fr", - "path": "/", - "expires": 1732435127.161974, - "size": 335, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "accept-ranges": "bytes", - "age": "0", - "cache-control": "no-store", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com 'nonce-TqkiySMHb3Ga+maC7MN/Jg=='; frame-src 'self' stats.data.gouv.fr stats.beta.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 07:43:47 GMT", - "etag": "W/\"c338938de1f4c4dccd3193b8049696ba\"", - "expires": "0", - "link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", - "pragma": "no-cache", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_ConseillersEntreprises_session=BaXP9XJGLau7aDCik73OIceeEAVO68zbD%2B2WsWubWioyZlde7%2B5RjJhIe5ZqVhCJrR2q0j3rUH%2B8Q7P4%2FKErvC6aKDkW1lMw5t5zmUqCDzCgwHC6iHwm9vEoaTnWLoPeGG6dcy6amq3Oy8HMDCxsKUljBLvKOSx%2B7%2FLDhcDPKrATbE%2Bp36J1BwHCy%2Ft2GJVahOYmNbC6DgiACJREpqh8my2KgPD8yMy30HxiUjWtjgKj%2FoTjyWbY5sihr%2Bg4oD57JLVC6tdEKbnBjiHbh7neDFXqZRyfvYMG5%2FEDyR8M50ty0Hxa2nzC--yPuelMZYP3FRp2fB--CuYDR%2B2nY5qkp77vmyhRFg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "c4b1518e56bbf701f955c77cbe0b60bb\nc4b1518e56bbf701f955c77cbe0b60bb", - "x-runtime": "0.045427", - "x-varnish": "9204517", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "conseillers-entreprises.service-public.fr", - "ip": "185.231.164.123", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "172.253.62.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "104.18.186.31", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.googletagmanager.com", - "ip": "64.233.180.97", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "pagead2.googlesyndication.com", - "ip": "142.250.31.155", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://conseillers-entreprises.service-public.fr/": { - "status": 200 - } + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, - "technologies": [ - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://conseillers-entreprises.service-public.fr/", - "finalUrl": "https://conseillers-entreprises.service-public.fr/", - "fetchTime": "2024-11-24T07:43:22.992Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.67 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4595, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3682, - "firstMeaningfulPaint": 3682, - "largestContentfulPaint": 6569, - "interactive": 4595, - "speedIndex": 3682, - "totalBlockingTime": 54, - "maxPotentialFID": 104, - "cumulativeLayoutShift": 0.0031809699800279404, - "cumulativeLayoutShiftMainFrame": 0.0031809699800279404, - "totalCumulativeLayoutShift": 0.0031809699800279404, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 318759091, - "observedNavigationStart": 0, - "observedNavigationStartTs": 318759091, - "observedFirstPaint": 567, - "observedFirstPaintTs": 319326328, - "observedFirstContentfulPaint": 567, - "observedFirstContentfulPaintTs": 319326328, - "observedFirstContentfulPaintAllFrames": 567, - "observedFirstContentfulPaintAllFramesTs": 319326328, - "observedFirstMeaningfulPaint": 567, - "observedFirstMeaningfulPaintTs": 319326328, - "observedLargestContentfulPaint": 1057, - "observedLargestContentfulPaintTs": 319815768, - "observedLargestContentfulPaintAllFrames": 1057, - "observedLargestContentfulPaintAllFramesTs": 319815768, - "observedTraceEnd": 3427, - "observedTraceEndTs": 322186280, - "observedLoad": 1006, - "observedLoadTs": 319765104, - "observedDomContentLoaded": 597, - "observedDomContentLoadedTs": 319355817, - "observedCumulativeLayoutShift": 0.0031809699800279404, - "observedCumulativeLayoutShiftMainFrame": 0.0031809699800279404, - "observedTotalCumulativeLayoutShift": 0.0031809699800279404, - "observedFirstVisualChange": 578, - "observedFirstVisualChangeTs": 319337091, - "observedLastVisualChange": 1061, - "observedLastVisualChangeTs": 319820091, - "observedSpeedIndex": 879, - "observedSpeedIndexTs": 319637714 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 54, - "numScripts": 8, - "numStylesheets": 7, - "numFonts": 4, - "numTasks": 1329, - "numTasksOver10ms": 9, - "numTasksOver25ms": 4, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 16573227.817214554, - "maxRtt": 86.621, - "maxServerLatency": 33.73100000000001, - "totalByteWeight": 1035603, - "totalTaskTime": 381.47499999999695, - "mainDocumentTransferSize": 2106 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://conseillers-entreprises.service-public.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-android_70", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://conseillers-entreprises.service-public.fr/mentions_legales" + "id": "clientsimulation-android_81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "slug": "pc", - "mention": "Mentions d'information", - "maxScore": 7, - "score": 6, - "missingWords": [], - "missingTrackers": [ - "googlefonts" - ], - "declarationUrl": "https://conseillers-entreprises.service-public.fr/mentions_d_information" - } - ], - "betagouv": { - "id": "conseillers-entreprises", - "type": "startup", - "attributes": { - "name": "Conseillers-Entreprises", - "pitch": "Mettre en relation les TPE & PME et le bon interlocuteur", - "stats_url": "https://conseillers-entreprises.service-public.fr/stats", - "link": "https://conseillers-entreprises.service-public.fr", - "repository": "https://github.com/betagouv/conseillers-entreprises", - "contact": "mathieu.gens@beta.gouv.fr", - "content_url_encoded_markdown": "%2A%2ATPE%20PME%2C%20vous%20avez%20un%20projet%2C%20une%20difficult%C3%A9%20ou%20une%20question%20du%20quotidien%20%3F%C2%A0%C3%89changer%20avec%20LE%20conseiller%20qui%20peut%20vous%20aider.%2A%2A%0A%0ALe%20service%20public%20%5BConseillers-Entreprises%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%29%20permet%20%C3%A0%20l%E2%80%99%C3%89tat%20et%20%C3%A0%20l%E2%80%99ensemble%20des%20organismes%20publics%20et%20parapublics%20de%20d%C3%A9velopper%20leur%20r%C3%B4le%20de%20conseil%20aupr%C3%A8s%20des%20TPE%20%26%20PME.%0A%0A%23%23%20Le%20probl%C3%A8me%20%3A%20des%20entrepreneurs%20isol%C3%A9s%2C%20des%20administrations%20cloisonn%C3%A9es%0A%0APlus%20de%202%20000%20aides%20publiques%20aux%20entreprises%20existent%2C%20ainsi%20que%20de%20multiples%20accompagnements%20par%20diff%C3%A9rents%20organismes%20publics%20et%20parapublics.%20Malheureusement%20ces%20dispositifs%20restent%20largement%20m%C3%A9connus%20de%20leurs%20destinataires%2C%20en%20particulier%20des%20TPE%20%26%20PME.%20La%20lisibilit%C3%A9%20des%20aides%20devient%20%C3%A9galement%20de%20plus%20en%20plus%20complexe.%0A%0AEnsuite%2C%20les%20chefs%20d%E2%80%99entreprise%20ne%20savent%20pas%20toujours%20%C3%A0%20qui%20adresser%20leurs%20demandes%20face%20%C3%A0%20la%20diversit%C3%A9%20d%E2%80%99acteurs%20publics.%20Identifier%20le%20bon%20interlocuteur%20dans%20la%20bonne%20administration%20et%20parvenir%20%C3%A0%20le%20joindre%20rel%C3%A8ve%20parfois%20du%20parcours%20du%20combattant.%C2%A0%0A%0AEnfin%2C%20les%20conseillers%20charg%C3%A9s%20d%E2%80%99accompagner%20les%20entreprises%20sont%20confront%C3%A9s%20%C3%A0%20un%20probl%C3%A8me%20de%20cloisonnement%20de%20leurs%20champs%20d%E2%80%99intervention.%0A%0A%23%23%20La%20solution%20%3A%20un%20service%20de%20mise%20en%20relation%20pour%20un%20conseil%20personnalis%C3%A9%20et%20de%20proximit%C3%A9%0A%0A%2A%2AConseillers-Entreprises%20permet%20d%E2%80%99offrir%20un%20conseil%20personnalise%CC%81%20et%20de%20proximite%CC%81%20aux%20TPE%20%26%20PME.%20Le%20conseil%20humain%20est%20au%20c%C5%93ur%20de%20ce%20service%20pour%20permettre%20au%20chef%20d%E2%80%99entreprise%20de%20mobiliser%20le%20bon%20accompagnement%20en%20fonction%20de%20ses%20besoins.%2A%2A%0A%0A%2A%2APort%C3%A9%20par%20le%20Minist%C3%A8re%20de%20l%E2%80%99%C3%89conomie%20et%20le%20Minist%C3%A8re%20du%20Travail%2C%20le%20service%20compte%20plus%20de%2010%20000%20conseillers%20charge%CC%81s%20d%E2%80%99accompagner%20les%20entreprises%20au%20sein%20de%2040%20partenaires%20publics%20et%20parapublics.%2A%2A%0A%0AGra%CC%82ce%20a%CC%80%20ce%20partenariat%20ine%CC%81dit%2C%20le%20service%20couvre%20%2A%2Aune%20grande%20varie%CC%81te%CC%81%20de%20sujets%2A%2A%20%3A%20recrutement%2C%20formation%2C%20organisation%20du%20travail%2C%20investissement%2C%20droit%20du%20travail%2C%20difficulte%CC%81s%20financie%CC%80res%2C%20appui%20au%20de%CC%81veloppement%2C%20nume%CC%81rique%2C%20transmission%20reprise%2C%20sante%CC%81%20et%20se%CC%81curite%CC%81%20au%20travail%2C%20transition%20e%CC%81cologique%20%26%20RSE...%0A%0ALe%20chef%20d%E2%80%99entreprise%20choisit%20un%20sujet%20sur%20le%20site%20et%20indique%20en%20quelques%20phrases%20sa%20proble%CC%81matique.%20Apre%CC%80s%20validation%2C%20sa%20demande%20est%20automatiquement%20transmise%20au%28x%29%20conseiller%28s%29%20compe%CC%81tent%28s%29%20sur%20son%20territoire%20pour%20l%E2%80%99accompagner.%20Ces%20conseillers%20le%20rappellent%20et%20lui%20proposent%2C%20lorsque%20les%20conditions%20sont%20re%CC%81unies%2C%20l%E2%80%99accompagnement%20le%20plus%20adapte%CC%81%20a%CC%80%20sa%20situation.%0A%0APour%20chaque%20proble%CC%81matique%2C%20les%20mises%20en%20relation%20avec%20les%20conseillers%20sont%20conc%CC%A7ues%20dans%20une%20logique%20de%20comple%CC%81mentarite%CC%81%20des%20expertises.%20Par%20exemple%2C%20un%20artisan%20rencontrant%20des%20difficulte%CC%81s%20financie%CC%80res%20peut%20e%CC%82tre%20accompagne%CC%81%20par%20une%20personne%20de%20la%20Banque%20de%20France%20%28diagnostic%20financier%29%2C%20de%20la%20Chambre%20des%20me%CC%81tiers%20et%20de%20l%E2%80%99artisanat%20%28identification%20d%E2%80%99une%20aide%20re%CC%81gionale%20ou%20locale%29%2C%20de%20l%E2%80%99Urssaf%20%28e%CC%81talement%20des%20cotisations%20sociales%29%20et%20de%20la%20DGFIP%20%28dettes%20fiscales%29.%20Ce%20fonctionnement%20permet%20d%E2%80%99apporter%20collectivement%20%2A%2Aune%20re%CC%81ponse%20publique%20plus%20efficace%2A%2A%20a%CC%80%20une%20situation%20d%E2%80%99entreprise.%0A%0AUn%20%2A%2Asuivi%20qualite%CC%81%2A%2A%20est%20assure%CC%81%20par%20l%E2%80%99e%CC%81quipe%20responsable%20du%20service%20afin%20qu%E2%80%99aucune%20demande%20d%E2%80%99entreprise%20ne%20reste%20sans%20re%CC%81ponse.%0A%0A%23%23%20Les%20perspectives%20%3A%20mesure%20des%20attentes%20de%20terrain%20et%20ajustement%20des%20politiques%20publiques%0A%0AEn%20partant%20des%20besoins%20exprim%C3%A9s%20directement%20par%20les%20TPE%20%26%20PME%2C%20le%20service%20permet%20de%20nourrir%20l%E2%80%99%C3%89tat%20et%20ses%20partenaires%20dans%20l%27am%C3%A9lioration%20des%20politiques%20publiques.%20Les%20attentes%20terrain%20des%20entreprises%20constituent%20en%20effet%20une%20pr%C3%A9cieuse%20base%20de%20donn%C3%A9es%20pour%20ajuster%20le%20p%C3%A9rim%C3%A8tre%20ou%20les%20modalit%C3%A9s%20de%20certains%20accompagnements.%C2%A0%0A%0ALes%20besoins%20des%20entreprises%20r%C3%A9v%C3%A8lent%20parfois%20l%E2%80%99absence%20de%20r%C3%A9ponse%20de%20service%20public%20sur%20des%20probl%C3%A9matiques%20pourtant%20r%C3%A9currentes.%20Ils%20sont%20alors%20exploit%C3%A9s%20en%20quantit%C3%A9%20pour%20concevoir%20%C3%A0%20l%E2%80%99avenir%20de%20nouveaux%20accompagnements.%20Ces%20derniers%20sont%20ensuite%20d%C3%A9ploy%C3%A9s%20au%20travers%20du%20service%20avec%20l%E2%80%99apparition%20d%E2%80%99un%20nouveau%20sujet%20sur%20le%20site%20ou%20d%E2%80%99une%20expertise%20compl%C3%A9mentaire%20au%20sein%20d%E2%80%99un%20sujet.%20Cette%20boucle%20vertueuse%20permet%20de%20d%C3%A9multiplier%20l%E2%80%99impact%20du%20service.%0A%0APar%20exemple%2C%20les%20conditions%20de%20travail%20ou%20la%20r%C3%A9glementation%20relative%20aux%20%C3%A9tablissements%20recevant%20du%20public%20%28ERP%29%20font%20l%E2%80%99objet%20de%20r%C3%A9flexions%20pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20de%20service%20public.%0A%0A%0A%0A%23%23%20La%20m%C3%A9thode%20%3A%20une%20petite%20%C3%A9quipe%20inspir%C3%A9e%20par%20vous%2C%20chefs%20d%E2%80%99entreprise%20et%20agents%20publics%0A%0ALe%20service%20a%20%C3%A9t%C3%A9%20construit%20pas%20%C3%A0%20pas%2C%20en%20confrontant%20nos%20hypoth%C3%A8ses%20de%20travail%20avec%20la%20r%C3%A9alit%C3%A9%20du%20terrain.%20Notre%20d%C3%A9marche%20repose%20sur%20des%20%C3%A9changes%20nourris%20avec%20les%20chefs%20d%E2%80%99entreprise%20et%20les%20conseillers%20d%E2%80%99entreprises%20sur%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20chacun%20au%20quotidien.%0A%0AL%E2%80%99ensemble%20des%20%C3%A9volutions%20du%20service%20sont%20guid%C3%A9es%20par%20l%E2%80%99impact%2C%20afin%20de%20s%E2%80%99assurer%20de%20leur%20pertinence%20pour%20nos%20utilisateurs.%0A%0A%23%23%20Contactez-nous%0A%0A%5BL%E2%80%99%C3%A9quipe%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%2Fequipe%29%20se%20tient%20%C3%A0%20votre%20disposition.%20Pour%20toute%20question%20sur%20le%20service%2C%20%C3%A9crivez-nous%20%C3%A0%20l%E2%80%99adresse%20%5Bcontact%40conseillers-entreprises.service-public.fr%5D%28mailto%3Acontact%40conseillers-entreprises.service-public.fr%29", - "events": [ - { - "name": "national_impact", - "date": "2022-12-31", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2017-09-01", - "end": "2019-02-28" - }, - { - "name": "construction", - "start": "2019-03-01", - "end": "2021-08-31" - }, - { - "name": "acceleration", - "start": "2021-09-01", - "end": "2022-06-20" - }, - { - "name": "success", - "start": "2022-06-21", - "end": "" - } - ], - "sponsors": [ - "dge", - "dgefp" - ], - "thematiques": [ - "Entreprises" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/conseillers-entreprises-service-public-fr/", - "accessibility_status": "partiellement conforme" + "id": "clientsimulation-android_90", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://conseillers-entreprises.service-public.fr", - "size": 1114.647, - "nodes": 370, - "requests": 48, - "grade": "C", - "score": 68, - "ges": 1.64, - "water": 2.46, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:40:16.464390", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.986, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-05-06T21:59:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "C", - "cookiesCount": 4, - "trackersGrade": "C", - "trackersCount": 6, - "lighthouse_performance": 0.67, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://plusfraichemaville.fr", - "category": "startup", - "betaId": "rafraichir.les.villes", - "tags": [ - "production", - "ADEME" - ], - "http": { - "url": "https://plusfraichemaville.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:06:12 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 03:06:09 GMT", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Powered-By": "Next.js", - "X-Request-ID": "ebdca30d-e6dc-4cf0-9703-b34eb98d3162", - "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTFlNTI3ZGMtZGFiZS00Y2Y2LWE0OWYtOTkzZGVmMDFlZTBj' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ ; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr https://cloud.contact.ademe.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ ;", - "strict-transport-security": "max-age=31536000" + "id": "clientsimulation-android_X", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, - "scan_id": 57048560, - "score": 105, - "start_time": "Sun, 20 Oct 2024 03:06:07 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://sentry.incubateur.net/", - "https://api-adresse.data.gouv.fr/search/", - "https://stats.beta.gouv.fr/matomo.php", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://fonts.gstatic.com/", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'none'" - ], - "frame-src": [ - "https://cloud.contact.ademe.fr", - "https://stats.plusfraichemaville.fr" - ], - "img-src": [ - "data:", - "blob:", - "https://plusfraichemaville.s3.fr-par.scw.cloud/", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'nonce-ntflnti3zgmtzgfizs00y2y2lwe0owytotkzzgvmmdflztbj'", - "'strict-dynamic'" - ], - "style-src": [ - "'unsafe-inline'", - "https://fonts.googleapis.com", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": true, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://plusfraichemaville.fr/", - "redirects": true, - "route": [ - "http://plusfraichemaville.fr/", - "https://plusfraichemaville.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "0sll", - "url": "https://plusfraichemaville.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T10:55:57Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T07:48:30Z", - "next_check_at": "2024-11-24T07:49:30Z", - "created_at": "2024-09-15T01:37:03Z", - "mute_until": null, - "favicon_url": "https://plusfraichemaville.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T07:48:31Z", - "expires_at": "2024-12-31T20:41:37Z", - "valid": true, - "error": null + { + "id": "clientsimulation-android_11", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, - "metrics": { - "apdex": 0.992, - "timings": { - "redirect": 0, - "namelookup": 17, - "connection": 166, - "handshake": 165, - "response": 182, - "total": 530 - } + { + "id": "clientsimulation-android_12", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "plusfraichemaville.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "plusfraichemaville.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -191734,7 +182942,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -191742,7 +182950,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -191750,7 +182958,7 @@ }, { "id": "cipherlist_LOW", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -191758,7 +182966,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -191766,7 +182974,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -191774,476 +182982,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "plusfraichemaville.fr/148.253.75.120", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "2024-10-02 20:41" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "2024-12-31 20:41" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1732434302" + "finding": "1733038276" }, { "id": "HSTS_time", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "plusfraichemaville.fr/148.253.75.120", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Content-Type-Options", - "ip": "plusfraichemaville.fr/148.253.75.120", + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "plusfraichemaville.fr/148.253.75.120", + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZGFiY2QxOTYtNDkyMC00NjgyLWE1Y2ItMmM1ZDI2YTMzOTI3' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "plusfraichemaville.fr/148.253.75.120", + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -192251,7 +183480,7 @@ }, { "id": "heartbleed", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -192260,7 +183489,7 @@ }, { "id": "CCS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -192269,16 +183498,16 @@ }, { "id": "ticketbleed", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -192287,7 +183516,7 @@ }, { "id": "secure_renego", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -192295,16 +183524,16 @@ }, { "id": "secure_client_renego", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -192313,16 +183542,16 @@ }, { "id": "BREACH", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -192331,14 +183560,14 @@ }, { "id": "fallback_SCSV", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -192347,7 +183576,7 @@ }, { "id": "FREAK", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -192356,7 +183585,7 @@ }, { "id": "DROWN", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -192365,16 +183594,16 @@ }, { "id": "DROWN_hint", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -192383,16 +183612,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -192401,7 +183630,7 @@ }, { "id": "LUCKY13", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -192410,7 +183639,7 @@ }, { "id": "winshock", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -192419,7 +183648,7 @@ }, { "id": "RC4", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -192428,392 +183657,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "plusfraichemaville.fr/148.253.75.120", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192821,7 +184043,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192829,7 +184051,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192837,7 +184059,7 @@ }, { "id": "cipherlist_LOW", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192845,7 +184067,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -192853,7 +184075,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -192861,476 +184083,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "plusfraichemaville.fr/5.104.101.30", + "id": "cipher-tls1_2_xc02f", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2024-10-02 20:41" + "finding": "2024-10-04 18:06" }, { "id": "cert_notAfter", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "2024-12-31 20:41" + "finding": "2025-01-02 18:06" }, { "id": "cert_extlifeSpan", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732434355" + "finding": "1733038327" }, { "id": "HSTS_time", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "plusfraichemaville.fr/5.104.101.30", + "id": "cookie_secure", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "All (1) at '/' marked as secure" }, { - "id": "X-Content-Type-Options", - "ip": "plusfraichemaville.fr/5.104.101.30", + "id": "cookie_httponly", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "plusfraichemaville.fr/5.104.101.30", + "id": "X-Content-Type-Options", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZGFiY2QxOTYtNDkyMC00NjgyLWE1Y2ItMmM1ZDI2YTMzOTI3' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "plusfraichemaville.fr/5.104.101.30", + "id": "Referrer-Policy", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -193338,7 +184581,7 @@ }, { "id": "heartbleed", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -193347,7 +184590,7 @@ }, { "id": "CCS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -193356,16 +184599,16 @@ }, { "id": "ticketbleed", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -193374,7 +184617,7 @@ }, { "id": "secure_renego", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -193382,16 +184625,16 @@ }, { "id": "secure_client_renego", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -193400,16 +184643,16 @@ }, { "id": "BREACH", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -193418,14 +184661,14 @@ }, { "id": "fallback_SCSV", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -193434,7 +184677,7 @@ }, { "id": "FREAK", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -193443,7 +184686,7 @@ }, { "id": "DROWN", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -193452,16 +184695,16 @@ }, { "id": "DROWN_hint", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=58EF9EB93EF95CB2B56070065B09919881B9C4A447C22BBF61001D9601B1B61B" }, { "id": "LOGJAM", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -193470,16 +184713,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -193488,7 +184731,7 @@ }, { "id": "LUCKY13", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -193497,7 +184740,7 @@ }, { "id": "winshock", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -193506,7 +184749,7 @@ }, { "id": "RC4", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -193515,392 +184758,1697 @@ }, { "id": "clientsimulation-android_60", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "plusfraichemaville.fr/5.104.101.30", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "pilotage.inclusion.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "467" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://app.livestorm.co/itou/upcoming?limit=3" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&family=Roboto:wght@500&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/css/chunk-style.f6b4d9cd.css" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/css/chunk-common.f5299c0e.css" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/css/company.c985f988.css" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-style.30c3aaef.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-vendors.b582bfb2.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-vendors-group-registration.56d651f8.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-company-vendors.fc5d2be4.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-common.d6610bd2.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/runtime-company.58a1c08a.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/company.23a0bb0e.js" + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/uploads/identity/avatar/f7d2e066-3d66-471e-818a-d7099e4d3dea/size_120x120_48b51e75-d945-42aa-9c9b-ca99f220ba90.jpeg?v=1594201471" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/sentry.c55e2a83.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/chunk-locale-en.7ce285c0.js" + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/img/chevron-down-dark.8668fd32.svg" + }, + { + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://o573056.ingest.sentry.io/api/5723202/envelope/?sentry_key=c7e55625ee004a3ab83004836a5b223e&sentry_version=7" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/84025.3244fada.js" + }, + { + "type": "unknown", + "url": "https://cdn.livestorm.co/dist/js/moment.d09e77b6.js" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.services.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + } + ], + "cookies": [ + { + "name": "csrftoken", + "value": "F6O5mAObKy5Dbk0aiQ9thzxSXZD24dIV", + "domain": "pilotage.inclusion.beta.gouv.fr", + "path": "/", + "expires": 1764487439.550674, + "size": 41, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-length": "54300", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 07:23:59 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=F6O5mAObKy5Dbk0aiQ9thzxSXZD24dIV; expires=Sun, 30 Nov 2025 07:23:59 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01JE0HNMZ0YQKSKFY33RR69HW8", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload", + "vary": "Cookie", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" + }, + "endpoints": [ + { + "hostname": "pilotage.inclusion.beta.gouv.fr", + "ip": "91.208.207.223", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "app.livestorm.co", + "ip": "52.51.74.43", + "geoip": { + "city": { + "geoname_id": 2964574, + "names": { + "de": "Dublin", + "en": "Dublin", + "es": "Dublín", + "fr": "Dublin", + "ja": "ダブリン", + "pt-BR": "Dublin", + "ru": "Дублин", + "zh-CN": "都柏林" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2963597, + "is_in_european_union": true, + "iso_code": "IE", + "names": { + "de": "Irland", + "en": "Ireland", + "es": "Irlanda", + "fr": "Irlande", + "ja": "アイルランド", + "pt-BR": "Irlanda", + "ru": "Ирландия", + "zh-CN": "爱尔兰" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 53.3379, + "longitude": -6.2591, + "time_zone": "Europe/Dublin" + }, + "postal": { + "code": "D02" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 7521314, + "iso_code": "L", + "names": { + "en": "Leinster", + "fr": "Leinster", + "ja": "レンスター", + "ru": "Ленстер" + } + } + ] + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.187.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.251.167.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.livestorm.co", + "ip": "3.167.69.124", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "142.251.163.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "o573056.ingest.sentry.io", + "ip": "34.120.195.249", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://pilotage.inclusion.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", + "confidence": 100, + "version": "5.3.0", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "popper", + "name": "Popper", + "description": "Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.", + "confidence": 100, + "version": "2.11.8", + "icon": "Popper.svg", + "website": "https://popper.js.org", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://pilotage.inclusion.beta.gouv.fr/", + "finalUrl": "https://pilotage.inclusion.beta.gouv.fr/", + "fetchTime": "2024-12-01T07:23:35.623Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.47 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.94 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 11896, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 11896, + "firstMeaningfulPaint": 11896, + "largestContentfulPaint": 15076, + "interactive": 11896, + "speedIndex": 11896, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.02778962198893229, + "cumulativeLayoutShiftMainFrame": 0.02778962198893229, + "totalCumulativeLayoutShift": 0.02778962198893229, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 395898281, + "observedNavigationStart": 0, + "observedNavigationStartTs": 395898281, + "observedFirstPaint": 1057, + "observedFirstPaintTs": 396955654, + "observedFirstContentfulPaint": 1057, + "observedFirstContentfulPaintTs": 396955654, + "observedFirstContentfulPaintAllFrames": 1057, + "observedFirstContentfulPaintAllFramesTs": 396955654, + "observedFirstMeaningfulPaint": 1057, + "observedFirstMeaningfulPaintTs": 396955654, + "observedLargestContentfulPaint": 1057, + "observedLargestContentfulPaintTs": 396955654, + "observedLargestContentfulPaintAllFrames": 1057, + "observedLargestContentfulPaintAllFramesTs": 396955654, + "observedTraceEnd": 3886, + "observedTraceEndTs": 399783834, + "observedLoad": 1486, + "observedLoadTs": 397384396, + "observedDomContentLoaded": 1048, + "observedDomContentLoadedTs": 396945934, + "observedCumulativeLayoutShift": 0.02778962198893229, + "observedCumulativeLayoutShiftMainFrame": 0.02778962198893229, + "observedTotalCumulativeLayoutShift": 0.02778962198893229, + "observedFirstVisualChange": 1069, + "observedFirstVisualChangeTs": 396967281, + "observedLastVisualChange": 1519, + "observedLastVisualChangeTs": 397417281, + "observedSpeedIndex": 1255, + "observedSpeedIndexTs": 397153613 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 56, + "numScripts": 22, + "numStylesheets": 7, + "numFonts": 6, + "numTasks": 37, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0.9130000000000003, + "throughput": 32073754.067693137, + "maxRtt": 82.125, + "maxServerLatency": 190.50400000000002, + "totalByteWeight": 3129356, + "totalTaskTime": 4.291999999999998, + "mainDocumentTransferSize": 54837 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/mentions-legales/" }, { - "id": "cipher_strength_score", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 6, + "score": 6, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://pilotage.inclusion.beta.gouv.fr/politique-de-confidentialite/" + } + ], + "betagouv": { + "id": "pilotage.de.linclusion", + "type": "startup", + "attributes": { + "name": "Pilotage de l'inclusion", + "pitch": "Valoriser et diffuser la donnée pour favoriser les dispositifs d'inclusion", + "stats_url": "https://pilotage.inclusion.beta.gouv.fr/stats/", + "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?usp=sharing", + "link": "https://pilotage.inclusion.beta.gouv.fr/", + "repository": "https://github.com/gip-inclusion/pilotage", + "contact": "contact@inclusion.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%E2%80%99%2A%2Ainsertion%20par%20l%E2%80%99activit%C3%A9%20%C3%A9conomique%2A%2A%20%28IAE%29%20est%20un%20dispositif%20dans%20lequel%20l%E2%80%99%C3%89tat%20confie%20une%20mission%20d%E2%80%99accompagnement%20socio-professionnel%20de%20personnes%20en%20difficult%C3%A9s%20%C3%A0%20plus%20de%204%20500%20structures%20associatives%20ou%20priv%C3%A9es.%20Il%20s%27agit%20d%27un%20programme%20d%27accompagnement%20socio-professionnel%20pour%20les%20personnes%20ayant%20des%20difficult%C3%A9s%20%C3%A0%20trouver%20un%20emploi.%20Ce%20dispotif%20b%C3%A9n%C3%A9ficie%20%C3%A0%20un%20public%20tr%C3%A8s%20%C3%A9loign%C3%A9%20de%20l%27emploi%2C%20soit%20134%20000%20personnes%20en%20parcours%20d%27insertion%20%C3%A0%20la%20fin%20de%20l%27ann%C3%A9e%202017.%20L%27IAE%20repose%20sur%20trois%20%C3%A9l%C3%A9ments%20cl%C3%A9s%20%3A%20une%20mise%20en%20situation%20professionnelle%2C%20un%20accompagnement%20professionnel%20et%20social%2C%20ainsi%20que%20la%20mobilisation%20d%27actions%20de%20formation.%0A%0AL%27%2A%2Ainclusion%20par%20et%20dans%20l%27emploi%2A%2A%20concerne%20le%20vaste%20dispositif%20de%20l%27IAE%2C%20les%20%5BEntreprises%20Adapt%C3%A9es%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi%2Femploi-et-handicap%2Farticle%2Femploi-et-handicap-les-entreprises-adaptees-ea%29%20%28EA%29%20dont%20la%20sp%C3%A9cificit%C3%A9%20est%20d%27employer%20au%20moins%2080%25%20de%20travailleurs%20en%20situation%20de%20handicap%2C%20les%20%5BGroupements%20d%E2%80%99Employeurs%20pour%20l%E2%80%99Insertion%20et%20la%20Qualification%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi%2Finsertion-activite-economique%2Farticle%2Fgroupements-d-employeurs-pour-l-insertion-et-la-qualification-geiq%29%20%28GEIQ%29%20et%20les%20%5BEtablissements%20et%20Services%20d%27Aide%20par%20le%20Travail%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Fdroit-du-travail%2Fhandicap-et-travail%2Farticle%2Fesat-etablissements-ou-services-d-aide-par-le-travail%29%20%28ESAT%29%20des%20%C3%A9tablissements%20m%C3%A9dico-sociaux%20qui%20accueillent%20des%20personnes%20en%20situation%20de%20handicap.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ADeux%20probl%C3%A8mes%20majeurs%20se%20posent%20%3A%0A-%20Le%20manque%20d%27expertise%20dans%20la%20collecte%20et%20le%20traitement%20de%20donn%C3%A9es%2C%20qui%20se%20traduit%20par%20une%20charge%20administrative%20importante%20pour%20les%20structures%20et%20leurs%20partenaires%20publics%20lorsqu%27ils%20doivent%20rendre%20compte%20de%20leur%20activit%C3%A9%20%3B%0A-%20L%27absence%20de%20donn%C3%A9es%20partag%C3%A9es%20sur%20les%20politiques%20publiques%20d%27insertion%20et%20d%27un%20outil%20de%20pilotage%20commun%2C%20qui%20compliquent%20le%20suivi%20et%20la%20mise%20en%20oeuvre%20des%20plans%20d%27actions%20des%20acteurs%2C%20ainsi%20que%20la%20communication%20entre%20les%20partenaires.%0A%0A%23%23%20Notre%20service%0A%0ANotre%20solution%20vise%20%C3%A0%20aider%20les%20charg%C3%A9s%20de%20mission%2C%20responsables%2C%20d%C3%A9cideurs%20politiques%2C%20r%C3%A9f%C3%A9rents%20IAE%20et%20professionnels%20de%20l%27accompagnement%20dans%20leur%20mission%20en%20leur%20fournissant%20des%20connaissances%20et%20des%20apprentissages%20sur%20les%20politiques%20publiques%20d%27insertion.%0A%0ANotre%20approche%20consiste%20%C3%A0%20collecter%20et%20%C3%A0%20traiter%20les%20donn%C3%A9es%20relatives%20aux%20dispositifs%20d%27inclusion%2C%20qui%20sont%20%C3%A0%20disposition%20de%20l%27administration%2C%20des%20partenaires%20ou%20des%20start-up%20d%27%C3%89tat%2C%20tel%20que%20le%20service%20des%20emplois%20de%20l%27inclusion.%20Ensuite%2C%20nous%20partageons%20ces%20donn%C3%A9es%20sous%20forme%20d%27outils%20et%20de%20ressources%20pr%C3%AAtes%20%C3%A0%20l%27emploi%2C%20tels%20que%20des%20indicateurs%2C%20des%20tableaux%20de%20bord%2C%20des%20notes%20d%27analyse%20et%20des%20donn%C3%A9es%20brutes%2C%20que%20nous%20diffusons%20aux%20acteurs%20concern%C3%A9s%2C%20comme%20les%20cabinets%2C%20les%20administrations%20et%20services%20de%20l%27%C3%89tat%2C%20les%20conseils%20d%C3%A9partementaux%2C%20les%20r%C3%A9seaux%20de%20l%27IAE%2C%20les%20entreprises%20solidaires%2C%20les%20prescripteurs%2C%20etc.%0A%0ANos%20outils%20permettent%20d%27%C3%A9tablir%20un%20%C3%A9tat%20des%20lieux%20de%20la%20situation%20dans%20un%20territoire%20%28national%2C%20r%C3%A9gional%2C%20d%C3%A9partemental%2C%20bassin%20d%27emploi%29%20pour%20chaque%20dispositif%20ou%20de%20r%C3%A9aliser%20des%20analyses%20plus%20pr%C3%A9cises%20%C3%A0%20l%27%C3%A9chelle%20d%27une%20organisation.%20Ces%20donn%C3%A9es%20peuvent%20%C3%AAtre%20utiles%20pour%20enrichir%20les%20instances%20de%20pilotage%2C%20faciliter%20un%20reporting%2C%20pr%C3%A9parer%20un%20%C3%A9change%20avec%20un%20partenaire%20ou%20r%C3%A9aliser%20un%20diagnostic.%0A%0A%23%23%20Strat%C3%A9gie%20et%20dates%20cl%C3%A9s%0A%0AApporter%20des%20r%C3%A9ponses%20aux%20irritants%20des%20utilisateurs%20en%20traitant%20chaque%20cas%20d%27usage%20comme%20un%20mini-produit%20avec%20la%20m%C3%A9thode%20beta.gouv.%0A%0A%2A%2AMai%202022%2A%2A%20%3A%20arr%C3%AAt%20de%20l%27exp%C3%A9rimentation%20et%20de%20la%20mise%20%C3%A0%20disposition%20de%20donn%C3%A9es%20sur%20les%20personnes%20en%20insertion%20pour%20simplifier%20le%20reporting%20des%20services%20de%20l%27Etat%2C%20collectivit%C3%A9s%20territoriales%20et%20structures%20de%20l%27IAE.%0A%0A%2A%2AA%20partir%20de%20juin%202022%2A%2A%20%3A%20acc%C3%A9l%C3%A9ration%20du%20d%C3%A9ploiement%20d%27outils%20pour%20l%27analyse%20de%20l%27activit%C3%A9%20de%20prescription%20dans%20l%27IAE%20et%20contribuer%20%C3%A0%20apporter%20des%20r%C3%A9ponses%20aux%20difficult%C3%A9s%20de%20recrutement.%0A%0A%2A%2ASeptembre%202022%2A%2A%20%3A%20lancement%20de%20l%27investigation%20pour%20faire%20un%20%C3%A9tat%20des%20lieux%20du%20plan%20de%20transformation%20des%20Esat.%0A%0A%2A%2ASeptembre%202023%2A%2A%20%3A%20exp%C3%A9rimentation%20sur%20quelques%20territoires%20et%20structures%20de%20nouvelles%20donn%C3%A9es%20et%20d%27outils%20sur%20le%20pilotage%20du%20budget%20IAE%20et%20publication%20du%20tableau%20de%20bord%20Esat.%0A%0A%2A%2ANovembre%202023%2A%2A%20%3A%20publication%20d%27un%20outil%20public%20sur%20le%20conventionnement%20des%20ETP%20en%20IAE%20et%20d%27une%20note%20d%27analse%20sur%20les%20femmes%20face%20%C3%A0%20la%20politique%20publique%20d%27insertion.%0A", + "events": [], + "phases": [ + { + "name": "construction", + "start": "2020-06-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-06-01", + "end": "" + } + ], + "sponsors": [ + "francetravail", + "mtei", + "mtfp" + ], + "thematiques": [ + "Travail / Emploi", + "Open-Data" + ], + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/pilotage-inclusion-beta-gouv-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "gip-inclusion" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://pilotage.inclusion.beta.gouv.fr", + "size": 2360.888, + "nodes": 606, + "requests": 32, + "grade": "C", + "score": 57, + "ges": 1.86, + "water": 2.79, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 07:20:37.484357", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D-", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-02T18:06:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "F", + "trackersCount": 27, + "lighthouse_performance": 0.47, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.94, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://pix.fr", + "category": "dinum", + "betaId": "pix", + "http": { + "url": "https://pix.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:04:35 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-cache", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 06:04:34 GMT", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-XSS-Protection": "1; mode=block" }, - { - "id": "final_score", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57052441, + "score": 75, + "start_time": "Sun, 20 Oct 2024 06:04:33 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://pix.fr/", + "redirects": true, + "route": [ + "http://pix.fr/", + "https://pix.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "f90c", + "url": "https://pix.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-27T11:01:08Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T07:36:58Z", + "next_check_at": "2024-12-01T07:41:56Z", + "created_at": "2021-04-22T19:59:36Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:07:04Z", + "expires_at": "2025-10-03T21:59:59Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "plusfraichemaville.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 64, + "connection": 150, + "handshake": 161, + "response": 155, + "total": 530 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "pix.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193908,7 +186456,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193916,7 +186464,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193924,7 +186472,7 @@ }, { "id": "cipherlist_LOW", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193932,7 +186480,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -193940,484 +186488,491 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "306 >= 60 days" }, { "id": "cert_notBefore", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "2024-10-02 20:41" + "finding": "2024-10-03 22:00" }, { "id": "cert_notAfter", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", - "finding": "2024-12-31 20:41" + "finding": "2025-10-03 21:59" }, { "id": "cert_extlifeSpan", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "1732434407" + "finding": "1733038615" }, { "id": "HSTS_time", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "Content-Security-Policy", - "ip": "plusfraichemaville.fr/109.232.236.90", + "id": "X-XSS-Protection", + "ip": "pix.fr/185.231.167.141", "port": "443", - "severity": "OK", - "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZGFiY2QxOTYtNDkyMC00NjgyLWE1Y2ItMmM1ZDI2YTMzOTI3' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Referrer-Policy", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -194425,7 +186980,7 @@ }, { "id": "heartbleed", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -194434,7 +186989,7 @@ }, { "id": "CCS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -194443,16 +186998,16 @@ }, { "id": "ticketbleed", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -194461,7 +187016,7 @@ }, { "id": "secure_renego", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -194469,7 +187024,7 @@ }, { "id": "secure_client_renego", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -194478,7 +187033,7 @@ }, { "id": "CRIME_TLS", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -194487,16 +187042,16 @@ }, { "id": "BREACH", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -194505,14 +187060,14 @@ }, { "id": "fallback_SCSV", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -194521,7 +187076,7 @@ }, { "id": "FREAK", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -194530,7 +187085,7 @@ }, { "id": "DROWN", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -194539,16 +187094,16 @@ }, { "id": "DROWN_hint", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=46EA35FCF27DAE7EE87CD03B7F22596C62F9D183FF2E3442A0F4ECFBBF5D5096" }, { "id": "LOGJAM", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -194557,7 +187112,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -194566,7 +187121,7 @@ }, { "id": "BEAST", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -194575,16 +187130,16 @@ }, { "id": "LUCKY13", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -194593,7 +187148,7 @@ }, { "id": "RC4", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -194602,392 +187157,1604 @@ }, { "id": "clientsimulation-android_60", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "plusfraichemaville.fr/109.232.236.90", + "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "pix.fr/185.231.167.141", + "port": "443", + "severity": "INFO", + "finding": "59" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://analytics.pix.fr/js/container_I6rhBBhV.js" + }, + { + "type": "unknown", + "url": "https://static.cdn.prismic.io/prismic.min.js?repo=pix-site&new=true" + }, + { + "type": "unknown", + "url": "https://pix-site.prismic.io/prismic-toolbar/4.1.1/iframe.html" + }, + { + "type": "unknown", + "url": "https://analytics.pix.fr/piwik.php?action_name=%2F&idsite=1&rec=1&r=416227&h=7&m=35&s=52&url=https%3A%2F%2Fpix.fr%2F&_id=c88e3f5afe528425&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=beX5Y5&pf_net=0&pf_srv=106&pf_tfr=61&pf_dm1=257&pf_dm2=441&pf_onl=0" + } + ], + "cookies": [ + { + "name": "cookiename", + "value": "cookievalue", + "domain": ".pix.fr", + "path": "/", + "expires": -1, + "size": 21, + "httpOnly": false, + "secure": false, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "challenge", + "value": "nkcHml8xHWcdM_Ubf1cPqoRh5wDiKdKuhyXmWXCtlNmIC0vJwvRVq1WwokANPNuCG6B56Yhcejad47_6VyoLs9jBd8-I1zYqU3AHEbnN4MeYQ70sQEBDRYVtwTJCIFdijUPpPKcGltvcT3nZky5yAmPG8Fz7jktC0rmlvMLjqYk8dJd0PGY7uHNC1wG-9XYkhLExgjqV0Zv8km71IrwtqWZ5ad45UD1k-BXVAD5BqlZ7nN90g28ULi9E6sFyUbu8-t3FzpYt1okEHCJ2YiWoT5J7Yr4cLjU_Dr1pszq4auzZYgR_H9ZKAtpdJlwgqeQV", + "domain": ".pix.fr", + "path": "/", + "expires": 1733042151.404066, + "size": 329, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "accept-ranges": "bytes", + "age": "0", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 07:35:51 GMT", + "etag": "W/\"674b994b-2236b\"", + "last-modified": "Sat, 30 Nov 2024 23:01:31 GMT", + "referrer-policy": "origin-when-cross-origin", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "1cb736c2f0850547255e116b8df3f0bb", + "x-varnish": "226377282", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "pix.fr", + "ip": "185.231.167.141", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.251.167.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "analytics.pix.fr", + "ip": "154.41.70.3", + "geoip": { + "city": { + "geoname_id": 2972191, + "names": { + "de": "Tours", + "en": "Tours", + "es": "Tours", + "fr": "Tours", + "ja": "トゥール", + "pt-BR": "Tours", + "ru": "Тур", + "zh-CN": "图尔" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 47.3983, + "longitude": 0.7037, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3027939, + "iso_code": "CVL", + "names": { + "de": "Centre-Val de Loire", + "en": "Centre-Val de Loire", + "es": "Centro-Valle de Loira", + "fr": "Centre-Val de Loire", + "ja": "サントル=ヴァル・ド・ロワール地域圏", + "pt-BR": "Centro", + "ru": "Центр — Долина Луары" + } + }, + { + "geoname_id": 3012804, + "iso_code": "37", + "names": { + "de": "Indre-et-Loire", + "en": "Indre-et-Loire", + "es": "Indre y Loira", + "fr": "Indre-et-Loire", + "ja": "アンドル=エ=ロワール県", + "pt-BR": "Indre-et-Loire", + "ru": "Эндр и Луара", + "zh-CN": "安德尔-卢瓦尔省" + } + } + ] + } + }, + { + "hostname": "static.cdn.prismic.io", + "ip": "99.84.188.58", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "pix-site.prismic.io", + "ip": "35.173.159.164", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://pix.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "sendgrid", + "name": "Sendgrid", + "description": "SendGrid is a cloud-based email delivery platform for transactional and marketing emails.", + "confidence": 100, + "version": null, + "icon": "SendGrid.svg", + "website": "https://sendgrid.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "google-workspace", + "name": "Google Workspace", + "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", + "confidence": 100, + "version": null, + "icon": "Google.svg", + "website": "https://workspace.google.com/", + "cpe": null, + "categories": [ + { + "id": 30, + "slug": "webmail", + "name": "Webmail" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://pix.fr/", + "finalUrl": "https://pix.fr/", + "fetchTime": "2024-12-01T07:35:27.283Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.65 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.9 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": null + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.81 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4392, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1876, + "firstMeaningfulPaint": 1876, + "largestContentfulPaint": 4372, + "interactive": 4392, + "speedIndex": 1876, + "totalBlockingTime": 434, + "maxPotentialFID": 423, + "cumulativeLayoutShift": 0.22784145567152236, + "cumulativeLayoutShiftMainFrame": 0.22784145567152236, + "totalCumulativeLayoutShift": 0.22784145567152236, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 317581483, + "observedNavigationStart": 0, + "observedNavigationStartTs": 317581483, + "observedFirstPaint": 384, + "observedFirstPaintTs": 317965250, + "observedFirstContentfulPaint": 384, + "observedFirstContentfulPaintTs": 317965250, + "observedFirstContentfulPaintAllFrames": 384, + "observedFirstContentfulPaintAllFramesTs": 317965250, + "observedFirstMeaningfulPaint": 384, + "observedFirstMeaningfulPaintTs": 317965250, + "observedLargestContentfulPaint": 576, + "observedLargestContentfulPaintTs": 318157589, + "observedLargestContentfulPaintAllFrames": 576, + "observedLargestContentfulPaintAllFramesTs": 318157589, + "observedTraceEnd": 3441, + "observedTraceEndTs": 321022919, + "observedLoad": 823, + "observedLoadTs": 318404932, + "observedDomContentLoaded": 471, + "observedDomContentLoadedTs": 318052938, + "observedCumulativeLayoutShift": 0.22784145567152236, + "observedCumulativeLayoutShiftMainFrame": 0.22784145567152236, + "observedTotalCumulativeLayoutShift": 0.22784145567152236, + "observedFirstVisualChange": 389, + "observedFirstVisualChangeTs": 317970483, + "observedLastVisualChange": 1139, + "observedLastVisualChangeTs": 318720483, + "observedSpeedIndex": 622, + "observedSpeedIndexTs": 318203605 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 89, + "numScripts": 15, + "numStylesheets": 5, + "numFonts": 6, + "numTasks": 2917, + "numTasksOver10ms": 10, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 1.4860000000000007, + "throughput": 83309231.9538952, + "maxRtt": 85.199, + "maxServerLatency": 109.441, + "totalByteWeight": 5828720, + "totalTaskTime": 574.365999999993, + "mainDocumentTransferSize": 7768 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://pix.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://pix.fr/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "pix", + "type": "startup", + "attributes": { + "name": "Pix", + "pitch": "Mesurer, développer et valoriser ses compétences numériques.", + "stats_url": "https://pix.fr/statistiques", + "link": "https://pix.fr", + "repository": "https://github.com/1024pix/pix/", + "contact": "contact@pix.fr", + "content_url_encoded_markdown": "Pix%20s%27adresse%20aux%20fran%C3%A7aises%2C%20fran%C3%A7ais%20et%20francophones%20%28en%20%C3%A9tudes%2C%20en%20situation%20de%20d%C3%A9crochage%2C%20en%20activit%C3%A9%20professionnelle%2C%20%C3%A0%20la%20recherche%20d%27un%20emploi%2C%20etc.%29%20qui%20souhaitent%20mesurer%2C%20d%C3%A9velopper%20et%20valoriser%20leurs%20comp%C3%A9tences%20num%C3%A9riques.%0A%0ALe%20service%20se%20pr%C3%A9sente%20sous%20la%20forme%20d%27une%20plateforme%20en%20ligne%20d%27%C3%A9valuation%20et%20de%20certification%20des%20comp%C3%A9tences%20num%C3%A9riques.%0A%0ALe%20but%20de%20Pix%20est%20de%20susciter%20l%27envie%20de%20se%20former%20tout%20au%20long%20de%20la%20vie%20en%20proposant%20des%20m%C3%A9thodes%20d%27%C3%A9valuation%20innovantes%2C%20exigeantes%20et%20bienveillantes%20ainsi%20que%20des%20recommandations%20de%20formations%20cibl%C3%A9es.", + "events": [ + { + "name": "national_impact", + "date": "2019-09-01", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2016-06-08", + "end": "" + }, + { + "name": "construction", + "start": "2016-06-08", + "end": "" + }, + { + "name": "success", + "start": "2019-09-01", + "end": "" + } + ], + "sponsors": [ + "menjs" + ], + "thematiques": [ + "Education", + "Inclusion numérique" + ], + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://pix.fr", + "size": 4909.7, + "nodes": 638, + "requests": 95, + "grade": "E", + "score": 39, + "ges": 2.22, + "water": 3.33, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 07:32:29.710327", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-10-03T21:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "C", + "trackersCount": 5, + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.9, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 0.81, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "E", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://conseillers-entreprises.service-public.fr", + "category": "dinum", + "betaId": "conseillers-entreprises", + "http": { + "url": "https://conseillers-entreprises.service-public.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:10:46 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Age": "0", + "Cache-Control": "no-store", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com 'nonce-UgtT7GM6VnSMu0nZ5cPfZw=='; frame-src 'self' stats.data.gouv.fr stats.beta.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 06:10:45 GMT", + "ETag": "W/\"7acd73ed86848f6c94cb041c6541ca16\"", + "Expires": "0", + "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", + "Pragma": "no-cache", + "Referrer-Policy": "strict-origin-when-cross-origin", + "Set-Cookie": "_ConseillersEntreprises_session=x7iKpVXxz2unC3wDxOHrCZEa9%2BlrXzlumLufFBwyvNT5Hn7Eaz%2BcAApk9v7GEaRfu24rdYM5TpdJ4Xwc3xZh56W5rrE0wm7F53Ivz%2F6BDy3w9yVSNscmSFB09aay5As0g5hwcOfEV3epI%2BOx3VNsLWBY7X8HCSN0ORqUbSxC1gwZ0vJU78CdYPVjj3yhfkMVMQflEkwtqGYPxdzToqjsmJKiPMCpqYT5O7qsUw2OZOOLjF2xWE5J%2FpyFasMTTXZFg53lwYr2FWTOwP%2B3P7FapZ6ShLZpMXxQMyL4kth9FSVOd3MpaFsc--v7HpanPn%2BIGwaOnu--EL7JUUIERPFWgyaE55L9%2Fg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", + "Vary": "Accept, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "1f18eb3fe905ae434c2fabe4eef1bc58, 1f18eb3fe905ae434c2fabe4eef1bc58", + "X-Runtime": "0.111575", + "X-Varnish": "5721926", + "X-XSS-Protection": "0" }, - { - "id": "final_score", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57052546, + "score": 80, + "start_time": "Sun, 20 Oct 2024 06:10:44 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://pagead2.googlesyndication.com", + "https://tpc.googlesyndication.com", + "*.sentry.io", + "*.google.com", + "https://cdn.jsdelivr.net/", + "https://browser.sentry-cdn.com", + "https://googleads.g.doubleclick.net", + "https://adservice.google.com", + "https://api-adresse.data.gouv.fr/", + "https://stats.beta.gouv.fr/", + "'self'", + "https://www.googletagmanager.com" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://fonts.gstatic.com", + "data:", + "'self'" + ], + "frame-src": [ + "https://tpc.googlesyndication.com", + "https://cdn.jsdelivr.net/", + "https://bid.g.doubleclick.net", + "stats.data.gouv.fr", + "https://www.youtube-nocookie.com", + "'self'", + "browser.sentry-cdn.com", + "stats.beta.gouv.fr" + ], + "img-src": [ + "https://www.gstatic.com", + "https://jedonnemonavis.numerique.gouv.fr", + "'self'", + "https://www.googletagmanager.com", + "415474841.privacysandbox.googleadservices.com", + "https://googleads.g.doubleclick.net", + "https://adservice.google.com", + "https://stats.beta.gouv.fr/", + "data:", + "https://www.googleadservices.com", + "https://www.google.fr", + "https://www.google.com" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "sentry.io", + "blob:", + "https://cdn.jsdelivr.net/", + "https://browser.sentry-cdn.com", + "'nonce-ugtt7gm6vnsmu0nz5cpfzw=='", + "https://googleads.g.doubleclick.net", + "https://www.googletagmanager.com/", + "https://stats.beta.gouv.fr/", + "'self'", + "https://www.googleadservices.com", + "https://www.google.com" + ], + "style-src": [ + "https://fonts.googleapis.com", + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_ConseillersEntreprises_session": { + "domain": "conseillers-entreprises.service-public.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Strict", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://conseillers-entreprises.service-public.fr/", + "redirects": false, + "route": [ + "http://conseillers-entreprises.service-public.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.min.js": { + "crossorigin": "anonymous", + "integrity": "sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6" + } + } + }, + "pass": true, + "result": "sri-implemented-and-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded securely", + "score_modifier": 5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "15zr", + "url": "https://conseillers-entreprises.service-public.fr", + "alias": null, + "last_status": 200, + "uptime": 99.991, + "down": false, + "down_since": null, + "up_since": "2024-12-01T03:52:06Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T07:48:40Z", + "next_check_at": "2024-12-01T07:49:40Z", + "created_at": "2024-05-21T21:45:32Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:40:42Z", + "expires_at": "2025-05-06T21:59:59Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "plusfraichemaville.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 170, + "connection": 119, + "handshake": 124, + "response": 211, + "total": 624 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "conseillers-entreprises.service-public.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194995,7 +188762,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -195003,7 +188770,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -195011,7 +188778,7 @@ }, { "id": "cipherlist_LOW", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -195019,7 +188786,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -195027,484 +188794,470 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "156 >= 60 days" }, { "id": "cert_notBefore", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "2024-10-02 20:41" + "finding": "2024-05-06 22:00" }, { "id": "cert_notAfter", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", - "finding": "2024-12-31 20:41" + "finding": "2025-05-06 21:59" }, { "id": "cert_extlifeSpan", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "plusfraichemaville.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1732434460" - }, - { - "id": "HSTS_time", - "ip": "plusfraichemaville.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733039253" }, { - "id": "HSTS_preload", - "ip": "plusfraichemaville.fr/109.232.233.130", + "id": "HSTS", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "plusfraichemaville.fr/109.232.233.130", + "id": "X-Content-Type-Options", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "nosniff" }, { - "id": "X-Content-Type-Options", - "ip": "plusfraichemaville.fr/109.232.233.130", + "id": "X-XSS-Protection", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", - "severity": "OK", - "finding": "nosniff" + "severity": "INFO", + "finding": "1; mode=block" }, { - "id": "Content-Security-Policy", - "ip": "plusfraichemaville.fr/109.232.233.130", + "id": "Referrer-Policy", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", - "severity": "OK", - "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZGFiY2QxOTYtNDkyMC00NjgyLWE1Y2ItMmM1ZDI2YTMzOTI3' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" + "severity": "INFO", + "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -195512,7 +189265,7 @@ }, { "id": "heartbleed", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -195521,7 +189274,7 @@ }, { "id": "CCS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -195530,16 +189283,16 @@ }, { "id": "ticketbleed", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -195548,7 +189301,7 @@ }, { "id": "secure_renego", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -195556,7 +189309,7 @@ }, { "id": "secure_client_renego", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -195565,7 +189318,7 @@ }, { "id": "CRIME_TLS", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -195574,16 +189327,16 @@ }, { "id": "BREACH", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -195592,14 +189345,14 @@ }, { "id": "fallback_SCSV", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -195608,7 +189361,7 @@ }, { "id": "FREAK", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -195617,7 +189370,7 @@ }, { "id": "DROWN", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -195626,16 +189379,16 @@ }, { "id": "DROWN_hint", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=03F1492706D01D32461E1E9C9EFB483DEDDE63E33A8D7359AF83DEF11F81184C" }, { "id": "LOGJAM", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195644,7 +189397,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195653,7 +189406,7 @@ }, { "id": "BEAST", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -195662,16 +189415,16 @@ }, { "id": "LUCKY13", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -195680,7 +189433,7 @@ }, { "id": "RC4", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -195689,378 +189442,476 @@ }, { "id": "clientsimulation-android_60", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "plusfraichemaville.fr/109.232.233.130", + "ip": "conseillers-entreprises.service-public.fr/185.231.164.123", "port": "443", "severity": "INFO", - "finding": "214" + "finding": "58" } ], "thirdparties": { - "trackers": [], + "trackers": [ + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/lang/tarteaucitron.fr.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.16.1/tarteaucitron.services.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "google tag manager", + "url": "https://www.googletagmanager.com/gtag/js?id=AW-415474841", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google tag manager", + "url": "https://pagead2.googlesyndication.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fconseillers-entreprises.service-public.fr%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=2060430653.1733039178&npa=1>m=45be4bk0v9116231455za200&gcs=G100&gcd=13p3p3p3p5l1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&tft=1733039178276&tfd=1610&apve=1", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + } + ], "cookies": [ { - "name": "__Secure-next-auth.callback-url", - "value": "https%3A%2F%2Fplusfraichemaville.fr%2Fespace-projet%2Fcreation-projet", - "domain": "plusfraichemaville.fr", + "name": "_pk_ses.74.0be8", + "value": "1", + "domain": "conseillers-entreprises.service-public.fr", "path": "/", - "expires": -1, - "size": 100, - "httpOnly": true, + "expires": 1733040977, + "size": 16, + "httpOnly": false, "secure": true, - "session": true, - "sameSite": "Lax", + "session": false, + "sameSite": "None", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "__Host-next-auth.csrf-token", - "value": "3756c02ca6f5a18d1c0143e32c1d011ff26c2762d02241b838440f2e5865dc58%7C46a22569b90ea72f5d6c7494c21c0825aa52c3d06c7fd8f7031b5d77c19dbd2d", - "domain": "plusfraichemaville.fr", + "name": "_pk_id.74.0be8", + "value": "6447ebe01ed070c1.1733039178.", + "domain": "conseillers-entreprises.service-public.fr", + "path": "/", + "expires": 1766994378, + "size": 42, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_ConseillersEntreprises_session", + "value": "UVYyDtS%2F0tZpfrxxMiwcfO5UXZWCFbUiwtWjsclmMh0x4HnO6qsHJ3dq9%2Bs6gboEJz3IRGYgqg2aD%2FPpCR9TJgj06O%2BP%2Be5qejPh7k14BarDqqM3MiboKDgYwwcZhbOuQ2%2BldTyBsmSpm%2BmA3KEmxR5MFsY%2FK9ucQp7L6Zb8SO9%2BkIF31AbWyP%2Fapgpuyce5uBM%2FcVMOA6a3svUjdlm9lLuSxbJzTkOIGq6GM1ZYbpBMZM7n%2FwZeWPMl8Pxoqd1hUTq9ZkXtGLI9csDUdIUEmEOyywdB%2BcFpQQJsy%2FJU77QFAN0%2BbneW--7bVGgVlrOhjpWzmj--BjQZWLCjRAULravNqPY%2BQw%3D%3D", + "domain": "conseillers-entreprises.service-public.fr", "path": "/", "expires": -1, - "size": 158, + "size": 419, "httpOnly": true, "secure": true, "session": true, - "sameSite": "Lax", + "sameSite": "Strict", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "bln_challengejs", + "value": "JiJ3pZrCjMDrYd8LapjAIioSpEENhjexsZX6rqaFm3MZWDldN65-QvJz_smj5Vu3TQ4s0IufSmhPMm0J35RmZZ4Yj_l7EYV2bzJCniGbL-oBZ3KQAhq8FtT6RY-tYkndNsupryHJeQQXByfC8gLar7wGXWbaIvLy5YPvUxowaaKpG-HZp3pyVib-073mrH0vjssArmMdYmYwmh2MGqYyevDMeNHWxkYZZTOlQxrafmevH7PFt3LSG0oIRJvWf7utUtKUkQ_jXATr4I5Q7L1HcW3D-uWUUc6Jk9SE8fnyzYE", + "domain": ".service-public.fr", + "path": "/", + "expires": 1733040076.662463, + "size": 314, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "accept-ranges": "bytes", + "age": "0", + "cache-control": "no-store", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ZGFiY2QxOTYtNDkyMC00NjgyLWE1Y2ItMmM1ZDI2YTMzOTI3' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;", + "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com 'nonce-Cv41loWefrR5YmxFrQtqQw=='; frame-src 'self' stats.data.gouv.fr stats.beta.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 07:43:50 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "date": "Sun, 01 Dec 2024 07:46:16 GMT", + "etag": "W/\"3b1e9fba81b69673fd69b787076b4df9\"", + "expires": "0", + "link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-AcN5kJiCfqbrk/SICuAawqTeUR7KQrKpXMeDFL5XZh7x+IBWERL5to8nwE0gapz6; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", + "pragma": "no-cache", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_ConseillersEntreprises_session=UVYyDtS%2F0tZpfrxxMiwcfO5UXZWCFbUiwtWjsclmMh0x4HnO6qsHJ3dq9%2Bs6gboEJz3IRGYgqg2aD%2FPpCR9TJgj06O%2BP%2Be5qejPh7k14BarDqqM3MiboKDgYwwcZhbOuQ2%2BldTyBsmSpm%2BmA3KEmxR5MFsY%2FK9ucQp7L6Zb8SO9%2BkIF31AbWyP%2Fapgpuyce5uBM%2FcVMOA6a3svUjdlm9lLuSxbJzTkOIGq6GM1ZYbpBMZM7n%2FwZeWPMl8Pxoqd1hUTq9ZkXtGLI9csDUdIUEmEOyywdB%2BcFpQQJsy%2FJU77QFAN0%2BbneW--7bVGgVlrOhjpWzmj--BjQZWLCjRAULravNqPY%2BQw%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload", + "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-powered-by": "Next.js", - "x-request-id": "d88a061c-699c-46a3-a515-acaa7e0f6ad5" + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "c4452c90ae5ca56c0f173f7d21c30985\nc4452c90ae5ca56c0f173f7d21c30985", + "x-runtime": "0.045603", + "x-varnish": "4879353", + "x-xss-protection": "0" }, "endpoints": [ { - "hostname": "plusfraichemaville.fr", - "ip": "5.104.101.30", + "hostname": "conseillers-entreprises.service-public.fr", + "ip": "185.231.164.123", "geoip": { "continent": { "code": "EU", @@ -196113,165 +189964,213 @@ } } } - } - ] - }, - "wappalyzer": { - "urls": { - "https://plusfraichemaville.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true }, { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "hostname": "fonts.googleapis.com", + "ip": "142.251.163.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ] + } }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.186.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ] + } }, { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.1.4", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "hostname": "www.googletagmanager.com", + "ip": "142.251.179.97", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true + } }, { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" + "hostname": "pagead2.googlesyndication.com", + "ip": "142.251.167.155", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true - }, + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://conseillers-entreprises.service-public.fr/": { + "status": 200 + } + }, + "technologies": [ { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "godaddy", - "name": "GoDaddy", - "description": "GoDaddy is used as a web host and domain registrar.", - "confidence": 100, - "version": null, - "icon": "GoDaddy.svg", - "website": "https://www.godaddy.com", - "cpe": null, - "categories": [ + "id": 62, + "slug": "paas", + "name": "PaaS" + }, { "id": 88, "slug": "hosting", @@ -196279,76 +190178,6 @@ } ], "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -196356,9 +190185,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://plusfraichemaville.fr/", - "finalUrl": "https://plusfraichemaville.fr/", - "fetchTime": "2024-11-24T07:43:26.684Z", + "requestedUrl": "https://conseillers-entreprises.service-public.fr/", + "finalUrl": "https://conseillers-entreprises.service-public.fr/", + "fetchTime": "2024-12-01T07:45:51.860Z", "runWarnings": [], "categories": { "performance": { @@ -196369,7 +190198,7 @@ "snapshot" ], "id": "performance", - "score": 0.65 + "score": 0.68 }, "accessibility": { "title": "Accessibility", @@ -196390,7 +190219,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": null }, "seo": { "title": "SEO", @@ -196421,53 +190250,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7616, + "numericValue": 4950, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1757, - "firstMeaningfulPaint": 1757, - "largestContentfulPaint": 6994, - "interactive": 7616, - "speedIndex": 3743, - "totalBlockingTime": 233, - "maxPotentialFID": 189, - "cumulativeLayoutShift": 0.027747463650173613, - "cumulativeLayoutShiftMainFrame": 0.027747463650173613, - "totalCumulativeLayoutShift": 0.027747463650173613, + "firstContentfulPaint": 2767, + "firstMeaningfulPaint": 2805, + "largestContentfulPaint": 6925, + "interactive": 4950, + "speedIndex": 3363, + "totalBlockingTime": 123, + "maxPotentialFID": 119, + "cumulativeLayoutShift": 0.0031809699800279404, + "cumulativeLayoutShiftMainFrame": 0.0031809699800279404, + "totalCumulativeLayoutShift": 0.0031809699800279404, "observedTimeOrigin": 0, - "observedTimeOriginTs": 408165025, + "observedTimeOriginTs": 329660419, "observedNavigationStart": 0, - "observedNavigationStartTs": 408165025, - "observedFirstPaint": 702, - "observedFirstPaintTs": 408867233, - "observedFirstContentfulPaint": 702, - "observedFirstContentfulPaintTs": 408867233, - "observedFirstContentfulPaintAllFrames": 702, - "observedFirstContentfulPaintAllFramesTs": 408867233, - "observedFirstMeaningfulPaint": 702, - "observedFirstMeaningfulPaintTs": 408867233, - "observedLargestContentfulPaint": 1107, - "observedLargestContentfulPaintTs": 409271977, - "observedLargestContentfulPaintAllFrames": 1107, - "observedLargestContentfulPaintAllFramesTs": 409271977, - "observedTraceEnd": 4110, - "observedTraceEndTs": 412274900, - "observedLoad": 1519, - "observedLoadTs": 409683602, - "observedDomContentLoaded": 687, - "observedDomContentLoadedTs": 408851629, - "observedCumulativeLayoutShift": 0.027747463650173613, - "observedCumulativeLayoutShiftMainFrame": 0.027747463650173613, - "observedTotalCumulativeLayoutShift": 0.027747463650173613, - "observedFirstVisualChange": 701, - "observedFirstVisualChangeTs": 408866025, - "observedLastVisualChange": 1335, - "observedLastVisualChangeTs": 409500025, - "observedSpeedIndex": 975, - "observedSpeedIndexTs": 409139800 + "observedNavigationStartTs": 329660419, + "observedFirstPaint": 507, + "observedFirstPaintTs": 330167666, + "observedFirstContentfulPaint": 507, + "observedFirstContentfulPaintTs": 330167666, + "observedFirstContentfulPaintAllFrames": 507, + "observedFirstContentfulPaintAllFramesTs": 330167666, + "observedFirstMeaningfulPaint": 507, + "observedFirstMeaningfulPaintTs": 330167666, + "observedLargestContentfulPaint": 1030, + "observedLargestContentfulPaintTs": 330690202, + "observedLargestContentfulPaintAllFrames": 1030, + "observedLargestContentfulPaintAllFramesTs": 330690202, + "observedTraceEnd": 3392, + "observedTraceEndTs": 333052372, + "observedLoad": 947, + "observedLoadTs": 330607601, + "observedDomContentLoaded": 560, + "observedDomContentLoadedTs": 330220234, + "observedCumulativeLayoutShift": 0.0031809699800279404, + "observedCumulativeLayoutShiftMainFrame": 0.0031809699800279404, + "observedTotalCumulativeLayoutShift": 0.0031809699800279404, + "observedFirstVisualChange": 509, + "observedFirstVisualChangeTs": 330169419, + "observedLastVisualChange": 1043, + "observedLastVisualChangeTs": 330703419, + "observedSpeedIndex": 842, + "observedSpeedIndexTs": 330502446 }, { "lcpInvalidated": false @@ -196485,23 +190314,23 @@ "type": "debugdata", "items": [ { - "numRequests": 89, - "numScripts": 32, - "numStylesheets": 4, - "numFonts": 6, - "numTasks": 2008, + "numRequests": 54, + "numScripts": 8, + "numStylesheets": 7, + "numFonts": 4, + "numTasks": 1346, "numTasksOver10ms": 7, - "numTasksOver25ms": 4, - "numTasksOver50ms": 1, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.896, - "throughput": 18095338.399936087, - "maxRtt": 86.637, - "maxServerLatency": 106.622, - "totalByteWeight": 1429588, - "totalTaskTime": 491.4519999999944, - "mainDocumentTransferSize": 37158 + "rtt": 0, + "throughput": 20080617.39187057, + "maxRtt": 89.73899999999999, + "maxServerLatency": 41.67100000000001, + "totalByteWeight": 1036569, + "totalTaskTime": 314.77299999999684, + "mainDocumentTransferSize": 2105 } ] } @@ -196511,17 +190340,17 @@ ], "screenshot": true, "stats": { - "grade": "F" + "grade": "A" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://plusfraichemaville.fr/accessibilite" + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://conseillers-entreprises.service-public.fr/accessibilite" }, "declaration-rgpd": [ { @@ -196531,34 +190360,94 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://plusfraichemaville.fr/mentions-legales" + "declarationUrl": "https://conseillers-entreprises.service-public.fr/mentions_legales" }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, + "mention": "Mentions d'information", + "maxScore": 7, + "score": 6, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://plusfraichemaville.fr/politique-de-confidentialite#cookies" + "missingTrackers": [ + "googlefonts" + ], + "declarationUrl": "https://conseillers-entreprises.service-public.fr/mentions_d_information" } ], - "betagouv": null, + "betagouv": { + "id": "conseillers-entreprises", + "type": "startup", + "attributes": { + "name": "Conseillers-Entreprises", + "pitch": "Mettre en relation les TPE & PME et le bon interlocuteur", + "stats_url": "https://conseillers-entreprises.service-public.fr/stats", + "link": "https://conseillers-entreprises.service-public.fr", + "repository": "https://github.com/betagouv/conseillers-entreprises", + "contact": "mathieu.gens@beta.gouv.fr", + "content_url_encoded_markdown": "%2A%2ATPE%20PME%2C%20vous%20avez%20un%20projet%2C%20une%20difficult%C3%A9%20ou%20une%20question%20du%20quotidien%20%3F%C2%A0%C3%89changer%20avec%20LE%20conseiller%20qui%20peut%20vous%20aider.%2A%2A%0A%0ALe%20service%20public%20%5BConseillers-Entreprises%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%29%20permet%20%C3%A0%20l%E2%80%99%C3%89tat%20et%20%C3%A0%20l%E2%80%99ensemble%20des%20organismes%20publics%20et%20parapublics%20de%20d%C3%A9velopper%20leur%20r%C3%B4le%20de%20conseil%20aupr%C3%A8s%20des%20TPE%20%26%20PME.%0A%0A%23%23%20Le%20probl%C3%A8me%20%3A%20des%20entrepreneurs%20isol%C3%A9s%2C%20des%20administrations%20cloisonn%C3%A9es%0A%0APlus%20de%202%20000%20aides%20publiques%20aux%20entreprises%20existent%2C%20ainsi%20que%20de%20multiples%20accompagnements%20par%20diff%C3%A9rents%20organismes%20publics%20et%20parapublics.%20Malheureusement%20ces%20dispositifs%20restent%20largement%20m%C3%A9connus%20de%20leurs%20destinataires%2C%20en%20particulier%20des%20TPE%20%26%20PME.%20La%20lisibilit%C3%A9%20des%20aides%20devient%20%C3%A9galement%20de%20plus%20en%20plus%20complexe.%0A%0AEnsuite%2C%20les%20chefs%20d%E2%80%99entreprise%20ne%20savent%20pas%20toujours%20%C3%A0%20qui%20adresser%20leurs%20demandes%20face%20%C3%A0%20la%20diversit%C3%A9%20d%E2%80%99acteurs%20publics.%20Identifier%20le%20bon%20interlocuteur%20dans%20la%20bonne%20administration%20et%20parvenir%20%C3%A0%20le%20joindre%20rel%C3%A8ve%20parfois%20du%20parcours%20du%20combattant.%C2%A0%0A%0AEnfin%2C%20les%20conseillers%20charg%C3%A9s%20d%E2%80%99accompagner%20les%20entreprises%20sont%20confront%C3%A9s%20%C3%A0%20un%20probl%C3%A8me%20de%20cloisonnement%20de%20leurs%20champs%20d%E2%80%99intervention.%0A%0A%23%23%20La%20solution%20%3A%20un%20service%20de%20mise%20en%20relation%20pour%20un%20conseil%20personnalis%C3%A9%20et%20de%20proximit%C3%A9%0A%0A%2A%2AConseillers-Entreprises%20permet%20d%E2%80%99offrir%20un%20conseil%20personnalise%CC%81%20et%20de%20proximite%CC%81%20aux%20TPE%20%26%20PME.%20Le%20conseil%20humain%20est%20au%20c%C5%93ur%20de%20ce%20service%20pour%20permettre%20au%20chef%20d%E2%80%99entreprise%20de%20mobiliser%20le%20bon%20accompagnement%20en%20fonction%20de%20ses%20besoins.%2A%2A%0A%0A%2A%2APort%C3%A9%20par%20le%20Minist%C3%A8re%20de%20l%E2%80%99%C3%89conomie%20et%20le%20Minist%C3%A8re%20du%20Travail%2C%20le%20service%20compte%20plus%20de%2010%20000%20conseillers%20charge%CC%81s%20d%E2%80%99accompagner%20les%20entreprises%20au%20sein%20de%2040%20partenaires%20publics%20et%20parapublics.%2A%2A%0A%0AGra%CC%82ce%20a%CC%80%20ce%20partenariat%20ine%CC%81dit%2C%20le%20service%20couvre%20%2A%2Aune%20grande%20varie%CC%81te%CC%81%20de%20sujets%2A%2A%20%3A%20recrutement%2C%20formation%2C%20organisation%20du%20travail%2C%20investissement%2C%20droit%20du%20travail%2C%20difficulte%CC%81s%20financie%CC%80res%2C%20appui%20au%20de%CC%81veloppement%2C%20nume%CC%81rique%2C%20transmission%20reprise%2C%20sante%CC%81%20et%20se%CC%81curite%CC%81%20au%20travail%2C%20transition%20e%CC%81cologique%20%26%20RSE...%0A%0ALe%20chef%20d%E2%80%99entreprise%20choisit%20un%20sujet%20sur%20le%20site%20et%20indique%20en%20quelques%20phrases%20sa%20proble%CC%81matique.%20Apre%CC%80s%20validation%2C%20sa%20demande%20est%20automatiquement%20transmise%20au%28x%29%20conseiller%28s%29%20compe%CC%81tent%28s%29%20sur%20son%20territoire%20pour%20l%E2%80%99accompagner.%20Ces%20conseillers%20le%20rappellent%20et%20lui%20proposent%2C%20lorsque%20les%20conditions%20sont%20re%CC%81unies%2C%20l%E2%80%99accompagnement%20le%20plus%20adapte%CC%81%20a%CC%80%20sa%20situation.%0A%0APour%20chaque%20proble%CC%81matique%2C%20les%20mises%20en%20relation%20avec%20les%20conseillers%20sont%20conc%CC%A7ues%20dans%20une%20logique%20de%20comple%CC%81mentarite%CC%81%20des%20expertises.%20Par%20exemple%2C%20un%20artisan%20rencontrant%20des%20difficulte%CC%81s%20financie%CC%80res%20peut%20e%CC%82tre%20accompagne%CC%81%20par%20une%20personne%20de%20la%20Banque%20de%20France%20%28diagnostic%20financier%29%2C%20de%20la%20Chambre%20des%20me%CC%81tiers%20et%20de%20l%E2%80%99artisanat%20%28identification%20d%E2%80%99une%20aide%20re%CC%81gionale%20ou%20locale%29%2C%20de%20l%E2%80%99Urssaf%20%28e%CC%81talement%20des%20cotisations%20sociales%29%20et%20de%20la%20DGFIP%20%28dettes%20fiscales%29.%20Ce%20fonctionnement%20permet%20d%E2%80%99apporter%20collectivement%20%2A%2Aune%20re%CC%81ponse%20publique%20plus%20efficace%2A%2A%20a%CC%80%20une%20situation%20d%E2%80%99entreprise.%0A%0AUn%20%2A%2Asuivi%20qualite%CC%81%2A%2A%20est%20assure%CC%81%20par%20l%E2%80%99e%CC%81quipe%20responsable%20du%20service%20afin%20qu%E2%80%99aucune%20demande%20d%E2%80%99entreprise%20ne%20reste%20sans%20re%CC%81ponse.%0A%0A%23%23%20Les%20perspectives%20%3A%20mesure%20des%20attentes%20de%20terrain%20et%20ajustement%20des%20politiques%20publiques%0A%0AEn%20partant%20des%20besoins%20exprim%C3%A9s%20directement%20par%20les%20TPE%20%26%20PME%2C%20le%20service%20permet%20de%20nourrir%20l%E2%80%99%C3%89tat%20et%20ses%20partenaires%20dans%20l%27am%C3%A9lioration%20des%20politiques%20publiques.%20Les%20attentes%20terrain%20des%20entreprises%20constituent%20en%20effet%20une%20pr%C3%A9cieuse%20base%20de%20donn%C3%A9es%20pour%20ajuster%20le%20p%C3%A9rim%C3%A8tre%20ou%20les%20modalit%C3%A9s%20de%20certains%20accompagnements.%C2%A0%0A%0ALes%20besoins%20des%20entreprises%20r%C3%A9v%C3%A8lent%20parfois%20l%E2%80%99absence%20de%20r%C3%A9ponse%20de%20service%20public%20sur%20des%20probl%C3%A9matiques%20pourtant%20r%C3%A9currentes.%20Ils%20sont%20alors%20exploit%C3%A9s%20en%20quantit%C3%A9%20pour%20concevoir%20%C3%A0%20l%E2%80%99avenir%20de%20nouveaux%20accompagnements.%20Ces%20derniers%20sont%20ensuite%20d%C3%A9ploy%C3%A9s%20au%20travers%20du%20service%20avec%20l%E2%80%99apparition%20d%E2%80%99un%20nouveau%20sujet%20sur%20le%20site%20ou%20d%E2%80%99une%20expertise%20compl%C3%A9mentaire%20au%20sein%20d%E2%80%99un%20sujet.%20Cette%20boucle%20vertueuse%20permet%20de%20d%C3%A9multiplier%20l%E2%80%99impact%20du%20service.%0A%0APar%20exemple%2C%20les%20conditions%20de%20travail%20ou%20la%20r%C3%A9glementation%20relative%20aux%20%C3%A9tablissements%20recevant%20du%20public%20%28ERP%29%20font%20l%E2%80%99objet%20de%20r%C3%A9flexions%20pour%20am%C3%A9liorer%20la%20r%C3%A9ponse%20de%20service%20public.%0A%0A%0A%0A%23%23%20La%20m%C3%A9thode%20%3A%20une%20petite%20%C3%A9quipe%20inspir%C3%A9e%20par%20vous%2C%20chefs%20d%E2%80%99entreprise%20et%20agents%20publics%0A%0ALe%20service%20a%20%C3%A9t%C3%A9%20construit%20pas%20%C3%A0%20pas%2C%20en%20confrontant%20nos%20hypoth%C3%A8ses%20de%20travail%20avec%20la%20r%C3%A9alit%C3%A9%20du%20terrain.%20Notre%20d%C3%A9marche%20repose%20sur%20des%20%C3%A9changes%20nourris%20avec%20les%20chefs%20d%E2%80%99entreprise%20et%20les%20conseillers%20d%E2%80%99entreprises%20sur%20les%20difficult%C3%A9s%20rencontr%C3%A9es%20par%20chacun%20au%20quotidien.%0A%0AL%E2%80%99ensemble%20des%20%C3%A9volutions%20du%20service%20sont%20guid%C3%A9es%20par%20l%E2%80%99impact%2C%20afin%20de%20s%E2%80%99assurer%20de%20leur%20pertinence%20pour%20nos%20utilisateurs.%0A%0A%23%23%20Contactez-nous%0A%0A%5BL%E2%80%99%C3%A9quipe%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%2Fequipe%29%20se%20tient%20%C3%A0%20votre%20disposition.%20Pour%20toute%20question%20sur%20le%20service%2C%20%C3%A9crivez-nous%20%C3%A0%20l%E2%80%99adresse%20%5Bcontact%40conseillers-entreprises.service-public.fr%5D%28mailto%3Acontact%40conseillers-entreprises.service-public.fr%29", + "events": [ + { + "name": "national_impact", + "date": "2022-12-31", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2017-09-01", + "end": "2019-02-28" + }, + { + "name": "construction", + "start": "2019-03-01", + "end": "2021-08-31" + }, + { + "name": "acceleration", + "start": "2021-09-01", + "end": "2022-06-20" + }, + { + "name": "success", + "start": "2022-06-21", + "end": "" + } + ], + "sponsors": [ + "dge", + "dgefp" + ], + "thematiques": [ + "Entreprises" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/conseillers-entreprises-service-public-fr/", + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://plusfraichemaville.fr", - "size": 2090.05, - "nodes": 698, - "requests": 91, - "grade": "D", - "score": 42, - "ges": 2.16, - "water": 3.24, + "url": "https://conseillers-entreprises.service-public.fr", + "size": 1115.663, + "nodes": 370, + "requests": 48, + "grade": "C", + "score": 68, + "ges": 1.64, + "water": 2.46, "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:40:27.626961", - "page_type": "website" + "date": "2024-12-01 07:42:55.150256", + "page_type": null } ], "sonarcloud": null, @@ -196566,82 +190455,75 @@ "detected": true }, "summary": { - "httpGrade": "A+", - "apdex": 0.992, + "httpGrade": "B+", + "apdex": 1, "apdexGrade": "A", - "uptime": 100, + "uptime": 99.991, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-31T20:41:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.65, - "lighthouse_performanceGrade": "C", + "testsslExpireDate": "2025-05-06T21:59:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "C", + "cookiesCount": 4, + "trackersGrade": "C", + "trackersCount": 6, + "lighthouse_performance": 0.68, + "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "F", + "statsGrade": "A", + "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "C", + "declaration-a11y": "B", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", "dsfrGrade": "A" } }, { "404": null, - "url": "https://mission-transition-ecologique.beta.gouv.fr", - "category": "ademe", - "betaId": "transition-ecologique-des-entreprises", + "url": "https://plusfraichemaville.fr", + "category": "startup", + "betaId": "rafraichir.les.villes", "tags": [ "production", "ADEME" ], - "repositories": [ - "betagouv/transition-ecologique-entreprises-widget" - ], - "pages": [ - "/annuaire" - ], "http": { - "url": "https://mission-transition-ecologique.beta.gouv.fr", + "url": "https://plusfraichemaville.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:23:57 GMT", + "end_time": "Sun, 20 Oct 2024 03:06:12 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { - "Access-Control-Allow-Origin": "*", - "Cache-Control": "no-cache", + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 06:23:56 GMT", - "Etag": "W/\"a14-w8Nf3/EpSzBLidAUBLpmXZlKP/A\"", - "Expect-CT": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 03:06:09 GMT", "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "ALLOW-FROM https://conseillers-entreprises.service-public.fr", - "X-Request-ID": "2e71a181-2e60-4877-9b7e-b52341ce230a", + "X-Frame-Options": "DENY", + "X-Powered-By": "Next.js", + "X-Request-ID": "ebdca30d-e6dc-4cf0-9703-b34eb98d3162", + "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-NTFlNTI3ZGMtZGFiZS00Y2Y2LWE0OWYtOTkzZGVmMDFlZTBj' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ ; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr https://cloud.contact.ademe.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ ;", "strict-transport-security": "max-age=31536000" }, - "scan_id": 57052794, + "scan_id": 57048560, "score": 105, - "start_time": "Sun, 20 Oct 2024 06:23:55 GMT", + "start_time": "Sun, 20 Oct 2024 03:06:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -196657,58 +190539,48 @@ "'self'" ], "connect-src": [ - "https://stats.beta.gouv.fr", - "https://eu.i.posthog.com", - "https://api.typeform.com", - "https://sentry.incubateur.net", - "'self'", - "https://conseillers-entreprises.service-public.fr", - "https://embed.typeform.com" + "https://sentry.incubateur.net/", + "https://api-adresse.data.gouv.fr/search/", + "https://stats.beta.gouv.fr/matomo.php", + "'self'" ], "default-src": [ - "'none'" + "'self'" ], "font-src": [ + "https://fonts.gstatic.com/", "'self'" ], "form-action": [ "'self'" ], "frame-ancestors": [ - "https://conseillers-entreprises.service-public.fr", - "'self'" + "'none'" ], "frame-src": [ - "https://conseillers-entreprises.service-public.fr", - "https://form.typeform.com", - "'self'" + "https://cloud.contact.ademe.fr", + "https://stats.plusfraichemaville.fr" ], "img-src": [ "data:", + "blob:", + "https://plusfraichemaville.s3.fr-par.scw.cloud/", "'self'" ], "object-src": [ - "'self'" + "'none'" ], "script-src": [ - "'self'" - ], - "script-src-elem": [ - "https://stats.beta.gouv.fr", - "https://eu.i.posthog.com", - "'unsafe-inline'", - "https://eu-assets.i.posthog.com", - "'self'", - "https://embed.typeform.com" + "'nonce-ntflnti3zgmtzgfizs00y2y2lwe0owytotkzzgvmmdflztbj'", + "'strict-dynamic'" ], "style-src": [ "'unsafe-inline'", - "https://embed.typeform.com", + "https://fonts.googleapis.com", "'self'" ], - "worker-src": [ - "blob:", - "'self'" + "upgrade-insecure-requests": [ + "'none'" ] }, "http": true, @@ -196716,12 +190588,12 @@ "numPolicies": 1, "policy": { "antiClickjacking": true, - "defaultNone": true, + "defaultNone": false, "insecureBaseUri": false, "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, - "strictDynamic": false, + "strictDynamic": true, "unsafeEval": false, "unsafeInline": false, "unsafeInlineStyle": true, @@ -196750,25 +190622,25 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "*", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://mission-transition-ecologique.beta.gouv.fr/", + "destination": "https://plusfraichemaville.fr/", "redirects": true, "route": [ - "http://mission-transition-ecologique.beta.gouv.fr/", - "https://mission-transition-ecologique.beta.gouv.fr/" + "http://plusfraichemaville.fr/", + "https://plusfraichemaville.fr/" ], "status_code": 200 }, @@ -196831,7 +190703,7 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" + "data": "DENY" }, "pass": true, "result": "x-frame-options-implemented-via-csp", @@ -196852,14 +190724,14 @@ } }, "updownio": { - "token": "h4wa", - "url": "https://mission-transition-ecologique.beta.gouv.fr", + "token": "0sll", + "url": "https://plusfraichemaville.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T02:50:03Z", + "up_since": "2024-11-30T00:16:44Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -196871,36 +190743,36 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T08:01:58Z", - "next_check_at": "2024-11-24T08:02:57Z", + "last_check_at": "2024-12-01T07:53:10Z", + "next_check_at": "2024-12-01T07:54:10Z", "created_at": "2024-09-15T01:37:03Z", "mute_until": null, - "favicon_url": "https://mission-transition-ecologique.beta.gouv.fr/favicon.ico", + "favicon_url": "https://plusfraichemaville.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T08:02:01Z", - "expires_at": "2025-02-09T08:59:48Z", + "tested_at": "2024-12-01T07:44:12Z", + "expires_at": "2024-12-31T20:41:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.992, "timings": { "redirect": 0, - "namelookup": 134, - "connection": 135, - "handshake": 141, - "response": 139, - "total": 549 + "namelookup": 20, + "connection": 108, + "handshake": 123, + "response": 158, + "total": 410 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "mission-transition-ecologique.beta.gouv.fr", + "host": "plusfraichemaville.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -196926,77 +190798,77 @@ "testssl": [ { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197004,7 +190876,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197012,7 +190884,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197020,7 +190892,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197028,7 +190900,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197036,7 +190908,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197044,490 +190916,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-11-11 08:59" + "finding": "2024-10-02 20:41" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-02-09 08:59" + "finding": "2024-12-31 20:41" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732435109" + "finding": "1733039411" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;" - }, - { - "id": "Expect-CT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ODdkMTA2YjYtM2U4ZS00N2Q3LTk1MjgtZDc4ZGRkNjAxNzA5' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -197535,7 +191393,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -197544,7 +191402,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -197553,7 +191411,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -197562,7 +191420,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -197571,7 +191429,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -197579,7 +191437,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -197588,7 +191446,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -197597,16 +191455,16 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -197615,14 +191473,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -197631,7 +191489,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -197640,7 +191498,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -197649,16 +191507,16 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -197667,7 +191525,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -197676,7 +191534,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -197685,7 +191543,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -197694,7 +191552,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -197703,7 +191561,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -197712,392 +191570,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "plusfraichemaville.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198105,7 +191963,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198113,7 +191971,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198121,7 +191979,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198129,7 +191987,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198137,7 +191995,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198145,490 +192003,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-11-11 08:59" + "finding": "2024-10-02 20:41" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2025-02-09 08:59" + "finding": "2024-12-31 20:41" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732435162" + "finding": "1733039465" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;" - }, - { - "id": "Expect-CT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ODdkMTA2YjYtM2U4ZS00N2Q3LTk1MjgtZDc4ZGRkNjAxNzA5' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -198636,7 +192480,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -198645,7 +192489,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -198654,7 +192498,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -198663,7 +192507,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -198672,7 +192516,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -198680,7 +192524,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -198689,7 +192533,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -198698,16 +192542,16 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -198716,14 +192560,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -198732,7 +192576,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -198741,7 +192585,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -198750,16 +192594,16 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -198768,7 +192612,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -198777,7 +192621,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -198786,7 +192630,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -198795,7 +192639,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -198804,7 +192648,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -198813,392 +192657,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "plusfraichemaville.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -199206,7 +193050,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -199214,7 +193058,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -199222,7 +193066,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -199230,7 +193074,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -199238,7 +193082,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -199246,490 +193090,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-11-11 08:59" + "finding": "2024-10-02 20:41" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-02-09 08:59" + "finding": "2024-12-31 20:41" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732435214" + "finding": "1733039519" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;" - }, - { - "id": "Expect-CT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ODdkMTA2YjYtM2U4ZS00N2Q3LTk1MjgtZDc4ZGRkNjAxNzA5' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -199737,7 +193567,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -199746,7 +193576,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -199755,7 +193585,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -199764,7 +193594,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -199773,7 +193603,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -199781,7 +193611,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -199790,7 +193620,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -199799,16 +193629,16 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -199817,14 +193647,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -199833,7 +193663,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -199842,7 +193672,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -199851,16 +193681,16 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199869,7 +193699,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199878,7 +193708,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -199887,7 +193717,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -199896,7 +193726,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -199905,7 +193735,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -199914,392 +193744,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "plusfraichemaville.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200307,7 +194137,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200315,7 +194145,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200323,7 +194153,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200331,7 +194161,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -200339,7 +194169,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -200347,490 +194177,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-11-11 08:59" + "finding": "2024-10-02 20:41" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-02-09 08:59" + "finding": "2024-12-31 20:41" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732435267" + "finding": "1733039576" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;" - }, - { - "id": "Expect-CT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ODdkMTA2YjYtM2U4ZS00N2Q3LTk1MjgtZDc4ZGRkNjAxNzA5' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -200838,7 +194654,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -200847,7 +194663,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -200856,7 +194672,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -200865,7 +194681,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -200874,7 +194690,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -200882,7 +194698,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -200891,7 +194707,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -200900,16 +194716,16 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -200918,14 +194734,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -200934,7 +194750,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -200943,7 +194759,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -200952,16 +194768,16 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BE81ADDA7349AD2A253CAB2019B51A03B41EBE0930878B0469AFFC02F51AA4EB" }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -200970,7 +194786,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -200979,7 +194795,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -200988,7 +194804,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -200997,7 +194813,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -201006,7 +194822,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -201015,356 +194831,377 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "plusfraichemaville.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "215" + "finding": "222" } ], "thirdparties": { - "trackers": [ + "trackers": [], + "cookies": [ { - "type": "unknown", - "url": "https://eu.i.posthog.com/decide/?v=3&ip=1&_=1732435034170&ver=1.170.1&compression=base64" + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Fplusfraichemaville.fr%2Fespace-projet%2Fcreation-projet", + "domain": "plusfraichemaville.fr", + "path": "/", + "expires": -1, + "size": 100, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 }, { - "type": "unknown", - "url": "https://eu-assets.i.posthog.com/static/recorder.js?v=1.170.1" + "name": "__Host-next-auth.csrf-token", + "value": "b515a950d86f12aed5225c0ef72eb908b9321326485bc25389401a1af8024605%7C9b2e9886dbb8f28547ef2f30ba8a4ad3953ed7e59b1c9e15495d71e0d09d9189", + "domain": "plusfraichemaville.fr", + "path": "/", + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], - "cookies": [], "headers": { - "access-control-allow-origin": "*", - "cache-control": "no-cache", + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", - "content-security-policy": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 07:57:13 GMT", - "etag": "W/\"a14-QzoGjg0Lu6wRtbFprLQ7++qpxu0\"", - "expect-ct": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;", + "content-security-policy": "default-src 'self'; script-src 'self' https://stats.beta.gouv.fr 'nonce-ODdkMTA2YjYtM2U4ZS00N2Q3LTk1MjgtZDc4ZGRkNjAxNzA5' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' blob: data: https://plusfraichemaville.s3.fr-par.scw.cloud/ https://*.hsforms.com https://*.hubspot.com; font-src 'self' https://fonts.gstatic.com/; object-src 'none'; base-uri 'self'; form-action 'self'; frame-src https://stats.plusfraichemaville.fr; frame-ancestors 'none'; upgrade-insecure-requests; connect-src 'self' https://sentry.incubateur.net/ https://stats.beta.gouv.fr/matomo.php https://api-adresse.data.gouv.fr/search/ https://*.hscollectedforms.net;", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 07:48:58 GMT", "strict-transport-security": "max-age=31536000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "ALLOW-FROM https://conseillers-entreprises.service-public.fr", - "x-request-id": "3825ebd4-ce4c-4584-8692-849b609ef458" + "x-frame-options": "DENY", + "x-powered-by": "Next.js", + "x-request-id": "c75b832e-1293-43a5-889f-597029827bcc" }, "endpoints": [ { - "hostname": "mission-transition-ecologique.beta.gouv.fr", + "hostname": "plusfraichemaville.fr", "ip": "148.253.75.120", "geoip": { "continent": { @@ -201418,141 +195255,16 @@ } } } - }, - { - "hostname": "eu.i.posthog.com", - "ip": "35.157.7.134", - "geoip": { - "city": { - "geoname_id": 2925533, - "names": { - "de": "Frankfurt am Main", - "en": "Frankfurt am Main", - "es": "Francfort", - "fr": "Francfort-sur-le-Main", - "ja": "フランクフルト・アム・マイン", - "pt-BR": "Frankfurt am Main", - "ru": "Франкфурт", - "zh-CN": "法兰克福" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2921044, - "is_in_european_union": true, - "iso_code": "DE", - "names": { - "de": "Deutschland", - "en": "Germany", - "es": "Alemania", - "fr": "Allemagne", - "ja": "ドイツ連邦共和国", - "pt-BR": "Alemanha", - "ru": "ФРГ", - "zh-CN": "德国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 50.1187, - "longitude": 8.6842, - "time_zone": "Europe/Berlin" - }, - "postal": { - "code": "60313" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 2905330, - "iso_code": "HE", - "names": { - "de": "Hessen", - "en": "Hesse", - "es": "Hessen", - "fr": "Hesse", - "ja": "ヘッセン州", - "pt-BR": "Hesse", - "ru": "Гессен", - "zh-CN": "黑森州" - } - } - ] - } - }, - { - "hostname": "eu-assets.i.posthog.com", - "ip": "104.22.58.181", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } } ] }, "wappalyzer": { "urls": { - "https://mission-transition-ecologique.beta.gouv.fr/": { + "https://plusfraichemaville.fr/": { "status": 200 } }, "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, { "slug": "sentry", "name": "Sentry", @@ -201572,14 +195284,14 @@ "rootPath": true }, { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -201589,19 +195301,51 @@ ] }, { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.1.4", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } ], "rootPath": true @@ -201625,24 +195369,19 @@ "rootPath": true }, { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true @@ -201665,6 +195404,59 @@ ], "rootPath": true }, + { + "slug": "godaddy", + "name": "GoDaddy", + "description": "GoDaddy is used as a web host and domain registrar.", + "confidence": 100, + "version": null, + "icon": "GoDaddy.svg", + "website": "https://www.godaddy.com", + "cpe": null, + "categories": [ + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, { "slug": "open-graph", "name": "Open Graph", @@ -201682,6 +195474,23 @@ } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -201689,9 +195498,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/", - "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/", - "fetchTime": "2024-11-24T07:56:28.395Z", + "requestedUrl": "https://plusfraichemaville.fr/", + "finalUrl": "https://plusfraichemaville.fr/", + "fetchTime": "2024-12-01T07:48:33.293Z", "runWarnings": [], "categories": { "performance": { @@ -201702,7 +195511,7 @@ "snapshot" ], "id": "performance", - "score": 0.39 + "score": 0.64 }, "accessibility": { "title": "Accessibility", @@ -201713,161 +195522,8 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", "score": 1 }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 8416, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 4718, - "firstMeaningfulPaint": 4842, - "largestContentfulPaint": 5190, - "interactive": 8416, - "speedIndex": 4718, - "totalBlockingTime": 1043, - "maxPotentialFID": 826, - "cumulativeLayoutShift": 0.08598989105224608, - "cumulativeLayoutShiftMainFrame": 0.08598989105224608, - "totalCumulativeLayoutShift": 0.08598989105224608, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 368320530, - "observedNavigationStart": 0, - "observedNavigationStartTs": 368320530, - "observedFirstPaint": 962, - "observedFirstPaintTs": 369282281, - "observedFirstContentfulPaint": 962, - "observedFirstContentfulPaintTs": 369282281, - "observedFirstContentfulPaintAllFrames": 962, - "observedFirstContentfulPaintAllFramesTs": 369282281, - "observedFirstMeaningfulPaint": 962, - "observedFirstMeaningfulPaintTs": 369282281, - "observedLargestContentfulPaint": 962, - "observedLargestContentfulPaintTs": 369282281, - "observedLargestContentfulPaintAllFrames": 962, - "observedLargestContentfulPaintAllFramesTs": 369282281, - "observedTraceEnd": 3805, - "observedTraceEndTs": 372125223, - "observedLoad": 1407, - "observedLoadTs": 369727374, - "observedDomContentLoaded": 945, - "observedDomContentLoadedTs": 369265669, - "observedCumulativeLayoutShift": 0.08598989105224608, - "observedCumulativeLayoutShiftMainFrame": 0.08598989105224608, - "observedTotalCumulativeLayoutShift": 0.08598989105224608, - "observedFirstVisualChange": 964, - "observedFirstVisualChangeTs": 369284530, - "observedLastVisualChange": 1448, - "observedLastVisualChangeTs": 369768530, - "observedSpeedIndex": 975, - "observedSpeedIndexTs": 369295561 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 41, - "numScripts": 4, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 1532, - "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 3, - "numTasksOver100ms": 3, - "numTasksOver500ms": 0, - "rtt": 0.8669999999999999, - "throughput": 18972486.997176908, - "maxRtt": 90.777, - "maxServerLatency": 9.296999999999997, - "totalByteWeight": 1463208, - "totalTaskTime": 629.9549999999938, - "mainDocumentTransferSize": 1687 - } - ] - } - } - } - }, - { - "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", - "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", - "fetchTime": "2024-11-24T07:56:40.541Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.23 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.94 - }, "best-practices": { "title": "Best Practices", "supportedModes": [ @@ -201897,7 +195553,7 @@ "navigation" ], "id": "pwa", - "score": 0.2 + "score": 0.4 } }, "audits": { @@ -201907,53 +195563,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9788, + "numericValue": 7644, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4692, - "firstMeaningfulPaint": 5061, - "largestContentfulPaint": 6802, - "interactive": 9788, - "speedIndex": 6523, - "totalBlockingTime": 2372, - "maxPotentialFID": 835, - "cumulativeLayoutShift": 0.13139557690090603, - "cumulativeLayoutShiftMainFrame": 0.13139557690090603, - "totalCumulativeLayoutShift": 0.13139557690090603, + "firstContentfulPaint": 1720, + "firstMeaningfulPaint": 1720, + "largestContentfulPaint": 6954, + "interactive": 7644, + "speedIndex": 3802, + "totalBlockingTime": 235, + "maxPotentialFID": 203, + "cumulativeLayoutShift": 0.027747463650173613, + "cumulativeLayoutShiftMainFrame": 0.027747463650173613, + "totalCumulativeLayoutShift": 0.027747463650173613, "observedTimeOrigin": 0, - "observedTimeOriginTs": 380451749, + "observedTimeOriginTs": 325481304, "observedNavigationStart": 0, - "observedNavigationStartTs": 380451749, - "observedFirstPaint": 1218, - "observedFirstPaintTs": 381669977, - "observedFirstContentfulPaint": 1218, - "observedFirstContentfulPaintTs": 381669977, - "observedFirstContentfulPaintAllFrames": 1218, - "observedFirstContentfulPaintAllFramesTs": 381669977, - "observedFirstMeaningfulPaint": 1218, - "observedFirstMeaningfulPaintTs": 381669977, - "observedLargestContentfulPaint": 1218, - "observedLargestContentfulPaintTs": 381669977, - "observedLargestContentfulPaintAllFrames": 1218, - "observedLargestContentfulPaintAllFramesTs": 381669977, - "observedTraceEnd": 5235, - "observedTraceEndTs": 385686279, - "observedLoad": 1571, - "observedLoadTs": 382023125, - "observedDomContentLoaded": 1187, - "observedDomContentLoadedTs": 381638998, - "observedCumulativeLayoutShift": 0.13139557690090603, - "observedCumulativeLayoutShiftMainFrame": 0.13139557690090603, - "observedTotalCumulativeLayoutShift": 0.13139557690090603, - "observedFirstVisualChange": 1216, - "observedFirstVisualChangeTs": 381667749, - "observedLastVisualChange": 2049, - "observedLastVisualChangeTs": 382500749, - "observedSpeedIndex": 1250, - "observedSpeedIndexTs": 381701398 + "observedNavigationStartTs": 325481304, + "observedFirstPaint": 694, + "observedFirstPaintTs": 326175278, + "observedFirstContentfulPaint": 694, + "observedFirstContentfulPaintTs": 326175278, + "observedFirstContentfulPaintAllFrames": 694, + "observedFirstContentfulPaintAllFramesTs": 326175278, + "observedFirstMeaningfulPaint": 694, + "observedFirstMeaningfulPaintTs": 326175278, + "observedLargestContentfulPaint": 1110, + "observedLargestContentfulPaintTs": 326591673, + "observedLargestContentfulPaintAllFrames": 1110, + "observedLargestContentfulPaintAllFramesTs": 326591673, + "observedTraceEnd": 4103, + "observedTraceEndTs": 329583837, + "observedLoad": 1516, + "observedLoadTs": 326996986, + "observedDomContentLoaded": 678, + "observedDomContentLoadedTs": 326159646, + "observedCumulativeLayoutShift": 0.027747463650173613, + "observedCumulativeLayoutShiftMainFrame": 0.027747463650173613, + "observedTotalCumulativeLayoutShift": 0.027747463650173613, + "observedFirstVisualChange": 705, + "observedFirstVisualChangeTs": 326186304, + "observedLastVisualChange": 1338, + "observedLastVisualChangeTs": 326819304, + "observedSpeedIndex": 978, + "observedSpeedIndexTs": 326459608 }, { "lcpInvalidated": false @@ -201971,23 +195627,23 @@ "type": "debugdata", "items": [ { - "numRequests": 35, - "numScripts": 4, - "numStylesheets": 1, - "numFonts": 4, - "numTasks": 2006, - "numTasksOver10ms": 8, - "numTasksOver25ms": 6, - "numTasksOver50ms": 5, - "numTasksOver100ms": 4, + "numRequests": 89, + "numScripts": 32, + "numStylesheets": 4, + "numFonts": 6, + "numTasks": 1966, + "numTasksOver10ms": 6, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0.9999999999999999, - "throughput": 33808067.62067952, - "maxRtt": 91.377, - "maxServerLatency": 23.892000000000003, - "totalByteWeight": 3657754, - "totalTaskTime": 1350.5890000000113, - "mainDocumentTransferSize": 1696 + "rtt": 82.193, + "throughput": 17607628.83725158, + "maxRtt": 86.127, + "maxServerLatency": 69.66099999999999, + "totalByteWeight": 1429567, + "totalTaskTime": 476.4659999999965, + "mainDocumentTransferSize": 37114 } ] } @@ -201997,17 +195653,17 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/accessibilite" + "declarationUrl": "https://plusfraichemaville.fr/accessibilite" }, "declaration-rgpd": [ { @@ -202017,7 +195673,7 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales" + "declarationUrl": "https://plusfraichemaville.fr/mentions-legales" }, { "slug": "pc", @@ -202026,68 +195682,24 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/donnees-personnelles" + "declarationUrl": "https://plusfraichemaville.fr/politique-de-confidentialite#cookies" } ], - "betagouv": { - "id": "transition-ecologique-des-entreprises", - "type": "startup", - "attributes": { - "name": "Transition Écologique des Entreprises", - "pitch": "Guider les entreprises dans leur transition écologique", - "stats_url": "https://mission-transition-ecologique.beta.gouv.fr/stats", - "link": "http://mission-transition-ecologique.beta.gouv.fr", - "repository": "https://github.com/betagouv/mission-transition-ecologique", - "contact": "contact@mission-transition-ecologique.beta.gouv.fr", - "content_url_encoded_markdown": "Le%20service%20public%20Transition%20%C3%89cologique%20des%20Entreprises%20est%20un%20guichet%20d%27accueil%2C%20d%27aide%20et%20d%27accompagnement%20dans%20la%20transition%20%C3%A9cologique%20des%20entreprises.%0A%0A%23%23%20Probl%C3%A8mes%0A%0A%23%23%23%20La%20France%20ne%20respecte%20pas%20ses%20objectifs%20climat-%C3%A9nergie%0A%0AEn%20France%2C%20nous%20r%C3%A9duisons%20lentement%20nos%20%C3%A9missions%20de%20gaz%20%C3%A0%20effet%20de%20serres%20et%20nos%20consommations%20d%27%C3%A9nergie.%20C%27est%20bien%2C%20mais%20insuffisant.%20Le%20%5BHaut%20Conseil%20pour%20le%20Climat%5D%28https%3A%2F%2Fwww.hautconseilclimat.fr%2F%29%20et%20l%27%5BObservatoire%20Climat-%C3%89nergie%5D%28https%3A%2F%2Fwww.observatoire-climat-energie.fr%2F%29%20sont%20l%C3%A0%20pour%20nous%20le%20rappeler.%20Nos%20objectifs%20de%20la%20Strat%C3%A9gie%20National%20Bas%20Carbone%20%28SNBC%29%2C%20et%20des%20Programmations%20pluriannuelles%20de%20l%27%C3%A9nergie%20%28PPE%29%20n%27ont%20pas%20%C3%A9t%C3%A9%20atteint%20en%202021.%0A%0ALa%20mise%20en%20%C5%93uvre%20de%20cette%20strat%C3%A9gie%20n%C3%A9cessitera%20des%20investissements%20massifs%20et%20de%20nouvelles%20expertises.%20Les%20m%C3%A9tiers%20et%20les%20mod%C3%A8les%20%C3%A9conomiques%20vont%20devoir%20se%20transformer.%20Les%20financements%20publics%20et%20priv%C3%A9s%20devront%20donc%20augmenter%20de%20plusieurs%20milliards%20d%E2%80%99euros%20par%20an%20ces%20prochaines%20ann%C3%A9es%2C%20pour%20accompagner%20ces%20mutations%20%C3%A9conomiques.%20Comme%20le%20dit%20le%20rapport%20du%20%5BGIEC%5D%28https%3A%2F%2Fwww.ipcc.ch%2Flanguages-2%2Ffrancais%2F%29%20%3A%20%C2%AB%20Chaque%20dixi%C3%A8me%20de%20degr%C3%A9%20gagn%C3%A9%20compte%20%C2%BB%0A%0A%23%23%23%20M%C3%A9connaissance%20des%20enjeux%20et%20illisibilit%C3%A9%20des%20dispositifs%20d%27aide%20aux%20entreprises%0A%0AA%20d%C3%A9faut%20d%E2%80%99une%20vision%20claire%20des%20opportunit%C3%A9s%20et%20des%20risques%2C%20les%20entreprises%20ignorent%2C%20majoritairement%2C%20les%20actions%20%C3%A0%20engager.%20L%27un%20des%20freins%20%C3%A0%20l%E2%80%99action%20est%20le%20manque%20d%E2%80%99informations%20et%20de%20temps%20%C3%A0%20y%20consacrer.%20Contrairement%20aux%20grandes%20entreprises%2C%20les%20TPE%2C%20PME%20et%20ETI%20n%E2%80%99ont%20pas%20encore%20d%E2%80%99obligations%20l%C3%A9gales%20et%20de%20personnes%20d%C3%A9di%C3%A9es%20%C3%A0%20ces%20sujets.%20La%20transition%20%C3%A9cologique%20et%20%C3%A9nerg%C3%A9tique%20%28TEE%29%20est%20parfois%20per%C3%A7ue%20par%20certains%20dirigeants%20comme%20n%C3%A9cessaire%20%C3%A0%20long-terme%20mais%20co%C3%BBteuse%20et%20ainsi%20non%20prioritaire%20%C3%A0%20court-terme.%0A%0AD%27autres%20entreprises%20ne%20parviennent%20pas%20%C3%A0%20mettre%20en%20%C5%93uvre%20leurs%20projets.%20Pour%20ces%20seconds%2C%20minoritaires%2C%20la%20difficult%C3%A9%20n%E2%80%99est%20pas%20d%E2%80%99identifier%20des%20actions%20et%20des%20projets%20mais%20d%27%C3%AAtre%20accompagn%C3%A9%20afin%20de%20les%20mettre%20en%20%C5%93uvre%2C%20et%20de%20les%20financer.%0A%0ADepuis%20peu%2C%20nous%20observons%20une%20multiplication%20des%20dispositifs%20d%27aides%20par%20les%20op%C3%A9rateurs%20publics%20%28ADEME%2C%20BPI%2C%20ASP...%29%20et%20par%20les%20collectivit%C3%A9s%20%28r%C3%A9gionales%20principalement%29.%20Les%20entreprises%20ne%20comprennent%20pas%20toujours%20par%20quelle%20porte%20d%27entr%C3%A9e%20et%20dans%20quelles%20conditions%20elles%20peuvent%20b%C3%A9n%C3%A9ficier%20de%20ces%20aides%20aupr%C3%A8s%20des%20acteurs%20publics.%0A%0ASurtout%20que%20les%20dispositifs%20d%E2%80%99aide%20%C3%A0%20la%20transition%20%C3%A9cologique%20des%20entreprises%20sont%20nombreux%20et%20de%20nature%20diverse.%20Ils%20r%C3%A9pondent%20%C3%A0%20des%20besoins%20vari%C3%A9s%2C%20allant%20de%20cr%C3%A9dits%20d%E2%80%99imp%C3%B4ts%20jusqu%E2%80%99%C3%A0%20des%20programmes%20d%E2%80%99accompagnement%20individualis%C3%A9s.%0A%0ACette%20situation%20rend%20illisible%20pour%20le%20chef%20d%E2%80%99entreprise%2C%20a%20fortiori%20de%20TPE%2FPME%2C%20le%20parcours%20%C3%A0%20effectuer%20pour%20r%C3%A9aliser%20une%20d%C3%A9marche%20de%20transition%20%C3%A9cologique%20de%20son%20entreprise.%20Or%2C%20rien%20que%20pour%20la%20d%C3%A9carbonation%2C%20les%20analyses%20sectorielles%2C%20men%C3%A9es%20sur%20l%E2%80%99industrie%20et%20l%E2%80%99%C3%A9conomie%20de%20proximit%C3%A9%2C%20montrent%20que%20pr%C3%A8s%20de%202%20millions%20d%E2%80%99entreprises%20devront%20verdir%20leur%20activit%C3%A9%20%C3%A0%20un%20degr%C3%A9%20plus%20ou%20moins%20pouss%C3%A9%20pour%20atteindre%20les%20objectifs%20de%20la%20SNBC%20-%20Strat%C3%A9gie%20Nationale%20Bas%20Carbone.%0A%0AEnfin%2C%20m%C3%AAme%20par%20bonne%20volont%C3%A9%2C%20l%27entreprise%20ne%20peut%20pas%20toujours%20agir%20seule.%20Les%20transformatoins%20doivent%20se%20situer%20%C3%A0%20un%20niveau%20sup%C3%A9rieur%2C%20%C3%A0%20une%20%C3%A9chelle%20locale%2C%20sectoriele%20ou%20r%C3%A9glementaire%2C%20dont%20les%20dirigeants%20ont%20une%20influence%20partielle.%0A%0A%23%23%20Solution%20%3A%20Un%20espace%20d%27accueil%20num%C3%A9rique%20et%20un%20parcours%20raccourci%20pour%20aider%20les%20entreprises%20dans%20leurs%20actions%0A%0ALa%20startup%20d%27%C3%89tat%20permettra%20au%20plus%20grand%20nombre%20d%E2%80%99entreprises%2C%20via%20un%20outil%20d%E2%80%99auto-diagnostic%20en%20ligne%2C%20d%E2%80%99%C3%A9valuer%20leur%20situation%20et%20de%20r%C3%A9aliser%20une%20premi%C3%A8re%20orientation%20%C2%AB%20automatique%20%C2%BB%20vers%20des%20dispositifs%20d%27aides%20associ%C3%A9es%20%C3%A0%20leur%20situation%20et%20contexte%20%28sectoriel%2C%20%C3%A9conomique...%29%20ou%2C%20pour%20les%20situations%20les%20plus%20complexes%2C%20vers%20des%20interlocuteurs%20et%2Fou%20programmes%20mis%20en%20%C5%93uvre%20par%20les%20op%C3%A9rateurs%20publics.%0A%0ANous%20repartirons%20de%20la%20plateforme%20%5BMission%20Transition%5D%28https%3A%2F%2Fmission-transition.beta.gouv.fr%2F%29%20de%20l%27EcoLab%20du%20CGDD%20afin%20de%20b%C3%A9n%C3%A9ficier%20des%20travaux%20port%C3%A9%20et%20initi%C3%A9%20par%20l%27%5B%C3%A9quipe%20d%27entrepreneurs%20d%27intr%C3%A9t%20g%C3%A9n%C3%A9ral%5D%28https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Ffrance-transition%2F%29.%0A%0ALa%20Startup%20d%27Etat%20est%20port%C3%A9e%20par%20l%27ADEME%20%C3%A0%20travers%20son%20%5Bincubateur%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2F%3Fincubateur%3Dademe%29%20et%20co-pilot%C3%A9%20par%20la%20DGE%2C%20le%20CGDD%20et%20suit%20la%20%5Bpolitique%20prioritaire%20du%20gouvernement%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fdownload%2Fpdf%2Fcirc%3Fid%3D45366%29%20de%20%22R%C3%A9ussir%20la%20transition%20%C3%A9cologique%20et%20aller%20vers%20la%20neutralit%C3%A9%20carbone%22.%0A%0A%23%23%23%20Notre%20ambition%20%C3%A0%20moyen%20terme%0A%0A-%20Recenser%2C%20structurer%20et%20rendre%20plus%20accessible%20les%20offres%2C%20les%20actions%2C%20les%20dispositifs%20d%27aides%20et%20les%20programmes%20propos%C3%A9s%20par%20les%20op%C3%A9rateurs%20publics%0A-%20Remettre%20sur%20pied%20une%20%C3%A9quipe%20afin%20de%20d%C3%A9velopper%20un%20module%20d%27auto-diagnostic%20permettant%20de%20faciliter%20la%20recherche%20de%20dispositif%20d%27aide%20adapt%C3%A9%20%C3%A0%20l%27entreprise%0A-%20Collaborer%20avec%20les%20entit%C3%A9s%20locales%20%28directions%20r%C3%A9gionales%20de%20l%27ADEME%2C%20conseil%20r%C3%A9gional%2C%20CCI%2C%20CMA%29%20afin%20de%20d%C3%A9ployer%20le%20service%20au%20plus%20grand%20nombre%20%C3%A0%20une%20%C3%A9chelle%20locale%20%28r%C3%A9gion%20par%20r%C3%A9gion%29%20et%2Fou%20sectorielle%20et%2C%20orienter%20potentiellement%20les%20entreprises%20vers%20un%20interlocuteur%20%C3%A0%20travers%20le%20service%20%5Bconseillers-entreprises%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%29.%0A-%20Apporter%20un%20service%20aux%20op%C3%A9rateurs%20%28ADEME%2C%20BPI%2C%20CDC...%29%2C%20%C3%A0%20commencer%20par%20des%20statistiques%2C%20ayant%20des%20offres%20aux%20entreprises%20afin%20de%20mieux%20les%20cibler%20et%20d%27avoir%20%C3%A9galement%20une%20vision%20d%27ensemble%20sur%20les%20dispositifs%20existants.%0A%0A%2A%2AMesure%20d%27actionnabilit%C3%A9%2A%2A%20%3A%20Entreprise%20qui%20a%20%C3%A9t%C3%A9%20r%C3%A9orient%C3%A9%2C%20a%20candidat%C3%A9%20et%20a%20b%C3%A9n%C3%A9fici%C3%A9%20d%27une%20aide%20d%27un%20op%C3%A9rateur%20public%20%C3%A0%20travers%20la%20plateforme%0A%0A%2A%2AMesure%20d%27impact%2A%2A%20%3A%20Augmenter%20le%20nombre%20d%E2%80%99entreprises%20qui%20bascule%20dans%20la%20transition%20%C3%A9cologique%20%C3%A0%20travers%20les%20aides%20publiques%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2023-02-27", - "end": "2023-03-30" - }, - { - "name": "construction", - "start": "2023-03-30", - "end": "" - } - ], - "sponsors": [ - "ademe" - ], - "thematiques": [ - "Écologie", - "Entreprises" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/betagouv/mission-transition-ecologique/blob/main/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/transition-ecologique-des-entreprises", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "ademe" - } - } - } - }, + "betagouv": null, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://mission-transition-ecologique.beta.gouv.fr", - "size": 1589.414, - "nodes": 303, - "requests": 34, - "grade": "B", - "score": 72, - "ges": 1.56, - "water": 2.34, + "url": "https://plusfraichemaville.fr", + "size": 2093.812, + "nodes": 701, + "requests": 94, + "grade": "D", + "score": 41, + "ges": 2.18, + "water": 3.27, "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:53:30.101392", + "date": "2024-12-01 07:45:34.529309", "page_type": "website" } ], @@ -202097,7 +195709,7 @@ }, "summary": { "httpGrade": "A+", - "apdex": 1, + "apdex": 0.992, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", @@ -202105,68 +195717,73 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-09T08:59:00.000Z", + "testsslExpireDate": "2024-12-31T20:41:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.39, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.96, + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.64, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 1, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", + "ecoindexGrade": "D", "dsfrGrade": "A" } }, { "404": null, - "url": "https://potentiel.beta.gouv.fr", - "category": "mtes", - "betaId": "potentiel", + "url": "https://mission-transition-ecologique.beta.gouv.fr", + "category": "ademe", + "betaId": "transition-ecologique-des-entreprises", + "tags": [ + "production", + "ADEME" + ], + "repositories": [ + "betagouv/transition-ecologique-entreprises-widget" + ], + "pages": [ + "/annuaire" + ], "http": { - "url": "https://potentiel.beta.gouv.fr", + "url": "https://mission-transition-ecologique.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:18:22 GMT", + "end_time": "Sun, 20 Oct 2024 06:23:57 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { + "Access-Control-Allow-Origin": "*", + "Cache-Control": "no-cache", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-1a21bb4df506dff885f576817321022d1d568483c57992d331954bcb2746994f' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 05:18:21 GMT", - "ETag": "W/\"4eb3-aN2NnLvyREYO5guLI9vjh6FSn6c\"", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "strict-origin", + "Content-Security-Policy": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://conseillers-entreprises.service-public.fr https://form.typeform.com;frame-ancestors 'self' https://conseillers-entreprises.service-public.fr;", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 06:23:56 GMT", + "Etag": "W/\"a14-w8Nf3/EpSzBLidAUBLpmXZlKP/A\"", + "Expect-CT": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "5bb07d10-3333-4920-8d50-b8d543fc8452", - "X-XSS-Protection": "0", + "X-Frame-Options": "ALLOW-FROM https://conseillers-entreprises.service-public.fr", + "X-Request-ID": "2e71a181-2e60-4877-9b7e-b52341ce230a", "strict-transport-security": "max-age=31536000" }, - "scan_id": 57051399, + "scan_id": 57052794, "score": 105, - "start_time": "Sun, 20 Oct 2024 05:18:20 GMT", + "start_time": "Sun, 20 Oct 2024 06:23:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -202178,40 +195795,61 @@ "name": "content-security-policy", "output": { "data": { - "connect-src": [ - "client.crisp.chat", - "wss://client.relay.crisp.chat", - "potentiel.beta.gouv.fr", + "base-uri": [ "'self'" ], + "connect-src": [ + "https://stats.beta.gouv.fr", + "https://eu.i.posthog.com", + "https://api.typeform.com", + "https://sentry.incubateur.net", + "'self'", + "https://conseillers-entreprises.service-public.fr", + "https://embed.typeform.com" + ], "default-src": [ - "blob:", - "metabase.potentiel.beta.gouv.fr", - "'self'" + "'none'" ], "font-src": [ - "client.crisp.chat", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "https://conseillers-entreprises.service-public.fr", "'self'" ], "frame-src": [ - "metabase.potentiel.beta.gouv.fr" + "https://conseillers-entreprises.service-public.fr", + "https://form.typeform.com", + "'self'" ], "img-src": [ "data:", - "image.crisp.chat", + "'self'" + ], + "object-src": [ "'self'" ], "script-src": [ + "'self'" + ], + "script-src-elem": [ + "https://stats.beta.gouv.fr", + "https://eu.i.posthog.com", + "'unsafe-inline'", + "https://eu-assets.i.posthog.com", "'self'", - "'sha256-uezfoo3sfsybniiaohhuiigoht+nhtdv2gd4i5588hq='", - "metabase.potentiel.beta.gouv.fr", - "client.crisp.chat", - "'nonce-1a21bb4df506dff885f576817321022d1d568483c57992d331954bcb2746994f'" + "https://embed.typeform.com" ], "style-src": [ - "data:", "'unsafe-inline'", - "client.crisp.chat", + "https://embed.typeform.com", + "'self'" + ], + "worker-src": [ + "blob:", "'self'" ] }, @@ -202219,10 +195857,10 @@ "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, + "antiClickjacking": true, + "defaultNone": true, + "insecureBaseUri": false, + "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, @@ -202254,25 +195892,25 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": null, + "acao": "*", "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://potentiel.beta.gouv.fr/", + "destination": "https://mission-transition-ecologique.beta.gouv.fr/", "redirects": true, "route": [ - "http://potentiel.beta.gouv.fr/", - "https://potentiel.beta.gouv.fr/" + "http://mission-transition-ecologique.beta.gouv.fr/", + "https://mission-transition-ecologique.beta.gouv.fr/" ], "status_code": 200 }, @@ -202285,14 +195923,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -202335,57 +195973,57 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": "ALLOW-FROM https://conseillers-entreprises.service-public.fr" }, "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "0" + "data": null }, "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "ucd8", - "url": "https://potentiel.beta.gouv.fr", + "token": "h4wa", + "url": "https://mission-transition-ecologique.beta.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T15:40:56Z", + "up_since": "2024-11-29T06:26:53Z", "error": null, - "period": 300, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T08:01:45Z", - "next_check_at": "2024-11-24T08:06:43Z", - "created_at": "2021-04-22T19:59:36Z", + "last_check_at": "2024-12-01T08:08:57Z", + "next_check_at": "2024-12-01T08:09:57Z", + "created_at": "2024-09-15T01:37:03Z", "mute_until": null, - "favicon_url": "https://potentiel.beta.gouv.fr/dsfr/favicon/favicon.ico", + "favicon_url": "https://mission-transition-ecologique.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T07:41:53Z", - "expires_at": "2025-01-30T05:23:39Z", + "tested_at": "2024-12-01T08:00:58Z", + "expires_at": "2025-02-09T08:59:48Z", "valid": true, "error": null }, @@ -202393,18 +196031,18 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 204, - "connection": 155, - "handshake": 159, - "response": 159, - "total": 677 + "namelookup": 180, + "connection": 150, + "handshake": 160, + "response": 155, + "total": 646 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "potentiel.beta.gouv.fr", + "host": "mission-transition-ecologique.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -202430,77 +196068,77 @@ "testssl": [ { "id": "service", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202508,7 +196146,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202516,7 +196154,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202524,7 +196162,7 @@ }, { "id": "cipherlist_LOW", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202532,7 +196170,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -202540,7 +196178,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -202548,483 +196186,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-11-01 05:23" + "finding": "2024-11-11 08:59" }, { "id": "cert_notAfter", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2025-01-30 05:23" + "finding": "2025-02-09 08:59" }, { "id": "cert_extlifeSpan", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732435309" + "finding": "1733040152" }, { "id": "HSTS_time", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "id": "X-Content-Type-Options", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "nosniff" }, { - "id": "X-Content-Type-Options", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "id": "Content-Security-Policy", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://form.typeform.com;frame-ancestors 'self';" }, { - "id": "Content-Security-Policy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "id": "Expect-CT", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-e2a6cf7178083d6d1b8a771edb9ebe62ca9f6768a8dda2af498717355baa6736' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat" + "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" }, { - "id": "X-XSS-Protection", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "id": "Access-Control-Allow-Origin", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "*" }, { - "id": "Referrer-Policy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "id": "Cache-Control", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "strict-origin" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -203032,7 +196670,7 @@ }, { "id": "heartbleed", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -203041,7 +196679,7 @@ }, { "id": "CCS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -203050,7 +196688,7 @@ }, { "id": "ticketbleed", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -203059,7 +196697,7 @@ }, { "id": "ROBOT", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -203068,7 +196706,7 @@ }, { "id": "secure_renego", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -203076,7 +196714,7 @@ }, { "id": "secure_client_renego", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -203085,7 +196723,7 @@ }, { "id": "CRIME_TLS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -203094,7 +196732,7 @@ }, { "id": "BREACH", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -203103,7 +196741,7 @@ }, { "id": "POODLE_SSL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -203112,14 +196750,14 @@ }, { "id": "fallback_SCSV", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -203128,7 +196766,7 @@ }, { "id": "FREAK", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -203137,7 +196775,7 @@ }, { "id": "DROWN", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -203146,16 +196784,16 @@ }, { "id": "DROWN_hint", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BC444CB40F09E86887EB9CBF78630F60DD69089F136BCE021A4F065F22D5FC01" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" }, { "id": "LOGJAM", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -203164,7 +196802,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -203173,7 +196811,7 @@ }, { "id": "BEAST", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -203182,7 +196820,7 @@ }, { "id": "LUCKY13", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -203191,7 +196829,7 @@ }, { "id": "winshock", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -203200,7 +196838,7 @@ }, { "id": "RC4", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -203209,392 +196847,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203602,7 +197240,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203610,7 +197248,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203618,7 +197256,7 @@ }, { "id": "cipherlist_LOW", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203626,7 +197264,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -203634,7 +197272,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -203642,483 +197280,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-11-01 05:23" + "finding": "2024-11-11 08:59" }, { "id": "cert_notAfter", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-30 05:23" + "finding": "2025-02-09 08:59" }, { "id": "cert_extlifeSpan", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732435410" + "finding": "1733040250" }, { "id": "HSTS_time", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "id": "X-Content-Type-Options", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "nosniff" }, { - "id": "X-Content-Type-Options", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "id": "Content-Security-Policy", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://form.typeform.com;frame-ancestors 'self';" }, { - "id": "Content-Security-Policy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "id": "Expect-CT", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-54621d0da5e9648eff3f27b2855a597754fa08f5ea496a311b858416bbca6f17' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat" + "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" }, { - "id": "X-XSS-Protection", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "id": "Access-Control-Allow-Origin", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "*" }, { - "id": "Referrer-Policy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "id": "Cache-Control", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "strict-origin" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -204126,7 +197764,7 @@ }, { "id": "heartbleed", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -204135,7 +197773,7 @@ }, { "id": "CCS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -204144,7 +197782,7 @@ }, { "id": "ticketbleed", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -204153,7 +197791,7 @@ }, { "id": "ROBOT", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -204162,7 +197800,7 @@ }, { "id": "secure_renego", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -204170,7 +197808,7 @@ }, { "id": "secure_client_renego", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -204179,7 +197817,7 @@ }, { "id": "CRIME_TLS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -204188,7 +197826,7 @@ }, { "id": "BREACH", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -204197,7 +197835,7 @@ }, { "id": "POODLE_SSL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -204206,14 +197844,14 @@ }, { "id": "fallback_SCSV", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -204222,7 +197860,7 @@ }, { "id": "FREAK", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -204231,7 +197869,7 @@ }, { "id": "DROWN", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -204240,16 +197878,16 @@ }, { "id": "DROWN_hint", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BC444CB40F09E86887EB9CBF78630F60DD69089F136BCE021A4F065F22D5FC01" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" }, { "id": "LOGJAM", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -204258,7 +197896,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -204267,7 +197905,7 @@ }, { "id": "BEAST", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -204276,7 +197914,7 @@ }, { "id": "LUCKY13", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -204285,7 +197923,7 @@ }, { "id": "winshock", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -204294,7 +197932,7 @@ }, { "id": "RC4", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -204303,1128 +197941,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "206" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - } - ], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-d68a3a52229aca469fa80c1655674b27ba465eef4a508ebd6c70ba8e90b92477' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 24 Nov 2024 07:59:58 GMT", - "etag": "W/\"4e6f-Zm6G0NVbD/ZpyZ+1y9ikPWYVdZE\"", - "origin-agent-cluster": "?1", - "referrer-policy": "strict-origin", - "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "8831a55e-e545-4ceb-8b46-6ace5f2becfd", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "potentiel.beta.gouv.fr", - "ip": "185.21.194.105", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.29.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://potentiel.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://potentiel.beta.gouv.fr/", - "finalUrl": "https://potentiel.beta.gouv.fr/", - "fetchTime": "2024-11-24T07:59:31.788Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.87 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.97 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.98 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 2716, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2716, - "firstMeaningfulPaint": 2716, - "largestContentfulPaint": 3318, - "interactive": 2716, - "speedIndex": 3252, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.016955598619249133, - "cumulativeLayoutShiftMainFrame": 0.016955598619249133, - "totalCumulativeLayoutShift": 0.016955598619249133, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 440953237, - "observedNavigationStart": 0, - "observedNavigationStartTs": 440953237, - "observedFirstPaint": 1217, - "observedFirstPaintTs": 442170442, - "observedFirstContentfulPaint": 1217, - "observedFirstContentfulPaintTs": 442170442, - "observedFirstContentfulPaintAllFrames": 1217, - "observedFirstContentfulPaintAllFramesTs": 442170442, - "observedFirstMeaningfulPaint": 1217, - "observedFirstMeaningfulPaintTs": 442170442, - "observedLargestContentfulPaint": 1217, - "observedLargestContentfulPaintTs": 442170442, - "observedLargestContentfulPaintAllFrames": 1217, - "observedLargestContentfulPaintAllFramesTs": 442170442, - "observedTraceEnd": 3852, - "observedTraceEndTs": 444805304, - "observedLoad": 1376, - "observedLoadTs": 442329106, - "observedDomContentLoaded": 1206, - "observedDomContentLoadedTs": 442159628, - "observedCumulativeLayoutShift": 0.016955598619249133, - "observedCumulativeLayoutShiftMainFrame": 0.016955598619249133, - "observedTotalCumulativeLayoutShift": 0.016955598619249133, - "observedFirstVisualChange": 1229, - "observedFirstVisualChangeTs": 442182237, - "observedLastVisualChange": 1845, - "observedLastVisualChangeTs": 442798237, - "observedSpeedIndex": 1240, - "observedSpeedIndexTs": 442193478 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 17, - "numScripts": 3, - "numStylesheets": 1, - "numFonts": 4, - "numTasks": 20, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 0, - "throughput": 10854437.178734083, - "maxRtt": 151.078, - "maxServerLatency": 17.589, - "totalByteWeight": 622677, - "totalTaskTime": 3367.357, - "mainDocumentTransferSize": 6137 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://potentiel.beta.gouv.fr/accessibilite.html" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://docs.potentiel.beta.gouv.fr/info/cgu" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://docs.potentiel.beta.gouv.fr/info/vie-privee-et-politique-de-confidentialite" - } - ], - "betagouv": { - "id": "potentiel", - "type": "startup", - "attributes": { - "name": "Potentiel", - "pitch": "Faciliter le parcours des producteurs d'énergies renouvelables électriques", - "stats_url": "https://potentiel.beta.gouv.fr/stats.html", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", - "link": "https://potentiel.beta.gouv.fr/", - "repository": "https://github.com/MTES-MCT/potentiel", - "contact": "contact@potentiel.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20%20Introduction%20-%20contexte%0A%0AL%E2%80%99Etat%20met%20en%20%C5%93uvre%20une%20politique%20volontariste%20de%20soutien%20au%20d%C3%A9veloppement%20des%20%C3%A9nergies%20renouvelables%20%28EnR%29%20%C3%A9lectriques%20sous%20forme%20d%E2%80%99appel%20d%E2%80%99offres.%0A%0AL%E2%80%99objectif%20est%20d%E2%80%99atteindre%20une%20part%20de%2040%25%20de%20ces%20%C3%A9nergies%20sur%20le%20total%20de%20l%E2%80%99%C3%A9lectricit%C3%A9%20produite%20%C3%A0%20l%E2%80%99horizon%202030.%20%0A%0A%2A%2APotentiel%2A%2A%20permet%20de%20faciliter%20le%20suivi%20de%20ces%20projets%2C%20de%20gagner%20en%20tra%C3%A7abilit%C3%A9%20et%20en%20efficacit%C3%A9%20en%20fluidifiant%20les%20%C3%A9changes%20entre%20porteurs%20de%20projets%2C%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%2C%20acheteurs%20oblig%C3%A9s%20et%20r%C3%A9gulateurs%2C%20puis%20%C3%A0%20terme%20entre%20gestionnaires%20de%20r%C3%A9seau%20et%20organismes%20de%20contr%C3%B4le.%0A%0ANotre%20objectif%20%3A%20Faciliter%20le%20parcours%20des%20producteurs%20d%27%C3%A9nergies%20renouvelables%20%C3%A9lectriques%0A%0A%23%23%20Les%20probl%C3%A9matiques%0A%0A%0A%23%23%23%20Les%20projets%20laur%C3%A9ats%20d%E2%80%99EnR%20%C3%A9lectriques%20sont%20soumis%20%C3%A0%20%3A%20%0A%0A%2A%20De%20nombreuses%20proc%C3%A9dures%20administratives%20qui%20engendrent%20des%20lourdeurs%20administratives%20%3A%20candidature%2C%20d%C3%A9signation%2C%20autorisation%20d%E2%80%99exploiter%2C%20raccordement%20au%20r%C3%A9seau%2C%20demandes%20de%20modifications%2C%20contractualisation...%20%3B%0A%2A%20Des%20demandes%20et%20instructions%20au%20format%20papier%20%3B%20%0A%2A%20Une%20multiplicit%C3%A9%20des%20acteurs%20amen%C3%A9s%20%C3%A0%20intervenir%20sur%20le%20projet%20%3A%20porteurs%20de%20projets%2C%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%2C%20acheteurs%20oblig%C3%A9s%2C%20gestionnaires%20de%20r%C3%A9seau%20etc%E2%80%A6%20%3B%0A%0ALes%20informations%20d%C3%A9tenues%20par%20chaque%20acteur%20intervenant%20sur%20le%20projet%20sont%20parcellaires%20car%20elles%20ne%20sont%20pas%20partag%C3%A9es.%20Cela%20entra%C3%AEne%20un%20allongement%20des%20d%C3%A9lais%20d%E2%80%99instruction%20dans%20la%20mesure%20o%C3%B9%20aucun%20croisement%20de%20ces%20donn%C3%A9es%20n%E2%80%99est%20op%C3%A9r%C3%A9%2C%20incluant%20par%20ailleurs%20des%20possibilit%C3%A9s%20de%20contentieux%20accrues.%0A%2A%20Une%20dur%C3%A9e%20du%20d%C3%A9veloppement%20des%20projets%20longue%20%28de%202%20jusqu%E2%80%99%C3%A0%2010%20ans%29%0A%0AEn%20conclusion%2C%20cela%20entra%C3%AEne%20un%20manque%20de%20suivi%20global%20des%20projets%20d%E2%80%99EnR%20permettant%20de%20piloter%20les%20dispositifs%20de%20soutien%20et%20de%20suivre%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20PPE.%0A%0A%23%23%20La%20solution%20%3D%3E%20Potentiel%0A%0APotentiel%20a%20vocation%20%C3%A0%20r%C3%A9unir%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20fili%C3%A8re%20et%20%C3%A0%20rendre%20accessible%2C%20en%20un%20lieu%20unique%2C%20les%20informations%20d%C3%A9tenues%20par%20ceux-ci%20aux%20diff%C3%A9rentes%20phases%20de%20d%C3%A9veloppement%20des%20projets%20d%E2%80%99EnR.%0A%0AL%E2%80%99outil%20simplifie%20les%20d%C3%A9marches%2C%20harmonise%20les%20pratiques%20et%20g%C3%A9n%C3%A8re%20un%20gain%20de%20temps%20consid%C3%A9rable%20pour%20tous.%0A%0A%23%23%23%20Notre%20proposition%20de%20valeur%20pour%20les%20porteurs%20de%20projet%0A%0ALes%20porteurs%20de%20projets%20d%E2%80%99EnR%20r%C3%A9pondant%20aux%20appels%20d%E2%80%99offres%20de%20l%E2%80%99%C3%89tat%20souffrent%20de%20complexit%C3%A9%20administrative%20dans%20la%20gestion%20de%20leurs%20projets.%20%0A%0APotentiel%20leur%20offre%20des%20fonctionnalit%C3%A9s%20sur%20mesure%20visant%20%C3%A0%20faciliter%20la%20gestion%20de%20leurs%20projets.%0A%0A%23%23%23%20Notre%20proposition%20de%20valeur%20pour%20les%20partenaires%20et%20administrations%0A%0ALes%20partenaires%20et%20administrations%20peinent%20%C3%A0%20r%C3%A9cup%C3%A9rer%20les%20informations%20li%C3%A9es%20aux%20projets%20d%E2%80%99EnR%20r%C3%A9pondant%20aux%20appels%20d%E2%80%99offres%20de%20l%E2%80%99%C3%89tat.%0A%0APotentiel%20permet%20%C3%A0%20tous%20les%20acteurs%20concern%C3%A9s%20de%20consulter%20ces%20informations%20gr%C3%A2ce%20%C3%A0%20une%20plateforme%20unique%20qui%20centralise%20la%20donn%C3%A9e%20disponible%20%C3%A0%20tout%20moment%20et%20gagner%20en%20%3A%0A%0A%2A%20Transparence%0A%2A%20Gain%20de%20temps%0A%2A%20Suivi%20des%20politiques%20publiques%0A%0A%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%20-%20P%C3%A9rim%C3%A8tre%20de%20test%20%282020%29%0A%0AL%E2%80%99objectif%2C%20dans%20un%20premier%20temps%2C%20a%20%C3%A9t%C3%A9%20de%20d%C3%A9mat%C3%A9rialiser%20l%E2%80%99ensemble%20des%20interactions%20entre%20porteurs%20de%20projets%20et%20administrations%20pour%20assurer%20une%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9cisions.%20Les%20premiers%20tests%20lanc%C3%A9s%20en%20avril%202020%20ont%20vis%C3%A9%20les%20candidats%20des%20nouveaux%20appels%20d%E2%80%99offres.%20Ce%20p%C3%A9rim%C3%A8tre%20a%20permis%20d%E2%80%99essayer%20l%E2%80%99outil%20%C3%A9tape%20par%20%C3%A9tape%2C%20permettant%20un%20d%C3%A9veloppement%20progressif%20en%20suivant%20l%E2%80%99avanc%C3%A9e%20des%20porteurs%20de%20projets%20dans%20leurs%20d%C3%A9marches.%0A%0A%23%23%23%20D%C3%A9ploiement%20des%20%C3%A9tapes%20de%20test%0A%0A%2A%20L%E2%80%99envoi%20d%E2%80%99emails%20automatis%C3%A9s%20%C3%A0%20partir%20de%20la%20plateforme%20pour%20annoncer%20les%20r%C3%A9sultats%20d%E2%80%99une%20candidature%20%C3%A0%20l%E2%80%99un%20des%20appels%20d%E2%80%99offres%20%28aussi%20bien%20pour%20les%20laur%C3%A9ats%20que%20pour%20les%20%C3%A9limin%C3%A9s%29%20%3B%0A%2A%20La%20r%C3%A9alisation%2C%20pour%20les%20laur%C3%A9ats%20des%20premi%C3%A8res%20%C3%A9tapes%20du%20processus%20de%20d%C3%A9veloppement%20de%20leur%20projet%20%3B%0A%2A%20Une%20vue%20d%E2%80%99ensemble%20de%20l%E2%80%99avanc%C3%A9e%20de%20leurs%20projets%20pour%20tous%20les%20candidats%20%3B%0A%2A%20La%20possibilit%C3%A9%20pour%20tous%20les%20candidats%20de%20faire%20des%20demandes%20de%20modification%20pour%20leurs%20projets%20%28pour%20les%20non%20laur%C3%A9ats%20%3A%20une%20demande%20de%20recours%2C%20pour%20les%20laur%C3%A9ats%20%3A%20toute%20autre%20demande%29%20%3B%0A%2A%20D%E2%80%99autre%20part%2C%20pour%20pr%C3%A9parer%20l%E2%80%99importation%20de%20l%E2%80%99historique%20des%20projets%20pr%C3%A9-2020%2C%20%28p%C3%A9riode%20allant%20de%202016%20%C3%A0%202020%29%2C%20l%E2%80%99%C3%A9quipe%20a%20recens%C3%A9%20les%20diff%C3%A9rents%20param%C3%A8tres%20%C3%A0%20prendre%20en%20compte%2C%20les%20formats%20et%20les%20r%C3%A8gles%20de%20gestion.%0A%0A%23%23%20Nos%20r%C3%A9alisations%0A%0A%23%23%23%20Impl%C3%A9mentation%20des%20r%C3%A8gles%20m%C3%A9tier%0A%0A%2A%20D%C3%A9cryptage%20des%20r%C3%A8gles%20m%C3%A9tier%20permettant%20de%20remplacer%20l%E2%80%99analyse%20chronophage%2C%20r%C3%A9alis%C3%A9e%20jusque-l%C3%A0%20par%20des%20agents%20par%20une%20gestion%20automatique%0A%2A%20G%C3%A9n%C3%A9ration%20automatis%C3%A9e%20de%20courriers%20d%E2%80%99instruction%20pr%C3%A9-compl%C3%A9t%C3%A9s%0A%2A%20Compl%C3%A9tude%20des%20demandes%20de%20modification%20%28suivi%20de%20l%E2%80%99instruction%20pour%20les%20porteurs%20et%20r%C3%A9ponses%20directement%20dans%20l%E2%80%99outil%29%20ceci%20am%C3%A9liorant%20les%20d%C3%A9lais%20de%20traitement%20et%20%C3%A9vitant%20aux%20porteurs%20de%20perdre%20du%20temps%20dans%20le%20d%C3%A9veloppement%20de%20leurs%20projets%0A%2A%20L%E2%80%99ajout%20des%20cahiers%20de%20charges%20modificatifs%20dont%20ceux%20publi%C3%A9s%20en%20ao%C3%BBt%202022%20qui%20offre%20la%20possibilit%C3%A9%20d%E2%80%99une%20augmentation%20de%20puissance%20jusqu%E2%80%99%C3%A0%20140%25%2C%20une%20date%20limite%20d%E2%80%99ach%C3%A8vement%20prolong%C3%A9e%20de%2018%20mois%20suppl%C3%A9mentaires%20et%20la%20possibilit%C3%A9%20de%20vendre%20de%20l%E2%80%99%C3%A9lectricit%C3%A9%20sur%20le%20march%C3%A9%2C%20en%20amont%20du%20d%C3%A9marrage%20du%20contrat%20de%20soutien%0A%0A%23%23%23%20Chantiers%20techniques%0A%2A%20La%20mise%20en%20place%20de%20tableaux%20de%20bord%20concernant%20les%20donn%C3%A9es%20de%20la%20fili%C3%A8re%20afin%20d%E2%80%99avoir%20une%20visibilit%C3%A9%20sur%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20programmation%20pluriannuelle%20de%20l%E2%80%99%C3%A9nergie%20%28PPE%29%0A%2A%20L%E2%80%99import%20de%20l%E2%80%99historique%20des%20projets%20encore%20actifs%20%28depuis%20septembre%202016%29%20pour%20permettre%20aux%20porteurs%20de%20pouvoir%20g%C3%A9rer%20l%E2%80%99ensemble%20de%20leurs%20projets%20actifs.%0A%2A%20Un%20changement%20d%E2%80%99architecture%20technique%20pour%20adapter%20Potentiel%20aux%20d%C3%A9veloppements%20strat%C3%A9giques%20d%C3%A9cid%C3%A9s%0A%2A%20Basculement%20vers%20une%20autre%20base%20de%20donn%C3%A9es%20sur%20le%20cloud%0A%2A%20L%E2%80%99int%C3%A9gration%20d%E2%80%99acteurs%20suppl%C3%A9mentaires%20de%20la%20cha%C3%AEne%20de%20valeur%20pour%20am%C3%A9liorer%20encore%20les%20d%C3%A9lais%20de%20traitement%20des%20demandes%2C%20centraliser%20les%20donn%C3%A9es%20et%20permettre%20un%20meilleur%20pilotage%20par%20tous%20.%20Ajout%20des%20r%C3%B4les%20%3A%20acheteur%20oblig%C3%A9%2C%20Commission%20de%20r%C3%A9gulation%20de%20l%E2%80%99%C3%A9nergie%2C%20ADEME%2C%20Caisse%20des%20d%C3%A9p%C3%B4ts%0A%0A%23%23%23%20Gestion%20de%20nos%20utilisateurs%0A%2A%20Affiner%20les%20%C3%A9changes%20avec%20nos%20utilisateurs%20%3A%20Un%20support%20rapide%20et%20efficace%20%3B%20communiquer%20sur%20le%20produit%20et%20ses%20%C3%A9volutions%20avec%20la%20mise%20en%20place%20d%E2%80%99une%20newsletter%20%28bimestrielle%29%20%3B%20recueillir%20les%20besoins%20et%20la%20satisfaction%20de%20l%E2%80%99ensemble%20des%20usagers%20par%20des%20sondages%20courts%20et%20r%C3%A9guliers%20sur%20tous%20les%20supports%20d%E2%80%99%C3%A9changes%20%28webinaires%2C%20newsletters%29%20%3B%0A%2A%20Mise%20en%20place%20d%E2%80%99un%20support%20utilisateur%20structur%C3%A9%20sur%203%20piliers%20%3A%20le%20guide%20d%E2%80%99utilisation%20%3B%20un%20ChatBot%20automatique%20sur%20les%2010%20questions%20courantes%2C%20r%C3%A9currentes%2C%20les%20%C3%A9changes%20via%20l%E2%80%99adresse%20e-mail%20%5Bcontact%40potentiel.beta.gouv.fr%5D%28%29%20%3B%20des%20%C3%A9changes%20en%20visio%20%3B%0A%2A%20Pr%C3%A9sentations%20et%20d%C3%A9monstrations%20aux%20diff%C3%A9rents%20partenaires%20%28gestionnaire%20de%20r%C3%A9seaux%2C%20commission%20de%20r%C3%A9gulation%20de%20l%E2%80%99%C3%A9nergie%2C%20acheteur%20oblig%C3%A9%E2%80%A6%29%20pour%20le%20d%C3%A9veloppement%20des%20fonctionnalit%C3%A9s%20et%20envisager%20les%20futures%20interop%C3%A9rabilit%C3%A9s%20pour%20s%E2%80%99accorder%20sur%20le%20contenu%20et%20le%20format%20des%20%C3%A9changes.%0A%0A%23%23%20L%E2%80%99impact%0A%0A%23%23%23%20Sur%20les%20projets%20suivis%0A%0A%2A%2011%20161%20projets%20dont%207%20632%20laur%C3%A9ats%0A%2A%2021%2C07%20GW%20en%20puissance%20cumul%C3%A9e%0A%2A%203%20883%20demandes%20des%20porteurs%20de%20projet%20r%C3%A9alis%C3%A9es%20sur%20Potentiel%0A%0A%23%23%23%20Sur%20les%20statistiques%20utilisateurs%0A%0A%2A%202%20123%20porteurs%20de%20projet%20inscrits%0A%2A%201%20527%20connexions%20en%20moyenne%20par%20mois%0A%0A%23%23%23%20Un%20temps%20moyen%20d%E2%80%99instruction%20des%20demandes%20divis%C3%A9%20par%203%0A%21%5B%5D%28https%3A%2F%2Fdocs.potentiel.beta.gouv.fr%2F~gitbook%2Fimage%3Furl%3Dhttps%3A%252F%252F341821779-files.gitbook.io%252F%257E%252Ffiles%252Fv0%252Fb%252Fgitbook-x-prod.appspot.com%252Fo%252Fspaces%25252F-MK-BGgj_eN7FsxQv8fl%25252Fuploads%25252FhDpAaLnlNrlLHhfO3HZR%25252Fimage.png%253Falt%3Dmedia%2526token%3Dc9f030ca-e873-42a6-9d25-fb0299007ce7%26width%3D400%26dpr%3D3%26quality%3D100%26sign%3D7fed0d74dfaff35b657cda428b6dc6b82f8994720dc6fcba3d418b18681fd86d%29%0A%0A%23%23%23%20La%20possibilit%C3%A9%20de%20mettre%20en%20place%20des%20mesures%20d%E2%80%99urgences%20afin%20de%20sauver%20un%20maximum%20de%20projets%0A%0A%2A%204%2C19%20GW%20de%20puissance%20cumul%C3%A9e%20des%20projets%20ayant%20choisis%20l%E2%80%99instruction%20selon%20des%20cahiers%20des%20charges%20modificatifs%0A%2A%201%2C05%20GW%20avec%20le%20processus%20automatis%C3%A9%20d%27abandon%20pour%20recandidature%0A%0A%23%23%20Le%20budget%0A%0A-%202020%20%3A%20127%20135%20%E2%82%AC%20de%20la%20DGEC%2A%20et%2080%20400%20%E2%82%AC%20issus%20du%20programme%20FAST%20%28Fonds%20d%E2%80%99acc%C3%A9l%C3%A9ration%20des%20startups%20d%E2%80%99Etat%20et%20de%20territoires%29%0A-%202021%20%3A%20973%20492%20%E2%82%AC%20de%20la%20DGEC%2C%20422%20937%20%E2%82%AC%20issus%20du%20plan%20France%20Relance%20et%2079%20812%20%E2%82%AC%20de%20l%27ADEME%0A-%202022%20%3A%20Financ%C3%A9e%20par%20le%20budget%20de%20l%27ann%C3%A9e%202021%0A-%202023%20%3A%20507%20822%20%E2%82%AC%20de%20la%20DGEC%0A-%202024%20%3A%20881%20063%20%E2%82%AC%20de%20la%20DGEC%0A%0A%2ADirection%20g%C3%A9n%C3%A9rale%20de%20l%27%C3%89nergie%20et%20du%20Climat%20%28Minist%C3%A8re%20en%20charge%20de%20l%27%C3%A9nergie%29%0A%0A%23%23%20La%20feuille%20de%20route%0A%0A%2A%20Devenir%20le%20p%C3%B4le%20central%20pour%20la%20gestion%20administrative%20des%20projets%20d%E2%80%99EnR%20%C3%A9lectriques%20et%20de%20gaz%20renouvelable%20soumis%20%C3%A0%20appel%20d%E2%80%99offres%20en%20France%20avec%20l%E2%80%99int%C3%A9gration%20de%20nouvelles%20%C3%A9nergies%20%3A%20%0ABiom%C3%A9thane%20%28d%C3%A9signation%20et%20modification%29%20puis%20reprise%20de%20l%E2%80%99historique%20%E2%87%92%20Potentiel%20va%20simplifier%20et%20acc%C3%A9l%C3%A9rer%20le%20d%C3%A9veloppement%20du%20biom%C3%A9thane%2C%2060%20projets%20historiques%20%2B%20d%C3%A9signation%20de%2015%20projets%20%2F%20an%0APetite%20hydro%C3%A9lectricit%C3%A9%E2%80%A6%0A%2A%20La%20migration%20de%20toutes%20les%20fonctionnalit%C3%A9s%20sur%20un%20nouveau%20socle%20technique%20permettant%20les%20futurs%20%C3%A9changes%20automatis%C3%A9s%0A%2A%20Faciliter%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20avec%20tous%20les%20acteurs%20afin%20d%E2%80%99augmenter%20et%20d%E2%80%99acc%C3%A9l%C3%A9rer%20les%20projets%20en%20service%20en%20d%C3%A9veloppant%20les%20connexions%20API%20avec%20nos%20partenaires%20%0A%2A%20Impl%C3%A9menter%20l%E2%80%99ensemble%20des%20%C3%A9tapes%20de%20d%C3%A9veloppement%20des%20projets%2C%20de%20la%20notification%20%C3%A0%20leur%20mise%20en%20service%20%3A%20r%C3%A9cup%C3%A9ration%20automatique%20des%20projets%20CRE%20%2C%20finalisation%20du%20processus%20de%20gestion%20des%20garanties%20financi%C3%A8res%20et%20leur%20renouvellement%20%28de%20la%20d%C3%A9signation%20d%27un%20projet%20jusqu%27%C3%A0%20la%20main-lev%C3%A9e%29...%2C%20r%C3%A9cup%C3%A9ration%20automatique%20des%20dates%20de%20mise%20en%20service%0A%2A%20Am%C3%A9liorer%20la%20r%C3%A9tention%20des%20utilisateurs%20en%20ajoutant%20les%20fonctionnalit%C3%A9s%20n%C3%A9cessaires%20au%20parcours%20des%20nouveaux%20acteurs%20int%C3%A9gr%C3%A9se%0A%2A%20Mise%20%C3%A0%20disposition%20des%20donn%C3%A9es%20publiques%20%28data%20gouv%29%0A%0A%23%23%20Notre%20Vision%20gr%C3%A2ce%20%C3%A0%20Potentiel%0A%0A%2A%20Une%20baisse%20des%20d%C3%A9lais%20de%20traitement%20de%20chaque%20op%C3%A9ration%20entra%C3%AEne%20une%20diminution%20du%20temps%20entre%20la%20d%C3%A9signation%20et%20la%20mise%20en%20service%20et%20donc%20la%20possibilit%C3%A9%20de%20faire%20plus%20de%20projets%20pour%20chaque%20porteur%0A%2A%20Des%20statistiques%20%C3%A0%20jour%20et%20en%20temps%20r%C3%A9el%20pour%20le%20suivi%20de%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20PPE%20avec%20la%20possibilit%C3%A9%20d%E2%80%99apporter%20des%20modifications%20aux%20dispositifs%20de%20soutien%20pour%20un%20pilotage%20efficient%20et%20efficace%0A%0AEt%20bien%20plus%20encore%20%C3%A0%20venir%E2%80%A6", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-10-01", - "end": "2019-11-30" - }, - { - "name": "construction", - "start": "2019-11-30", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-01-01", - "end": "" - } - ], - "sponsors": [ - "mtes" - ], - "thematiques": [ - "Écologie" - ], - "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/potentiel-beta-gouv-fr/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://potentiel.beta.gouv.fr", - "size": 1064.54, - "nodes": 190, - "requests": 26, - "grade": "B", - "score": 80, - "ges": 1.4, - "water": 2.1, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 07:56:17.679492", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-30T05:23:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.87, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.97, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.98, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://recosante.beta.gouv.fr", - "category": "sgmas", - "betaId": "recosante", - "http": { - "url": "https://recosante.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:56:08 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 02:56:05 GMT", - "ETag": "\"2vnt5cvqj58bw\"", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "X-Powered-By": "Next.js", - "x-nextjs-cache": "HIT" - }, - "scan_id": 57048329, - "score": 50, - "start_time": "Sun, 20 Oct 2024 02:56:03 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://recosante.beta.gouv.fr", - "redirects": true, - "route": [ - "http://recosante.beta.gouv.fr/", - "https://recosante.beta.gouv.fr" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "zg7h", - "url": "https://recosante.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T02:04:19Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T08:17:48Z", - "next_check_at": "2024-11-24T08:22:46Z", - "created_at": "2021-04-22T19:59:37Z", - "mute_until": null, - "favicon_url": "https://recosante.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T08:07:49Z", - "expires_at": "2025-01-09T16:12:23Z", - "valid": true, - "error": null + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 122, - "connection": 166, - "handshake": 176, - "response": 176, - "total": 640 - } + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "recosante.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205432,7 +198334,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205440,7 +198342,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205448,7 +198350,7 @@ }, { "id": "cipherlist_LOW", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205456,7 +198358,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205464,7 +198366,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205472,455 +198374,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-11 16:12" + "finding": "2024-11-11 08:59" }, { "id": "cert_notAfter", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-09 16:12" + "finding": "2025-02-09 08:59" }, { "id": "cert_extlifeSpan", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732436215" + "finding": "1733040350" }, { "id": "HSTS_time", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, + { + "id": "X-Content-Type-Options", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://form.typeform.com;frame-ancestors 'self';" + }, + { + "id": "Expect-CT", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "*" + }, { "id": "Cache-Control", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "s-maxage=31536000, stale-while-revalidate" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -205928,7 +198858,7 @@ }, { "id": "heartbleed", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -205937,7 +198867,7 @@ }, { "id": "CCS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -205946,16 +198876,16 @@ }, { "id": "ticketbleed", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -205964,7 +198894,7 @@ }, { "id": "secure_renego", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -205972,7 +198902,7 @@ }, { "id": "secure_client_renego", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -205981,7 +198911,7 @@ }, { "id": "CRIME_TLS", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -205990,16 +198920,16 @@ }, { "id": "BREACH", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -206008,14 +198938,14 @@ }, { "id": "fallback_SCSV", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -206024,7 +198954,7 @@ }, { "id": "FREAK", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -206033,7 +198963,7 @@ }, { "id": "DROWN", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -206042,16 +198972,16 @@ }, { "id": "DROWN_hint", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2B4C1739847C774B848F8C8DF93D992078E5FC96A3B12EC24A4EABFFB6D2F000" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" }, { "id": "LOGJAM", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -206060,16 +198990,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -206078,7 +199008,7 @@ }, { "id": "LUCKY13", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -206087,7 +199017,7 @@ }, { "id": "winshock", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -206096,7 +199026,7 @@ }, { "id": "RC4", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -206105,1315 +199035,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "recosante.beta.gouv.fr/57.128.91.43", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "rating_doc", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "recosante.beta.gouv.fr/57.128.91.43", - "port": "443", - "severity": "INFO", - "finding": "73" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 08:15:28 GMT", - "etag": "\"2vnt5cvqj58bw\"", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "recosante.beta.gouv.fr", - "ip": "57.128.91.43", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://recosante.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "headless-ui", - "name": "Headless UI", - "description": "Headless UI is an unstyled component library for either React.js or Vue.js from the same people that created Tailwind CSS.", - "confidence": 100, - "version": null, - "icon": "Headless UI.svg", - "website": "https://headlessui.dev", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.1.3", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://recosante.beta.gouv.fr/", - "finalUrl": "https://recosante.beta.gouv.fr/", - "fetchTime": "2024-11-24T08:14:00.473Z", - "runWarnings": [ - "The page loaded too slowly to finish within the time limit. Results may be incomplete." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.58 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.86 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6089, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1494, - "firstMeaningfulPaint": 1494, - "largestContentfulPaint": 5208, - "interactive": 6089, - "speedIndex": 3957, - "totalBlockingTime": 656, - "maxPotentialFID": 304, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 638964933, - "observedNavigationStart": 0, - "observedNavigationStartTs": 638964933, - "observedFirstPaint": 866, - "observedFirstPaintTs": 639830808, - "observedFirstContentfulPaint": 866, - "observedFirstContentfulPaintTs": 639830808, - "observedFirstContentfulPaintAllFrames": 866, - "observedFirstContentfulPaintAllFramesTs": 639830808, - "observedFirstMeaningfulPaint": 866, - "observedFirstMeaningfulPaintTs": 639830808, - "observedLargestContentfulPaint": 866, - "observedLargestContentfulPaintTs": 639830808, - "observedLargestContentfulPaintAllFrames": 866, - "observedLargestContentfulPaintAllFramesTs": 639830808, - "observedTraceEnd": 45012, - "observedTraceEndTs": 683976564, - "observedDomContentLoaded": 865, - "observedDomContentLoadedTs": 639830228, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 876, - "observedFirstVisualChangeTs": 639840933, - "observedLastVisualChange": 1076, - "observedLastVisualChangeTs": 640040933, - "observedSpeedIndex": 889, - "observedSpeedIndexTs": 639853738 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 46, - "numScripts": 18, - "numStylesheets": 1, - "numFonts": 12, - "numTasks": 946, - "numTasksOver10ms": 9, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 98.578, - "throughput": 15566695.575759912, - "maxRtt": 100.241, - "maxServerLatency": 358.01800000000003, - "totalByteWeight": 1359638, - "totalTaskTime": 482.47599999999807, - "mainDocumentTransferSize": 62343 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://recosante.beta.gouv.fr/accessibilite/" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://recosante.beta.gouv.fr/mentions-legales/" + "id": "rating_doc", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 2, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://recosante.beta.gouv.fr/donnees-personnelles/" - } - ], - "betagouv": { - "id": "recosante", - "type": "startup", - "attributes": { - "name": "Recosanté", - "pitch": "Réduire l’exposition aux facteurs environnementaux nocifs pour la santé", - "stats_url": "https://recosante.beta.gouv.fr/stats/", - "link": "https://recosante.beta.gouv.fr/", - "repository": "https://github.com/betagouv/recosante/", - "contact": "contact@recosante.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APlusieurs%20associations%20et%20instances%20publiques%20fournissent%20des%20donn%C3%A9es%20li%C3%A9es%20aux%20facteurs%20environnementaux.%20Ces%20informations%20sont%20dispers%C3%A9es%20%C3%A0%20travers%20divers%20portails%20ou%20bases%20de%20donn%C3%A9es.%20Les%20recommandations%20li%C3%A9es%20%C3%A0%20ces%20indicateurs%20sont%20dispers%C3%A9es%20elles%20aussi%2C%20peu%20claires%20ou%20inexistantes.%20Un%20nombre%20croissant%20de%20citoyens%20se%20d%C3%A9clarent%20inquiets%20et%20int%C3%A9ress%C3%A9%20par%20l%E2%80%99environnement%20et%20la%20pollution%20%28source%20%3A%20%5Bvie-publique%5D%28https%3A%2F%2Fwww.vie-publique.fr%2Fen-bref%2F290379-lenvironnement-un-sujet-qui-preoccupe-de-plus-en-plus-les-francais%29%29.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0A25%25%20des%20d%C3%A9c%C3%A8s%20viennent%20de%20facteurs%20environnementaux%20%28source%20%3A%20%5BOMS%5D%28https%3A%2F%2Fwww.who.int%2Ffr%2Fnews%2Fitem%2F03-09-2021-who-and-un-partners-compendium-of-500-actions-aims-to-reduce-diseases-from-environmental-factors-and-save-lives%29%29.%20%0ALes%20citoyens%20ne%20sont%20inform%C3%A9s%20ni%20de%20ces%20facteurs%2C%20ni%20des%20leviers%20pour%20s%E2%80%99adapter.%0A%0A%23%23%20Notre%20solution%0A%0AInformer%20%2B%20recommander%20sur%20ces%20indicateurs%20en%20r%C3%A9unissiant%20ces%20diff%C3%A9rents%20indicateurs%20avec%20des%20recommandations%20intelligibles%20et%20actionnables%20via%20une%20application%20mobile.%0A%0A%23%23%20Notre%20cible%0A%0AGrand%20public%20avec%20une%20cible%20privil%C3%A9gi%C3%A9e%20sur%20%3A%20les%20personnes%20sensibles%20%28albinos%2C%20asthmatiques%2C%20allergiques%2C%20personnes%20enceintes%2C%20BPCO%E2%80%A6%29%20%2B%20joggeurs%20%2B%20velotaffeurs%20%0A%0A%23%23%20Notre%20mesure%20d%E2%80%99impact%20et%20les%20objectifs%20%3A%20%0A%0A-%09Mesure%20d%E2%80%99impact%20%3A%20MAU%20application%20mobile%0A-%09Objectif%20%3A%20Informer%20et%20adapter%20les%20comportements%20des%20citoyens%20vis%20%C3%A0%20vis%20des%20facteurs%20environnementaux%20pouvant%20impacter%20la%20sant%C3%A9%20n%C3%A9gativement.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2020-01-01", - "end": "2020-04-01" - }, - { - "name": "construction", - "start": "2020-04-01", - "end": "2021-06-01" - }, - { - "name": "acceleration", - "start": "2021-06-01", - "end": "" - } - ], - "sponsors": [ - "dgpr", - "dgs" - ], - "thematiques": [ - "Santé", - "Écologie" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/recosante-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" + "id": "protocol_support_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "sgmas" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://recosante.beta.gouv.fr", - "size": 3201.908, - "nodes": 457, - "requests": 62, - "grade": "D", - "score": 55, - "ges": 1.9, - "water": 2.85, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:10:46.296771", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-09T16:12:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.58, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.86, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "D", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://resorption-bidonvilles.beta.gouv.fr", - "category": "mtes", - "betaId": "resorption-bidonvilles", - "http": { - "url": "https://resorption-bidonvilles.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 05:23:01 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", - "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 20 Oct 2024 05:23:00 GMT", - "Server": "nginx", - "Strict-Transport-Security": "max-age=63072000; preload", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-XSS-Protection": "1; mode=block", - "set-cookie": "i18n_redirected=fr; Path=/; Expires=Mon, 20 Oct 2025 05:23:00 GMT; SameSite=Lax", - "x-powered-by": "Nuxt" + "id": "protocol_support_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "30" }, - "scan_id": 57051505, - "score": 75, - "start_time": "Sun, 20 Oct 2024 05:22:58 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "ws://localhost:*/_nuxt/", - "https://resorption-bidonvilles.beta.gouv.fr/_nuxt/", - "https://audience-sites.din.developpement-durable.gouv.fr", - "https://api.resorption-bidonvilles.beta.gouv.fr/" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "'self'" - ], - "img-src": [ - "https://audience-sites.din.developpement-durable.gouv.fr", - "'self'" - ], - "media-src": [ - "'self'" - ], - "script-src": [ - "'unsafe-inline'", - "'unsafe-eval'", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "i18n_redirected": { - "domain": "resorption-bidonvilles.beta.gouv.fr", - "expires": 1760937780, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": false - } - }, - "sameSite": null - }, - "pass": false, - "result": "cookies-without-secure-flag-but-protected-by-hsts", - "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://resorption-bidonvilles.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://resorption-bidonvilles.beta.gouv.fr/", - "https://resorption-bidonvilles.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; preload", - "includeSubDomains": false, - "max-age": 63072000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "j33c", - "url": "https://resorption-bidonvilles.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T12:46:16Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T08:15:57Z", - "next_check_at": "2024-11-24T08:20:54Z", - "created_at": "2021-04-22T19:59:37Z", - "mute_until": null, - "favicon_url": "https://resorption-bidonvilles.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T07:31:09Z", - "expires_at": "2025-02-05T15:07:48Z", - "valid": true, - "error": null + { + "id": "key_exchange_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 418, - "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 135, - "total": 553 - } + { + "id": "key_exchange_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "resorption-bidonvilles.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -207421,7 +199428,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -207429,7 +199436,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -207437,7 +199444,7 @@ }, { "id": "cipherlist_LOW", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -207445,7 +199452,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -207453,7 +199460,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -207461,525 +199468,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "cipherorder_TLSv1_2", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-11-07 15:07" + "finding": "2024-11-11 08:59" }, { "id": "cert_notAfter", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-02-05 15:07" + "finding": "2025-02-09 08:59" }, { "id": "cert_extlifeSpan", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732436284" + "finding": "1733040448" }, { "id": "HSTS_time", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Nuxt" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "finding": "0 at '/'" }, { - "id": "cookie_httponly", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "X-Content-Type-Options", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "severity": "OK", + "finding": "nosniff" }, { - "id": "X-Frame-Options", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "Content-Security-Policy", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://form.typeform.com;frame-ancestors 'self';" }, { - "id": "X-Content-Type-Options", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "Expect-CT", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;" }, { - "id": "Content-Security-Policy", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "Access-Control-Allow-Origin", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'" + "severity": "INFO", + "finding": "*" }, { - "id": "X-XSS-Protection", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "Cache-Control", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -207987,7 +199952,7 @@ }, { "id": "heartbleed", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -207996,7 +199961,7 @@ }, { "id": "CCS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -208005,16 +199970,16 @@ }, { "id": "ticketbleed", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -208023,7 +199988,7 @@ }, { "id": "secure_renego", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -208031,7 +199996,7 @@ }, { "id": "secure_client_renego", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -208040,7 +200005,7 @@ }, { "id": "CRIME_TLS", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -208049,1403 +200014,636 @@ }, { "id": "BREACH", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F9D2B50A436C8265E9AA58DEA5761D7E10596710B7B9EFDFEAB0A91823E3E298" - }, - { - "id": "LOGJAM", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "POODLE_SSL", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" }, { - "id": "clientsimulation-safari_121_ios_122", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "fallback_SCSV", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" }, { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "SWEET32", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" }, { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "FREAK", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "clientsimulation-java_7u25", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "DROWN", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "No connection" + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" }, { - "id": "clientsimulation-java_8u161", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "DROWN_hint", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C7C221EA3394FA1669DB5112F4D4010FD9FF0C4F05C5ED28C6A732DA5D4C438B" }, { - "id": "clientsimulation-java1102", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "LOGJAM", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "clientsimulation-java1703", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "LOGJAM-common_primes", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" }, { - "id": "clientsimulation-go_1178", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "BEAST", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" }, { - "id": "clientsimulation-libressl_283", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "LUCKY13", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "clientsimulation-openssl_102e", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "winshock", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" }, { - "id": "clientsimulation-openssl_110l", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "RC4", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "clientsimulation-openssl_111d", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_60", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "clientsimulation-openssl_303", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_70", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_81", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "rating_spec", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_X", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "rating_doc", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_11", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "protocol_support_score", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-android_12", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "protocol_support_score_weighted", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-chrome_79_win10", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "key_exchange_score", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-chrome_101_win10", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "key_exchange_score_weighted", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-firefox_66_win81", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher_strength_score", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-firefox_100_win10", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher_strength_score_weighted", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-ie_6_xp", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "No connection" }, { - "id": "final_score", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-ie_8_win7", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "No connection" }, { - "id": "overall_grade", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-ie_8_xp", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "INFO", + "finding": "No connection" }, { - "id": "scanTime", - "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "id": "clientsimulation-ie_11_win7", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "109" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_id.1519.1eeb", - "value": "238210e9d920ddb6.1732436183.1.1732436183.1732436183.", - "domain": ".resorption-bidonvilles.beta.gouv.fr", - "path": "/", - "expires": 1766391383, - "size": 68, - "httpOnly": false, - "secure": false, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_ses.1519.1eeb", - "value": "*", - "domain": ".resorption-bidonvilles.beta.gouv.fr", - "path": "/", - "expires": 1732437982, - "size": 18, - "httpOnly": false, - "secure": false, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "i18n_redirected", - "value": "en", - "domain": "resorption-bidonvilles.beta.gouv.fr", - "path": "/", - "expires": 1763972181.341616, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", - "content-type": "text/html;charset=utf-8", - "date": "Sun, 24 Nov 2024 08:16:21 GMT", - "server": "nginx", - "strict-transport-security": "max-age=63072000; preload", - "vary": "Accept-Encoding\nAccept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-powered-by": "Nuxt", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "resorption-bidonvilles.beta.gouv.fr", - "ip": "51.178.137.38", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://resorption-bidonvilles.beta.gouv.fr/": { - "status": 302 - }, - "https://resorption-bidonvilles.beta.gouv.fr/en": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "nuxt-js", - "name": "Nuxt.js", - "description": "Nuxt is a Vue framework for developing modern web applications.", - "confidence": 100, - "version": null, - "icon": "Nuxt.js.svg", - "website": "https://nuxt.com", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ] - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://resorption-bidonvilles.beta.gouv.fr/", - "finalUrl": "https://resorption-bidonvilles.beta.gouv.fr/", - "fetchTime": "2024-11-24T08:15:56.557Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.88 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.92 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6606, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2300, - "firstMeaningfulPaint": 2300, - "largestContentfulPaint": 2450, - "interactive": 6606, - "speedIndex": 3023, - "totalBlockingTime": 160, - "maxPotentialFID": 182, - "cumulativeLayoutShift": 0.0022113715277777774, - "cumulativeLayoutShiftMainFrame": 0.0022113715277777774, - "totalCumulativeLayoutShift": 0.0022113715277777774, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 400724461, - "observedNavigationStart": 0, - "observedNavigationStartTs": 400724461, - "observedFirstPaint": 1208, - "observedFirstPaintTs": 401932501, - "observedFirstContentfulPaint": 1208, - "observedFirstContentfulPaintTs": 401932501, - "observedFirstContentfulPaintAllFrames": 1208, - "observedFirstContentfulPaintAllFramesTs": 401932501, - "observedFirstMeaningfulPaint": 1208, - "observedFirstMeaningfulPaintTs": 401932501, - "observedLargestContentfulPaint": 1208, - "observedLargestContentfulPaintTs": 401932501, - "observedLargestContentfulPaintAllFrames": 1208, - "observedLargestContentfulPaintAllFramesTs": 401932501, - "observedTraceEnd": 4813, - "observedTraceEndTs": 405537891, - "observedLoad": 2347, - "observedLoadTs": 403071879, - "observedDomContentLoaded": 1240, - "observedDomContentLoadedTs": 401964645, - "observedCumulativeLayoutShift": 0.0022113715277777774, - "observedCumulativeLayoutShiftMainFrame": 0.0022113715277777774, - "observedTotalCumulativeLayoutShift": 0.0022113715277777774, - "observedFirstVisualChange": 1209, - "observedFirstVisualChangeTs": 401933461, - "observedLastVisualChange": 2242, - "observedLastVisualChangeTs": 402966461, - "observedSpeedIndex": 1270, - "observedSpeedIndexTs": 401994086 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 58, - "numScripts": 7, - "numStylesheets": 3, - "numFonts": 5, - "numTasks": 1347, - "numTasksOver10ms": 8, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 152.07899999999998, - "throughput": 82020287.86236677, - "maxRtt": 176.14499999999998, - "maxServerLatency": 200.23700000000005, - "totalByteWeight": 15837769, - "totalTaskTime": 293.20199999999704, - "mainDocumentTransferSize": 54756 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://app.resorption-bidonvilles.beta.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://app.resorption-bidonvilles.beta.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "resorption-bidonvilles", - "type": "startup", - "attributes": { - "name": "Résorption Bidonvilles", - "pitch": "Connaître, partager et agir pour résorber les bidonvilles", - "stats_url": "https://resorption-bidonvilles.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", - "link": "https://resorption-bidonvilles.beta.gouv.fr/", - "repository": "https://github.com/MTES-MCT/resorption-bidonvilles", - "contact": "contact@resorption-bidonvilles.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20%2A%2ALe%20constat%2A%2A%0A%0APr%C3%A8s%20de%20%2A%2A15%20000%20personnes%2A%2A%20%28dont%20environ%205%20000%20mineurs%29%20originaires%20en%20majeure%20partie%20de%20Roumanie%20et%20de%20Bulgarie%20vivent%20dans%20pr%C3%A8s%20de%20%2A%2A300%20bidonvilles%2A%2A.%20Pour%20parvenir%20%C3%A0%20une%20r%C3%A9sorption%20durable%20des%20bidonvilles%20les%20solutions%20sont%20connues%20%3A%20une%20action%20partenariale%20%C3%A0%20l%E2%80%99%C3%A9chelle%20d%E2%80%99un%20territoire%2C%20une%20intervention%20sur%20tous%20les%20sites%20d%C3%A8s%20l%E2%80%99implantation%2C%20un%20accompagnement%20vers%20l%E2%80%99insertion%20des%20habitants%20dans%20le%20respect%20des%20lois%20de%20la%20R%C3%A9publique.%0A%0AS%E2%80%99appuyant%20sur%20des%20exp%C3%A9riences%20locales%20r%C3%A9ussies%20%C3%A0%20Strasbourg%20et%20Toulouse%2C%20le%20gouvernement%20a%20d%C3%A9fini%20en%202018%20un%20nouveau%20cadre%20d%E2%80%99action%20pour%20les%20pr%C3%A9fets%20et%20fix%C3%A9%20%2A%2Aun%20objectif%20clair%20de%20r%C3%A9duction%20durable%20du%20nombre%20de%20personnes%20vivant%20dans%20ces%20lieux%20de%20vie%20informels.%2A%2A%C2%A0%0A%0A%3E%20%2A%E2%80%9CR%C3%A9sorber%2C%20cela%20signifie%20agir%20sur%20tous%20les%20bidonvilles%2C%20en%20les%20encadrant%20et%20en%20travaillant%20le%20plus%20t%C3%B4t%20possible%20%C3%A0%20l%E2%80%99accompagnement%20des%20personnes%20vers%20la%20sortie%2C%20dans%20le%20but%20d%E2%80%99une%20r%C3%A9sorption%20compl%C3%A8te%20des%20campements%E2%80%9D%2A%20%5BInstruction%20du%20Gouvernement%20du%2025%20janvier%202018%5D%28https%3A%2F%2Fwww.gouvernement.fr%2Fsites%2Fdefault%2Ffiles%2Fcontenu%2Fpiece-jointe%2F2018%2F06%2Fcirculaire_du_25_janvier_2018.pdf%29%0A%0AL%E2%80%99approche%20est%20globale.%20Il%20s%E2%80%99agit%20de%20couvrir%20l%E2%80%99ensemble%20des%20probl%C3%A9matiques%20se%20posant%20dans%20les%20bidonvilles%20%3A%20l%E2%80%99acc%C3%A8s%20aux%20droits%2C%20la%20scolarisation%2C%20l%E2%80%99insertion%20sociale%2C%20l%E2%80%99emploi%20mais%20aussi%20le%20respect%20de%20l%E2%80%99ordre%20public%2C%20la%20r%C3%A9gularit%C3%A9%20du%20s%C3%A9jour%2C%20la%20protection%20de%20l%E2%80%99enfance%20ou%20la%20r%C3%A9insertion%20dans%20le%20pays%20d%E2%80%99origine%E2%80%A6%0A%0A%2A%2AUn%20changement%20de%20paradigme%2A%2A%20qui%20n%C3%A9cessite%20un%20appui%20technique%20renforc%C3%A9%20aux%20territoires%2C%20une%20coordination%20entre%20de%20nombreux%20acteurs%20et%20un%20suivi%20plus%20soutenu%20sur%20l%27efficacit%C3%A9%20des%20actions%20et%20leur%20performance.%C2%A0%0A%0A%23%23%20La%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20pour%20acc%C3%A9l%C3%A9rer%20la%20r%C3%A9sorption%20des%20bidonvilles%0A%0ALa%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20est%20un%20outil%20d%E2%80%99information%2C%20de%20partage%20et%20de%20pilotage.%20Elle%20s%E2%80%99adresse%20%C3%A0%20tous%20les%20partenaires%20de%20terrain%20concern%C3%A9s%20%3A%20les%20services%20de%20l%E2%80%99%C3%89tat%2C%20les%20Direction%20D%C3%A9partementale%20de%20l%27Emploi%2C%20du%20Travail%20et%20des%20Solidarit%C3%A9s%20%28DDETS%29%2C%20les%20collectivit%C3%A9s%20territoriales%20et%20les%20op%C3%A9rateurs.%C2%A0%0A%0A%2A%2AElle%20r%C3%A9pond%20aux%20enjeux%20de%20l%E2%80%99ensemble%20des%20parties%20prenantes%20concern%C3%A9es%20par%20la%20r%C3%A9sorption%20des%20bidonvilles%20%3A%2A%2A%0A%0A%2A%20un%20suivi%20op%C3%A9rationnel%20facilit%C3%A9%20et%20simplifi%C3%A9%20pour%20les%20responsables%20publics%0A%2A%20une%20coordination%20renforc%C3%A9e%20entre%20les%20acteurs%20de%20la%20r%C3%A9sorption%0A%2A%20une%20meilleure%20visibilit%C3%A9%20des%20actions%20et%20de%20leurs%20insuffisances%20%C3%A9ventuelles%0A%2A%20la%20cr%C3%A9ation%20de%20nouvelles%20synergies%20et%20des%20arguments%20pour%20mobiliser%20de%20nouveaux%20partenaires%0A%2A%20un%20renforcement%20de%20l%27efficacit%C3%A9%20du%20pilotage%20aux%20niveaux%20national%20et%20local%20des%20actions%20de%20r%C3%A9sorption%0A%0A%23%23%20Des%20fonctionnalit%C3%A9s%20op%C3%A9rationnelles%20pour%20agir%0A%0ALa%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20%2A%2Apermet%20aux%20usagers%20de%20renseigner%2C%20de%20suivre%20et%20de%20valoriser%20les%20actions%20conduites%20sur%20les%20bidonvilles.%2A%2A%C2%A0%0A%0ASes%20fonctionnalit%C3%A9s%20se%20structurent%20autour%20de%203%20volets%20%3A%0A%0A%2A%20un%20volet%20pour%20%2A%2Asuivre%20les%20sites%2A%2A%20%3A%20cartographie%20des%20implantations%20%3B%20information%20de%20l%E2%80%99installation%2C%20la%20disparition%2C%20la%20r%C3%A9sorption%20ou%20l%E2%80%99%C3%A9vacuation%20d%E2%80%99un%20site%20et%20ses%20caract%C3%A9ristiques%20%28nombre%20de%20personnes%2C%20origines%2C%20conditions%20de%20vie%20telles%20que%20l%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99eau%2C%20l%E2%80%99%C3%A9vacuation%20des%20d%C3%A9chets%E2%80%A6%29.%C2%A0%0A%2A%20un%20volet%20pour%20%2A%2Asuivre%2C%20coordonner%20et%20piloter%20les%20actions%20de%20r%C3%A9sorption%2A%2A%20%3A%20utilisation%20et%20analyse%20des%20donn%C3%A9es%20pour%20chaque%20action%20de%20r%C3%A9sorption%20%3B%20suivi%20et%20pilotage%20des%20actions%20de%20r%C3%A9sorption%20conduite%20sur%20un%20site%20%3B%20partage%20des%20constats%20dans%20le%20journal%20du%20site%20dans%20une%20action%20multi-partenariale%20%3B%20suivi%20des%20actions%20des%20op%C3%A9rateurs%20intervenant%20aupr%C3%A8s%20des%20habitants.%0A%2A%20un%20volet%20pour%20%2A%2Avaloriser%20les%20actions%20mises%20en%20%C5%93uvre%2A%2A%20%3A%20%C3%A9change%20avec%20le%20r%C3%A9seau%20de%20partenaires%20du%20territoire%20ou%20avec%20des%20pairs%20pour%20le%20partage%20de%20bonnes%20pratiques%20%3B%20exportation%20des%20donn%C3%A9es%20%3B%20%C3%A9dition%20de%20bilans.%0A%0A%23%23%20L%E2%80%99%C3%A9volution%20de%20la%20plateforme%20et%20ses%20perspectives%0A%0AApr%C3%A8s%20avoir%20%C3%A9t%C3%A9%20exp%C3%A9riment%C3%A9e%20sur%20deux%20territoires%20exp%C3%A9rimentaux%20la%20Haute-Garonne%20et%20la%20Gironde%2C%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20a%20%C3%A9t%C3%A9%20%2A%2Ad%C3%A9ploy%C3%A9e%20sur%20l%E2%80%99ensemble%20du%20territoire%20national%20en%20juin%202019%2A%2A.%20Elle%20compte%20au%20mois%20de%20mai%202021%20%2A%2A289%20structures%2A%2A%20pour%20%2A%2A610%20personnes%20utilisatrices%2A%2A%20et%20a%20pour%20objectif%20d%E2%80%99atteindre%20les%201000%20usagers%20fin%202023.%0A%0AElle%20est%20incub%C3%A9e%20au%20sein%20de%20la%20Fabrique%20num%C3%A9rique%20du%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20%C3%A0%20l%E2%80%99automne%202019.%20Un%20an%20plus%20tard%2C%20laur%C3%A9ate%20du%C2%A0%20%5BFonds%20de%20transformation%20de%20l%E2%80%99action%20publique%20%28FTAP%29%5D%28https%3A%2F%2Fwww.gouvernement.fr%2Fla-plateforme-resorption-bidonvilles-laureate-du-fonds-de-transformation-de-l-action-publique-2020%29%2C%C2%A0%20la%20plateforme%20entre%20dans%20sa%20phase%20d%E2%80%99acc%C3%A9l%C3%A9ration.%20L%E2%80%99enveloppe%20d%27un%20million%20d%E2%80%99euros%20servira%20concr%C3%A8tement%20%C3%A0%20poursuivre%20son%20d%C3%A9veloppement%20avec%20%2A%2Aune%20strat%C3%A9gie%20de%20d%C3%A9ploiement%20qui%20vise%20la%20cr%C3%A9ation%20d%E2%80%99une%20v%C3%A9ritable%20dynamique%20collaborative%2C%20au%20sein%20d%E2%80%99un%20territoire%2A%2A%2C%20entre%20les%20acteurs%20engag%C3%A9s%20vers%20l%E2%80%99objectif%20de%20r%C3%A9sorption%2C%20en%20s%27appuyant%20sur%20les%20correspondants%20territoriaux%20de%20la%20Dihal.%C2%A0%0A%0APort%C3%A9e%20par%20la%20Dihal%2C%20l%E2%80%99objectif%20%C3%A0%20long%20terme%20est%20de%20%2A%2Afaire%20de%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20l%E2%80%99outil%20m%C3%A9tier%20de%20r%C3%A9f%C3%A9rence%20de%20cette%20politique%20publique%20pour%20acc%C3%A9l%C3%A9rer%20la%20r%C3%A9sorption%20des%20bidonvilles%2A%2A%20avec%20l%E2%80%99ensemble%20des%20partenaires%20concern%C3%A9s.%0A%0A%23%23%20En%20savoir%20plus%0A%0AInscrivez-vous%20%C3%A0%20l%E2%80%99une%20de%20nos%20formations%20de%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20%3A%20%5B2%20sessions%20par%20semaine%5D%28https%3A%2F%2Fapp.evalandgo.com%2Fs%2Findex.php%3Fa%3DJTk2cCU5N2slOUElQjA%3D%26id%3DJTk4ayU5QW4lOTYlQUY%3D%29%0A%0AContactez-nous%20%3A%20%5Bcontact%40resorption-bidonvilles.beta.gouv.fr%5D%28mailto%3Acontact%40resorption-bidonvilles.beta.gouv.fr%29%C2%A0%0A%0A%0A%0A%2ADerni%C3%A8re%20mise%20%C3%A0%20jour%20%3A%2023%20juin%202021%2A%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2018-10-01", - "end": "2018-12-31" - }, - { - "name": "construction", - "start": "2019-01-01", - "end": "2020-08-31" - }, - { - "name": "acceleration", - "start": "2020-09-01", - "end": "" - }, - { - "name": "transfer", - "start": "2021-09-01", - "end": "" - } - ], - "sponsors": [ - "dihal" - ], - "thematiques": [] - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://resorption-bidonvilles.beta.gouv.fr", - "size": 2223.366, - "nodes": 425, - "requests": 33, - "grade": "C", - "score": 65, - "ges": 1.7, - "water": 2.55, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:12:50.405965", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-05T15:07:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.88, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.92, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://santepsy.etudiant.gouv.fr", - "category": "dinum", - "betaId": "sante-psy-etudiant", - "http": { - "url": "https://santepsy.etudiant.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:41:00 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Accept-Ranges": "bytes", - "Cache-Control": "no-cache, no-store, must-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net https://*.crisp.chat data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://*.crisp.chat 'sha256-t4VtNIUiuBKi5VJfKaIxe2Ww1/6O3gae/Qtmhx4B0uE=';script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/ https://game.crisp.chat;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/ wss://client.relay.crisp.chat https://client.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://cdn.jsdelivr.net", - "Content-Type": "text/html; charset=UTF-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 06:40:59 GMT", - "ETag": "W/\"6a9-191e00683a8\"", - "Expires": "0", - "Feature-Policy": "geolocation 'self'", - "Last-Modified": "Wed, 11 Sep 2024 07:40:09 GMT", - "Origin-Agent-Cluster": "?1", - "Permissions-Policy": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()", - "Pragma": "no-cache", - "Referrer-Policy": "no-referrer", - "Server": "nginx", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "465a5e8a-a5d3-4ab0-89e4-71c567a342e8", - "X-XSS-Protection": "0" - }, - "scan_id": 57053226, - "score": 110, - "start_time": "Sun, 20 Oct 2024 06:40:58 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://client.axept.io/", - "https://cdn.jsdelivr.net", - "https://storage.crisp.chat", - "https://nominatim.openstreetmap.org", - "wss://stream.relay.crisp.chat", - "wss://client.relay.crisp.chat", - "https://stats.beta.gouv.fr/", - "'self'", - "https://client.crisp.chat" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "data:", - "https:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "https://santepsy-metabase.osc-secnum-fr1.scalingo.io", - "https://game.crisp.chat", - "https://bid.g.doubleclick.net/", - "https://stats.santepsyetudiant.beta.gouv.fr" - ], - "img-src": [ - "https://axeptio.imgix.net", - "'self'", - "https://*.tile.openstreetmap.org/", - "https://*.crisp.chat", - "https://googleads.g.doubleclick.net", - "https://www.google.com/", - "https://stats.beta.gouv.fr/", - "https://www.facebook.com", - "data:", - "https://www.google.fr/" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "https://static.axept.io/", - "https://*.crisp.chat", - "https://www.googleadservices.com/", - "https://googleads.g.doubleclick.net", - "https://www.googletagmanager.com/", - "'sha256-sqjiu0yvewrfwpjx2fpbsuhfmtb6cd2u2u+ip0kxg4c='", - "https://stats.beta.gouv.fr/", - "'self'", - "https://connect.facebook.net", - "'sha256-t4vtniuiubki5vjfkaixe2ww1/6o3gae/qtmhx4b0ue='" - ], - "script-src-attr": [ - "'unsafe-inline'", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "https:", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://santepsy.etudiant.gouv.fr/", - "redirects": true, - "route": [ - "http://santepsy.etudiant.gouv.fr/", - "https://santepsy.etudiant.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "pkzo", - "url": "https://santepsy.etudiant.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 99.692, - "down": false, - "down_since": null, - "up_since": "2024-11-24T05:30:31Z", - "error": null, - "period": 120, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:2638191418", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T08:37:55Z", - "next_check_at": "2024-11-24T08:39:54Z", - "created_at": "2021-04-02T08:14:32Z", - "mute_until": null, - "favicon_url": "https://santepsy.etudiant.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T08:27:59Z", - "expires_at": "2025-01-23T23:59:59Z", - "valid": true, - "error": null + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 71, - "connection": 126, - "handshake": 129, - "response": 164, - "total": 489 - } + { + "id": "clientsimulation-ie_11_win81", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "santepsy.etudiant.gouv.fr", - "protocol": "tcp", - "closed_ports": "850", - "open_ports": [ - { - "service": { - "name": "tcpwrapped", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "service", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "id": "clientsimulation-ie_11_winphone81", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "No connection" }, { - "id": "pre_128cipher", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "id": "clientsimulation-ie_11_win10", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "SSLv2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "id": "clientsimulation-edge_15_win10", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "WARN", - "finding": "couldn't be tested, socket problem" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "SSLv3", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanProblem", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "id": "clientsimulation-safari_121_ios_122", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "FATAL", - "finding": "repeated TCP connect problems, giving up" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" + "severity": "INFO", + "finding": "400" } ], "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null + "trackers": [ + { + "type": "unknown", + "url": "https://eu.i.posthog.com/decide/?v=3&ip=1&_=1733040037813&ver=1.170.1&compression=base64" + }, + { + "type": "unknown", + "url": "https://eu-assets.i.posthog.com/static/recorder.js?v=1.170.1" + } + ], + "cookies": [], + "headers": { + "access-control-allow-origin": "*", + "cache-control": "no-cache", + "content-encoding": "gzip", + "content-security-policy": "script-src 'self'; default-src 'none';base-uri 'self';form-action 'self';script-src-elem 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://eu.i.posthog.com https://eu-assets.i.posthog.com https://embed.typeform.com;style-src 'self' 'unsafe-inline' https://embed.typeform.com;font-src 'self';img-src 'self' data:;object-src 'self';connect-src 'self' https://conseillers-entreprises.service-public.fr https://stats.beta.gouv.fr https://sentry.incubateur.net https://embed.typeform.com https://eu.i.posthog.com https://api.typeform.com;worker-src 'self' blob:;frame-src 'self' https://form.typeform.com;frame-ancestors 'self';", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 08:00:36 GMT", + "etag": "W/\"a14-lm+stbCL8dnkRps14MglM8Gn+xo\"", + "expect-ct": "default-src 'self' https://sentry.incubateur.net;report-uri https://sentry.incubateur.net/api/137/security/?sentry_key=caf416235f164b448d0ca6369f2053e5;", + "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", + "x-request-id": "62ae39b2-10b9-4760-90b8-649e7fd2ac55" + }, + "endpoints": [ + { + "hostname": "mission-transition-ecologique.beta.gouv.fr", + "ip": "109.232.233.130", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "eu.i.posthog.com", + "ip": "35.157.7.134", + "geoip": { + "city": { + "geoname_id": 2925533, + "names": { + "de": "Frankfurt am Main", + "en": "Frankfurt am Main", + "es": "Francfort", + "fr": "Francfort-sur-le-Main", + "ja": "フランクフルト・アム・マイン", + "pt-BR": "Frankfurt am Main", + "ru": "Франкфурт", + "zh-CN": "法兰克福" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2921044, + "is_in_european_union": true, + "iso_code": "DE", + "names": { + "de": "Deutschland", + "en": "Germany", + "es": "Alemania", + "fr": "Allemagne", + "ja": "ドイツ連邦共和国", + "pt-BR": "Alemanha", + "ru": "ФРГ", + "zh-CN": "德国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 50.1187, + "longitude": 8.6842, + "time_zone": "Europe/Berlin" + }, + "postal": { + "code": "60313" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 2905330, + "iso_code": "HE", + "names": { + "de": "Hessen", + "en": "Hesse", + "es": "Hessen", + "fr": "Hesse", + "ja": "ヘッセン州", + "pt-BR": "Hesse", + "ru": "Гессен", + "zh-CN": "黑森州" + } + } + ] + } + }, + { + "hostname": "eu-assets.i.posthog.com", + "ip": "104.22.58.181", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] }, "wappalyzer": { "urls": { - "https://santepsy.etudiant.gouv.fr/": { + "https://mission-transition-ecologique.beta.gouv.fr/": { "status": 200 } }, @@ -209468,6 +200666,24 @@ ], "rootPath": true }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, { "slug": "php", "name": "PHP", @@ -209486,32 +200702,14 @@ ] }, { - "slug": "leaflet", - "name": "Leaflet", - "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", - "confidence": 100, - "version": "1.9.3", - "icon": "Leaflet.png", - "website": "https://leafletjs.com", - "cpe": null, - "categories": [ - { - "id": 35, - "slug": "maps", - "name": "Maps" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, "categories": [ { "id": 12, @@ -209521,47 +200719,6 @@ ], "rootPath": true }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "mobx", - "name": "MobX", - "description": null, - "confidence": 100, - "version": null, - "icon": "MobX.svg", - "website": "https://mobx.js.org", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, { "slug": "matomo-analytics", "name": "Matomo Analytics", @@ -209581,37 +200738,24 @@ "rootPath": true }, { - "slug": "livefyre", - "name": "Livefyre", - "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", - "confidence": 0, - "version": "1.9.3", - "icon": "Livefyre.png", - "website": "https://livefyre.com", - "cpe": null, - "categories": [ - { - "id": 15, - "slug": "comment-systems", - "name": "Comment systems" - } - ], - "rootPath": true - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", "confidence": 100, "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", "cpe": null, "categories": [ { - "id": 31, - "slug": "cdn", - "name": "CDN" + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" } ], "rootPath": true @@ -209635,30 +200779,13 @@ "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", + "icon": "Open Graph.png", + "website": "https://ogp.me", "cpe": null, "categories": [ { @@ -209666,7 +200793,8 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ] + ], + "rootPath": true } ] }, @@ -209674,9 +200802,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://santepsy.etudiant.gouv.fr/", - "finalUrl": "https://santepsy.etudiant.gouv.fr/", - "fetchTime": "2024-11-24T08:31:42.361Z", + "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/", + "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/", + "fetchTime": "2024-12-01T07:59:44.281Z", "runWarnings": [], "categories": { "performance": { @@ -209687,7 +200815,7 @@ "snapshot" ], "id": "performance", - "score": 0.69 + "score": 0.33 }, "accessibility": { "title": "Accessibility", @@ -209698,7 +200826,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.81 + "score": 0.88 }, "best-practices": { "title": "Best Practices", @@ -209719,7 +200847,160 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9142, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 4807, + "firstMeaningfulPaint": 4955, + "largestContentfulPaint": 5705, + "interactive": 9142, + "speedIndex": 6017, + "totalBlockingTime": 1166, + "maxPotentialFID": 765, + "cumulativeLayoutShift": 0.08610523223876952, + "cumulativeLayoutShiftMainFrame": 0.08610523223876952, + "totalCumulativeLayoutShift": 0.08610523223876952, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 395418235, + "observedNavigationStart": 0, + "observedNavigationStartTs": 395418235, + "observedFirstPaint": 1610, + "observedFirstPaintTs": 397028479, + "observedFirstContentfulPaint": 1610, + "observedFirstContentfulPaintTs": 397028479, + "observedFirstContentfulPaintAllFrames": 1610, + "observedFirstContentfulPaintAllFramesTs": 397028479, + "observedFirstMeaningfulPaint": 1610, + "observedFirstMeaningfulPaintTs": 397028479, + "observedLargestContentfulPaint": 1610, + "observedLargestContentfulPaintTs": 397028479, + "observedLargestContentfulPaintAllFrames": 1610, + "observedLargestContentfulPaintAllFramesTs": 397028479, + "observedTraceEnd": 5867, + "observedTraceEndTs": 401285540, + "observedLoad": 2344, + "observedLoadTs": 397762079, + "observedDomContentLoaded": 1592, + "observedDomContentLoadedTs": 397010430, + "observedCumulativeLayoutShift": 0.08610523223876952, + "observedCumulativeLayoutShiftMainFrame": 0.08610523223876952, + "observedTotalCumulativeLayoutShift": 0.08610523223876952, + "observedFirstVisualChange": 1615, + "observedFirstVisualChangeTs": 397033235, + "observedLastVisualChange": 2065, + "observedLastVisualChangeTs": 397483235, + "observedSpeedIndex": 1627, + "observedSpeedIndexTs": 397045118 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 43, + "numScripts": 4, + "numStylesheets": 1, + "numFonts": 3, + "numTasks": 1756, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, + "numTasksOver50ms": 4, + "numTasksOver100ms": 3, + "numTasksOver500ms": 0, + "rtt": 1.64, + "throughput": 9840765.47690394, + "maxRtt": 160.722, + "maxServerLatency": 15.213999999999999, + "totalByteWeight": 1470310, + "totalTaskTime": 754.9659999999969, + "mainDocumentTransferSize": 1564 + } + ] + } + } + } + }, + { + "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", + "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", + "fetchTime": "2024-12-01T08:00:00.466Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.24 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 }, "pwa": { "title": "PWA", @@ -209739,53 +201020,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2014, + "numericValue": 10483, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2014, - "firstMeaningfulPaint": 2014, - "largestContentfulPaint": 9589, - "interactive": 2014, - "speedIndex": 4866, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.09040465174780951, - "cumulativeLayoutShiftMainFrame": 0.09040465174780951, - "totalCumulativeLayoutShift": 0.09040465174780951, + "firstContentfulPaint": 5005, + "firstMeaningfulPaint": 5239, + "largestContentfulPaint": 6019, + "interactive": 10483, + "speedIndex": 7753, + "totalBlockingTime": 2322, + "maxPotentialFID": 817, + "cumulativeLayoutShift": 0.08386750920613607, + "cumulativeLayoutShiftMainFrame": 0.08386750920613607, + "totalCumulativeLayoutShift": 0.13257356389363606, "observedTimeOrigin": 0, - "observedTimeOriginTs": 515904841, + "observedTimeOriginTs": 411365808, "observedNavigationStart": 0, - "observedNavigationStartTs": 515904841, - "observedFirstPaint": 2329, - "observedFirstPaintTs": 518234297, - "observedFirstContentfulPaint": 2329, - "observedFirstContentfulPaintTs": 518234297, - "observedFirstContentfulPaintAllFrames": 2329, - "observedFirstContentfulPaintAllFramesTs": 518234297, - "observedFirstMeaningfulPaint": 2329, - "observedFirstMeaningfulPaintTs": 518234297, - "observedLargestContentfulPaint": 2974, - "observedLargestContentfulPaintTs": 518878503, - "observedLargestContentfulPaintAllFrames": 2974, - "observedLargestContentfulPaintAllFramesTs": 518878503, - "observedTraceEnd": 5411, - "observedTraceEndTs": 521315538, - "observedLoad": 2540, - "observedLoadTs": 518444460, - "observedDomContentLoaded": 2294, - "observedDomContentLoadedTs": 518198416, - "observedCumulativeLayoutShift": 0.09040465174780951, - "observedCumulativeLayoutShiftMainFrame": 0.09040465174780951, - "observedTotalCumulativeLayoutShift": 0.09040465174780951, - "observedFirstVisualChange": 2341, - "observedFirstVisualChangeTs": 518245841, - "observedLastVisualChange": 3207, - "observedLastVisualChangeTs": 519111841, - "observedSpeedIndex": 2719, - "observedSpeedIndexTs": 518623588 + "observedNavigationStartTs": 411365808, + "observedFirstPaint": 1812, + "observedFirstPaintTs": 413177323, + "observedFirstContentfulPaint": 1812, + "observedFirstContentfulPaintTs": 413177323, + "observedFirstContentfulPaintAllFrames": 1812, + "observedFirstContentfulPaintAllFramesTs": 413177323, + "observedFirstMeaningfulPaint": 1812, + "observedFirstMeaningfulPaintTs": 413177323, + "observedLargestContentfulPaint": 1812, + "observedLargestContentfulPaintTs": 413177323, + "observedLargestContentfulPaintAllFrames": 1812, + "observedLargestContentfulPaintAllFramesTs": 413177323, + "observedTraceEnd": 6224, + "observedTraceEndTs": 417589323, + "observedLoad": 2446, + "observedLoadTs": 413811900, + "observedDomContentLoaded": 1791, + "observedDomContentLoadedTs": 413156468, + "observedCumulativeLayoutShift": 0.08386750920613607, + "observedCumulativeLayoutShiftMainFrame": 0.08386750920613607, + "observedTotalCumulativeLayoutShift": 0.13257356389363606, + "observedFirstVisualChange": 1817, + "observedFirstVisualChangeTs": 413182808, + "observedLastVisualChange": 3300, + "observedLastVisualChangeTs": 414665808, + "observedSpeedIndex": 1869, + "observedSpeedIndexTs": 413235303 }, { "lcpInvalidated": false @@ -209803,23 +201084,23 @@ "type": "debugdata", "items": [ { - "numRequests": 34, - "numScripts": 5, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 19, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 1.021, - "throughput": 18388740.537724547, - "maxRtt": 159.363, - "maxServerLatency": 38.65899999999999, - "totalByteWeight": 2938746, - "totalTaskTime": 4860.061, - "mainDocumentTransferSize": 2751 + "numRequests": 37, + "numScripts": 4, + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 2157, + "numTasksOver10ms": 8, + "numTasksOver25ms": 6, + "numTasksOver50ms": 5, + "numTasksOver100ms": 4, + "numTasksOver500ms": 0, + "rtt": 2.1879999999999997, + "throughput": 17812069.285514195, + "maxRtt": 163.878, + "maxServerLatency": 17.657, + "totalByteWeight": 3670876, + "totalTaskTime": 1321.058000000014, + "mainDocumentTransferSize": 1564 } ] } @@ -209835,82 +201116,90 @@ "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://santepsy.etudiant.gouv.fr/declaration-accessibilite" + "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", "maxScore": 4, - "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], + "score": 4, + "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://santepsy.etudiant.gouv.fr/mentions-legales" + "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": "Politique de confidentialité", + "mention": "Données personnelles", "maxScore": 4, "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://santepsy.etudiant.gouv.fr/politique-de-confidentialite" + "declarationUrl": "https://mission-transition-ecologique.beta.gouv.fr/donnees-personnelles" } ], "betagouv": { - "id": "sante-psy-etudiant", + "id": "transition-ecologique-des-entreprises", "type": "startup", "attributes": { - "name": "Santé Psy Étudiant", - "pitch": "Dispositif dédié aux étudiants de l'enseignement supérieur, SPE permet à un étudiant de bénéficier de consultations avec des psychologues validés par les services médicaux des universités sans avance de frais.", - "stats_url": "https://santepsy.etudiant.gouv.fr/stats", - "link": "https://santepsy.etudiant.gouv.fr/", - "repository": "https://github.com/betagouv/sante-psy/", - "contact": "support-santepsyetudiant@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALa%20crise%20sanitaire%20du%20Covid-19%20a%20contribu%C3%A9%20%C3%A0%20exacerber%20et%20r%C3%A9v%C3%A9ler%20l%27%C3%A9tat%20de%20la%20sant%C3%A9%20mentale%20des%20%C3%A9tudiants%20en%20France.%20Cette%20%C3%A9tape%20transitionnelle%20de%20vie%2C%20entre%20l%27adolescence%20et%20l%27%C3%A2ge%20adulte%2C%20engendre%20en%20effet%20des%20questionnements%2C%20des%20doutes%20et%20parfois%20des%20troubles%20de%20la%20sant%C3%A9%20mentale.%0A%0AA%20partir%20de%20mars%202021%2C%20le%20minist%C3%A8re%20de%20l%27Enseignement%20Sup%C3%A9rieur%20et%20de%20la%20Recherche%20a%20donc%20mis%20en%20place%20un%20dispositif%20d%27accompagnement%20psychologique%20pour%20permettre%20aux%20%C3%A9tudiants%20de%20b%C3%A9n%C3%A9ficier%20de%20consultations%20aupr%C3%A8s%20de%20psychologues%20agr%C3%A9%C3%A9s%20sans%20avance%20de%20frais.%0A%0AOutre%20ce%20dispositif%20de%20prise%20en%20charge%20des%20consultations%20par%20les%20universit%C3%A9s%2C%20Sant%C3%A9%20Psy%20Etudiant%20c%27est%20aussi%20%3A%0A-%20Un%20portail%20d%27information%20en%20ligne%20pour%20les%20%C3%A9tudiants%2C%20leurds%20proches%2C%20les%20psychologues%20et%20les%20m%C3%A9decins%20qui%20ont%20des%20questions%20sur%20le%20dispositif%20et%2Fou%20souhaite%20consulter%20l%27annuaire%20des%20psychologues%20disponibles%20%3B%0A-%20Un%20outil%20de%20suivi%20et%20de%20facturation%20de%20la%20patient%C3%A8le%20%C3%A9tudiante%20des%20psychologues%20%3B%20%0A-%20Une%20marque%20qui%20cr%C3%A9%C3%A9e%20du%20contenu%20pour%20pr%C3%A9venir%20et%20d%C3%A9culpabiliser%20les%20enjeux%20autour%20de%20la%20sant%C3%A9%20mentale%20en%20adressant%20les%20%C3%A9tudiants%20mais%20aussi%20leurs%20proches%20%3B%0A-%20Et%20la%20mise%20en%20place%20de%20partenariats%20avec%20des%20acteurs%20divers%20pour%20toucher%20toujours%20plus%20d%27%C3%A9tudiants%20et%20faciliter%20la%20prise%20de%20rendez-vous%20avec%20un%20psychologue%20%28Doctolib%2C%20Pass%20Culture%2C%20Pass%20Sport%2C%20Nightline%2C%20etc.%29.", + "name": "Transition Écologique des Entreprises", + "pitch": "Guider les entreprises dans leur transition écologique", + "stats_url": "https://mission-transition-ecologique.beta.gouv.fr/stats", + "budget_url": "https://mission-transition-ecologique.beta.gouv.fr/budget", + "link": "http://mission-transition-ecologique.beta.gouv.fr", + "repository": "https://github.com/betagouv/mission-transition-ecologique", + "contact": "contact@mission-transition-ecologique.beta.gouv.fr", + "content_url_encoded_markdown": "Le%20service%20public%20Transition%20%C3%89cologique%20des%20Entreprises%20est%20un%20guichet%20d%27accueil%2C%20d%27aide%20et%20d%27accompagnement%20dans%20la%20transition%20%C3%A9cologique%20des%20entreprises.%0A%0A%23%23%20Probl%C3%A8mes%0A%0A%23%23%23%20La%20France%20ne%20respecte%20pas%20ses%20objectifs%20climat-%C3%A9nergie%0A%0AEn%20France%2C%20nous%20r%C3%A9duisons%20lentement%20nos%20%C3%A9missions%20de%20gaz%20%C3%A0%20effet%20de%20serres%20et%20nos%20consommations%20d%27%C3%A9nergie.%20C%27est%20bien%2C%20mais%20insuffisant.%20Le%20%5BHaut%20Conseil%20pour%20le%20Climat%5D%28https%3A%2F%2Fwww.hautconseilclimat.fr%2F%29%20et%20l%27%5BObservatoire%20Climat-%C3%89nergie%5D%28https%3A%2F%2Fwww.observatoire-climat-energie.fr%2F%29%20sont%20l%C3%A0%20pour%20nous%20le%20rappeler.%20Nos%20objectifs%20de%20la%20Strat%C3%A9gie%20National%20Bas%20Carbone%20%28SNBC%29%2C%20et%20des%20Programmations%20pluriannuelles%20de%20l%27%C3%A9nergie%20%28PPE%29%20n%27ont%20pas%20%C3%A9t%C3%A9%20atteint%20en%202021.%0A%0ALa%20mise%20en%20%C5%93uvre%20de%20cette%20strat%C3%A9gie%20n%C3%A9cessitera%20des%20investissements%20massifs%20et%20de%20nouvelles%20expertises.%20Les%20m%C3%A9tiers%20et%20les%20mod%C3%A8les%20%C3%A9conomiques%20vont%20devoir%20se%20transformer.%20Les%20financements%20publics%20et%20priv%C3%A9s%20devront%20donc%20augmenter%20de%20plusieurs%20milliards%20d%E2%80%99euros%20par%20an%20ces%20prochaines%20ann%C3%A9es%2C%20pour%20accompagner%20ces%20mutations%20%C3%A9conomiques.%20Comme%20le%20dit%20le%20rapport%20du%20%5BGIEC%5D%28https%3A%2F%2Fwww.ipcc.ch%2Flanguages-2%2Ffrancais%2F%29%20%3A%20%C2%AB%20Chaque%20dixi%C3%A8me%20de%20degr%C3%A9%20gagn%C3%A9%20compte%20%C2%BB%0A%0A%23%23%23%20M%C3%A9connaissance%20des%20enjeux%20et%20illisibilit%C3%A9%20des%20dispositifs%20d%27aide%20aux%20entreprises%0A%0AA%20d%C3%A9faut%20d%E2%80%99une%20vision%20claire%20des%20opportunit%C3%A9s%20et%20des%20risques%2C%20les%20entreprises%20ignorent%2C%20majoritairement%2C%20les%20actions%20%C3%A0%20engager.%20L%27un%20des%20freins%20%C3%A0%20l%E2%80%99action%20est%20le%20manque%20d%E2%80%99informations%20et%20de%20temps%20%C3%A0%20y%20consacrer.%20Contrairement%20aux%20grandes%20entreprises%2C%20les%20TPE%2C%20PME%20et%20ETI%20n%E2%80%99ont%20pas%20encore%20d%E2%80%99obligations%20l%C3%A9gales%20et%20de%20personnes%20d%C3%A9di%C3%A9es%20%C3%A0%20ces%20sujets.%20La%20transition%20%C3%A9cologique%20et%20%C3%A9nerg%C3%A9tique%20%28TEE%29%20est%20parfois%20per%C3%A7ue%20par%20certains%20dirigeants%20comme%20n%C3%A9cessaire%20%C3%A0%20long-terme%20mais%20co%C3%BBteuse%20et%20ainsi%20non%20prioritaire%20%C3%A0%20court-terme.%0A%0AD%27autres%20entreprises%20ne%20parviennent%20pas%20%C3%A0%20mettre%20en%20%C5%93uvre%20leurs%20projets.%20Pour%20ces%20seconds%2C%20minoritaires%2C%20la%20difficult%C3%A9%20n%E2%80%99est%20pas%20d%E2%80%99identifier%20des%20actions%20et%20des%20projets%20mais%20d%27%C3%AAtre%20accompagn%C3%A9%20afin%20de%20les%20mettre%20en%20%C5%93uvre%2C%20et%20de%20les%20financer.%0A%0ADepuis%20peu%2C%20nous%20observons%20une%20multiplication%20des%20dispositifs%20d%27aides%20par%20les%20op%C3%A9rateurs%20publics%20%28ADEME%2C%20BPI%2C%20ASP...%29%20et%20par%20les%20collectivit%C3%A9s%20%28r%C3%A9gionales%20principalement%29.%20Les%20entreprises%20ne%20comprennent%20pas%20toujours%20par%20quelle%20porte%20d%27entr%C3%A9e%20et%20dans%20quelles%20conditions%20elles%20peuvent%20b%C3%A9n%C3%A9ficier%20de%20ces%20aides%20aupr%C3%A8s%20des%20acteurs%20publics.%0A%0ASurtout%20que%20les%20dispositifs%20d%E2%80%99aide%20%C3%A0%20la%20transition%20%C3%A9cologique%20des%20entreprises%20sont%20nombreux%20et%20de%20nature%20diverse.%20Ils%20r%C3%A9pondent%20%C3%A0%20des%20besoins%20vari%C3%A9s%2C%20allant%20de%20cr%C3%A9dits%20d%E2%80%99imp%C3%B4ts%20jusqu%E2%80%99%C3%A0%20des%20programmes%20d%E2%80%99accompagnement%20individualis%C3%A9s.%0A%0ACette%20situation%20rend%20illisible%20pour%20le%20chef%20d%E2%80%99entreprise%2C%20a%20fortiori%20de%20TPE%2FPME%2C%20le%20parcours%20%C3%A0%20effectuer%20pour%20r%C3%A9aliser%20une%20d%C3%A9marche%20de%20transition%20%C3%A9cologique%20de%20son%20entreprise.%20Or%2C%20rien%20que%20pour%20la%20d%C3%A9carbonation%2C%20les%20analyses%20sectorielles%2C%20men%C3%A9es%20sur%20l%E2%80%99industrie%20et%20l%E2%80%99%C3%A9conomie%20de%20proximit%C3%A9%2C%20montrent%20que%20pr%C3%A8s%20de%202%20millions%20d%E2%80%99entreprises%20devront%20verdir%20leur%20activit%C3%A9%20%C3%A0%20un%20degr%C3%A9%20plus%20ou%20moins%20pouss%C3%A9%20pour%20atteindre%20les%20objectifs%20de%20la%20SNBC%20-%20Strat%C3%A9gie%20Nationale%20Bas%20Carbone.%0A%0AEnfin%2C%20m%C3%AAme%20par%20bonne%20volont%C3%A9%2C%20l%27entreprise%20ne%20peut%20pas%20toujours%20agir%20seule.%20Les%20transformatoins%20doivent%20se%20situer%20%C3%A0%20un%20niveau%20sup%C3%A9rieur%2C%20%C3%A0%20une%20%C3%A9chelle%20locale%2C%20sectoriele%20ou%20r%C3%A9glementaire%2C%20dont%20les%20dirigeants%20ont%20une%20influence%20partielle.%0A%0A%23%23%20Solution%20%3A%20Un%20espace%20d%27accueil%20num%C3%A9rique%20et%20un%20parcours%20raccourci%20pour%20aider%20les%20entreprises%20dans%20leurs%20actions%0A%0ALa%20startup%20d%27%C3%89tat%20permettra%20au%20plus%20grand%20nombre%20d%E2%80%99entreprises%2C%20via%20un%20outil%20d%E2%80%99auto-diagnostic%20en%20ligne%2C%20d%E2%80%99%C3%A9valuer%20leur%20situation%20et%20de%20r%C3%A9aliser%20une%20premi%C3%A8re%20orientation%20%C2%AB%20automatique%20%C2%BB%20vers%20des%20dispositifs%20d%27aides%20associ%C3%A9es%20%C3%A0%20leur%20situation%20et%20contexte%20%28sectoriel%2C%20%C3%A9conomique...%29%20ou%2C%20pour%20les%20situations%20les%20plus%20complexes%2C%20vers%20des%20interlocuteurs%20et%2Fou%20programmes%20mis%20en%20%C5%93uvre%20par%20les%20op%C3%A9rateurs%20publics.%0A%0ANous%20repartirons%20de%20la%20plateforme%20%5BMission%20Transition%5D%28https%3A%2F%2Fmission-transition.beta.gouv.fr%2F%29%20de%20l%27EcoLab%20du%20CGDD%20afin%20de%20b%C3%A9n%C3%A9ficier%20des%20travaux%20port%C3%A9%20et%20initi%C3%A9%20par%20l%27%5B%C3%A9quipe%20d%27entrepreneurs%20d%27intr%C3%A9t%20g%C3%A9n%C3%A9ral%5D%28https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Ffrance-transition%2F%29.%0A%0ALa%20Startup%20d%27Etat%20est%20port%C3%A9e%20par%20l%27ADEME%20%C3%A0%20travers%20son%20%5Bincubateur%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2F%3Fincubateur%3Dademe%29%20et%20co-pilot%C3%A9%20par%20la%20DGE%2C%20le%20CGDD%20et%20suit%20la%20%5Bpolitique%20prioritaire%20du%20gouvernement%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fdownload%2Fpdf%2Fcirc%3Fid%3D45366%29%20de%20%22R%C3%A9ussir%20la%20transition%20%C3%A9cologique%20et%20aller%20vers%20la%20neutralit%C3%A9%20carbone%22.%0A%0A%23%23%23%20Notre%20ambition%20%C3%A0%20moyen%20terme%0A%0A-%20Recenser%2C%20structurer%20et%20rendre%20plus%20accessible%20les%20offres%2C%20les%20actions%2C%20les%20dispositifs%20d%27aides%20et%20les%20programmes%20propos%C3%A9s%20par%20les%20op%C3%A9rateurs%20publics%0A-%20Remettre%20sur%20pied%20une%20%C3%A9quipe%20afin%20de%20d%C3%A9velopper%20un%20module%20d%27auto-diagnostic%20permettant%20de%20faciliter%20la%20recherche%20de%20dispositif%20d%27aide%20adapt%C3%A9%20%C3%A0%20l%27entreprise%0A-%20Collaborer%20avec%20les%20entit%C3%A9s%20locales%20%28directions%20r%C3%A9gionales%20de%20l%27ADEME%2C%20conseil%20r%C3%A9gional%2C%20CCI%2C%20CMA%29%20afin%20de%20d%C3%A9ployer%20le%20service%20au%20plus%20grand%20nombre%20%C3%A0%20une%20%C3%A9chelle%20locale%20%28r%C3%A9gion%20par%20r%C3%A9gion%29%20et%2Fou%20sectorielle%20et%2C%20orienter%20potentiellement%20les%20entreprises%20vers%20un%20interlocuteur%20%C3%A0%20travers%20le%20service%20%5Bconseillers-entreprises%5D%28https%3A%2F%2Fconseillers-entreprises.service-public.fr%29.%0A-%20Apporter%20un%20service%20aux%20op%C3%A9rateurs%20%28ADEME%2C%20BPI%2C%20CDC...%29%2C%20%C3%A0%20commencer%20par%20des%20statistiques%2C%20ayant%20des%20offres%20aux%20entreprises%20afin%20de%20mieux%20les%20cibler%20et%20d%27avoir%20%C3%A9galement%20une%20vision%20d%27ensemble%20sur%20les%20dispositifs%20existants.%0A%0A%2A%2AMesure%20d%27actionnabilit%C3%A9%2A%2A%20%3A%20Entreprise%20qui%20a%20%C3%A9t%C3%A9%20r%C3%A9orient%C3%A9%2C%20a%20candidat%C3%A9%20et%20a%20b%C3%A9n%C3%A9fici%C3%A9%20d%27une%20aide%20d%27un%20op%C3%A9rateur%20public%20%C3%A0%20travers%20la%20plateforme%0A%0A%2A%2AMesure%20d%27impact%2A%2A%20%3A%20Augmenter%20le%20nombre%20d%E2%80%99entreprises%20qui%20bascule%20dans%20la%20transition%20%C3%A9cologique%20%C3%A0%20travers%20les%20aides%20publiques%0A", "events": [ { "name": "product_launch", - "date": "2021-03-11", - "comment": "" + "date": "2023-11-29", + "comment": "Lancement à Bercy par les ministres Mme Grégoire (Entreprises) et M. Bechu (Ecologie)" + }, + { + "name": "committee", + "date": "2023-12-21", + "comment": "Comité d'investissement" + }, + { + "name": "committee", + "date": "2024-06-26", + "comment": "Comité d'investissement" } ], "phases": [ { - "name": "construction", - "start": "2021-03-01", - "end": "" + "name": "investigation", + "start": "2023-02-27", + "end": "2023-03-30" }, { - "name": "acceleration", - "start": "2021-09-01", + "name": "construction", + "start": "2023-03-30", "end": "" } ], "sponsors": [ - "dgesip" + "ademe" ], "thematiques": [ - "Santé", - "Jeunesse" + "Écologie", + "Entreprises" ], - "dashlord_url": "https://dashlord.incubateur.net/url/santepsy-etudiant-gouv-fr/", + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/betagouv/mission-transition-ecologique/blob/main/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/transition-ecologique-des-entreprises", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "dinum" + "id": "ademe" } } } @@ -209919,17 +201208,17 @@ { "width": 1920, "height": 1080, - "url": "https://santepsy.etudiant.gouv.fr", - "size": 4174.784, - "nodes": 412, - "requests": 32, - "grade": "C", - "score": 62, - "ges": 1.76, - "water": 2.64, + "url": "https://mission-transition-ecologique.beta.gouv.fr", + "size": 1598.917, + "nodes": 311, + "requests": 35, + "grade": "B", + "score": 71, + "ges": 1.58, + "water": 2.37, "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:26:22.590465", - "page_type": null + "date": "2024-12-01 07:56:33.106034", + "page_type": "website" } ], "sonarcloud": null, @@ -209940,65 +201229,78 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.692, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "lighthouse_performance": 0.69, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.81, - "lighthouse_accessibilityGrade": "B", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-09T08:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.33, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.88, + "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, + "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", + "budgetPageGrade": "A", "declaration-a11y": "C", - "declaration-rgpd-ml": "D", + "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", + "ecoindexGrade": "B", "dsfrGrade": "A" } }, { "404": null, - "url": "https://espace-membre.incubateur.net", - "category": "betagouv", + "url": "https://potentiel.beta.gouv.fr", + "category": "mtes", + "betaId": "potentiel", "http": { - "url": "https://espace-membre.incubateur.net", + "url": "https://potentiel.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:47:31 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 05:18:22 GMT", + "grade": "A+", "hidden": false, - "likelihood_indicator": "MEDIUM", + "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; connect-src 'self' api.maptiler.com espace-membre.cellar-c2.services.clever-cloud.com espace-membre-staging.cellar-c2.services.clever-cloud.com *.gouv.fr sentry.incubateur.net https://client.crisp.chat https://storage.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://nominatim.openstreetmap.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.gouv.fr sentry.incubateur.net unpkg.com https://client.crisp.chat https://settings.crisp.chat; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com unpkg.com https://client.crisp.chat; img-src * data: blob: https://client.crisp.chat https://image.crisp.chat https://storage.crisp.chat; font-src 'self' data: cdnjs.cloudflare.com https://client.crisp.chat; frame-src 'self' metabase.incubateur.net https://game.crisp.chat; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests;", + "Content-Security-Policy": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-1a21bb4df506dff885f576817321022d1d568483c57992d331954bcb2746994f' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 06:47:29 GMT", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 05:18:21 GMT", + "ETag": "W/\"4eb3-aN2NnLvyREYO5guLI9vjh6FSn6c\"", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "strict-origin", "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Powered-By": "Next.js", - "X-Request-ID": "2dc0349f-f234-4226-bdb7-1230c7bb3dd9", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "5bb07d10-3333-4920-8d50-b8d543fc8452", + "X-XSS-Protection": "0", "strict-transport-security": "max-age=31536000" }, - "scan_id": 57053394, - "score": 75, - "start_time": "Sun, 20 Oct 2024 06:47:27 GMT", + "scan_id": 57051399, + "score": 105, + "start_time": "Sun, 20 Oct 2024 05:18:20 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, + "tests_failed": 0, + "tests_passed": 10, "tests_quantity": 10, "details": { "content-security-policy": { @@ -210006,96 +201308,64 @@ "name": "content-security-policy", "output": { "data": { - "base-uri": [ - "'self'" - ], "connect-src": [ - "espace-membre.cellar-c2.services.clever-cloud.com", - "sentry.incubateur.net", + "client.crisp.chat", "wss://client.relay.crisp.chat", - "'self'", - "https://client.crisp.chat", - "https://nominatim.openstreetmap.org", - "api.maptiler.com", - "https://storage.crisp.chat", - "espace-membre-staging.cellar-c2.services.clever-cloud.com", - "wss://stream.relay.crisp.chat", - "*.gouv.fr" + "potentiel.beta.gouv.fr", + "'self'" ], "default-src": [ + "blob:", + "metabase.potentiel.beta.gouv.fr", "'self'" ], "font-src": [ - "cdnjs.cloudflare.com", - "data:", - "https://client.crisp.chat", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ + "client.crisp.chat", "'self'" ], "frame-src": [ - "https://game.crisp.chat", - "metabase.incubateur.net", - "'self'" + "metabase.potentiel.beta.gouv.fr" ], "img-src": [ - "*", "data:", - "https://client.crisp.chat", - "https://image.crisp.chat", - "https://storage.crisp.chat", - "blob:" - ], - "object-src": [ - "'none'" + "image.crisp.chat", + "'self'" ], "script-src": [ - "sentry.incubateur.net", - "'unsafe-inline'", "'self'", - "https://client.crisp.chat", - "'unsafe-eval'", - "blob:", - "https://settings.crisp.chat", - "unpkg.com", - "*.gouv.fr" + "'sha256-uezfoo3sfsybniiaohhuiigoht+nhtdv2gd4i5588hq='", + "metabase.potentiel.beta.gouv.fr", + "client.crisp.chat", + "'nonce-1a21bb4df506dff885f576817321022d1d568483c57992d331954bcb2746994f'" ], "style-src": [ + "data:", "'unsafe-inline'", - "'self'", - "https://client.crisp.chat", - "unpkg.com", - "cdnjs.cloudflare.com" - ], - "upgrade-insecure-requests": [ - "'none'" + "client.crisp.chat", + "'self'" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": true, + "antiClickjacking": false, "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, + "insecureBaseUri": true, + "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, + "unsafeEval": false, + "unsafeInline": false, "unsafeInlineStyle": true, "unsafeObjects": false } }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -210128,12 +201398,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://espace-membre.incubateur.net/login", + "destination": "https://potentiel.beta.gouv.fr/", "redirects": true, "route": [ - "http://espace-membre.incubateur.net/", - "https://espace-membre.incubateur.net/", - "https://espace-membre.incubateur.net/login" + "http://potentiel.beta.gouv.fr/", + "https://potentiel.beta.gouv.fr/" ], "status_code": 200 }, @@ -210146,14 +201415,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "strict-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -210185,87 +201454,87 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "0" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": 0 } } }, "updownio": { - "token": "egnn", - "url": "https://espace-membre.incubateur.net", + "token": "ucd8", + "url": "https://potentiel.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.987, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T20:58:47Z", + "up_since": "2024-12-01T01:05:21Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T08:37:41Z", - "next_check_at": "2024-11-24T08:38:41Z", - "created_at": "2024-01-15T13:56:21Z", + "last_check_at": "2024-12-01T08:08:18Z", + "next_check_at": "2024-12-01T08:13:15Z", + "created_at": "2021-04-22T19:59:36Z", "mute_until": null, - "favicon_url": "https://espace-membre.incubateur.net/_next/static/media/favicon.8c087985.ico", + "favicon_url": "https://potentiel.beta.gouv.fr/dsfr/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T08:36:42Z", - "expires_at": "2025-01-01T18:36:50Z", + "tested_at": "2024-12-01T07:58:25Z", + "expires_at": "2025-01-30T05:23:39Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 432, - "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 154, - "total": 586 + "redirect": 0, + "namelookup": 169, + "connection": 140, + "handshake": 145, + "response": 145, + "total": 598 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "espace-membre.incubateur.net", + "host": "potentiel.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -210291,77 +201560,77 @@ "testssl": [ { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210369,7 +201638,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210377,7 +201646,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210385,7 +201654,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210393,7 +201662,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -210401,7 +201670,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -210409,455 +201678,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-03 18:36" + "finding": "2024-11-01 05:23" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-01 18:36" + "finding": "2025-01-30 05:23" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732437109" + "finding": "1733040395" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "id": "X-Frame-Options", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-599e70c229b4d716cb7107b1b42e5452b95e36e7af527bf736591f320d7e92f1' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat" + }, + { + "id": "X-XSS-Protection", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -210865,7 +202162,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -210874,7 +202171,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -210883,7 +202180,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -210892,7 +202189,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -210901,7 +202198,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -210909,7 +202206,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -210918,7 +202215,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -210927,16 +202224,16 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -210945,14 +202242,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -210961,7 +202258,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -210970,7 +202267,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -210979,16 +202276,16 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BC444CB40F09E86887EB9CBF78630F60DD69089F136BCE021A4F065F22D5FC01" }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -210997,7 +202294,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -211006,7 +202303,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -211015,7 +202312,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -211024,7 +202321,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -211033,7 +202330,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -211042,392 +202339,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -211435,7 +202732,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -211443,7 +202740,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -211451,7 +202748,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -211459,7 +202756,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -211467,7 +202764,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -211475,455 +202772,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-03 18:36" + "finding": "2024-11-01 05:23" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-01 18:36" + "finding": "2025-01-30 05:23" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732437204" + "finding": "1733040454" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "id": "X-Frame-Options", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-61af24a1711e7c7d461510b2a45728345a4585f7b56dad6dfd3570e29cd19320' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat" + }, + { + "id": "X-XSS-Protection", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -211931,7 +203256,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -211940,7 +203265,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -211949,7 +203274,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -211958,7 +203283,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -211967,7 +203292,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -211975,7 +203300,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -211984,7 +203309,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -211993,16 +203318,16 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -212011,14 +203336,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -212027,7 +203352,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -212036,7 +203361,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -212045,16 +203370,16 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=BC444CB40F09E86887EB9CBF78630F60DD69089F136BCE021A4F065F22D5FC01" }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -212063,7 +203388,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -212072,7 +203397,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -212081,7 +203406,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -212090,7 +203415,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -212099,7 +203424,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -212108,392 +203433,1128 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "27" + "id": "key_exchange_score_weighted", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "121" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;font-src 'self' client.crisp.chat;frame-src metabase.potentiel.beta.gouv.fr blob:;img-src 'self' data: image.crisp.chat;style-src 'self' 'unsafe-inline' data: client.crisp.chat;script-src 'self' 'nonce-d69634801244f645c0e3a28ceae82ae144275275a3fd823a4a11cf93394db19c' 'sha256-UEZfoO3SfsYbnIIAoHHUiIGOhT+nhTDv2gd4I5588HQ=' metabase.potentiel.beta.gouv.fr client.crisp.chat", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 08:05:20 GMT", + "etag": "W/\"4e6f-M2FibTnMwW6jzR7oBkOAi62pIDI\"", + "origin-agent-cluster": "?1", + "referrer-policy": "strict-origin", + "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "9e726121-54eb-40db-976d-ddf2a21c48dd", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "potentiel.beta.gouv.fr", + "ip": "148.253.96.193", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://potentiel.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://potentiel.beta.gouv.fr/", + "finalUrl": "https://potentiel.beta.gouv.fr/", + "fetchTime": "2024-12-01T08:04:56.689Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.92 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.97 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.98 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 2323, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2323, + "firstMeaningfulPaint": 2323, + "largestContentfulPaint": 2953, + "interactive": 2323, + "speedIndex": 2487, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.016955598619249133, + "cumulativeLayoutShiftMainFrame": 0.016955598619249133, + "totalCumulativeLayoutShift": 0.016955598619249133, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 416484575, + "observedNavigationStart": 0, + "observedNavigationStartTs": 416484575, + "observedFirstPaint": 859, + "observedFirstPaintTs": 417344049, + "observedFirstContentfulPaint": 859, + "observedFirstContentfulPaintTs": 417344049, + "observedFirstContentfulPaintAllFrames": 859, + "observedFirstContentfulPaintAllFramesTs": 417344049, + "observedFirstMeaningfulPaint": 859, + "observedFirstMeaningfulPaintTs": 417344049, + "observedLargestContentfulPaint": 859, + "observedLargestContentfulPaintTs": 417344049, + "observedLargestContentfulPaintAllFrames": 859, + "observedLargestContentfulPaintAllFramesTs": 417344049, + "observedTraceEnd": 3425, + "observedTraceEndTs": 419909685, + "observedLoad": 982, + "observedLoadTs": 417466163, + "observedDomContentLoaded": 846, + "observedDomContentLoadedTs": 417330676, + "observedCumulativeLayoutShift": 0.016955598619249133, + "observedCumulativeLayoutShiftMainFrame": 0.016955598619249133, + "observedTotalCumulativeLayoutShift": 0.016955598619249133, + "observedFirstVisualChange": 865, + "observedFirstVisualChangeTs": 417349575, + "observedLastVisualChange": 1482, + "observedLastVisualChangeTs": 417966575, + "observedSpeedIndex": 876, + "observedSpeedIndexTs": 417360805 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 17, + "numScripts": 3, + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 16, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 0, + "throughput": 21954503.196571786, + "maxRtt": 102.00699999999999, + "maxServerLatency": 15.572000000000003, + "totalByteWeight": 622852, + "totalTaskTime": 3096.428, + "mainDocumentTransferSize": 6131 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://potentiel.beta.gouv.fr/accessibilite.html" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://docs.potentiel.beta.gouv.fr/info/cgu" }, { - "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://docs.potentiel.beta.gouv.fr/info/vie-privee-et-politique-de-confidentialite" + } + ], + "betagouv": { + "id": "potentiel", + "type": "startup", + "attributes": { + "name": "Potentiel", + "pitch": "Faciliter le parcours des producteurs d'énergies renouvelables électriques", + "stats_url": "https://potentiel.beta.gouv.fr/stats.html", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", + "link": "https://potentiel.beta.gouv.fr/", + "repository": "https://github.com/MTES-MCT/potentiel", + "contact": "contact@potentiel.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20%20Introduction%20-%20contexte%0A%0AL%E2%80%99Etat%20met%20en%20%C5%93uvre%20une%20politique%20volontariste%20de%20soutien%20au%20d%C3%A9veloppement%20des%20%C3%A9nergies%20renouvelables%20%28EnR%29%20%C3%A9lectriques%20sous%20forme%20d%E2%80%99appel%20d%E2%80%99offres.%0A%0AL%E2%80%99objectif%20est%20d%E2%80%99atteindre%20une%20part%20de%2040%25%20de%20ces%20%C3%A9nergies%20sur%20le%20total%20de%20l%E2%80%99%C3%A9lectricit%C3%A9%20produite%20%C3%A0%20l%E2%80%99horizon%202030.%20%0A%0A%2A%2APotentiel%2A%2A%20permet%20de%20faciliter%20le%20suivi%20de%20ces%20projets%2C%20de%20gagner%20en%20tra%C3%A7abilit%C3%A9%20et%20en%20efficacit%C3%A9%20en%20fluidifiant%20les%20%C3%A9changes%20entre%20porteurs%20de%20projets%2C%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%2C%20acheteurs%20oblig%C3%A9s%20et%20r%C3%A9gulateurs%2C%20puis%20%C3%A0%20terme%20entre%20gestionnaires%20de%20r%C3%A9seau%20et%20organismes%20de%20contr%C3%B4le.%0A%0ANotre%20objectif%20%3A%20Faciliter%20le%20parcours%20des%20producteurs%20d%27%C3%A9nergies%20renouvelables%20%C3%A9lectriques%0A%0A%23%23%20Les%20probl%C3%A9matiques%0A%0A%0A%23%23%23%20Les%20projets%20laur%C3%A9ats%20d%E2%80%99EnR%20%C3%A9lectriques%20sont%20soumis%20%C3%A0%20%3A%20%0A%0A%2A%20De%20nombreuses%20proc%C3%A9dures%20administratives%20qui%20engendrent%20des%20lourdeurs%20administratives%20%3A%20candidature%2C%20d%C3%A9signation%2C%20autorisation%20d%E2%80%99exploiter%2C%20raccordement%20au%20r%C3%A9seau%2C%20demandes%20de%20modifications%2C%20contractualisation...%20%3B%0A%2A%20Des%20demandes%20et%20instructions%20au%20format%20papier%20%3B%20%0A%2A%20Une%20multiplicit%C3%A9%20des%20acteurs%20amen%C3%A9s%20%C3%A0%20intervenir%20sur%20le%20projet%20%3A%20porteurs%20de%20projets%2C%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%2C%20acheteurs%20oblig%C3%A9s%2C%20gestionnaires%20de%20r%C3%A9seau%20etc%E2%80%A6%20%3B%0A%0ALes%20informations%20d%C3%A9tenues%20par%20chaque%20acteur%20intervenant%20sur%20le%20projet%20sont%20parcellaires%20car%20elles%20ne%20sont%20pas%20partag%C3%A9es.%20Cela%20entra%C3%AEne%20un%20allongement%20des%20d%C3%A9lais%20d%E2%80%99instruction%20dans%20la%20mesure%20o%C3%B9%20aucun%20croisement%20de%20ces%20donn%C3%A9es%20n%E2%80%99est%20op%C3%A9r%C3%A9%2C%20incluant%20par%20ailleurs%20des%20possibilit%C3%A9s%20de%20contentieux%20accrues.%0A%2A%20Une%20dur%C3%A9e%20du%20d%C3%A9veloppement%20des%20projets%20longue%20%28de%202%20jusqu%E2%80%99%C3%A0%2010%20ans%29%0A%0AEn%20conclusion%2C%20cela%20entra%C3%AEne%20un%20manque%20de%20suivi%20global%20des%20projets%20d%E2%80%99EnR%20permettant%20de%20piloter%20les%20dispositifs%20de%20soutien%20et%20de%20suivre%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20PPE.%0A%0A%23%23%20La%20solution%20%3D%3E%20Potentiel%0A%0APotentiel%20a%20vocation%20%C3%A0%20r%C3%A9unir%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20fili%C3%A8re%20et%20%C3%A0%20rendre%20accessible%2C%20en%20un%20lieu%20unique%2C%20les%20informations%20d%C3%A9tenues%20par%20ceux-ci%20aux%20diff%C3%A9rentes%20phases%20de%20d%C3%A9veloppement%20des%20projets%20d%E2%80%99EnR.%0A%0AL%E2%80%99outil%20simplifie%20les%20d%C3%A9marches%2C%20harmonise%20les%20pratiques%20et%20g%C3%A9n%C3%A8re%20un%20gain%20de%20temps%20consid%C3%A9rable%20pour%20tous.%0A%0A%23%23%23%20Notre%20proposition%20de%20valeur%20pour%20les%20porteurs%20de%20projet%0A%0ALes%20porteurs%20de%20projets%20d%E2%80%99EnR%20r%C3%A9pondant%20aux%20appels%20d%E2%80%99offres%20de%20l%E2%80%99%C3%89tat%20souffrent%20de%20complexit%C3%A9%20administrative%20dans%20la%20gestion%20de%20leurs%20projets.%20%0A%0APotentiel%20leur%20offre%20des%20fonctionnalit%C3%A9s%20sur%20mesure%20visant%20%C3%A0%20faciliter%20la%20gestion%20de%20leurs%20projets.%0A%0A%23%23%23%20Notre%20proposition%20de%20valeur%20pour%20les%20partenaires%20et%20administrations%0A%0ALes%20partenaires%20et%20administrations%20peinent%20%C3%A0%20r%C3%A9cup%C3%A9rer%20les%20informations%20li%C3%A9es%20aux%20projets%20d%E2%80%99EnR%20r%C3%A9pondant%20aux%20appels%20d%E2%80%99offres%20de%20l%E2%80%99%C3%89tat.%0A%0APotentiel%20permet%20%C3%A0%20tous%20les%20acteurs%20concern%C3%A9s%20de%20consulter%20ces%20informations%20gr%C3%A2ce%20%C3%A0%20une%20plateforme%20unique%20qui%20centralise%20la%20donn%C3%A9e%20disponible%20%C3%A0%20tout%20moment%20et%20gagner%20en%20%3A%0A%0A%2A%20Transparence%0A%2A%20Gain%20de%20temps%0A%2A%20Suivi%20des%20politiques%20publiques%0A%0A%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%20-%20P%C3%A9rim%C3%A8tre%20de%20test%20%282020%29%0A%0AL%E2%80%99objectif%2C%20dans%20un%20premier%20temps%2C%20a%20%C3%A9t%C3%A9%20de%20d%C3%A9mat%C3%A9rialiser%20l%E2%80%99ensemble%20des%20interactions%20entre%20porteurs%20de%20projets%20et%20administrations%20pour%20assurer%20une%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9cisions.%20Les%20premiers%20tests%20lanc%C3%A9s%20en%20avril%202020%20ont%20vis%C3%A9%20les%20candidats%20des%20nouveaux%20appels%20d%E2%80%99offres.%20Ce%20p%C3%A9rim%C3%A8tre%20a%20permis%20d%E2%80%99essayer%20l%E2%80%99outil%20%C3%A9tape%20par%20%C3%A9tape%2C%20permettant%20un%20d%C3%A9veloppement%20progressif%20en%20suivant%20l%E2%80%99avanc%C3%A9e%20des%20porteurs%20de%20projets%20dans%20leurs%20d%C3%A9marches.%0A%0A%23%23%23%20D%C3%A9ploiement%20des%20%C3%A9tapes%20de%20test%0A%0A%2A%20L%E2%80%99envoi%20d%E2%80%99emails%20automatis%C3%A9s%20%C3%A0%20partir%20de%20la%20plateforme%20pour%20annoncer%20les%20r%C3%A9sultats%20d%E2%80%99une%20candidature%20%C3%A0%20l%E2%80%99un%20des%20appels%20d%E2%80%99offres%20%28aussi%20bien%20pour%20les%20laur%C3%A9ats%20que%20pour%20les%20%C3%A9limin%C3%A9s%29%20%3B%0A%2A%20La%20r%C3%A9alisation%2C%20pour%20les%20laur%C3%A9ats%20des%20premi%C3%A8res%20%C3%A9tapes%20du%20processus%20de%20d%C3%A9veloppement%20de%20leur%20projet%20%3B%0A%2A%20Une%20vue%20d%E2%80%99ensemble%20de%20l%E2%80%99avanc%C3%A9e%20de%20leurs%20projets%20pour%20tous%20les%20candidats%20%3B%0A%2A%20La%20possibilit%C3%A9%20pour%20tous%20les%20candidats%20de%20faire%20des%20demandes%20de%20modification%20pour%20leurs%20projets%20%28pour%20les%20non%20laur%C3%A9ats%20%3A%20une%20demande%20de%20recours%2C%20pour%20les%20laur%C3%A9ats%20%3A%20toute%20autre%20demande%29%20%3B%0A%2A%20D%E2%80%99autre%20part%2C%20pour%20pr%C3%A9parer%20l%E2%80%99importation%20de%20l%E2%80%99historique%20des%20projets%20pr%C3%A9-2020%2C%20%28p%C3%A9riode%20allant%20de%202016%20%C3%A0%202020%29%2C%20l%E2%80%99%C3%A9quipe%20a%20recens%C3%A9%20les%20diff%C3%A9rents%20param%C3%A8tres%20%C3%A0%20prendre%20en%20compte%2C%20les%20formats%20et%20les%20r%C3%A8gles%20de%20gestion.%0A%0A%23%23%20Nos%20r%C3%A9alisations%0A%0A%23%23%23%20Impl%C3%A9mentation%20des%20r%C3%A8gles%20m%C3%A9tier%0A%0A%2A%20D%C3%A9cryptage%20des%20r%C3%A8gles%20m%C3%A9tier%20permettant%20de%20remplacer%20l%E2%80%99analyse%20chronophage%2C%20r%C3%A9alis%C3%A9e%20jusque-l%C3%A0%20par%20des%20agents%20par%20une%20gestion%20automatique%0A%2A%20G%C3%A9n%C3%A9ration%20automatis%C3%A9e%20de%20courriers%20d%E2%80%99instruction%20pr%C3%A9-compl%C3%A9t%C3%A9s%0A%2A%20Compl%C3%A9tude%20des%20demandes%20de%20modification%20%28suivi%20de%20l%E2%80%99instruction%20pour%20les%20porteurs%20et%20r%C3%A9ponses%20directement%20dans%20l%E2%80%99outil%29%20ceci%20am%C3%A9liorant%20les%20d%C3%A9lais%20de%20traitement%20et%20%C3%A9vitant%20aux%20porteurs%20de%20perdre%20du%20temps%20dans%20le%20d%C3%A9veloppement%20de%20leurs%20projets%0A%2A%20L%E2%80%99ajout%20des%20cahiers%20de%20charges%20modificatifs%20dont%20ceux%20publi%C3%A9s%20en%20ao%C3%BBt%202022%20qui%20offre%20la%20possibilit%C3%A9%20d%E2%80%99une%20augmentation%20de%20puissance%20jusqu%E2%80%99%C3%A0%20140%25%2C%20une%20date%20limite%20d%E2%80%99ach%C3%A8vement%20prolong%C3%A9e%20de%2018%20mois%20suppl%C3%A9mentaires%20et%20la%20possibilit%C3%A9%20de%20vendre%20de%20l%E2%80%99%C3%A9lectricit%C3%A9%20sur%20le%20march%C3%A9%2C%20en%20amont%20du%20d%C3%A9marrage%20du%20contrat%20de%20soutien%0A%0A%23%23%23%20Chantiers%20techniques%0A%2A%20La%20mise%20en%20place%20de%20tableaux%20de%20bord%20concernant%20les%20donn%C3%A9es%20de%20la%20fili%C3%A8re%20afin%20d%E2%80%99avoir%20une%20visibilit%C3%A9%20sur%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20programmation%20pluriannuelle%20de%20l%E2%80%99%C3%A9nergie%20%28PPE%29%0A%2A%20L%E2%80%99import%20de%20l%E2%80%99historique%20des%20projets%20encore%20actifs%20%28depuis%20septembre%202016%29%20pour%20permettre%20aux%20porteurs%20de%20pouvoir%20g%C3%A9rer%20l%E2%80%99ensemble%20de%20leurs%20projets%20actifs.%0A%2A%20Un%20changement%20d%E2%80%99architecture%20technique%20pour%20adapter%20Potentiel%20aux%20d%C3%A9veloppements%20strat%C3%A9giques%20d%C3%A9cid%C3%A9s%0A%2A%20Basculement%20vers%20une%20autre%20base%20de%20donn%C3%A9es%20sur%20le%20cloud%0A%2A%20L%E2%80%99int%C3%A9gration%20d%E2%80%99acteurs%20suppl%C3%A9mentaires%20de%20la%20cha%C3%AEne%20de%20valeur%20pour%20am%C3%A9liorer%20encore%20les%20d%C3%A9lais%20de%20traitement%20des%20demandes%2C%20centraliser%20les%20donn%C3%A9es%20et%20permettre%20un%20meilleur%20pilotage%20par%20tous%20.%20Ajout%20des%20r%C3%B4les%20%3A%20acheteur%20oblig%C3%A9%2C%20Commission%20de%20r%C3%A9gulation%20de%20l%E2%80%99%C3%A9nergie%2C%20ADEME%2C%20Caisse%20des%20d%C3%A9p%C3%B4ts%0A%0A%23%23%23%20Gestion%20de%20nos%20utilisateurs%0A%2A%20Affiner%20les%20%C3%A9changes%20avec%20nos%20utilisateurs%20%3A%20Un%20support%20rapide%20et%20efficace%20%3B%20communiquer%20sur%20le%20produit%20et%20ses%20%C3%A9volutions%20avec%20la%20mise%20en%20place%20d%E2%80%99une%20newsletter%20%28bimestrielle%29%20%3B%20recueillir%20les%20besoins%20et%20la%20satisfaction%20de%20l%E2%80%99ensemble%20des%20usagers%20par%20des%20sondages%20courts%20et%20r%C3%A9guliers%20sur%20tous%20les%20supports%20d%E2%80%99%C3%A9changes%20%28webinaires%2C%20newsletters%29%20%3B%0A%2A%20Mise%20en%20place%20d%E2%80%99un%20support%20utilisateur%20structur%C3%A9%20sur%203%20piliers%20%3A%20le%20guide%20d%E2%80%99utilisation%20%3B%20un%20ChatBot%20automatique%20sur%20les%2010%20questions%20courantes%2C%20r%C3%A9currentes%2C%20les%20%C3%A9changes%20via%20l%E2%80%99adresse%20e-mail%20%5Bcontact%40potentiel.beta.gouv.fr%5D%28%29%20%3B%20des%20%C3%A9changes%20en%20visio%20%3B%0A%2A%20Pr%C3%A9sentations%20et%20d%C3%A9monstrations%20aux%20diff%C3%A9rents%20partenaires%20%28gestionnaire%20de%20r%C3%A9seaux%2C%20commission%20de%20r%C3%A9gulation%20de%20l%E2%80%99%C3%A9nergie%2C%20acheteur%20oblig%C3%A9%E2%80%A6%29%20pour%20le%20d%C3%A9veloppement%20des%20fonctionnalit%C3%A9s%20et%20envisager%20les%20futures%20interop%C3%A9rabilit%C3%A9s%20pour%20s%E2%80%99accorder%20sur%20le%20contenu%20et%20le%20format%20des%20%C3%A9changes.%0A%0A%23%23%20L%E2%80%99impact%0A%0A%23%23%23%20Sur%20les%20projets%20suivis%0A%0A%2A%2011%20161%20projets%20dont%207%20632%20laur%C3%A9ats%0A%2A%2021%2C07%20GW%20en%20puissance%20cumul%C3%A9e%0A%2A%203%20883%20demandes%20des%20porteurs%20de%20projet%20r%C3%A9alis%C3%A9es%20sur%20Potentiel%0A%0A%23%23%23%20Sur%20les%20statistiques%20utilisateurs%0A%0A%2A%202%20123%20porteurs%20de%20projet%20inscrits%0A%2A%201%20527%20connexions%20en%20moyenne%20par%20mois%0A%0A%23%23%23%20Un%20temps%20moyen%20d%E2%80%99instruction%20des%20demandes%20divis%C3%A9%20par%203%0A%21%5B%5D%28https%3A%2F%2Fdocs.potentiel.beta.gouv.fr%2F~gitbook%2Fimage%3Furl%3Dhttps%3A%252F%252F341821779-files.gitbook.io%252F%257E%252Ffiles%252Fv0%252Fb%252Fgitbook-x-prod.appspot.com%252Fo%252Fspaces%25252F-MK-BGgj_eN7FsxQv8fl%25252Fuploads%25252FhDpAaLnlNrlLHhfO3HZR%25252Fimage.png%253Falt%3Dmedia%2526token%3Dc9f030ca-e873-42a6-9d25-fb0299007ce7%26width%3D400%26dpr%3D3%26quality%3D100%26sign%3D7fed0d74dfaff35b657cda428b6dc6b82f8994720dc6fcba3d418b18681fd86d%29%0A%0A%23%23%23%20La%20possibilit%C3%A9%20de%20mettre%20en%20place%20des%20mesures%20d%E2%80%99urgences%20afin%20de%20sauver%20un%20maximum%20de%20projets%0A%0A%2A%204%2C19%20GW%20de%20puissance%20cumul%C3%A9e%20des%20projets%20ayant%20choisis%20l%E2%80%99instruction%20selon%20des%20cahiers%20des%20charges%20modificatifs%0A%2A%201%2C05%20GW%20avec%20le%20processus%20automatis%C3%A9%20d%27abandon%20pour%20recandidature%0A%0A%23%23%20Le%20budget%0A%0A-%202020%20%3A%20127%20135%20%E2%82%AC%20de%20la%20DGEC%2A%20et%2080%20400%20%E2%82%AC%20issus%20du%20programme%20FAST%20%28Fonds%20d%E2%80%99acc%C3%A9l%C3%A9ration%20des%20startups%20d%E2%80%99Etat%20et%20de%20territoires%29%0A-%202021%20%3A%20973%20492%20%E2%82%AC%20de%20la%20DGEC%2C%20422%20937%20%E2%82%AC%20issus%20du%20plan%20France%20Relance%20et%2079%20812%20%E2%82%AC%20de%20l%27ADEME%0A-%202022%20%3A%20Financ%C3%A9e%20par%20le%20budget%20de%20l%27ann%C3%A9e%202021%0A-%202023%20%3A%20507%20822%20%E2%82%AC%20de%20la%20DGEC%0A-%202024%20%3A%20881%20063%20%E2%82%AC%20de%20la%20DGEC%0A%0A%2ADirection%20g%C3%A9n%C3%A9rale%20de%20l%27%C3%89nergie%20et%20du%20Climat%20%28Minist%C3%A8re%20en%20charge%20de%20l%27%C3%A9nergie%29%0A%0A%23%23%20La%20feuille%20de%20route%0A%0A%2A%20Devenir%20le%20p%C3%B4le%20central%20pour%20la%20gestion%20administrative%20des%20projets%20d%E2%80%99EnR%20%C3%A9lectriques%20et%20de%20gaz%20renouvelable%20soumis%20%C3%A0%20appel%20d%E2%80%99offres%20en%20France%20avec%20l%E2%80%99int%C3%A9gration%20de%20nouvelles%20%C3%A9nergies%20%3A%20%0ABiom%C3%A9thane%20%28d%C3%A9signation%20et%20modification%29%20puis%20reprise%20de%20l%E2%80%99historique%20%E2%87%92%20Potentiel%20va%20simplifier%20et%20acc%C3%A9l%C3%A9rer%20le%20d%C3%A9veloppement%20du%20biom%C3%A9thane%2C%2060%20projets%20historiques%20%2B%20d%C3%A9signation%20de%2015%20projets%20%2F%20an%0APetite%20hydro%C3%A9lectricit%C3%A9%E2%80%A6%0A%2A%20La%20migration%20de%20toutes%20les%20fonctionnalit%C3%A9s%20sur%20un%20nouveau%20socle%20technique%20permettant%20les%20futurs%20%C3%A9changes%20automatis%C3%A9s%0A%2A%20Faciliter%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20avec%20tous%20les%20acteurs%20afin%20d%E2%80%99augmenter%20et%20d%E2%80%99acc%C3%A9l%C3%A9rer%20les%20projets%20en%20service%20en%20d%C3%A9veloppant%20les%20connexions%20API%20avec%20nos%20partenaires%20%0A%2A%20Impl%C3%A9menter%20l%E2%80%99ensemble%20des%20%C3%A9tapes%20de%20d%C3%A9veloppement%20des%20projets%2C%20de%20la%20notification%20%C3%A0%20leur%20mise%20en%20service%20%3A%20r%C3%A9cup%C3%A9ration%20automatique%20des%20projets%20CRE%20%2C%20finalisation%20du%20processus%20de%20gestion%20des%20garanties%20financi%C3%A8res%20et%20leur%20renouvellement%20%28de%20la%20d%C3%A9signation%20d%27un%20projet%20jusqu%27%C3%A0%20la%20main-lev%C3%A9e%29...%2C%20r%C3%A9cup%C3%A9ration%20automatique%20des%20dates%20de%20mise%20en%20service%0A%2A%20Am%C3%A9liorer%20la%20r%C3%A9tention%20des%20utilisateurs%20en%20ajoutant%20les%20fonctionnalit%C3%A9s%20n%C3%A9cessaires%20au%20parcours%20des%20nouveaux%20acteurs%20int%C3%A9gr%C3%A9se%0A%2A%20Mise%20%C3%A0%20disposition%20des%20donn%C3%A9es%20publiques%20%28data%20gouv%29%0A%0A%23%23%20Notre%20Vision%20gr%C3%A2ce%20%C3%A0%20Potentiel%0A%0A%2A%20Une%20baisse%20des%20d%C3%A9lais%20de%20traitement%20de%20chaque%20op%C3%A9ration%20entra%C3%AEne%20une%20diminution%20du%20temps%20entre%20la%20d%C3%A9signation%20et%20la%20mise%20en%20service%20et%20donc%20la%20possibilit%C3%A9%20de%20faire%20plus%20de%20projets%20pour%20chaque%20porteur%0A%2A%20Des%20statistiques%20%C3%A0%20jour%20et%20en%20temps%20r%C3%A9el%20pour%20le%20suivi%20de%20l%E2%80%99atteinte%20des%20objectifs%20de%20la%20PPE%20avec%20la%20possibilit%C3%A9%20d%E2%80%99apporter%20des%20modifications%20aux%20dispositifs%20de%20soutien%20pour%20un%20pilotage%20efficient%20et%20efficace%0A%0AEt%20bien%20plus%20encore%20%C3%A0%20venir%E2%80%A6", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2019-10-01", + "end": "2019-11-30" + }, + { + "name": "construction", + "start": "2019-11-30", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-01-01", + "end": "" + } + ], + "sponsors": [ + "mtes" + ], + "thematiques": [ + "Écologie" + ], + "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/potentiel-beta-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://potentiel.beta.gouv.fr", + "size": 1064.438, + "nodes": 190, + "requests": 26, + "grade": "B", + "score": 80, + "ges": 1.4, + "water": 2.1, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 08:01:42.799067", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-30T05:23:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.92, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.97, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.98, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://recosante.beta.gouv.fr", + "category": "sgmas", + "betaId": "recosante", + "http": { + "url": "https://recosante.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 02:56:08 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 02:56:05 GMT", + "ETag": "\"2vnt5cvqj58bw\"", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "X-Powered-By": "Next.js", + "x-nextjs-cache": "HIT" }, - { - "id": "final_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57048329, + "score": 50, + "start_time": "Sun, 20 Oct 2024 02:56:03 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://recosante.beta.gouv.fr", + "redirects": true, + "route": [ + "http://recosante.beta.gouv.fr/", + "https://recosante.beta.gouv.fr" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "zg7h", + "url": "https://recosante.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T23:19:38Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T08:19:29Z", + "next_check_at": "2024-12-01T08:24:26Z", + "created_at": "2021-04-22T19:59:37Z", + "mute_until": null, + "favicon_url": "https://recosante.beta.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:34:39Z", + "expires_at": "2025-01-09T16:12:23Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "espace-membre.incubateur.net/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 168, + "connection": 221, + "handshake": 232, + "response": 232, + "total": 854 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "recosante.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -212501,7 +204562,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -212509,7 +204570,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -212517,7 +204578,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -212525,7 +204586,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -212533,7 +204594,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -212541,455 +204602,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "2024-10-03 18:36" + "finding": "2024-10-11 16:12" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", - "finding": "2025-01-01 18:36" + "finding": "2025-01-09 16:12" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "1732437297" + "finding": "1733041323" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "id": "Cache-Control", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -212997,7 +205058,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -213006,7 +205067,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -213015,16 +205076,16 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -213033,7 +205094,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -213041,7 +205102,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -213050,7 +205111,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -213059,16 +205120,16 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -213077,14 +205138,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -213093,7 +205154,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -213102,7 +205163,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -213111,16 +205172,16 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2B4C1739847C774B848F8C8DF93D992078E5FC96A3B12EC24A4EABFFB6D2F000" }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -213129,16 +205190,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -213147,7 +205208,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -213156,7 +205217,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -213165,7 +205226,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -213174,392 +205235,1315 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "recosante.beta.gouv.fr/57.128.91.43", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "recosante.beta.gouv.fr/57.128.91.43", + "port": "443", + "severity": "INFO", + "finding": "56" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 08:20:51 GMT", + "etag": "\"2vnt5cvqj58bw\"", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "recosante.beta.gouv.fr", + "ip": "57.128.91.43", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://recosante.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "headless-ui", + "name": "Headless UI", + "description": "Headless UI is an unstyled component library for either React.js or Vue.js from the same people that created Tailwind CSS.", + "confidence": 100, + "version": null, + "icon": "Headless UI.svg", + "website": "https://headlessui.dev", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.1.3", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://recosante.beta.gouv.fr/", + "finalUrl": "https://recosante.beta.gouv.fr/", + "fetchTime": "2024-12-01T08:19:24.553Z", + "runWarnings": [ + "The page loaded too slowly to finish within the time limit. Results may be incomplete." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.65 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4534, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1347, + "firstMeaningfulPaint": 1347, + "largestContentfulPaint": 5213, + "interactive": 4534, + "speedIndex": 3369, + "totalBlockingTime": 485, + "maxPotentialFID": 260, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 343582561, + "observedNavigationStart": 0, + "observedNavigationStartTs": 343582561, + "observedFirstPaint": 741, + "observedFirstPaintTs": 344323413, + "observedFirstContentfulPaint": 741, + "observedFirstContentfulPaintTs": 344323413, + "observedFirstContentfulPaintAllFrames": 741, + "observedFirstContentfulPaintAllFramesTs": 344323413, + "observedFirstMeaningfulPaint": 741, + "observedFirstMeaningfulPaintTs": 344323413, + "observedLargestContentfulPaint": 741, + "observedLargestContentfulPaintTs": 344323413, + "observedLargestContentfulPaintAllFrames": 741, + "observedLargestContentfulPaintAllFramesTs": 344323413, + "observedTraceEnd": 45016, + "observedTraceEndTs": 388598511, + "observedDomContentLoaded": 690, + "observedDomContentLoadedTs": 344272475, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 753, + "observedFirstVisualChangeTs": 344335561, + "observedLastVisualChange": 903, + "observedLastVisualChangeTs": 344485561, + "observedSpeedIndex": 764, + "observedSpeedIndexTs": 344346392 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 46, + "numScripts": 18, + "numStylesheets": 1, + "numFonts": 12, + "numTasks": 985, + "numTasksOver10ms": 9, + "numTasksOver25ms": 5, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 83.27, + "throughput": 18311195.50981207, + "maxRtt": 83.443, + "maxServerLatency": 257.896, + "totalByteWeight": 1359620, + "totalTaskTime": 421.82299999999873, + "mainDocumentTransferSize": 62343 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://recosante.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://recosante.beta.gouv.fr/mentions-legales/" }, { - "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 2, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://recosante.beta.gouv.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "recosante", + "type": "startup", + "attributes": { + "name": "Recosanté", + "pitch": "Réduire l’exposition aux facteurs environnementaux nocifs pour la santé", + "stats_url": "https://recosante.beta.gouv.fr/stats/", + "link": "https://recosante.beta.gouv.fr/", + "repository": "https://github.com/betagouv/recosante/", + "contact": "contact@recosante.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0APlusieurs%20associations%20et%20instances%20publiques%20fournissent%20des%20donn%C3%A9es%20li%C3%A9es%20aux%20facteurs%20environnementaux.%20Ces%20informations%20sont%20dispers%C3%A9es%20%C3%A0%20travers%20divers%20portails%20ou%20bases%20de%20donn%C3%A9es.%20Les%20recommandations%20li%C3%A9es%20%C3%A0%20ces%20indicateurs%20sont%20dispers%C3%A9es%20elles%20aussi%2C%20peu%20claires%20ou%20inexistantes.%20Un%20nombre%20croissant%20de%20citoyens%20se%20d%C3%A9clarent%20inquiets%20et%20int%C3%A9ress%C3%A9%20par%20l%E2%80%99environnement%20et%20la%20pollution%20%28source%20%3A%20%5Bvie-publique%5D%28https%3A%2F%2Fwww.vie-publique.fr%2Fen-bref%2F290379-lenvironnement-un-sujet-qui-preoccupe-de-plus-en-plus-les-francais%29%29.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0A25%25%20des%20d%C3%A9c%C3%A8s%20viennent%20de%20facteurs%20environnementaux%20%28source%20%3A%20%5BOMS%5D%28https%3A%2F%2Fwww.who.int%2Ffr%2Fnews%2Fitem%2F03-09-2021-who-and-un-partners-compendium-of-500-actions-aims-to-reduce-diseases-from-environmental-factors-and-save-lives%29%29.%20%0ALes%20citoyens%20ne%20sont%20inform%C3%A9s%20ni%20de%20ces%20facteurs%2C%20ni%20des%20leviers%20pour%20s%E2%80%99adapter.%0A%0A%23%23%20Notre%20solution%0A%0AInformer%20%2B%20recommander%20sur%20ces%20indicateurs%20en%20r%C3%A9unissiant%20ces%20diff%C3%A9rents%20indicateurs%20avec%20des%20recommandations%20intelligibles%20et%20actionnables%20via%20une%20application%20mobile.%0A%0A%23%23%20Notre%20cible%0A%0AGrand%20public%20avec%20une%20cible%20privil%C3%A9gi%C3%A9e%20sur%20%3A%20les%20personnes%20sensibles%20%28albinos%2C%20asthmatiques%2C%20allergiques%2C%20personnes%20enceintes%2C%20BPCO%E2%80%A6%29%20%2B%20joggeurs%20%2B%20velotaffeurs%20%0A%0A%23%23%20Notre%20mesure%20d%E2%80%99impact%20et%20les%20objectifs%20%3A%20%0A%0A-%09Mesure%20d%E2%80%99impact%20%3A%20MAU%20application%20mobile%0A-%09Objectif%20%3A%20Informer%20et%20adapter%20les%20comportements%20des%20citoyens%20vis%20%C3%A0%20vis%20des%20facteurs%20environnementaux%20pouvant%20impacter%20la%20sant%C3%A9%20n%C3%A9gativement.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-01-01", + "end": "2020-04-01" + }, + { + "name": "construction", + "start": "2020-04-01", + "end": "2021-06-01" + }, + { + "name": "acceleration", + "start": "2021-06-01", + "end": "" + } + ], + "sponsors": [ + "dgpr", + "dgs" + ], + "thematiques": [ + "Santé", + "Écologie" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/recosante-beta-gouv-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "sgmas" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://recosante.beta.gouv.fr", + "size": 3201.782, + "nodes": 457, + "requests": 62, + "grade": "D", + "score": 55, + "ges": 1.9, + "water": 2.85, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 08:16:26.988825", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-09T16:12:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "D", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://resorption-bidonvilles.beta.gouv.fr", + "category": "mtes", + "betaId": "resorption-bidonvilles", + "http": { + "url": "https://resorption-bidonvilles.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 05:23:01 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", + "Content-Type": "text/html;charset=utf-8", + "Date": "Sun, 20 Oct 2024 05:23:00 GMT", + "Server": "nginx", + "Strict-Transport-Security": "max-age=63072000; preload", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-XSS-Protection": "1; mode=block", + "set-cookie": "i18n_redirected=fr; Path=/; Expires=Mon, 20 Oct 2025 05:23:00 GMT; SameSite=Lax", + "x-powered-by": "Nuxt" }, - { - "id": "final_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57051505, + "score": 75, + "start_time": "Sun, 20 Oct 2024 05:22:58 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "ws://localhost:*/_nuxt/", + "https://resorption-bidonvilles.beta.gouv.fr/_nuxt/", + "https://audience-sites.din.developpement-durable.gouv.fr", + "https://api.resorption-bidonvilles.beta.gouv.fr/" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "'self'" + ], + "img-src": [ + "https://audience-sites.din.developpement-durable.gouv.fr", + "'self'" + ], + "media-src": [ + "'self'" + ], + "script-src": [ + "'unsafe-inline'", + "'unsafe-eval'", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": true, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "i18n_redirected": { + "domain": "resorption-bidonvilles.beta.gouv.fr", + "expires": 1760937780, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag-but-protected-by-hsts", + "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", + "score_modifier": -5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://resorption-bidonvilles.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://resorption-bidonvilles.beta.gouv.fr/", + "https://resorption-bidonvilles.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; preload", + "includeSubDomains": false, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "j33c", + "url": "https://resorption-bidonvilles.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T21:16:42Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T08:20:42Z", + "next_check_at": "2024-12-01T08:25:41Z", + "created_at": "2021-04-22T19:59:37Z", + "mute_until": null, + "favicon_url": "https://resorption-bidonvilles.beta.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:55:52Z", + "expires_at": "2025-02-05T15:07:48Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "espace-membre.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 680, + "namelookup": 1, + "connection": 0, + "handshake": 0, + "response": 208, + "total": 889 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "resorption-bidonvilles.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -213567,7 +206551,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -213575,7 +206559,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -213583,7 +206567,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -213591,7 +206575,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -213599,7 +206583,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -213607,455 +206591,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "id": "cipher-tls1_2_x9f", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "2024-10-03 18:36" + "finding": "2024-11-07 15:07" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", - "finding": "2025-01-01 18:36" + "finding": "2025-02-05 15:07" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "1732437392" + "finding": "1733041349" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "INFO", + "finding": "x-powered-by: Nuxt" + }, + { + "id": "cookie_count", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "INFO", + "finding": "0/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "INFO", - "finding": "X-Powered-By: Express" + "severity": "OK", + "finding": "nosniff" }, { - "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "id": "Content-Security-Policy", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "severity": "OK", + "finding": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'" }, { - "id": "security_headers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "id": "X-XSS-Protection", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -214063,7 +207117,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -214072,7 +207126,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -214081,16 +207135,16 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -214099,7 +207153,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -214107,7 +207161,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -214116,7 +207170,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -214125,16 +207179,16 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -214143,14 +207197,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -214159,7 +207213,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -214168,7 +207222,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -214177,16 +207231,16 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F9D2B50A436C8265E9AA58DEA5761D7E10596710B7B9EFDFEAB0A91823E3E298" }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -214195,7 +207249,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -214204,7 +207258,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -214213,7 +207267,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -214222,7 +207276,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -214231,7 +207285,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -214240,376 +207294,365 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "382" + "finding": "109" } ], "thirdparties": { - "trackers": [ - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - } - ], + "trackers": [], "cookies": [ { - "name": "_pk_id.129.e750", - "value": "6703c5c0a4d951ed.1732437028.", - "domain": "espace-membre.incubateur.net", + "name": "_pk_id.1519.1eeb", + "value": "ff3f5702981737cb.1733041246.1.1733041246.1733041246.", + "domain": ".resorption-bidonvilles.beta.gouv.fr", "path": "/", - "expires": 1766392228, - "size": 43, + "expires": 1766996446, + "size": 68, "httpOnly": false, "secure": false, "session": false, - "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "_pk_ses.129.e750", - "value": "1", - "domain": "espace-membre.incubateur.net", + "name": "_pk_ses.1519.1eeb", + "value": "*", + "domain": ".resorption-bidonvilles.beta.gouv.fr", "path": "/", - "expires": 1732438827, - "size": 17, + "expires": 1733043046, + "size": 18, "httpOnly": false, "secure": false, "session": false, - "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "mtm_consent", - "value": "1732437027689", - "domain": "espace-membre.incubateur.net", + "name": "i18n_redirected", + "value": "en", + "domain": "resorption-bidonvilles.beta.gouv.fr", "path": "/", - "expires": 2678517027, - "size": 24, + "expires": 1764577244.573656, + "size": 17, "httpOnly": false, "secure": false, "session": false, @@ -214621,18 +207664,21 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; connect-src 'self' api.maptiler.com espace-membre.cellar-c2.services.clever-cloud.com espace-membre-staging.cellar-c2.services.clever-cloud.com *.gouv.fr sentry.incubateur.net https://client.crisp.chat https://storage.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://nominatim.openstreetmap.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.gouv.fr sentry.incubateur.net unpkg.com https://client.crisp.chat https://settings.crisp.chat; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com unpkg.com https://client.crisp.chat; img-src * data: blob: https://client.crisp.chat https://image.crisp.chat https://storage.crisp.chat; font-src 'self' data: cdnjs.cloudflare.com https://client.crisp.chat; frame-src 'self' metabase.incubateur.net https://game.crisp.chat; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests;", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 08:30:25 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-powered-by": "Next.js", - "x-request-id": "82f96ac8-4cd3-4c93-832e-8a8babaa21c9" + "content-security-policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://audience-sites.din.developpement-durable.gouv.fr https://resorption-bidonvilles.beta.gouv.fr/_nuxt/; font-src 'self'; img-src 'self' https://audience-sites.din.developpement-durable.gouv.fr; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", + "content-type": "text/html;charset=utf-8", + "date": "Sun, 01 Dec 2024 08:20:44 GMT", + "server": "nginx", + "strict-transport-security": "max-age=63072000; preload", + "vary": "Accept-Encoding\nAccept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-powered-by": "Nuxt", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "espace-membre.incubateur.net", - "ip": "80.247.12.255", + "hostname": "resorption-bidonvilles.beta.gouv.fr", + "ip": "51.178.137.38", "geoip": { "continent": { "code": "EU", @@ -214685,56 +207731,19 @@ } } } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } } ] }, "wappalyzer": { "urls": { - "https://espace-membre.incubateur.net/": { + "https://resorption-bidonvilles.beta.gouv.fr/": { "status": 302 }, - "https://espace-membre.incubateur.net/login": { + "https://resorption-bidonvilles.beta.gouv.fr/en": { "status": 200 } }, "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ] - }, { "slug": "node-js", "name": "Node.js", @@ -214753,14 +207762,14 @@ ] }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, "categories": [ { "id": 12, @@ -214770,14 +207779,14 @@ ] }, { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", + "slug": "nuxt-js", + "name": "Nuxt.js", + "description": "Nuxt is a Vue framework for developing modern web applications.", "confidence": 100, - "version": "14.2.12", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "version": null, + "icon": "Nuxt.js.svg", + "website": "https://nuxt.com", + "cpe": null, "categories": [ { "id": 12, @@ -214801,6 +207810,28 @@ } ] }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ] + }, { "slug": "matomo-analytics", "name": "Matomo Analytics", @@ -214819,38 +207850,22 @@ ] }, { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ] - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 92, - "slug": "performance", - "name": "Performance" + "id": 75, + "slug": "email", + "name": "Email" } - ] + ], + "rootPath": true }, { "slug": "hsts", @@ -214868,40 +207883,6 @@ "name": "Security" } ] - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -214909,12 +207890,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://espace-membre.incubateur.net/", - "finalUrl": "https://espace-membre.incubateur.net/login", - "fetchTime": "2024-11-24T08:29:59.846Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://espace-membre.incubateur.net/) was redirected to https://espace-membre.incubateur.net/login. Try testing the second URL directly." - ], + "requestedUrl": "https://resorption-bidonvilles.beta.gouv.fr/", + "finalUrl": "https://resorption-bidonvilles.beta.gouv.fr/", + "fetchTime": "2024-12-01T08:20:16.575Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -214924,7 +207903,7 @@ "snapshot" ], "id": "performance", - "score": 0.63 + "score": 0.85 }, "accessibility": { "title": "Accessibility", @@ -214935,7 +207914,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 0.92 }, "best-practices": { "title": "Best Practices", @@ -214945,7 +207924,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -214956,7 +207935,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 1 }, "pwa": { "title": "PWA", @@ -214966,7 +207945,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.2 } }, "audits": { @@ -214976,53 +207955,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8107, + "numericValue": 9524, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2839, - "firstMeaningfulPaint": 2839, - "largestContentfulPaint": 5101, - "interactive": 8107, - "speedIndex": 3696, - "totalBlockingTime": 308, - "maxPotentialFID": 236, - "cumulativeLayoutShift": 0.02701641591389974, - "cumulativeLayoutShiftMainFrame": 0.02701641591389974, - "totalCumulativeLayoutShift": 0.02701641591389974, + "firstContentfulPaint": 2262, + "firstMeaningfulPaint": 2262, + "largestContentfulPaint": 2412, + "interactive": 9524, + "speedIndex": 2881, + "totalBlockingTime": 172, + "maxPotentialFID": 177, + "cumulativeLayoutShift": 0.0026117960611979165, + "cumulativeLayoutShiftMainFrame": 0.0026117960611979165, + "totalCumulativeLayoutShift": 0.0026117960611979165, "observedTimeOrigin": 0, - "observedTimeOriginTs": 358464548, + "observedTimeOriginTs": 409241036, "observedNavigationStart": 0, - "observedNavigationStartTs": 358464548, - "observedFirstPaint": 1484, - "observedFirstPaintTs": 359948908, - "observedFirstContentfulPaint": 1484, - "observedFirstContentfulPaintTs": 359948908, - "observedFirstContentfulPaintAllFrames": 1484, - "observedFirstContentfulPaintAllFramesTs": 359948908, - "observedFirstMeaningfulPaint": 1484, - "observedFirstMeaningfulPaintTs": 359948908, - "observedLargestContentfulPaint": 1484, - "observedLargestContentfulPaintTs": 359948908, - "observedLargestContentfulPaintAllFrames": 1484, - "observedLargestContentfulPaintAllFramesTs": 359948908, - "observedTraceEnd": 4988, - "observedTraceEndTs": 363453046, - "observedLoad": 2519, - "observedLoadTs": 360983124, - "observedDomContentLoaded": 1607, - "observedDomContentLoadedTs": 360071967, - "observedCumulativeLayoutShift": 0.02701641591389974, - "observedCumulativeLayoutShiftMainFrame": 0.02701641591389974, - "observedTotalCumulativeLayoutShift": 0.02701641591389974, - "observedFirstVisualChange": 1487, - "observedFirstVisualChangeTs": 359951548, - "observedLastVisualChange": 2104, - "observedLastVisualChangeTs": 360568548, - "observedSpeedIndex": 1500, - "observedSpeedIndexTs": 359964767 + "observedNavigationStartTs": 409241036, + "observedFirstPaint": 1132, + "observedFirstPaintTs": 410372873, + "observedFirstContentfulPaint": 1132, + "observedFirstContentfulPaintTs": 410372873, + "observedFirstContentfulPaintAllFrames": 1132, + "observedFirstContentfulPaintAllFramesTs": 410372873, + "observedFirstMeaningfulPaint": 1132, + "observedFirstMeaningfulPaintTs": 410372873, + "observedLargestContentfulPaint": 1132, + "observedLargestContentfulPaintTs": 410372873, + "observedLargestContentfulPaintAllFrames": 1132, + "observedLargestContentfulPaintAllFramesTs": 410372873, + "observedTraceEnd": 4952, + "observedTraceEndTs": 414193259, + "observedLoad": 2492, + "observedLoadTs": 411732905, + "observedDomContentLoaded": 1145, + "observedDomContentLoadedTs": 410385610, + "observedCumulativeLayoutShift": 0.0026117960611979165, + "observedCumulativeLayoutShiftMainFrame": 0.0026117960611979165, + "observedTotalCumulativeLayoutShift": 0.0026117960611979165, + "observedFirstVisualChange": 1142, + "observedFirstVisualChangeTs": 410383036, + "observedLastVisualChange": 1992, + "observedLastVisualChangeTs": 411233036, + "observedSpeedIndex": 1186, + "observedSpeedIndexTs": 410427082 }, { "lcpInvalidated": false @@ -215040,23 +208019,23 @@ "type": "debugdata", "items": [ { - "numRequests": 50, - "numScripts": 27, - "numStylesheets": 2, - "numFonts": 4, - "numTasks": 1401, - "numTasksOver10ms": 9, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, + "numRequests": 58, + "numScripts": 7, + "numStylesheets": 3, + "numFonts": 5, + "numTasks": 1360, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 7160632.141130585, - "maxRtt": 153.928, - "maxServerLatency": 428.07500000000005, - "totalByteWeight": 974410, - "totalTaskTime": 450.50999999999783, - "mainDocumentTransferSize": 16638 + "rtt": 144.768, + "throughput": 85845314.32617663, + "maxRtt": 150.73100000000002, + "maxServerLatency": 162.225, + "totalByteWeight": 15837763, + "totalTaskTime": 329.4299999999968, + "mainDocumentTransferSize": 54755 } ] } @@ -215069,23 +208048,24 @@ "grade": "F" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://espace-membre.incubateur.net/accessibilite" + "declarationUrl": "https://app.resorption-bidonvilles.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", - "maxScore": 0, - "score": 0, + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://app.resorption-bidonvilles.beta.gouv.fr/mentions-legales" }, { "slug": "pc", @@ -215096,100 +208076,161 @@ "missingTrackers": [] } ], - "betagouv": null, + "betagouv": { + "id": "resorption-bidonvilles", + "type": "startup", + "attributes": { + "name": "Résorption Bidonvilles", + "pitch": "Connaître, partager et agir pour résorber les bidonvilles", + "stats_url": "https://resorption-bidonvilles.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", + "link": "https://resorption-bidonvilles.beta.gouv.fr/", + "repository": "https://github.com/MTES-MCT/resorption-bidonvilles", + "contact": "contact@resorption-bidonvilles.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20%2A%2ALe%20constat%2A%2A%0A%0APr%C3%A8s%20de%20%2A%2A15%20000%20personnes%2A%2A%20%28dont%20environ%205%20000%20mineurs%29%20originaires%20en%20majeure%20partie%20de%20Roumanie%20et%20de%20Bulgarie%20vivent%20dans%20pr%C3%A8s%20de%20%2A%2A300%20bidonvilles%2A%2A.%20Pour%20parvenir%20%C3%A0%20une%20r%C3%A9sorption%20durable%20des%20bidonvilles%20les%20solutions%20sont%20connues%20%3A%20une%20action%20partenariale%20%C3%A0%20l%E2%80%99%C3%A9chelle%20d%E2%80%99un%20territoire%2C%20une%20intervention%20sur%20tous%20les%20sites%20d%C3%A8s%20l%E2%80%99implantation%2C%20un%20accompagnement%20vers%20l%E2%80%99insertion%20des%20habitants%20dans%20le%20respect%20des%20lois%20de%20la%20R%C3%A9publique.%0A%0AS%E2%80%99appuyant%20sur%20des%20exp%C3%A9riences%20locales%20r%C3%A9ussies%20%C3%A0%20Strasbourg%20et%20Toulouse%2C%20le%20gouvernement%20a%20d%C3%A9fini%20en%202018%20un%20nouveau%20cadre%20d%E2%80%99action%20pour%20les%20pr%C3%A9fets%20et%20fix%C3%A9%20%2A%2Aun%20objectif%20clair%20de%20r%C3%A9duction%20durable%20du%20nombre%20de%20personnes%20vivant%20dans%20ces%20lieux%20de%20vie%20informels.%2A%2A%C2%A0%0A%0A%3E%20%2A%E2%80%9CR%C3%A9sorber%2C%20cela%20signifie%20agir%20sur%20tous%20les%20bidonvilles%2C%20en%20les%20encadrant%20et%20en%20travaillant%20le%20plus%20t%C3%B4t%20possible%20%C3%A0%20l%E2%80%99accompagnement%20des%20personnes%20vers%20la%20sortie%2C%20dans%20le%20but%20d%E2%80%99une%20r%C3%A9sorption%20compl%C3%A8te%20des%20campements%E2%80%9D%2A%20%5BInstruction%20du%20Gouvernement%20du%2025%20janvier%202018%5D%28https%3A%2F%2Fwww.gouvernement.fr%2Fsites%2Fdefault%2Ffiles%2Fcontenu%2Fpiece-jointe%2F2018%2F06%2Fcirculaire_du_25_janvier_2018.pdf%29%0A%0AL%E2%80%99approche%20est%20globale.%20Il%20s%E2%80%99agit%20de%20couvrir%20l%E2%80%99ensemble%20des%20probl%C3%A9matiques%20se%20posant%20dans%20les%20bidonvilles%20%3A%20l%E2%80%99acc%C3%A8s%20aux%20droits%2C%20la%20scolarisation%2C%20l%E2%80%99insertion%20sociale%2C%20l%E2%80%99emploi%20mais%20aussi%20le%20respect%20de%20l%E2%80%99ordre%20public%2C%20la%20r%C3%A9gularit%C3%A9%20du%20s%C3%A9jour%2C%20la%20protection%20de%20l%E2%80%99enfance%20ou%20la%20r%C3%A9insertion%20dans%20le%20pays%20d%E2%80%99origine%E2%80%A6%0A%0A%2A%2AUn%20changement%20de%20paradigme%2A%2A%20qui%20n%C3%A9cessite%20un%20appui%20technique%20renforc%C3%A9%20aux%20territoires%2C%20une%20coordination%20entre%20de%20nombreux%20acteurs%20et%20un%20suivi%20plus%20soutenu%20sur%20l%27efficacit%C3%A9%20des%20actions%20et%20leur%20performance.%C2%A0%0A%0A%23%23%20La%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20pour%20acc%C3%A9l%C3%A9rer%20la%20r%C3%A9sorption%20des%20bidonvilles%0A%0ALa%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20est%20un%20outil%20d%E2%80%99information%2C%20de%20partage%20et%20de%20pilotage.%20Elle%20s%E2%80%99adresse%20%C3%A0%20tous%20les%20partenaires%20de%20terrain%20concern%C3%A9s%20%3A%20les%20services%20de%20l%E2%80%99%C3%89tat%2C%20les%20Direction%20D%C3%A9partementale%20de%20l%27Emploi%2C%20du%20Travail%20et%20des%20Solidarit%C3%A9s%20%28DDETS%29%2C%20les%20collectivit%C3%A9s%20territoriales%20et%20les%20op%C3%A9rateurs.%C2%A0%0A%0A%2A%2AElle%20r%C3%A9pond%20aux%20enjeux%20de%20l%E2%80%99ensemble%20des%20parties%20prenantes%20concern%C3%A9es%20par%20la%20r%C3%A9sorption%20des%20bidonvilles%20%3A%2A%2A%0A%0A%2A%20un%20suivi%20op%C3%A9rationnel%20facilit%C3%A9%20et%20simplifi%C3%A9%20pour%20les%20responsables%20publics%0A%2A%20une%20coordination%20renforc%C3%A9e%20entre%20les%20acteurs%20de%20la%20r%C3%A9sorption%0A%2A%20une%20meilleure%20visibilit%C3%A9%20des%20actions%20et%20de%20leurs%20insuffisances%20%C3%A9ventuelles%0A%2A%20la%20cr%C3%A9ation%20de%20nouvelles%20synergies%20et%20des%20arguments%20pour%20mobiliser%20de%20nouveaux%20partenaires%0A%2A%20un%20renforcement%20de%20l%27efficacit%C3%A9%20du%20pilotage%20aux%20niveaux%20national%20et%20local%20des%20actions%20de%20r%C3%A9sorption%0A%0A%23%23%20Des%20fonctionnalit%C3%A9s%20op%C3%A9rationnelles%20pour%20agir%0A%0ALa%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20%2A%2Apermet%20aux%20usagers%20de%20renseigner%2C%20de%20suivre%20et%20de%20valoriser%20les%20actions%20conduites%20sur%20les%20bidonvilles.%2A%2A%C2%A0%0A%0ASes%20fonctionnalit%C3%A9s%20se%20structurent%20autour%20de%203%20volets%20%3A%0A%0A%2A%20un%20volet%20pour%20%2A%2Asuivre%20les%20sites%2A%2A%20%3A%20cartographie%20des%20implantations%20%3B%20information%20de%20l%E2%80%99installation%2C%20la%20disparition%2C%20la%20r%C3%A9sorption%20ou%20l%E2%80%99%C3%A9vacuation%20d%E2%80%99un%20site%20et%20ses%20caract%C3%A9ristiques%20%28nombre%20de%20personnes%2C%20origines%2C%20conditions%20de%20vie%20telles%20que%20l%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99eau%2C%20l%E2%80%99%C3%A9vacuation%20des%20d%C3%A9chets%E2%80%A6%29.%C2%A0%0A%2A%20un%20volet%20pour%20%2A%2Asuivre%2C%20coordonner%20et%20piloter%20les%20actions%20de%20r%C3%A9sorption%2A%2A%20%3A%20utilisation%20et%20analyse%20des%20donn%C3%A9es%20pour%20chaque%20action%20de%20r%C3%A9sorption%20%3B%20suivi%20et%20pilotage%20des%20actions%20de%20r%C3%A9sorption%20conduite%20sur%20un%20site%20%3B%20partage%20des%20constats%20dans%20le%20journal%20du%20site%20dans%20une%20action%20multi-partenariale%20%3B%20suivi%20des%20actions%20des%20op%C3%A9rateurs%20intervenant%20aupr%C3%A8s%20des%20habitants.%0A%2A%20un%20volet%20pour%20%2A%2Avaloriser%20les%20actions%20mises%20en%20%C5%93uvre%2A%2A%20%3A%20%C3%A9change%20avec%20le%20r%C3%A9seau%20de%20partenaires%20du%20territoire%20ou%20avec%20des%20pairs%20pour%20le%20partage%20de%20bonnes%20pratiques%20%3B%20exportation%20des%20donn%C3%A9es%20%3B%20%C3%A9dition%20de%20bilans.%0A%0A%23%23%20L%E2%80%99%C3%A9volution%20de%20la%20plateforme%20et%20ses%20perspectives%0A%0AApr%C3%A8s%20avoir%20%C3%A9t%C3%A9%20exp%C3%A9riment%C3%A9e%20sur%20deux%20territoires%20exp%C3%A9rimentaux%20la%20Haute-Garonne%20et%20la%20Gironde%2C%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20a%20%C3%A9t%C3%A9%20%2A%2Ad%C3%A9ploy%C3%A9e%20sur%20l%E2%80%99ensemble%20du%20territoire%20national%20en%20juin%202019%2A%2A.%20Elle%20compte%20au%20mois%20de%20mai%202021%20%2A%2A289%20structures%2A%2A%20pour%20%2A%2A610%20personnes%20utilisatrices%2A%2A%20et%20a%20pour%20objectif%20d%E2%80%99atteindre%20les%201000%20usagers%20fin%202023.%0A%0AElle%20est%20incub%C3%A9e%20au%20sein%20de%20la%20Fabrique%20num%C3%A9rique%20du%20minist%C3%A8re%20de%20la%20Transition%20%C3%A9cologique%20%C3%A0%20l%E2%80%99automne%202019.%20Un%20an%20plus%20tard%2C%20laur%C3%A9ate%20du%C2%A0%20%5BFonds%20de%20transformation%20de%20l%E2%80%99action%20publique%20%28FTAP%29%5D%28https%3A%2F%2Fwww.gouvernement.fr%2Fla-plateforme-resorption-bidonvilles-laureate-du-fonds-de-transformation-de-l-action-publique-2020%29%2C%C2%A0%20la%20plateforme%20entre%20dans%20sa%20phase%20d%E2%80%99acc%C3%A9l%C3%A9ration.%20L%E2%80%99enveloppe%20d%27un%20million%20d%E2%80%99euros%20servira%20concr%C3%A8tement%20%C3%A0%20poursuivre%20son%20d%C3%A9veloppement%20avec%20%2A%2Aune%20strat%C3%A9gie%20de%20d%C3%A9ploiement%20qui%20vise%20la%20cr%C3%A9ation%20d%E2%80%99une%20v%C3%A9ritable%20dynamique%20collaborative%2C%20au%20sein%20d%E2%80%99un%20territoire%2A%2A%2C%20entre%20les%20acteurs%20engag%C3%A9s%20vers%20l%E2%80%99objectif%20de%20r%C3%A9sorption%2C%20en%20s%27appuyant%20sur%20les%20correspondants%20territoriaux%20de%20la%20Dihal.%C2%A0%0A%0APort%C3%A9e%20par%20la%20Dihal%2C%20l%E2%80%99objectif%20%C3%A0%20long%20terme%20est%20de%20%2A%2Afaire%20de%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20l%E2%80%99outil%20m%C3%A9tier%20de%20r%C3%A9f%C3%A9rence%20de%20cette%20politique%20publique%20pour%20acc%C3%A9l%C3%A9rer%20la%20r%C3%A9sorption%20des%20bidonvilles%2A%2A%20avec%20l%E2%80%99ensemble%20des%20partenaires%20concern%C3%A9s.%0A%0A%23%23%20En%20savoir%20plus%0A%0AInscrivez-vous%20%C3%A0%20l%E2%80%99une%20de%20nos%20formations%20de%20la%20plateforme%20%2AR%C3%A9sorption-bidonvilles%2A%20%3A%20%5B2%20sessions%20par%20semaine%5D%28https%3A%2F%2Fapp.evalandgo.com%2Fs%2Findex.php%3Fa%3DJTk2cCU5N2slOUElQjA%3D%26id%3DJTk4ayU5QW4lOTYlQUY%3D%29%0A%0AContactez-nous%20%3A%20%5Bcontact%40resorption-bidonvilles.beta.gouv.fr%5D%28mailto%3Acontact%40resorption-bidonvilles.beta.gouv.fr%29%C2%A0%0A%0A%0A%0A%2ADerni%C3%A8re%20mise%20%C3%A0%20jour%20%3A%2023%20juin%202021%2A%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2018-10-01", + "end": "2018-12-31" + }, + { + "name": "construction", + "start": "2019-01-01", + "end": "2020-08-31" + }, + { + "name": "acceleration", + "start": "2020-09-01", + "end": "" + }, + { + "name": "transfer", + "start": "2021-09-01", + "end": "" + } + ], + "sponsors": [ + "dihal" + ], + "thematiques": [] + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://espace-membre.incubateur.net", - "size": 1631.888, - "nodes": 318, - "requests": 61, + "url": "https://resorption-bidonvilles.beta.gouv.fr", + "size": 2223.393, + "nodes": 425, + "requests": 33, "grade": "C", "score": 65, "ges": 1.7, "water": 2.55, "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:26:49.440287", + "date": "2024-12-01 08:17:06.441872", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { "httpGrade": "B", "apdex": 1, "apdexGrade": "A", - "uptime": 99.987, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-01T18:36:00.000Z", + "testsslExpireDate": "2025-02-05T15:07:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", "cookiesCount": 3, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.63, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.98, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.85, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.92, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", "declaration-a11y": "C", - "declaration-rgpd-ml": "F", + "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "F", "ecoindexGrade": "C", - "dsfrGrade": "A" + "dsfrGrade": "F" } }, { "404": null, - "url": "https://trackdechets.beta.gouv.fr", - "category": "mtes", - "betaId": "trackdechets", + "url": "https://santepsy.etudiant.gouv.fr", + "category": "dinum", + "betaId": "sante-psy-etudiant", "http": { - "url": "https://trackdechets.beta.gouv.fr", + "url": "https://santepsy.etudiant.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:00:52 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 06:41:00 GMT", + "grade": "A+", "hidden": false, - "likelihood_indicator": "MEDIUM", + "likelihood_indicator": "LOW", "response_headers": { + "Accept-Ranges": "bytes", + "Cache-Control": "no-cache, no-store, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "img-src 'self' data: static/; script-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr; font-src 'self' data: static/; style-src 'self' 'unsafe-inline' static/; connect-src 'self'; default-src 'self' trackdechets.beta.gouv.fr/ blob:", - "Content-Type": "text/html; charset=utf-8", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net https://*.crisp.chat data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://*.crisp.chat 'sha256-t4VtNIUiuBKi5VJfKaIxe2Ww1/6O3gae/Qtmhx4B0uE=';script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/ https://game.crisp.chat;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/ wss://client.relay.crisp.chat https://client.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://cdn.jsdelivr.net", + "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 06:00:51 GMT", - "Permissions-Policy": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", - "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=CUMfQDWa7hDDBQxj3ObS0E7VJ9BlgA2s; expires=Sun, 19 Oct 2025 06:00:51 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 06:40:59 GMT", + "ETag": "W/\"6a9-191e00683a8\"", + "Expires": "0", + "Feature-Policy": "geolocation 'self'", + "Last-Modified": "Wed, 11 Sep 2024 07:40:09 GMT", + "Origin-Agent-Cluster": "?1", + "Permissions-Policy": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()", + "Pragma": "no-cache", + "Referrer-Policy": "no-referrer", + "Server": "nginx", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", - "Vary": "Cookie, origin", + "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "5f6b58fb-dc42-44ff-98f3-a499b2cd92f2" + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "465a5e8a-a5d3-4ab0-89e4-71c567a342e8", + "X-XSS-Protection": "0" }, - "scan_id": 57052347, - "score": 75, - "start_time": "Sun, 20 Oct 2024 06:00:49 GMT", + "scan_id": 57053226, + "score": 110, + "start_time": "Sun, 20 Oct 2024 06:40:58 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, + "tests_failed": 0, + "tests_passed": 10, "tests_quantity": 10, "details": { "content-security-policy": { @@ -215197,83 +208238,113 @@ "name": "content-security-policy", "output": { "data": { - "connect-src": [ + "base-uri": [ "'self'" ], + "connect-src": [ + "https://client.axept.io/", + "https://cdn.jsdelivr.net", + "https://storage.crisp.chat", + "https://nominatim.openstreetmap.org", + "wss://stream.relay.crisp.chat", + "wss://client.relay.crisp.chat", + "https://stats.beta.gouv.fr/", + "'self'", + "https://client.crisp.chat" + ], "default-src": [ - "blob:", - "trackdechets.beta.gouv.fr/", "'self'" ], "font-src": [ "data:", - "static/", + "https:", "'self'" ], - "frame-src": [ - "https://statistiques.trackdechets.beta.gouv.fr", + "form-action": [ + "'self'" + ], + "frame-ancestors": [ "'self'" ], + "frame-src": [ + "https://santepsy-metabase.osc-secnum-fr1.scalingo.io", + "https://game.crisp.chat", + "https://bid.g.doubleclick.net/", + "https://stats.santepsyetudiant.beta.gouv.fr" + ], "img-src": [ + "https://axeptio.imgix.net", + "'self'", + "https://*.tile.openstreetmap.org/", + "https://*.crisp.chat", + "https://googleads.g.doubleclick.net", + "https://www.google.com/", + "https://stats.beta.gouv.fr/", + "https://www.facebook.com", "data:", - "static/", - "'self'" + "https://www.google.fr/" + ], + "object-src": [ + "'none'" ], "script-src": [ + "https://static.axept.io/", + "https://*.crisp.chat", + "https://www.googleadservices.com/", + "https://googleads.g.doubleclick.net", + "https://www.googletagmanager.com/", + "'sha256-sqjiu0yvewrfwpjx2fpbsuhfmtb6cd2u2u+ip0kxg4c='", + "https://stats.beta.gouv.fr/", + "'self'", + "https://connect.facebook.net", + "'sha256-t4vtniuiubki5vjfkaixe2ww1/6o3gae/qtmhx4b0ue='" + ], + "script-src-attr": [ "'unsafe-inline'", - "static/", "'self'" ], "style-src": [ "'unsafe-inline'", - "static/", + "https:", "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": false, + "antiClickjacking": true, "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, + "insecureBaseUri": false, + "insecureFormAction": false, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, - "unsafeInline": true, + "unsafeInline": false, "unsafeInlineStyle": true, "unsafeObjects": false } }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "csrftoken": { - "domain": "trackdechets.beta.gouv.fr", - "expires": 1760853651, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": false - } - }, + "data": null, "sameSite": null }, - "pass": false, - "result": "cookies-without-secure-flag-but-protected-by-hsts", - "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -5 + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -215294,11 +208365,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://trackdechets.beta.gouv.fr/", + "destination": "https://santepsy.etudiant.gouv.fr/", "redirects": true, "route": [ - "http://trackdechets.beta.gouv.fr/", - "https://trackdechets.beta.gouv.fr/" + "http://santepsy.etudiant.gouv.fr/", + "https://santepsy.etudiant.gouv.fr/" ], "status_code": 200 }, @@ -215311,7 +208382,7 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "same-origin", + "data": "no-referrer", "http": true, "meta": false }, @@ -215324,10 +208395,10 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15768000; includeSubDomains; preload", + "data": "max-age=31536000; includeSubdomains", "includeSubDomains": true, - "max-age": 15768000, - "preload": true, + "max-age": 31536000, + "preload": false, "preloaded": false }, "pass": true, @@ -215361,88 +208432,89 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": "SAMEORIGIN" }, "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "0" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": 0 } } }, "updownio": { - "token": "ysjc", - "url": "https://trackdechets.beta.gouv.fr", - "alias": null, + "token": "pkzo", + "url": "https://santepsy.etudiant.gouv.fr", + "alias": "", "last_status": 200, - "uptime": 100, + "uptime": 99.681, "down": false, "down_since": null, - "up_since": "2024-11-23T00:30:39Z", + "up_since": "2024-12-01T03:08:37Z", "error": null, - "period": 300, + "period": 120, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ + "email:2638191418", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T08:47:50Z", - "next_check_at": "2024-11-24T08:52:50Z", - "created_at": "2021-04-22T19:59:38Z", + "last_check_at": "2024-12-01T08:45:23Z", + "next_check_at": "2024-12-01T08:47:22Z", + "created_at": "2021-04-02T08:14:32Z", "mute_until": null, - "favicon_url": "https://trackdechets.beta.gouv.fr/static/img/favicon-16x16.png", + "favicon_url": "https://santepsy.etudiant.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T08:37:52Z", - "expires_at": "2024-12-27T15:55:41Z", + "tested_at": "2024-12-01T08:27:30Z", + "expires_at": "2025-01-23T23:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.996, "timings": { "redirect": 0, - "namelookup": 129, - "connection": 133, - "handshake": 139, - "response": 187, - "total": 589 + "namelookup": 55, + "connection": 159, + "handshake": 163, + "response": 198, + "total": 576 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "trackdechets.beta.gouv.fr", + "host": "santepsy.etudiant.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "850", "open_ports": [ { "service": { - "name": "http", + "name": "tcpwrapped", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", + "name": "tcpwrapped", "id": "443", "vulnerabilities": [] } @@ -215455,77 +208527,77 @@ "testssl": [ { "id": "service", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -215533,7 +208605,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -215541,7 +208613,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -215549,7 +208621,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -215557,7 +208629,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -215565,7 +208637,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -215573,497 +208645,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "cipher-tls1_2_x9f", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (53)" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "2024-09-28 15:55" + "finding": "2024-01-25 00:00" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "OK", - "finding": "2024-12-27 15:55" + "severity": "MEDIUM", + "finding": "2025-01-23 23:59" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "2020-02-18 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "2033-05-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + }, + { + "id": "intermediate_cert <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2019-03-12 00:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "intermediate_cert_notAfter <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2028-12-31 23:59" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "intermediate_cert_expiration <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "intermediate_cert_chain <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "1732438204" + "finding": "1733042592" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "182 days (=15768000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "img-src 'self' data: static/; script-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr; default-src 'self' trackdechets.beta.gouv.fr/ blob:; connect-src 'self'; font-src 'self' data: static/; style-src 'self' 'unsafe-inline' static/" + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net https://*.crisp.chat data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://*.crisp.chat 'sha256-t4VtNIUiuBKi5VJfKaIxe2Ww1/6O3gae/Qtmhx4B0uE=';script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/ https://game.crisp.chat;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/ wss://client.relay.crisp.chat https://client.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://cdn.jsdelivr.net" }, { "id": "Permissions-Policy", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", - "finding": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" + "finding": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()" + }, + { + "id": "X-XSS-Protection", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "0" }, { "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no-cache, no-store, must-revalidate" + }, + { + "id": "Pragma", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -216071,7 +209227,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -216080,7 +209236,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -216089,16 +209245,16 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -216107,7 +209263,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -216115,7 +209271,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -216124,7 +209280,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -216133,16 +209289,16 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -216151,14 +209307,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -216167,7 +209323,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -216176,7 +209332,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -216185,16 +209341,16 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7DE69BDAD107873439A466A28B386BE57DB402B250B25237A960B74C7861E87B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8654BCB9A78ED13CF67D784814B53C792DB4C3497FD40BFFB54F4DD53970C31B" }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -216203,7 +209359,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -216212,7 +209368,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -216221,7 +209377,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -216230,7 +209386,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -216239,7 +209395,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -216248,392 +209404,1059 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { - "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "scanProblem", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "severity": "FATAL", + "finding": "repeated TCP connect problems, giving up" }, { - "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "id": "scanTime", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "INFO", - "finding": "100" + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + } + ], + "cookies": [ + { + "name": "_pk_ses.76.22ad", + "value": "1", + "domain": "santepsy.etudiant.gouv.fr", + "path": "/", + "expires": 1733043948, + "size": 16, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.76.22ad", + "value": "8f0764693b5900dd.1733042147.", + "domain": "santepsy.etudiant.gouv.fr", + "path": "/", + "expires": 1766997347, + "size": 42, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "accept-ranges": "bytes", + "cache-control": "no-cache, no-store, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net https://*.crisp.chat data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net https://*.crisp.chat 'sha256-t4VtNIUiuBKi5VJfKaIxe2Ww1/6O3gae/Qtmhx4B0uE=';script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/ https://game.crisp.chat;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/ wss://client.relay.crisp.chat https://client.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://cdn.jsdelivr.net", + "content-type": "text/html; charset=UTF-8", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 08:35:46 GMT", + "etag": "W/\"6a9-1936e4bca28\"", + "expires": "0", + "feature-policy": "geolocation 'self'", + "last-modified": "Wed, 27 Nov 2024 15:44:41 GMT", + "origin-agent-cluster": "?1", + "permissions-policy": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()", + "pragma": "no-cache", + "referrer-policy": "no-referrer", + "server": "nginx", + "strict-transport-security": "max-age=31536000; includeSubdomains", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "2fa10e80-3c6c-49db-9dad-bfd9baac1664", + "x-xss-protection": "0" }, - { - "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "30" + "endpoints": [ + { + "hostname": "santepsy.etudiant.gouv.fr", + "ip": "185.75.143.93", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.187.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://santepsy.etudiant.gouv.fr/": { + "status": 200, + "error": "Navigation timeout of 10000 ms exceeded (https://santepsy.etudiant.gouv.fr/)" + } }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "requestedUrl": "https://santepsy.etudiant.gouv.fr/", + "finalUrl": "https://santepsy.etudiant.gouv.fr/", + "fetchTime": "2024-12-01T08:35:21.521Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.65 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.81 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1861, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1861, + "firstMeaningfulPaint": 1861, + "largestContentfulPaint": 9294, + "interactive": 1861, + "speedIndex": 2947, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.2875, + "cumulativeLayoutShiftMainFrame": 0.2875, + "totalCumulativeLayoutShift": 0.3767602428860134, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 424202311, + "observedNavigationStart": 0, + "observedNavigationStartTs": 424202311, + "observedFirstPaint": 1063, + "observedFirstPaintTs": 425265410, + "observedFirstContentfulPaint": 1063, + "observedFirstContentfulPaintTs": 425265410, + "observedFirstContentfulPaintAllFrames": 1063, + "observedFirstContentfulPaintAllFramesTs": 425265410, + "observedFirstMeaningfulPaint": 1063, + "observedFirstMeaningfulPaintTs": 425265410, + "observedLargestContentfulPaint": 1516, + "observedLargestContentfulPaintTs": 425718757, + "observedLargestContentfulPaintAllFrames": 1516, + "observedLargestContentfulPaintAllFramesTs": 425718757, + "observedTraceEnd": 4534, + "observedTraceEndTs": 428736288, + "observedLoad": 1571, + "observedLoadTs": 425773182, + "observedDomContentLoaded": 1027, + "observedDomContentLoadedTs": 425229331, + "observedCumulativeLayoutShift": 0.2875, + "observedCumulativeLayoutShiftMainFrame": 0.2875, + "observedTotalCumulativeLayoutShift": 0.3767602428860134, + "observedFirstVisualChange": 1064, + "observedFirstVisualChangeTs": 425266311, + "observedLastVisualChange": 2247, + "observedLastVisualChangeTs": 426449311, + "observedSpeedIndex": 1419, + "observedSpeedIndexTs": 425621808 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 35, + "numScripts": 5, + "numStylesheets": 2, + "numFonts": 5, + "numTasks": 32, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.4190000000000005, + "throughput": 32949337.311056368, + "maxRtt": 87.596, + "maxServerLatency": 98.68299999999999, + "totalByteWeight": 2937870, + "totalTaskTime": 5.665999999999997, + "mainDocumentTransferSize": 2749 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "sante-psy-etudiant", + "type": "startup", + "attributes": { + "name": "Santé Psy Étudiant", + "pitch": "Dispositif dédié aux étudiants de l'enseignement supérieur, SPE permet à un étudiant de bénéficier de consultations avec des psychologues validés par les services médicaux des universités sans avance de frais.", + "stats_url": "https://santepsy.etudiant.gouv.fr/stats", + "link": "https://santepsy.etudiant.gouv.fr/", + "repository": "https://github.com/betagouv/sante-psy/", + "contact": "support-santepsyetudiant@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALa%20crise%20sanitaire%20du%20Covid-19%20a%20contribu%C3%A9%20%C3%A0%20exacerber%20et%20r%C3%A9v%C3%A9ler%20l%27%C3%A9tat%20de%20la%20sant%C3%A9%20mentale%20des%20%C3%A9tudiants%20en%20France.%20Cette%20%C3%A9tape%20transitionnelle%20de%20vie%2C%20entre%20l%27adolescence%20et%20l%27%C3%A2ge%20adulte%2C%20engendre%20en%20effet%20des%20questionnements%2C%20des%20doutes%20et%20parfois%20des%20troubles%20de%20la%20sant%C3%A9%20mentale.%0A%0AA%20partir%20de%20mars%202021%2C%20le%20minist%C3%A8re%20de%20l%27Enseignement%20Sup%C3%A9rieur%20et%20de%20la%20Recherche%20a%20donc%20mis%20en%20place%20un%20dispositif%20d%27accompagnement%20psychologique%20pour%20permettre%20aux%20%C3%A9tudiants%20de%20b%C3%A9n%C3%A9ficier%20de%20consultations%20aupr%C3%A8s%20de%20psychologues%20agr%C3%A9%C3%A9s%20sans%20avance%20de%20frais.%0A%0AOutre%20ce%20dispositif%20de%20prise%20en%20charge%20des%20consultations%20par%20les%20universit%C3%A9s%2C%20Sant%C3%A9%20Psy%20Etudiant%20c%27est%20aussi%20%3A%0A-%20Un%20portail%20d%27information%20en%20ligne%20pour%20les%20%C3%A9tudiants%2C%20leurds%20proches%2C%20les%20psychologues%20et%20les%20m%C3%A9decins%20qui%20ont%20des%20questions%20sur%20le%20dispositif%20et%2Fou%20souhaite%20consulter%20l%27annuaire%20des%20psychologues%20disponibles%20%3B%0A-%20Un%20outil%20de%20suivi%20et%20de%20facturation%20de%20la%20patient%C3%A8le%20%C3%A9tudiante%20des%20psychologues%20%3B%20%0A-%20Une%20marque%20qui%20cr%C3%A9%C3%A9e%20du%20contenu%20pour%20pr%C3%A9venir%20et%20d%C3%A9culpabiliser%20les%20enjeux%20autour%20de%20la%20sant%C3%A9%20mentale%20en%20adressant%20les%20%C3%A9tudiants%20mais%20aussi%20leurs%20proches%20%3B%0A-%20Et%20la%20mise%20en%20place%20de%20partenariats%20avec%20des%20acteurs%20divers%20pour%20toucher%20toujours%20plus%20d%27%C3%A9tudiants%20et%20faciliter%20la%20prise%20de%20rendez-vous%20avec%20un%20psychologue%20%28Doctolib%2C%20Pass%20Culture%2C%20Pass%20Sport%2C%20Nightline%2C%20etc.%29.", + "events": [ + { + "name": "product_launch", + "date": "2021-03-11", + "comment": "" + } + ], + "phases": [ + { + "name": "construction", + "start": "2021-03-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-09-01", + "end": "" + } + ], + "sponsors": [ + "dgesip" + ], + "thematiques": [ + "Santé", + "Jeunesse" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/santepsy-etudiant-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://santepsy.etudiant.gouv.fr", + "size": 4177.94, + "nodes": 415, + "requests": 32, + "grade": "C", + "score": 62, + "ges": 1.76, + "water": 2.64, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 08:30:39.008926", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 0.996, + "apdexGrade": "A", + "uptime": 99.681, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.81, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://espace-membre.incubateur.net", + "category": "betagouv", + "http": { + "url": "https://espace-membre.incubateur.net", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:47:31 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; connect-src 'self' api.maptiler.com espace-membre.cellar-c2.services.clever-cloud.com espace-membre-staging.cellar-c2.services.clever-cloud.com *.gouv.fr sentry.incubateur.net https://client.crisp.chat https://storage.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://nominatim.openstreetmap.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.gouv.fr sentry.incubateur.net unpkg.com https://client.crisp.chat https://settings.crisp.chat; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com unpkg.com https://client.crisp.chat; img-src * data: blob: https://client.crisp.chat https://image.crisp.chat https://storage.crisp.chat; font-src 'self' data: cdnjs.cloudflare.com https://client.crisp.chat; frame-src 'self' metabase.incubateur.net https://game.crisp.chat; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests;", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 06:47:29 GMT", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Powered-By": "Next.js", + "X-Request-ID": "2dc0349f-f234-4226-bdb7-1230c7bb3dd9", + "strict-transport-security": "max-age=31536000" }, - { - "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57053394, + "score": 75, + "start_time": "Sun, 20 Oct 2024 06:47:27 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "espace-membre.cellar-c2.services.clever-cloud.com", + "sentry.incubateur.net", + "wss://client.relay.crisp.chat", + "'self'", + "https://client.crisp.chat", + "https://nominatim.openstreetmap.org", + "api.maptiler.com", + "https://storage.crisp.chat", + "espace-membre-staging.cellar-c2.services.clever-cloud.com", + "wss://stream.relay.crisp.chat", + "*.gouv.fr" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "cdnjs.cloudflare.com", + "data:", + "https://client.crisp.chat", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "frame-src": [ + "https://game.crisp.chat", + "metabase.incubateur.net", + "'self'" + ], + "img-src": [ + "*", + "data:", + "https://client.crisp.chat", + "https://image.crisp.chat", + "https://storage.crisp.chat", + "blob:" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "sentry.incubateur.net", + "'unsafe-inline'", + "'self'", + "https://client.crisp.chat", + "'unsafe-eval'", + "blob:", + "https://settings.crisp.chat", + "unpkg.com", + "*.gouv.fr" + ], + "style-src": [ + "'unsafe-inline'", + "'self'", + "https://client.crisp.chat", + "unpkg.com", + "cdnjs.cloudflare.com" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://espace-membre.incubateur.net/login", + "redirects": true, + "route": [ + "http://espace-membre.incubateur.net/", + "https://espace-membre.incubateur.net/", + "https://espace-membre.incubateur.net/login" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "egnn", + "url": "https://espace-membre.incubateur.net", + "alias": null, + "last_status": 200, + "uptime": 99.995, + "down": false, + "down_since": null, + "up_since": "2024-11-28T21:19:56Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T08:42:22Z", + "next_check_at": "2024-12-01T08:43:22Z", + "created_at": "2024-01-15T13:56:21Z", + "mute_until": null, + "favicon_url": "https://espace-membre.incubateur.net/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T08:33:25Z", + "expires_at": "2025-01-01T18:36:50Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 382, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 133, + "total": 515 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "espace-membre.incubateur.net", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -216641,7 +210464,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -216649,7 +210472,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -216657,7 +210480,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -216665,7 +210488,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -216673,7 +210496,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -216681,497 +210504,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-09-28 15:55" + "finding": "2024-10-03 18:36" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-12-27 15:55" + "finding": "2025-01-01 18:36" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732438257" + "finding": "1733042224" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", - "finding": "182 days (=15768000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "img-src 'self' data: static/; script-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr; default-src 'self' trackdechets.beta.gouv.fr/ blob:; connect-src 'self'; font-src 'self' data: static/; style-src 'self' 'unsafe-inline' static/" - }, - { - "id": "Permissions-Policy", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "id": "security_headers", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -217179,7 +210960,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -217188,7 +210969,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -217197,7 +210978,7 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -217206,7 +210987,7 @@ }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -217215,7 +210996,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -217223,7 +211004,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -217232,7 +211013,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -217241,16 +211022,16 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -217259,14 +211040,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -217275,7 +211056,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -217284,7 +211065,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -217293,16 +211074,16 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7DE69BDAD107873439A466A28B386BE57DB402B250B25237A960B74C7861E87B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -217311,7 +211092,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -217320,7 +211101,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -217329,7 +211110,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -217338,7 +211119,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -217347,7 +211128,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -217356,1306 +211137,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "110" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "csrftoken", - "value": "i0TRWsvajVlXGGmeQJgTpJh7uzOWP0ho", - "domain": "trackdechets.beta.gouv.fr", - "path": "/", - "expires": 1763887757.99634, - "size": 41, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "img-src 'self' data: static/; script-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr; default-src 'self' trackdechets.beta.gouv.fr/ blob:; connect-src 'self'; font-src 'self' data: static/; style-src 'self' 'unsafe-inline' static/", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 08:49:17 GMT", - "permissions-policy": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=i0TRWsvajVlXGGmeQJgTpJh7uzOWP0ho; expires=Sun, 23 Nov 2025 08:49:17 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "strict-transport-security": "max-age=15768000; includeSubDomains; preload", - "vary": "Cookie, origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "2d6f78f4-457b-4014-a123-5076269394b5" - }, - "endpoints": [ - { - "hostname": "trackdechets.beta.gouv.fr", - "ip": "5.104.101.30", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://trackdechets.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", - "confidence": 100, - "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", - "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "htmx", - "name": "Htmx", - "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", - "confidence": 100, - "version": null, - "icon": "Htmx.svg", - "website": "https://htmx.org", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://trackdechets.beta.gouv.fr/", - "finalUrl": "https://trackdechets.beta.gouv.fr/", - "fetchTime": "2024-11-24T08:48:51.733Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.98 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 1849, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1849, - "firstMeaningfulPaint": 1849, - "largestContentfulPaint": 2074, - "interactive": 1849, - "speedIndex": 1967, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.028053385416666667, - "cumulativeLayoutShiftMainFrame": 0.028053385416666667, - "totalCumulativeLayoutShift": 0.028053385416666667, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 444562619, - "observedNavigationStart": 0, - "observedNavigationStartTs": 444562619, - "observedFirstPaint": 699, - "observedFirstPaintTs": 445261580, - "observedFirstContentfulPaint": 699, - "observedFirstContentfulPaintTs": 445261580, - "observedFirstContentfulPaintAllFrames": 699, - "observedFirstContentfulPaintAllFramesTs": 445261580, - "observedFirstMeaningfulPaint": 699, - "observedFirstMeaningfulPaintTs": 445261580, - "observedLargestContentfulPaint": 699, - "observedLargestContentfulPaintTs": 445261580, - "observedLargestContentfulPaintAllFrames": 699, - "observedLargestContentfulPaintAllFramesTs": 445261580, - "observedTraceEnd": 3304, - "observedTraceEndTs": 447867115, - "observedLoad": 849, - "observedLoadTs": 445411207, - "observedDomContentLoaded": 731, - "observedDomContentLoadedTs": 445293567, - "observedCumulativeLayoutShift": 0.028053385416666667, - "observedCumulativeLayoutShiftMainFrame": 0.028053385416666667, - "observedTotalCumulativeLayoutShift": 0.028053385416666667, - "observedFirstVisualChange": 702, - "observedFirstVisualChangeTs": 445264619, - "observedLastVisualChange": 1469, - "observedLastVisualChangeTs": 446031619, - "observedSpeedIndex": 725, - "observedSpeedIndexTs": 445287521 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 37, - "numScripts": 2, - "numStylesheets": 3, - "numFonts": 4, - "numTasks": 18, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 83.75999999999999, - "throughput": 13349371.354499802, - "maxRtt": 83.75999999999999, - "maxServerLatency": 48.809999999999974, - "totalByteWeight": 450583, - "totalTaskTime": 2980.676, - "mainDocumentTransferSize": 8365 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://trackdechets.beta.gouv.fr//trackdechets.beta.gouv.fr/accessibilite/" - }, - "declaration-rgpd": [ + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://trackdechets.beta.gouv.fr/static/pdf/mentions-legales.pdf" + "id": "clientsimulation-openssl_102e", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://trackdechets.beta.gouv.fr/static/pdf/politique-de-confidentialite.pdf" - } - ], - "betagouv": { - "id": "trackdechets", - "type": "startup", - "attributes": { - "name": "Trackdéchets", - "pitch": "Gérer la traçabilité des déchets, en toute sécurité", - "stats_url": "https://trackdechets.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#-Minist%C3%A8re-de-la-Transition-Ecologique-x-Fabrique-Num%C3%A9rique", - "link": "https://trackdechets.beta.gouv.fr", - "repository": "https://github.com/MTES-MCT/trackdechets", - "contact": "contact@trackdechets.beta.gouv.fr", - "content_url_encoded_markdown": "En%202016%2C%2012%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%20ont%20%C3%A9t%C3%A9%20produits%20en%20France.%20Il%20s%E2%80%99agit%20de%20d%C3%A9chets%20contenants%20des%20%C3%A9l%C3%A9ments%20toxiques%20ou%20dangereux%20qui%20pr%C3%A9sentent%20des%20risques%20pour%20la%20sant%C3%A9%20et%20l%27environnement.%20%0A%0ACes%20d%C3%A9chets%20sont%20soumis%20%C3%A0%20une%20r%C3%A9glementation%20particuli%C3%A8re%20pour%20leur%20gestion%20et%20leur%20valorisation.%20Afin%20de%20contr%C3%B4ler%20le%20traitement%20effectif%20des%20d%C3%A9chets%2C%20la%20loi%20impose%20aux%20soci%C3%A9t%C3%A9s%20productrices%20une%20tra%C3%A7abilit%C3%A9%20rigoureuse%20assur%C3%A9e%20par%20un%20bordereau%20de%20suivi%20de%20d%C3%A9chets%20qui%20permet%20de%20suivre%20le%20d%C3%A9chet%20de%20sa%20collecte%20%C3%A0%20son%20traitement.%20Chaque%20ann%C3%A9e%2C%20pr%C3%A8s%20de%2016%20millions%20de%20ces%20bordereaux%20sont%20%C3%A9dit%C3%A9s.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%23%23%23%20Un%20impact%20environnemental%20majeur%0A%0AL%27efficacit%C3%A9%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%20est%20lourdement%20questionn%C3%A9e%20par%20les%20donn%C3%A9es%20officielles%20%28delta%20production%20vs.%20traitement%29%20et%20les%20pratiques%20observ%C3%A9es%20%28fraude%2C%20traitements%20inadapt%C3%A9s%29%20indiquant%20un%20risque%20environnemental%20majeur%20avec%20la%20%2Adisparition%2A%20de%20d%C3%A9chets%20dans%20la%20nature%E2%80%A6%0A%0ALes%20d%C3%A9chets%20dangereux%20abandonn%C3%A9s%20%28exploitants%20d%C3%A9faillants%29%20g%C3%A9n%C3%A8rent%20%C3%A9galement%20pollutions%20et%20interventions%20de%20l%E2%80%99%C3%89tat.%20La%20prise%20en%20charge%20des%20sites%20pollu%C3%A9s%20%C3%A0%20responsables%20d%C3%A9faillants%20par%20l%E2%80%99ADEME%20a%20repr%C3%A9sent%C3%A9%20entre%202011-2014%20pr%C3%A8s%20de%20107%20millions%20d%E2%80%99euros.%0A%0AIl%20arrive%20de%20fa%C3%A7on%20r%C3%A9currente%20que%20certains%20sites%20de%20stockage%20autoris%C3%A9s%20%28en%20difficult%C3%A9s%20financi%C3%A8res%20par%20exemple%29%20d%C3%A9passent%20les%20seuils%20autoris%C3%A9s.%20Ces%20surstockages%20indiquent%20un%20risque%20imminent%20pour%20l%E2%80%99environnement%20et%20le%20voisinage%20%28pollution%2C%20incendie%2C%20etc%29.%20Or%20ces%20soci%C3%A9t%C3%A9s%20ne%20font%20pas%20n%C3%A9cessairement%20l%E2%80%99objet%20d%E2%80%99un%20contr%C3%B4le%20du%20fait%20que%20les%20services%20de%20l%E2%80%99%C3%89tat%20ne%20disposent%20pas%20d%E2%80%99alertes%20sp%C3%A9cifiques.%0A%0A%2A%2AAu%20del%C3%A0%20d%E2%80%99un%20enjeu%20d%E2%80%99efficacit%C3%A9%2C%20un%20probl%C3%A8me%20d%E2%80%99efficience%20de%20la%20tra%C3%A7abilit%C3%A9%20qui%20questionne%20et%20g%C3%A9n%C3%A8re%20des%20irritants%20forts%20pour%20les%20professionnels%2A%2A%0A%0ALa%20tra%C3%A7abilit%C3%A9%20du%20bordereau%20est%20aujourd%E2%80%99hui%20tr%C3%A8s%20complexe%20%28pr%C3%A8s%20de%2013%20000%20soci%C3%A9t%C3%A9s%20concern%C3%A9es%2C%20pas%20de%20pratique%20unifi%C3%A9e%20tels%20que%20les%20logiciels%20ou%20la%20transmission%20des%20informations%29%2C%20source%20de%20nombreux%20irritants%20et%20d%E2%80%99une%20perte%20d%E2%80%99efficience%20pour%20les%20entreprises.%0A%0ALa%20gestion%20des%20bordereaux%20est%20chronophage%2C%20repr%C3%A9sentant%20environ%201%20jour%2Fmois%20pour%20les%20petits%20producteurs%20%28relance%2C%20adaptabilit%C3%A9%2C%20archivage%2C%20reporting%2C%20etc.%29%20et%20bien%20plus%20chez%20les%20collecteurs%20et%20installations%20de%20traitement%20malgr%C3%A9%20la%20mise%20en%20place%20d%E2%80%99outils%20par%20beaucoup.%0A%0AL%E2%80%99%C3%A9dition%20papier%20reste%20quasi%20syst%C3%A9matique%20sur%20certaines%20%C3%A9tapes.%20Ainsi%2C%20environ%2016%20millions%20de%20bordereau%20sont%20%C3%A9dit%C3%A9s%20chaque%20ann%C3%A9e%20auxquels%20il%20faut%20ajouter%20les%20copies%2C%20les%20bordereaux%20de%20regroupement%2C%20les%20annexes%2C%20etc.%20Outre%20le%20co%C3%BBt%20financier%2C%20on%20peut%20estimer%20l%E2%80%99impact%20environnemental%20de%20ce%20fonctionnement%20%E2%80%9Cpapier%E2%80%9D%20%C3%A0%20%2B50M%20de%20feuilles...%0A%0AFace%20%C3%A0%20un%20impact%20environnemental%20substantiel%20repr%C3%A9sent%C3%A9%20par%20la%20%E2%80%9Cperte%E2%80%9D%20de%20plusieurs%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%2C%20%C3%A0%20la%20lourdeur%20administrative%2C%20%C3%A0%20la%20complexit%C3%A9%20du%20circuit%20existant%2C%20aux%20millions%20de%20bordereau%20papiers%20%C3%A9dit%C3%A9s%20et%20archiv%C3%A9s%2C%20il%20devient%20urgent%20d%E2%80%99agir%20pour%20que%20la%20tra%C3%A7abilit%C3%A9%20fonctionne%20efficacement%20et%20simplement%20pour%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20cha%C3%AEne%20du%20d%C3%A9chet.%0A%0A%23%23%20Mise%20en%20place%20de%20Trackd%C3%A9chets%0A%23%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%0A%0ATrackd%C3%A9chets%20a%20pour%20objectifs%20de%20%3A%0A-%20simplifier%20la%20gestion%20quotidienne%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%0A-%20apporter%20de%20la%20transparence%20et%20valoriser%20les%20entreprises%20vertueuses%0A%0ATrackd%C3%A9chets%20doit%20permettre%20le%20remplissage%20num%C3%A9rique%20d%E2%80%99un%20bordereau%20%28par%20le%20producteur%20ou%20le%20collecteur%29%20en%20simplifiant%2C%20s%C3%A9curisant%20et%20fiabilisant%20les%20donn%C3%A9es%20%28v%C3%A9rification%20des%20soci%C3%A9t%C3%A9s%20en%20s%E2%80%99adossant%20%20%C3%A0%20la%20base%20Sirene%20et%20Installations%20class%C3%A9es%2C%20v%C3%A9rification%20des%20codes%20d%C3%A9chets%20et%20code%20traitement%20en%20s%E2%80%99appuyant%20sur%20des%20%20bases%20de%20donn%C3%A9es%29.%20La%20responsabilit%C3%A9%20du%20producteur%20sera%20remise%20au%20coeur%20de%20la%20d%C3%A9marche%20avec%20la%20validation%20de%20la%20prise%20en%20charge.%0A%0ALe%20document%20%C3%A9mis%20pour%20le%20transporteur%20disposera%2C%20en%20outre%2C%20d%E2%80%99infos%20utiles%20pour%20l%27acc%C3%A8s%20%C3%A0%20Trackd%C3%A9chets%20et%20pour%20permettre%20la%20validation%20des%20donn%C3%A9es%20%28pour%20le%20producteur%29%20ou%20la%20validation%20de%20la%20r%C3%A9ception%20ou%20du%20traitement%20des%20d%C3%A9chets%20par%20les%20installations.%0A%0ALes%20soci%C3%A9t%C3%A9s%20enregistr%C3%A9es%20disposeront%20d%E2%80%99un%20compte%20unique%20dans%20lequel%20il%20sera%20possible%20de%20retrouver%20le%20statut%20et%2Fou%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20de%20ses%20d%C3%A9chets%20en%20temps%20r%C3%A9el%20via%20les%20bordereaux%20num%C3%A9ris%C3%A9s.%20%0A%0A%23%23%23%20P%C3%A9rim%C3%A8tre%20de%20test%0A%0AL%E2%80%99ambition%20est%20d%E2%80%99affiner%20le%20produit%20avec%20une%20cha%C3%AEne%20simple%20de%20soci%C3%A9t%C3%A9s%20ne%20disposant%20pas%20d%E2%80%99outils%20%28producteur%20collecteur%20ou%20producteur%20traiteur%29%2C%20ainsi%20que%20les%20soci%C3%A9t%C3%A9s%20disposant%20d%E2%80%99outils%20en%20tant%20que%20b%C3%AAta-testeurs.%0A%0ADes%20soci%C3%A9t%C3%A9s%20en%20ex-Poitou-Charentes%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9es%20pour%20tester%20le%20produit.%20Il%20s%E2%80%99agit%20de%20petits%20producteurs%20de%20d%C3%A9chets%20%28ne%20disposant%20pas%20d%E2%80%99outil%20sp%C3%A9cifique%20et%20ayant%20identifi%C3%A9%20de%20multiples%20probl%C3%A8mes%29%20et%20d%E2%80%99une%20installation%20de%20collecte%20%2F%20transit%20de%20d%C3%A9chets%20dangereux.%20Des%20%C3%A9tablissement%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20en%20tant%20que%20producteurs%20de%20d%C3%A9chets%2C%20ainsi%20que%20des%20installations%20identifi%C3%A9es%20par%20les%20syndicats%20professionnels%2C%20ayant%20exprim%C3%A9%20leur%20int%C3%A9r%C3%AAt%20par%20la%20d%C3%A9marche%2C%20pourront%20%C3%AAtre%20amen%C3%A9s%20%C3%A0%20tester%20le%20produit.%20Pour%20ceux%20qui%20disposent%20d%E2%80%99outils%20au%20sein%20de%20leur%20entit%C3%A9%2C%20et%20il%20convient%20de%20s%E2%80%99assurer%20de%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20pour%20ne%20pas%20se%20substituer%20%C3%A0%20leur%20activit%C3%A9.%0A%0ALes%20retours%20des%20b%C3%AAta-testeurs%20nous%20seront%20utiles%20pour%20apporter%20les%20modifications%20n%C3%A9cessaires%20et%20les%20am%C3%A9liorations%20de%20fa%C3%A7on%20progressive.%20Il%20sera%20%C3%A9galement%20possible%20d%E2%80%99avoir%20recours%20%C3%A0%20la%20base%20de%20donn%C3%A9es%20des%20d%C3%A9clarants%20%E2%80%9Cd%C3%A9chets%20dangereux%E2%80%9D%20pour%20envoyer%20un%20mailing%20cibl%C3%A9%20%C3%A0%20un%20public%20test.%0A%0A%23%23%23%20Et%20ensuite%3F%0A%0ALe%20produit%20permettrait%20de%20r%C3%A9gler%20d%E2%80%99autres%20probl%C3%A8mes%20tels%20que%20l%E2%80%99%C3%A9ditions%20des%20bordereaux%20de%20regroupement%20ou%20l%E2%80%99information%20d%E2%80%99un%20traitement%20%C3%A0%20toute%20la%20cha%C3%AEne.%0A%0AD%E2%80%99autres%20d%C3%A9chets%20dangereux%20tel%20que%20l%E2%80%99amiante%2C%20les%20DASRI%2C%20fluides%20frigorig%C3%A8nes%2C%20%C3%A9tant%20sp%C3%A9cifiques%20et%20disposant%20d%E2%80%99un%20cerfa%20distinct%20pourraient%20int%C3%A9grer%20ult%C3%A9rieurement%20le%20dispositif.%0A%0ALe%20produit%20-%20ouvert%20-%20pourrait%20automatiser%20les%20d%C3%A9clarations%20annuelles%20obligatoires%20et%20permettre%20des%20connections%20avec%20les%20outils%20existants%20tels%20que%20GISTRID%20%28pour%20les%20transferts%20transfrontaliers%20de%20d%C3%A9chets%29.%0A%0ALes%20donn%C3%A9es%20issues%20de%20l%E2%80%99utilisation%20du%20produit%20pourraient%20utilement%20%C3%AAtre%20utilis%C3%A9es%20par%20les%20observatoires%20tels%20que%20l%E2%80%99ADEME%2C%20la%20DGPR%2C%20les%20plans%20r%C3%A9gionaux%20de%20gestion%20des%20d%C3%A9chets%20%28PRPGD%29%2C%20etc.", - "events": [ - { - "name": "national_impact", - "date": "2022-12-30", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2018-11-01", - "end": "" - }, - { - "name": "construction", - "start": "2019-11-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2020-11-01", - "end": "" - } - ], - "sponsors": [ - "dgpr", - "mtes" - ], - "thematiques": [ - "Écologie", - "Open-Data" - ], - "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/api-trackdechets-beta-gouv-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-openssl_110l", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://trackdechets.beta.gouv.fr", - "size": 559.34, - "nodes": 315, - "requests": 34, - "grade": "B", - "score": 76, - "ges": 1.48, - "water": 2.22, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:45:35.564120", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-27T15:55:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.98, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://transport.data.gouv.fr", - "category": "mtes", - "betaId": "transport", - "http": { - "url": "https://transport.data.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:23:27 GMT", - "grade": "D+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Sozu-Id": "01JAM9GKMNCRYE5XARQ7BVKCF9", - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-length": "8760", - "content-security-policy": "default-src 'none';connect-src *;font-src *;frame-ancestors 'none';img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-HUxMrWJqR2d47Q' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 20 Oct 2024 06:23:26 GMT", - "referrer-policy": "strict-origin-when-cross-origin", - "server": "Cowboy", - "set-cookie": "_transport_key=SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYczRqZ0lUbWhzUkVwMlZaemQ3YzVhcG5RbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADkhVeE1yV0pxUjJkNDdRbQAAAAZsb2NhbGVtAAAAAmZy.ILBNvjJVAMYYgFXzzDM2V4jRhKolmO6iFucdqA0RtTU; path=/; expires=Mon, 04 Nov 2024 06:23:27 GMT; max-age=1296000; HttpOnly; SameSite=Lax", - "vary": "accept-encoding", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "DENY", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "GAAVDg-Wf44bjuMFADgC" + "id": "clientsimulation-openssl_111d", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 57052789, - "score": 40, - "start_time": "Sun, 20 Oct 2024 06:23:25 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "*" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "*" - ], - "frame-ancestors": [ - "'none'" - ], - "frame-src": [ - "https://www.dailymotion.com/" - ], - "img-src": [ - "'self'", - "data:", - "https://*.dmcdn.net", - "https://api.mapbox.com", - "https://www.data.gouv.fr", - "https://static.data.gouv.fr", - "https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com" - ], - "report-uri": [ - "https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" - ], - "script-src": [ - "'unsafe-inline'", - "'unsafe-eval'", - "https://stats.data.gouv.fr/matomo.js", - "'self'" - ], - "style-src": [ - "'sha256-9uoguazm3j6w7+fh2wfvji8p7zxcclrw5tvuu3qkza0='", - "'sha256-mmuum7+pin7rz79eumm0omufwjcx6nz97rdjoibtnag='", - "'nonce-huxmrwjqr2d47q'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": false, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_transport_key": { - "domain": "transport.data.gouv.fr", - "expires": 1730701407, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": false - } - }, - "sameSite": null - }, - "pass": false, - "result": "cookies-without-secure-flag", - "score_description": "Cookies set without using the Secure flag or set over HTTP", - "score_modifier": -20 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://transport.data.gouv.fr/", - "redirects": true, - "route": [ - "http://transport.data.gouv.fr/", - "https://transport.data.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "9zcc", - "url": "https://transport.data.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.777, - "down": false, - "down_since": null, - "up_since": "2024-11-12T18:33:03Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-17T08:43:53Z", - "next_check_at": "2024-11-17T08:48:51Z", - "created_at": "2021-04-22T19:59:39Z", - "mute_until": null, - "favicon_url": "https://transport.data.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-17T07:59:05Z", - "expires_at": "2025-01-18T03:30:28Z", - "valid": true, - "error": null + { + "id": "clientsimulation-openssl_303", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 0.978, - "timings": { - "redirect": 0, - "namelookup": 263, - "connection": 113, - "handshake": 117, - "response": 224, - "total": 718 - } + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "espace-membre.incubateur.net/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "C" - }, - "nmap": { - "host": "transport.data.gouv.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "product": "Postfix smtpd", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "espace-membre.incubateur.net/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218663,7 +211530,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218671,7 +211538,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218679,7 +211546,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218687,7 +211554,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -218695,7 +211562,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -218703,497 +211570,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "cipherorder_TLSv1_2", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-20 03:30" + "finding": "2024-10-03 18:36" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-18 03:30" + "finding": "2025-01-01 18:36" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1731832409" + "finding": "1733042316" }, { - "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "HSTS_time", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "HSTS_subdomains", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "only for this domain" }, { - "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "HSTS_preload", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Cowboy" + "finding": "domain is NOT marked for preloading" }, { - "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "HPKP", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "banner_server", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1 at '/'" + "finding": "No Server banner line in header, interesting!" }, { - "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "banner_application", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-vDFDTQE860kb3Q' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "X-Powered-By: Express" }, { - "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "cookie_count", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.223", + "id": "security_headers", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -219201,7 +212026,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -219210,7 +212035,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -219219,16 +212044,16 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -219237,7 +212062,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -219245,16 +212070,16 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -219263,16 +212088,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -219281,14 +212106,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -219297,7 +212122,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -219306,7 +212131,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -219315,16 +212140,16 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -219333,16 +212158,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -219351,7 +212176,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -219360,7 +212185,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -219369,7 +212194,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -219378,392 +212203,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.223", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "espace-membre.incubateur.net/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219771,7 +212596,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219779,7 +212604,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219787,7 +212612,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219795,7 +212620,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -219803,7 +212628,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -219811,497 +212636,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "cipherorder_TLSv1_2", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-20 03:30" + "finding": "2024-10-03 18:36" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-18 03:30" + "finding": "2025-01-01 18:36" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1731832464" + "finding": "1733042408" }, { - "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "HSTS_time", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "HSTS_subdomains", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "only for this domain" }, { - "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "HSTS_preload", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Cowboy" + "finding": "domain is NOT marked for preloading" }, { - "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "HPKP", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "banner_server", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1 at '/'" + "finding": "No Server banner line in header, interesting!" }, { - "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "banner_application", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-37AJ8bODfhUCuw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "X-Powered-By: Express" }, { - "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "cookie_count", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.217", + "id": "security_headers", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -220309,7 +213092,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -220318,7 +213101,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -220327,16 +213110,16 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -220345,7 +213128,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -220353,16 +213136,16 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -220371,16 +213154,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -220389,14 +213172,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -220405,7 +213188,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -220414,7 +213197,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -220423,16 +213206,16 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -220441,16 +213224,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -220459,7 +213242,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -220468,7 +213251,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -220477,7 +213260,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -220486,392 +213269,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.217", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "espace-membre.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -220879,7 +213662,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -220887,7 +213670,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -220895,7 +213678,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -220903,7 +213686,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -220911,7 +213694,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -220919,497 +213702,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "cipherorder_TLSv1_2", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-20 03:30" + "finding": "2024-10-03 18:36" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-01-18 03:30" + "finding": "2025-01-01 18:36" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1731832518" + "finding": "1733042499" }, { - "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "HSTS_time", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "HSTS_subdomains", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "only for this domain" }, { - "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "HSTS_preload", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Cowboy" + "finding": "domain is NOT marked for preloading" }, { - "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "HPKP", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "banner_server", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1 at '/'" + "finding": "No Server banner line in header, interesting!" }, { - "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "banner_application", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.220", - "port": "443", - "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-ao1_AJl2y3rKlQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "X-Powered-By: Express" }, { - "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "cookie_count", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "security_headers", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -221417,7 +214158,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -221426,7 +214167,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -221435,16 +214176,16 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -221453,7 +214194,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -221461,16 +214202,16 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -221479,16 +214220,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -221497,14 +214238,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -221513,7 +214254,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -221522,7 +214263,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -221531,16 +214272,16 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C5009C470B648E2E5DF0313068B5CAFD9757D9AE8A66276589E4D2D1708B726A" }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -221549,16 +214290,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -221567,7 +214308,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -221576,7 +214317,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -221585,7 +214326,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -221594,392 +214335,1292 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.220", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "A" + "finding": "A+" }, { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.220", + "id": "scanTime", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "371" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [ + { + "name": "_pk_id.129.e750", + "value": "1f2573cee1d2d401.1733042145.", + "domain": "espace-membre.incubateur.net", + "path": "/", + "expires": 1766997345, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_ses.129.e750", + "value": "1", + "domain": "espace-membre.incubateur.net", + "path": "/", + "expires": 1733043944, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "mtm_consent", + "value": "1733042144865", + "domain": "espace-membre.incubateur.net", + "path": "/", + "expires": 2679122144, + "size": 24, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; connect-src 'self' api.maptiler.com espace-membre.cellar-c2.services.clever-cloud.com espace-membre-staging.cellar-c2.services.clever-cloud.com *.gouv.fr sentry.incubateur.net https://client.crisp.chat https://storage.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://nominatim.openstreetmap.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.gouv.fr sentry.incubateur.net unpkg.com https://client.crisp.chat https://settings.crisp.chat; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com unpkg.com https://client.crisp.chat; img-src * data: blob: https://client.crisp.chat https://image.crisp.chat https://storage.crisp.chat; font-src 'self' data: cdnjs.cloudflare.com https://client.crisp.chat; frame-src 'self' metabase.incubateur.net https://game.crisp.chat; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests;", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 08:35:42 GMT", + "strict-transport-security": "max-age=31536000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-powered-by": "Next.js", + "x-request-id": "af10b7a6-5852-4b3b-86e6-b9c24f01ddeb" + }, + "endpoints": [ + { + "hostname": "espace-membre.incubateur.net", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.29.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://espace-membre.incubateur.net/": { + "status": 302 + }, + "https://espace-membre.incubateur.net/login": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ] + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.12", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ] + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ] + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://espace-membre.incubateur.net/", + "finalUrl": "https://espace-membre.incubateur.net/login", + "fetchTime": "2024-12-01T08:35:13.918Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://espace-membre.incubateur.net/) was redirected to https://espace-membre.incubateur.net/login. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.69 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.85 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 7234, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2627, + "firstMeaningfulPaint": 2627, + "largestContentfulPaint": 3619, + "interactive": 7234, + "speedIndex": 4649, + "totalBlockingTime": 387, + "maxPotentialFID": 461, + "cumulativeLayoutShift": 0.011793365478515625, + "cumulativeLayoutShiftMainFrame": 0.011793365478515625, + "totalCumulativeLayoutShift": 0.011793365478515625, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 395341997, + "observedNavigationStart": 0, + "observedNavigationStartTs": 395341997, + "observedFirstPaint": 1173, + "observedFirstPaintTs": 396515236, + "observedFirstContentfulPaint": 1173, + "observedFirstContentfulPaintTs": 396515236, + "observedFirstContentfulPaintAllFrames": 1173, + "observedFirstContentfulPaintAllFramesTs": 396515236, + "observedFirstMeaningfulPaint": 1173, + "observedFirstMeaningfulPaintTs": 396515236, + "observedLargestContentfulPaint": 1173, + "observedLargestContentfulPaintTs": 396515236, + "observedLargestContentfulPaintAllFrames": 1173, + "observedLargestContentfulPaintAllFramesTs": 396515236, + "observedTraceEnd": 4665, + "observedTraceEndTs": 400006890, + "observedLoad": 2215, + "observedLoadTs": 397557406, + "observedDomContentLoaded": 1167, + "observedDomContentLoadedTs": 396509021, + "observedCumulativeLayoutShift": 0.011793365478515625, + "observedCumulativeLayoutShiftMainFrame": 0.011793365478515625, + "observedTotalCumulativeLayoutShift": 0.011793365478515625, + "observedFirstVisualChange": 1175, + "observedFirstVisualChangeTs": 396516997, + "observedLastVisualChange": 1808, + "observedLastVisualChangeTs": 397149997, + "observedSpeedIndex": 1188, + "observedSpeedIndexTs": 396530471 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 50, + "numScripts": 27, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 1390, + "numTasksOver10ms": 9, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 8024237.381340638, + "maxRtt": 143.118, + "maxServerLatency": 343.13, + "totalByteWeight": 974355, + "totalTaskTime": 460.1279999999986, + "mainDocumentTransferSize": 16653 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://espace-membre.incubateur.net/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://espace-membre.incubateur.net", + "size": 1562.058, + "nodes": 234, + "requests": 59, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 08:32:01.482207", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.995, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-01T18:36:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.69, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.85, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://trackdechets.beta.gouv.fr", + "category": "mtes", + "betaId": "trackdechets", + "http": { + "url": "https://trackdechets.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:00:52 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "img-src 'self' data: static/; script-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr; font-src 'self' data: static/; style-src 'self' 'unsafe-inline' static/; connect-src 'self'; default-src 'self' trackdechets.beta.gouv.fr/ blob:", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 06:00:51 GMT", + "Permissions-Policy": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", + "Referrer-Policy": "same-origin", + "Set-Cookie": "csrftoken=CUMfQDWa7hDDBQxj3ObS0E7VJ9BlgA2s; expires=Sun, 19 Oct 2025 06:00:51 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", + "Vary": "Cookie, origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "5f6b58fb-dc42-44ff-98f3-a499b2cd92f2" + }, + "scan_id": 57052347, + "score": 75, + "start_time": "Sun, 20 Oct 2024 06:00:49 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "'self'" + ], + "default-src": [ + "blob:", + "trackdechets.beta.gouv.fr/", + "'self'" + ], + "font-src": [ + "data:", + "static/", + "'self'" + ], + "frame-src": [ + "https://statistiques.trackdechets.beta.gouv.fr", + "'self'" + ], + "img-src": [ + "data:", + "static/", + "'self'" + ], + "script-src": [ + "'unsafe-inline'", + "static/", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "static/", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "trackdechets.beta.gouv.fr", + "expires": 1760853651, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag-but-protected-by-hsts", + "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", + "score_modifier": -5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://trackdechets.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://trackdechets.beta.gouv.fr/", + "https://trackdechets.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15768000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 15768000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "ysjc", + "url": "https://trackdechets.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.919, + "down": false, + "down_since": null, + "up_since": "2024-11-28T12:22:06Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T08:54:53Z", + "next_check_at": "2024-12-01T08:59:51Z", + "created_at": "2021-04-22T19:59:38Z", + "mute_until": null, + "favicon_url": "https://trackdechets.beta.gouv.fr/static/img/favicon-16x16.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T08:34:59Z", + "expires_at": "2025-02-25T15:56:48Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 107, + "connection": 111, + "handshake": 114, + "response": 186, + "total": 519 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "trackdechets.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -221987,7 +215628,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -221995,7 +215636,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -222003,7 +215644,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -222011,7 +215652,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -222019,7 +215660,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -222027,497 +215668,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.222", + "id": "cipherorder_TLSv1_2", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-20 03:30" + "finding": "2024-11-27 15:56" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-18 03:30" + "finding": "2025-02-25 15:56" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1731832573" + "finding": "1733043321" }, { - "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "id": "HSTS_time", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "182 days (=15768000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Cowboy" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" + "severity": "INFO", + "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-fUceS86Ss3we2w' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "script-src 'self' 'unsafe-inline' static/; font-src 'self' data: static/; connect-src 'self'; img-src 'self' data: static/; default-src 'self' trackdechets.beta.gouv.fr/ blob:; style-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr" }, { - "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.222", + "id": "Permissions-Policy", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "OK", + "finding": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { - "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.222", + "id": "Referrer-Policy", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -222525,7 +216166,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -222534,7 +216175,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -222543,16 +216184,16 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -222561,7 +216202,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -222569,16 +216210,16 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -222587,7 +216228,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -222596,7 +216237,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -222605,14 +216246,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -222621,7 +216262,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -222630,7 +216271,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -222639,16 +216280,16 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=999FED4CD815496A0873A15A2C80824954D2D5DA7D6909E03140E87815A0D73D" }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -222657,16 +216298,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -222675,7 +216316,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -222684,7 +216325,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -222693,7 +216334,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -222702,392 +216343,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.222", + "ip": "trackdechets.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -223095,7 +216736,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -223103,7 +216744,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -223111,7 +216752,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -223119,7 +216760,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -223127,7 +216768,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -223135,497 +216776,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.216", + "id": "cipherorder_TLSv1_2", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-10-20 03:30" + "finding": "2024-11-27 15:56" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2025-01-18 03:30" + "finding": "2025-02-25 15:56" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1731832628" + "finding": "1733043374" }, { - "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "id": "HSTS_time", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "182 days (=15768000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "Cowboy" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" + "severity": "INFO", + "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-AOO6K362Nzk7mA' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "script-src 'self' 'unsafe-inline' static/; font-src 'self' data: static/; connect-src 'self'; img-src 'self' data: static/; default-src 'self' trackdechets.beta.gouv.fr/ blob:; style-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr" }, { - "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.216", + "id": "Permissions-Policy", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "OK", + "finding": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { - "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.216", + "id": "Referrer-Policy", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -223633,7 +217274,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -223642,7 +217283,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -223651,16 +217292,16 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -223669,7 +217310,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -223677,16 +217318,16 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -223695,16 +217336,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "WARN", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "Test failed as HTTP request stalled and was terminated" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -223713,14 +217354,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -223729,7 +217370,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -223738,7 +217379,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -223747,16 +217388,16 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=999FED4CD815496A0873A15A2C80824954D2D5DA7D6909E03140E87815A0D73D" }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -223765,16 +217406,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -223783,7 +217424,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -223792,7 +217433,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -223801,7 +217442,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -223810,392 +217451,1306 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.216", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { - "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" + "id": "cipher_strength_score", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "trackdechets.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "110" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "csrftoken", + "value": "ie70kIRSl0zkG92UFSgXNpeqDbu4QKw9", + "domain": "trackdechets.beta.gouv.fr", + "path": "/", + "expires": 1764492874.77155, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "script-src 'self' 'unsafe-inline' static/; font-src 'self' data: static/; connect-src 'self'; img-src 'self' data: static/; default-src 'self' trackdechets.beta.gouv.fr/ blob:; style-src 'self' 'unsafe-inline' static/; frame-src 'self' https://statistiques.trackdechets.beta.gouv.fr", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 08:54:34 GMT", + "permissions-policy": "accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=ie70kIRSl0zkG92UFSgXNpeqDbu4QKw9; expires=Sun, 30 Nov 2025 08:54:34 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "strict-transport-security": "max-age=15768000; includeSubDomains; preload", + "vary": "Cookie, origin", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "54acd7fa-d05b-4e35-8746-44dacd70ab95" + }, + "endpoints": [ + { + "hostname": "trackdechets.beta.gouv.fr", + "ip": "109.232.236.90", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://trackdechets.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "htmx", + "name": "Htmx", + "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "confidence": 100, + "version": null, + "icon": "Htmx.svg", + "website": "https://htmx.org", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://trackdechets.beta.gouv.fr/", + "finalUrl": "https://trackdechets.beta.gouv.fr/", + "fetchTime": "2024-12-01T08:54:09.873Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.99 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1660, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1660, + "firstMeaningfulPaint": 1660, + "largestContentfulPaint": 1735, + "interactive": 1660, + "speedIndex": 1835, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.028053385416666667, + "cumulativeLayoutShiftMainFrame": 0.028053385416666667, + "totalCumulativeLayoutShift": 0.028053385416666667, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 326610576, + "observedNavigationStart": 0, + "observedNavigationStartTs": 326610576, + "observedFirstPaint": 689, + "observedFirstPaintTs": 327299904, + "observedFirstContentfulPaint": 689, + "observedFirstContentfulPaintTs": 327299904, + "observedFirstContentfulPaintAllFrames": 689, + "observedFirstContentfulPaintAllFramesTs": 327299904, + "observedFirstMeaningfulPaint": 689, + "observedFirstMeaningfulPaintTs": 327299904, + "observedLargestContentfulPaint": 689, + "observedLargestContentfulPaintTs": 327299904, + "observedLargestContentfulPaintAllFrames": 689, + "observedLargestContentfulPaintAllFramesTs": 327299904, + "observedTraceEnd": 3241, + "observedTraceEndTs": 329851606, + "observedLoad": 827, + "observedLoadTs": 327437237, + "observedDomContentLoaded": 708, + "observedDomContentLoadedTs": 327319061, + "observedCumulativeLayoutShift": 0.028053385416666667, + "observedCumulativeLayoutShiftMainFrame": 0.028053385416666667, + "observedTotalCumulativeLayoutShift": 0.028053385416666667, + "observedFirstVisualChange": 692, + "observedFirstVisualChangeTs": 327302576, + "observedLastVisualChange": 1476, + "observedLastVisualChangeTs": 328086576, + "observedSpeedIndex": 719, + "observedSpeedIndexTs": 327329240 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 37, + "numScripts": 2, + "numStylesheets": 3, + "numFonts": 4, + "numTasks": 15, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 83.855, + "throughput": 12350624.547837598, + "maxRtt": 83.855, + "maxServerLatency": 9.87599999999999, + "totalByteWeight": 450259, + "totalTaskTime": 2902.0190000000002, + "mainDocumentTransferSize": 8378 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://trackdechets.beta.gouv.fr//trackdechets.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://trackdechets.beta.gouv.fr/static/pdf/mentions-legales.pdf" }, { - "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "36" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://trackdechets.beta.gouv.fr/static/pdf/politique-de-confidentialite.pdf" + } + ], + "betagouv": { + "id": "trackdechets", + "type": "startup", + "attributes": { + "name": "Trackdéchets", + "pitch": "Gérer la traçabilité des déchets, en toute sécurité", + "stats_url": "https://trackdechets.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#-Minist%C3%A8re-de-la-Transition-Ecologique-x-Fabrique-Num%C3%A9rique", + "link": "https://trackdechets.beta.gouv.fr", + "repository": "https://github.com/MTES-MCT/trackdechets", + "contact": "contact@trackdechets.beta.gouv.fr", + "content_url_encoded_markdown": "En%202016%2C%2012%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%20ont%20%C3%A9t%C3%A9%20produits%20en%20France.%20Il%20s%E2%80%99agit%20de%20d%C3%A9chets%20contenants%20des%20%C3%A9l%C3%A9ments%20toxiques%20ou%20dangereux%20qui%20pr%C3%A9sentent%20des%20risques%20pour%20la%20sant%C3%A9%20et%20l%27environnement.%20%0A%0ACes%20d%C3%A9chets%20sont%20soumis%20%C3%A0%20une%20r%C3%A9glementation%20particuli%C3%A8re%20pour%20leur%20gestion%20et%20leur%20valorisation.%20Afin%20de%20contr%C3%B4ler%20le%20traitement%20effectif%20des%20d%C3%A9chets%2C%20la%20loi%20impose%20aux%20soci%C3%A9t%C3%A9s%20productrices%20une%20tra%C3%A7abilit%C3%A9%20rigoureuse%20assur%C3%A9e%20par%20un%20bordereau%20de%20suivi%20de%20d%C3%A9chets%20qui%20permet%20de%20suivre%20le%20d%C3%A9chet%20de%20sa%20collecte%20%C3%A0%20son%20traitement.%20Chaque%20ann%C3%A9e%2C%20pr%C3%A8s%20de%2016%20millions%20de%20ces%20bordereaux%20sont%20%C3%A9dit%C3%A9s.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%23%23%23%20Un%20impact%20environnemental%20majeur%0A%0AL%27efficacit%C3%A9%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%20est%20lourdement%20questionn%C3%A9e%20par%20les%20donn%C3%A9es%20officielles%20%28delta%20production%20vs.%20traitement%29%20et%20les%20pratiques%20observ%C3%A9es%20%28fraude%2C%20traitements%20inadapt%C3%A9s%29%20indiquant%20un%20risque%20environnemental%20majeur%20avec%20la%20%2Adisparition%2A%20de%20d%C3%A9chets%20dans%20la%20nature%E2%80%A6%0A%0ALes%20d%C3%A9chets%20dangereux%20abandonn%C3%A9s%20%28exploitants%20d%C3%A9faillants%29%20g%C3%A9n%C3%A8rent%20%C3%A9galement%20pollutions%20et%20interventions%20de%20l%E2%80%99%C3%89tat.%20La%20prise%20en%20charge%20des%20sites%20pollu%C3%A9s%20%C3%A0%20responsables%20d%C3%A9faillants%20par%20l%E2%80%99ADEME%20a%20repr%C3%A9sent%C3%A9%20entre%202011-2014%20pr%C3%A8s%20de%20107%20millions%20d%E2%80%99euros.%0A%0AIl%20arrive%20de%20fa%C3%A7on%20r%C3%A9currente%20que%20certains%20sites%20de%20stockage%20autoris%C3%A9s%20%28en%20difficult%C3%A9s%20financi%C3%A8res%20par%20exemple%29%20d%C3%A9passent%20les%20seuils%20autoris%C3%A9s.%20Ces%20surstockages%20indiquent%20un%20risque%20imminent%20pour%20l%E2%80%99environnement%20et%20le%20voisinage%20%28pollution%2C%20incendie%2C%20etc%29.%20Or%20ces%20soci%C3%A9t%C3%A9s%20ne%20font%20pas%20n%C3%A9cessairement%20l%E2%80%99objet%20d%E2%80%99un%20contr%C3%B4le%20du%20fait%20que%20les%20services%20de%20l%E2%80%99%C3%89tat%20ne%20disposent%20pas%20d%E2%80%99alertes%20sp%C3%A9cifiques.%0A%0A%2A%2AAu%20del%C3%A0%20d%E2%80%99un%20enjeu%20d%E2%80%99efficacit%C3%A9%2C%20un%20probl%C3%A8me%20d%E2%80%99efficience%20de%20la%20tra%C3%A7abilit%C3%A9%20qui%20questionne%20et%20g%C3%A9n%C3%A8re%20des%20irritants%20forts%20pour%20les%20professionnels%2A%2A%0A%0ALa%20tra%C3%A7abilit%C3%A9%20du%20bordereau%20est%20aujourd%E2%80%99hui%20tr%C3%A8s%20complexe%20%28pr%C3%A8s%20de%2013%20000%20soci%C3%A9t%C3%A9s%20concern%C3%A9es%2C%20pas%20de%20pratique%20unifi%C3%A9e%20tels%20que%20les%20logiciels%20ou%20la%20transmission%20des%20informations%29%2C%20source%20de%20nombreux%20irritants%20et%20d%E2%80%99une%20perte%20d%E2%80%99efficience%20pour%20les%20entreprises.%0A%0ALa%20gestion%20des%20bordereaux%20est%20chronophage%2C%20repr%C3%A9sentant%20environ%201%20jour%2Fmois%20pour%20les%20petits%20producteurs%20%28relance%2C%20adaptabilit%C3%A9%2C%20archivage%2C%20reporting%2C%20etc.%29%20et%20bien%20plus%20chez%20les%20collecteurs%20et%20installations%20de%20traitement%20malgr%C3%A9%20la%20mise%20en%20place%20d%E2%80%99outils%20par%20beaucoup.%0A%0AL%E2%80%99%C3%A9dition%20papier%20reste%20quasi%20syst%C3%A9matique%20sur%20certaines%20%C3%A9tapes.%20Ainsi%2C%20environ%2016%20millions%20de%20bordereau%20sont%20%C3%A9dit%C3%A9s%20chaque%20ann%C3%A9e%20auxquels%20il%20faut%20ajouter%20les%20copies%2C%20les%20bordereaux%20de%20regroupement%2C%20les%20annexes%2C%20etc.%20Outre%20le%20co%C3%BBt%20financier%2C%20on%20peut%20estimer%20l%E2%80%99impact%20environnemental%20de%20ce%20fonctionnement%20%E2%80%9Cpapier%E2%80%9D%20%C3%A0%20%2B50M%20de%20feuilles...%0A%0AFace%20%C3%A0%20un%20impact%20environnemental%20substantiel%20repr%C3%A9sent%C3%A9%20par%20la%20%E2%80%9Cperte%E2%80%9D%20de%20plusieurs%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%2C%20%C3%A0%20la%20lourdeur%20administrative%2C%20%C3%A0%20la%20complexit%C3%A9%20du%20circuit%20existant%2C%20aux%20millions%20de%20bordereau%20papiers%20%C3%A9dit%C3%A9s%20et%20archiv%C3%A9s%2C%20il%20devient%20urgent%20d%E2%80%99agir%20pour%20que%20la%20tra%C3%A7abilit%C3%A9%20fonctionne%20efficacement%20et%20simplement%20pour%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20cha%C3%AEne%20du%20d%C3%A9chet.%0A%0A%23%23%20Mise%20en%20place%20de%20Trackd%C3%A9chets%0A%23%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%0A%0ATrackd%C3%A9chets%20a%20pour%20objectifs%20de%20%3A%0A-%20simplifier%20la%20gestion%20quotidienne%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%0A-%20apporter%20de%20la%20transparence%20et%20valoriser%20les%20entreprises%20vertueuses%0A%0ATrackd%C3%A9chets%20doit%20permettre%20le%20remplissage%20num%C3%A9rique%20d%E2%80%99un%20bordereau%20%28par%20le%20producteur%20ou%20le%20collecteur%29%20en%20simplifiant%2C%20s%C3%A9curisant%20et%20fiabilisant%20les%20donn%C3%A9es%20%28v%C3%A9rification%20des%20soci%C3%A9t%C3%A9s%20en%20s%E2%80%99adossant%20%20%C3%A0%20la%20base%20Sirene%20et%20Installations%20class%C3%A9es%2C%20v%C3%A9rification%20des%20codes%20d%C3%A9chets%20et%20code%20traitement%20en%20s%E2%80%99appuyant%20sur%20des%20%20bases%20de%20donn%C3%A9es%29.%20La%20responsabilit%C3%A9%20du%20producteur%20sera%20remise%20au%20coeur%20de%20la%20d%C3%A9marche%20avec%20la%20validation%20de%20la%20prise%20en%20charge.%0A%0ALe%20document%20%C3%A9mis%20pour%20le%20transporteur%20disposera%2C%20en%20outre%2C%20d%E2%80%99infos%20utiles%20pour%20l%27acc%C3%A8s%20%C3%A0%20Trackd%C3%A9chets%20et%20pour%20permettre%20la%20validation%20des%20donn%C3%A9es%20%28pour%20le%20producteur%29%20ou%20la%20validation%20de%20la%20r%C3%A9ception%20ou%20du%20traitement%20des%20d%C3%A9chets%20par%20les%20installations.%0A%0ALes%20soci%C3%A9t%C3%A9s%20enregistr%C3%A9es%20disposeront%20d%E2%80%99un%20compte%20unique%20dans%20lequel%20il%20sera%20possible%20de%20retrouver%20le%20statut%20et%2Fou%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20de%20ses%20d%C3%A9chets%20en%20temps%20r%C3%A9el%20via%20les%20bordereaux%20num%C3%A9ris%C3%A9s.%20%0A%0A%23%23%23%20P%C3%A9rim%C3%A8tre%20de%20test%0A%0AL%E2%80%99ambition%20est%20d%E2%80%99affiner%20le%20produit%20avec%20une%20cha%C3%AEne%20simple%20de%20soci%C3%A9t%C3%A9s%20ne%20disposant%20pas%20d%E2%80%99outils%20%28producteur%20collecteur%20ou%20producteur%20traiteur%29%2C%20ainsi%20que%20les%20soci%C3%A9t%C3%A9s%20disposant%20d%E2%80%99outils%20en%20tant%20que%20b%C3%AAta-testeurs.%0A%0ADes%20soci%C3%A9t%C3%A9s%20en%20ex-Poitou-Charentes%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9es%20pour%20tester%20le%20produit.%20Il%20s%E2%80%99agit%20de%20petits%20producteurs%20de%20d%C3%A9chets%20%28ne%20disposant%20pas%20d%E2%80%99outil%20sp%C3%A9cifique%20et%20ayant%20identifi%C3%A9%20de%20multiples%20probl%C3%A8mes%29%20et%20d%E2%80%99une%20installation%20de%20collecte%20%2F%20transit%20de%20d%C3%A9chets%20dangereux.%20Des%20%C3%A9tablissement%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20en%20tant%20que%20producteurs%20de%20d%C3%A9chets%2C%20ainsi%20que%20des%20installations%20identifi%C3%A9es%20par%20les%20syndicats%20professionnels%2C%20ayant%20exprim%C3%A9%20leur%20int%C3%A9r%C3%AAt%20par%20la%20d%C3%A9marche%2C%20pourront%20%C3%AAtre%20amen%C3%A9s%20%C3%A0%20tester%20le%20produit.%20Pour%20ceux%20qui%20disposent%20d%E2%80%99outils%20au%20sein%20de%20leur%20entit%C3%A9%2C%20et%20il%20convient%20de%20s%E2%80%99assurer%20de%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20pour%20ne%20pas%20se%20substituer%20%C3%A0%20leur%20activit%C3%A9.%0A%0ALes%20retours%20des%20b%C3%AAta-testeurs%20nous%20seront%20utiles%20pour%20apporter%20les%20modifications%20n%C3%A9cessaires%20et%20les%20am%C3%A9liorations%20de%20fa%C3%A7on%20progressive.%20Il%20sera%20%C3%A9galement%20possible%20d%E2%80%99avoir%20recours%20%C3%A0%20la%20base%20de%20donn%C3%A9es%20des%20d%C3%A9clarants%20%E2%80%9Cd%C3%A9chets%20dangereux%E2%80%9D%20pour%20envoyer%20un%20mailing%20cibl%C3%A9%20%C3%A0%20un%20public%20test.%0A%0A%23%23%23%20Et%20ensuite%3F%0A%0ALe%20produit%20permettrait%20de%20r%C3%A9gler%20d%E2%80%99autres%20probl%C3%A8mes%20tels%20que%20l%E2%80%99%C3%A9ditions%20des%20bordereaux%20de%20regroupement%20ou%20l%E2%80%99information%20d%E2%80%99un%20traitement%20%C3%A0%20toute%20la%20cha%C3%AEne.%0A%0AD%E2%80%99autres%20d%C3%A9chets%20dangereux%20tel%20que%20l%E2%80%99amiante%2C%20les%20DASRI%2C%20fluides%20frigorig%C3%A8nes%2C%20%C3%A9tant%20sp%C3%A9cifiques%20et%20disposant%20d%E2%80%99un%20cerfa%20distinct%20pourraient%20int%C3%A9grer%20ult%C3%A9rieurement%20le%20dispositif.%0A%0ALe%20produit%20-%20ouvert%20-%20pourrait%20automatiser%20les%20d%C3%A9clarations%20annuelles%20obligatoires%20et%20permettre%20des%20connections%20avec%20les%20outils%20existants%20tels%20que%20GISTRID%20%28pour%20les%20transferts%20transfrontaliers%20de%20d%C3%A9chets%29.%0A%0ALes%20donn%C3%A9es%20issues%20de%20l%E2%80%99utilisation%20du%20produit%20pourraient%20utilement%20%C3%AAtre%20utilis%C3%A9es%20par%20les%20observatoires%20tels%20que%20l%E2%80%99ADEME%2C%20la%20DGPR%2C%20les%20plans%20r%C3%A9gionaux%20de%20gestion%20des%20d%C3%A9chets%20%28PRPGD%29%2C%20etc.", + "events": [ + { + "name": "national_impact", + "date": "2022-12-30", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2018-11-01", + "end": "" + }, + { + "name": "construction", + "start": "2019-11-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2020-11-01", + "end": "" + } + ], + "sponsors": [ + "dgpr", + "mtes" + ], + "thematiques": [ + "Écologie", + "Open-Data" + ], + "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/api-trackdechets-beta-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "93" + "width": 1920, + "height": 1080, + "url": "https://trackdechets.beta.gouv.fr", + "size": 559.13, + "nodes": 315, + "requests": 34, + "grade": "B", + "score": 76, + "ges": 1.48, + "water": 2.22, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 08:51:07.102373", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.919, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-25T15:56:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.99, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://transport.data.gouv.fr", + "category": "mtes", + "betaId": "transport", + "http": { + "url": "https://transport.data.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:23:27 GMT", + "grade": "D+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Sozu-Id": "01JAM9GKMNCRYE5XARQ7BVKCF9", + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-length": "8760", + "content-security-policy": "default-src 'none';connect-src *;font-src *;frame-ancestors 'none';img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-HUxMrWJqR2d47Q' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 20 Oct 2024 06:23:26 GMT", + "referrer-policy": "strict-origin-when-cross-origin", + "server": "Cowboy", + "set-cookie": "_transport_key=SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYczRqZ0lUbWhzUkVwMlZaemQ3YzVhcG5RbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADkhVeE1yV0pxUjJkNDdRbQAAAAZsb2NhbGVtAAAAAmZy.ILBNvjJVAMYYgFXzzDM2V4jRhKolmO6iFucdqA0RtTU; path=/; expires=Mon, 04 Nov 2024 06:23:27 GMT; max-age=1296000; HttpOnly; SameSite=Lax", + "vary": "accept-encoding", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "DENY", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "GAAVDg-Wf44bjuMFADgC" }, - { - "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57052789, + "score": 40, + "start_time": "Sun, 20 Oct 2024 06:23:25 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "*" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "*" + ], + "frame-ancestors": [ + "'none'" + ], + "frame-src": [ + "https://www.dailymotion.com/" + ], + "img-src": [ + "'self'", + "data:", + "https://*.dmcdn.net", + "https://api.mapbox.com", + "https://www.data.gouv.fr", + "https://static.data.gouv.fr", + "https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com" + ], + "report-uri": [ + "https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" + ], + "script-src": [ + "'unsafe-inline'", + "'unsafe-eval'", + "https://stats.data.gouv.fr/matomo.js", + "'self'" + ], + "style-src": [ + "'sha256-9uoguazm3j6w7+fh2wfvji8p7zxcclrw5tvuu3qkza0='", + "'sha256-mmuum7+pin7rz79eumm0omufwjcx6nz97rdjoibtnag='", + "'nonce-huxmrwjqr2d47q'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": true, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_transport_key": { + "domain": "transport.data.gouv.fr", + "expires": 1730701407, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://transport.data.gouv.fr/", + "redirects": true, + "route": [ + "http://transport.data.gouv.fr/", + "https://transport.data.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "9zcc", + "url": "https://transport.data.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.777, + "down": false, + "down_since": null, + "up_since": "2024-11-12T18:33:03Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-11-17T08:43:53Z", + "next_check_at": "2024-11-17T08:48:51Z", + "created_at": "2021-04-22T19:59:39Z", + "mute_until": null, + "favicon_url": "https://transport.data.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-11-17T07:59:05Z", + "expires_at": "2025-01-18T03:30:28Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 0.978, + "timings": { + "redirect": 0, + "namelookup": 263, + "connection": 113, + "handshake": 117, + "response": 224, + "total": 718 + } }, + "uptimeGrade": "A", + "apdexGrade": "C" + }, + "nmap": { + "host": "transport.data.gouv.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "product": "Postfix smtpd", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224203,7 +218758,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224211,7 +218766,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224219,7 +218774,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224227,7 +218782,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -224235,7 +218790,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -224243,497 +218798,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0305FCCE034C84F2AD941F88596B43F98FED" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "B63B53B8729020E21098EDEA3A14AE886B74B125" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "cert", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1731832691" + "finding": "1731832409" }, { "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-yTydxMKsR7qbpQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-vDFDTQE860kb3Q' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -224741,7 +219296,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -224750,7 +219305,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -224759,7 +219314,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -224768,7 +219323,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -224777,7 +219332,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -224785,7 +219340,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -224794,7 +219349,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -224803,7 +219358,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -224812,7 +219367,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -224821,14 +219376,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -224837,7 +219392,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -224846,7 +219401,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -224855,7 +219410,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -224864,7 +219419,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -224873,7 +219428,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -224882,7 +219437,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -224891,7 +219446,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -224900,7 +219455,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -224909,7 +219464,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -224918,392 +219473,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.218", + "ip": "transport.data.gouv.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225311,7 +219866,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225319,7 +219874,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225327,7 +219882,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225335,7 +219890,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -225343,7 +219898,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -225351,497 +219906,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0305FCCE034C84F2AD941F88596B43F98FED" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "B63B53B8729020E21098EDEA3A14AE886B74B125" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "cert", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1731832745" + "finding": "1731832464" }, { "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-pyihKtjXfjavMQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-37AJ8bODfhUCuw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -225849,7 +220404,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -225858,7 +220413,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -225867,7 +220422,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -225876,7 +220431,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -225885,7 +220440,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -225893,7 +220448,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -225902,7 +220457,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -225911,7 +220466,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -225920,7 +220475,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -225929,14 +220484,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -225945,7 +220500,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -225954,7 +220509,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -225963,7 +220518,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -225972,7 +220527,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -225981,7 +220536,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -225990,7 +220545,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -225999,7 +220554,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -226008,7 +220563,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -226017,7 +220572,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -226026,392 +220581,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.214", + "ip": "transport.data.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226419,7 +220974,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226427,7 +220982,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226435,7 +220990,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226443,7 +220998,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -226451,7 +221006,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -226459,497 +221014,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0305FCCE034C84F2AD941F88596B43F98FED" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "B63B53B8729020E21098EDEA3A14AE886B74B125" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "cert", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1731832800" + "finding": "1731832518" }, { "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-skshZcyiUg3n9w' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-ao1_AJl2y3rKlQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -226957,7 +221512,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -226966,7 +221521,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -226975,7 +221530,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -226984,7 +221539,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -226993,7 +221548,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -227001,7 +221556,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -227010,7 +221565,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -227019,7 +221574,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -227028,7 +221583,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -227037,14 +221592,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -227053,7 +221608,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -227062,7 +221617,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -227071,7 +221626,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -227080,7 +221635,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -227089,7 +221644,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -227098,7 +221653,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -227107,7 +221662,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -227116,7 +221671,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -227125,7 +221680,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -227134,392 +221689,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.221", + "ip": "transport.data.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -227527,7 +222082,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -227535,7 +222090,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -227543,7 +222098,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -227551,7 +222106,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -227559,7 +222114,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -227567,497 +222122,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0305FCCE034C84F2AD941F88596B43F98FED" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "B63B53B8729020E21098EDEA3A14AE886B74B125" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "cert", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE/DCCA+SgAwIBAgISAwX8zgNMhPKtlB+IWWtD+Y/tMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDIwMDMzMDI5WhcNMjUwMTE4MDMzMDI4WjAhMR8wHQYDVQQDExZ0cmFuc3BvcnQuZGF0YS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsQUppJba+juVny7cQgLP6geh/WQdVw5wiGmGqW7AFL70lv4TM04gpDWIDg6zfVlLLdU7sYjJ6KSNXp1RhCSG0SwtLQN8xJFBSbwHF0P//l/CR/3ZZzpu9OmXfnfHWwhPZEzQVxCwoMQZdAUfEn6EmmB+OqOOTiyb1pJ73AVI5mNCd9FBviBAl8UyOuR+8KVKRfl2DkRDZ5PuNeo1JYd6lpHHZo7N6tDoLOW2QzWqwPYj2zNtfRpzsUd7x3sgMKXovvcZyYh/b9lmPwPfYeJEPPcFK77peVqL5Dtv/POFCvIsU28T4AocN3R7qME8VEB/IkkcPnBo/Rcwa/imRdZwQIDAQABo4ICGjCCAhYwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT2qFrEwWptJ7iQgQuO4p5KR2KzQzAfBgNVHSMEGDAWgBS7vMNHpeS8qcbDpHIMEI2iNeHI6DBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9yMTAuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTAuaS5sZW5jci5vcmcvMCEGA1UdEQQaMBiCFnRyYW5zcG9ydC5kYXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZKoL4YQAAAEAwBGMEQCIA1j2CU1wpcsg70KsO01nQyRsALsLmMi4pHM99xhRWe/AiACrmo605o7mbEmtlMBpSjtJzPDU3L7YtHG+VNYpHzWDwB3AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABkqgvhgkAAAQDAEgwRgIhAJzRPCXEGL7UQAG3K/wSa/2/Jteea3xTPSD3Lhl/w9/jAiEAqJeMrnHf+1THCgadd5HFLKBntWdotHUORtog1yy5vNIwDQYJKoZIhvcNAQELBQADggEBAD134PdmUjJ+o+ZJRlfE5M2Q/s4de1BIdVYVy4azicZP4uNizwNVQ4k1iz7BTIEpuPjXfhAQCMz2b6v8LYEMqwRN+AAn3CjnLpttIvqP73Ez9V+GDUGE3fdWU3mWILX3YBuCU45YvFsWMdMiRZ1KuZtrXV8M9A7YqKz+aQH+C6Ofl0KrA8A9UN02vMMcIJZB9Lg+I3FqwCxKncKdD3riRsGCYu06QlctFEfdT9yNbFg26S/5mOthn/DP96BkuSsS43ZZ5QLeBljr16YAT3vzQ/ExmQJQ/lsaDaE5BCpPGOINyn35DlDTTAVvA6xaOoHO7AAGsjDcaOwR3ZLEiGVy1Io=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1731832855" + "finding": "1731832573" }, { "id": "HSTS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-7ZxGwEH-ad7fXg' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-fUceS86Ss3we2w' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -228065,7 +222620,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -228074,7 +222629,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -228083,7 +222638,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -228092,7 +222647,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -228101,7 +222656,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -228109,7 +222664,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -228118,7 +222673,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -228127,7 +222682,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -228136,7 +222691,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -228145,14 +222700,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -228161,7 +222716,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -228170,7 +222725,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -228179,7 +222734,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -228188,7 +222743,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -228197,7 +222752,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -228206,7 +222761,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -228215,7 +222770,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -228224,7 +222779,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -228233,7 +222788,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -228242,1282 +222797,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/91.208.207.215", + "ip": "transport.data.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "100" }, - { - "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "transport.data.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "502" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_id.58.964a", - "value": "738fbfd0ddae0f3a.1731832349.", - "domain": ".transport.data.gouv.fr", - "path": "/", - "expires": 1765787549, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_ses.58.964a", - "value": "1", - "domain": ".transport.data.gouv.fr", - "path": "/", - "expires": 1731834148, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_transport_key", - "value": "SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYOUZEdWZQVG5EUldwcV9vYWg2X2paZmZUbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADmNlRE5mM0pOQzM3QmN3bQAAAAZsb2NhbGVtAAAAAmVu.3IER7vllXh3RBIAf9EhflTg6UEOAVj7Yqb475pSa_0Q", - "domain": "transport.data.gouv.fr", - "path": "/", - "expires": 1733128348.229547, - "size": 210, - "httpOnly": true, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "sozu-id": "01JCWM0ZDQVGQ9D0EEWV775YJT", - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-length": "8308", - "content-security-policy": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-ceDNf3JNC37Bcw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Nov 2024 08:32:27 GMT", - "referrer-policy": "strict-origin-when-cross-origin", - "server": "Cowboy", - "set-cookie": "_transport_key=SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYOUZEdWZQVG5EUldwcV9vYWg2X2paZmZUbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADmNlRE5mM0pOQzM3QmN3bQAAAAZsb2NhbGVtAAAAAmVu.3IER7vllXh3RBIAf9EhflTg6UEOAVj7Yqb475pSa_0Q; path=/; expires=Mon, 02 Dec 2024 08:32:28 GMT; max-age=1296000; HttpOnly; SameSite=Lax", - "vary": "accept-encoding", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "DENY", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "GAi0WFO800qOo7oCjlzh" - }, - "endpoints": [ - { - "hostname": "transport.data.gouv.fr", - "ip": "91.208.207.217", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://transport.data.gouv.fr/": { - "status": 200 - } + { + "id": "protocol_support_score_weighted", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "30" }, - "technologies": [ - { - "slug": "uptimerobot", - "name": "UptimeRobot", - "description": "UptimeRobot is a web-based software that is designed to monitor the sites frequently to check whether any site is down owing to server problem or any bug in coding.", - "confidence": 100, - "version": null, - "icon": "UptimeRobot.svg", - "website": "https://uptimerobot.com", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "erlang", - "name": "Erlang", - "description": "Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.", - "confidence": 100, - "version": null, - "icon": "Erlang.png", - "website": "https://www.erlang.org", - "cpe": "cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "cowboy", - "name": "Cowboy", - "description": "Cowboy is a small, fast, modular HTTP server written in Erlang.", - "confidence": 100, - "version": null, - "icon": "Cowboy.png", - "website": "https://github.com/ninenines/cowboy", - "cpe": null, - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.39.0", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "mailchimp", - "name": "MailChimp", - "description": "Mailchimp is a marketing automation platform and email marketing service.", - "confidence": 100, - "version": null, - "icon": "mailchimp.svg", - "website": "https://mailchimp.com", - "cpe": "cpe:2.3:a:thinkshout:mailchimp:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "rss", - "name": "RSS", - "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", - "confidence": 100, - "version": null, - "icon": "RSS.svg", - "website": "https://www.rssboard.org/rss-specification", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://transport.data.gouv.fr/", - "finalUrl": "https://transport.data.gouv.fr/", - "fetchTime": "2024-11-17T08:32:01.225Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.72 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.9 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4657, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1052, - "firstMeaningfulPaint": 4657, - "largestContentfulPaint": 6835, - "interactive": 4657, - "speedIndex": 1515, - "totalBlockingTime": 183, - "maxPotentialFID": 233, - "cumulativeLayoutShift": 0.0009435492621527779, - "cumulativeLayoutShiftMainFrame": 0.0009435492621527779, - "totalCumulativeLayoutShift": 0.0009435492621527779, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 493028536, - "observedNavigationStart": 0, - "observedNavigationStartTs": 493028536, - "observedFirstPaint": 498, - "observedFirstPaintTs": 493526874, - "observedFirstContentfulPaint": 498, - "observedFirstContentfulPaintTs": 493526874, - "observedFirstContentfulPaintAllFrames": 498, - "observedFirstContentfulPaintAllFramesTs": 493526874, - "observedFirstMeaningfulPaint": 1002, - "observedFirstMeaningfulPaintTs": 494030389, - "observedLargestContentfulPaint": 1002, - "observedLargestContentfulPaintTs": 494030389, - "observedLargestContentfulPaintAllFrames": 1002, - "observedLargestContentfulPaintAllFramesTs": 494030389, - "observedTraceEnd": 4415, - "observedTraceEndTs": 497443982, - "observedLoad": 2106, - "observedLoadTs": 495134426, - "observedDomContentLoaded": 825, - "observedDomContentLoadedTs": 493853984, - "observedCumulativeLayoutShift": 0.0009435492621527779, - "observedCumulativeLayoutShiftMainFrame": 0.0009435492621527779, - "observedTotalCumulativeLayoutShift": 0.0009435492621527779, - "observedFirstVisualChange": 501, - "observedFirstVisualChangeTs": 493529536, - "observedLastVisualChange": 2484, - "observedLastVisualChangeTs": 495512536, - "observedSpeedIndex": 772, - "observedSpeedIndexTs": 493800914 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 97, - "numScripts": 2, - "numStylesheets": 1, - "numFonts": 4, - "numTasks": 2168, - "numTasksOver10ms": 4, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 84.693, - "throughput": 30904188.685937792, - "maxRtt": 90.506, - "maxServerLatency": 1.2480000000000047, - "totalByteWeight": 2178359, - "totalTaskTime": 288.7919999999944, - "mainDocumentTransferSize": 10265 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://transport.data.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "key_exchange_score", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "90" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://transport.data.gouv.fr/legal" + "id": "key_exchange_score_weighted", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "27" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "transport", - "type": "startup", - "attributes": { - "name": "transport.data.gouv.fr", - "pitch": "Faciliter l'accès à l’information voyageur pour tous, partout en France, grâce à l’ouverture des données.", - "stats_url": "https://transport.data.gouv.fr/stats", - "budget_url": "https://transport.data.gouv.fr/budget", - "link": "https://transport.data.gouv.fr", - "repository": "https://github.com/etalab/transport-site", - "contact": "contact@transport.data.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20que%20r%C3%A9sout%20transport.data.gouv.fr%0A%0ADans%20un%20pays%20avec%20plus%20de%20330%20r%C3%A9seaux%20de%20transports%20urbains%20et%20des%20dizaines%20de%20milliers%20de%20points%20d%E2%80%99arr%C3%AAts%2C%20il%20est%20parfois%20difficile%20de%20trouver%20le%20meilleur%20moyen%20de%20se%20rendre%20d%E2%80%99un%20point%20A%20%C3%A0%20un%20point%20B.%20%0A%0ATransport.data.gouv.fr%20a%20pour%20mission%20de%20faciliter%20les%20d%C3%A9placements%20des%20usagers%20en%20permettant%20%C3%A0%20tout%20un%20chacun%20de%20d%C3%A9terminer%20le%20plus%20simplement%20possible%20la%20meilleure%20option%20de%20mobilit%C3%A9%20lors%20d%E2%80%99un%20trajet%20%3A%20bus%2C%20tram%2C%20ferry%2C%20m%C3%A9tro%2C%20v%C3%A9lo%2C%20voiture%E2%80%A6%20ou%20tout%20%C3%A0%20la%20fois%20%21%0A%0ALes%20donn%C3%A9es%20de%20transport%2C%20lorsqu%27elles%20existent%2C%20sont%20expos%C3%A9es%20sur%20diff%C3%A9rents%20portails%20de%20diffusion%20de%20donn%C3%A9es%20ouvertes.%20transport.data.gouv.fr%20regroupe%20sur%20une%20m%C3%AAme%20plateforme%2C%20toutes%20les%20donn%C3%A9es%20pertinentes%20pour%20am%C3%A9liorer%20l%E2%80%99information%20dont%20dispose%20les%20usagers%20%E2%80%93%20par%20exemple%20les%20horaires%20des%20lignes%20de%20bus%20partout%20en%20France%2C%20ou%20encore%20la%20localisation%20des%20stations%20de%20v%C3%A9los%20en%20libre%20service.%20Ces%20donn%C3%A9es%20sont%20mises%20%C3%A0%20disposition%20de%20mani%C3%A8re%20ouverte%20avec%20un%20format%20et%20une%20licence%20harmonis%C3%A9es%20afin%20de%20faciliter%20la%20diffusion%20d%E2%80%99une%20information%20voyageur%20fiable%20sur%20tous%20les%20services%20%28planification%20de%20trajets%2C%20covoiturage%E2%80%A6%29%20utilis%C3%A9s%20par%20le%20grand%20public.%0A%0A%23%23%20Les%20r%C3%A9sultats%0A%0AAvec%20plus%20de%20350%20jeux%20de%20donn%C3%A9es%20r%C3%A9f%C3%A9renc%C3%A9s%2C%20transport.data.gouv.fr%20est%20une%20des%20plateformes%20de%20donn%C3%A9es%20de%20transport%20les%20plus%20pl%C3%A9biscit%C3%A9es%20par%20les%20r%C3%A9utilisateurs%20de%20donn%C3%A9es%20et%20acteurs%20de%20mobilit%C3%A9%20comme%20les%20applications%20grand%20public%20de%20calculateurs%20d%E2%80%99itin%C3%A9raires.%20A%20ce%20jour%2C%20elle%20couvre%20plus%20de%2090%25%20de%20la%20population%20fran%C3%A7aise%20dans%2014%20r%C3%A9gions.%0A%0ALes%20statistiques%20compl%C3%A8tes%20sont%20disponibles%20%C3%A0%20https%3A%2F%2Ftransport.data.gouv.fr%2Fstats.%0A%0A%23%23%20Int%C3%A9gration%20de%20transport.data.gouv.fr%20au%20sein%20du%20minist%C3%A8re%20charg%C3%A9%20des%20Transports%0A%0AApr%C3%A8s%203%20ans%20et%20demi%20d%27incubation%20au%20sein%20de%20la%20DINUM%2C%20%5Btransport.data.gouv.fr%20quitte%20le%20programme%20beta.gouv.fr%20et%20est%20officiellement%20transf%C3%A9r%C3%A9%20le%205%20mars%202021%5D%28https%3A%2F%2Fwww.ecologie.gouv.fr%2Ftransportdatagouvfr-lopen-data-au-service-tous-voyageurs-france%29%20%C3%A0%20la%20DGITM%20au%20sein%20du%20minist%C3%A8re%20charg%C3%A9%20des%20Transports.%0A%0AAvec%20transport.data.gouv.fr%2C%20le%20minist%C3%A8re%20charg%C3%A9%20des%20Transports%20se%20dote%20d%E2%80%99un%20outil%20permettant%20de%20conduire%20des%20politiques%20ambitieuses%20en%20mati%C3%A8re%20de%20donn%C3%A9es%20publiques%20ouvertes%20au%20service%20de%20la%20mobilit%C3%A9%20de%20tous%20les%20voyageurs%20et%20favorise%20ainsi%20le%20d%C3%A9veloppement%20de%20services%20num%C3%A9riques%20innovants%20%C3%A0%20fort%20impact.%20La%20facilitation%20de%20l%E2%80%99information%20voyageur%20pose%20la%20premi%C3%A8re%20brique%20de%20la%20mise%20au%20point%20des%20applications%20de%20type%20%C2%AB%20Mobility%20as%20a%20Service%20%C2%BB%2C%20pr%C3%A9vues%20par%20l%E2%80%99article%2028%20de%20la%20Loi%20d%E2%80%99orientation%20des%20mobilit%C3%A9s%2C%20qui%20entre%20en%20vigueur%20le%201er%20juillet%202021.%0A%0A%0A%0A", - "events": [ - { - "name": "national_impact", - "date": "2021-12-31", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2017-07-03", - "end": "" - }, - { - "name": "construction", - "start": "2017-10-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2018-09-01", - "end": "" - }, - { - "name": "transfer", - "start": "2020-09-01", - "end": "" - }, - { - "name": "success", - "start": "2021-03-05", - "end": "" - } - ], - "sponsors": [ - "dgitm", - "dinum", - "mtes", - "sgpe" - ], - "thematiques": [ - "Transports", - "Open-Data", - "Inclusion numérique", - "Territoires" - ] + "id": "cipher_strength_score", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mtes" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://transport.data.gouv.fr", - "size": 2303.051, - "nodes": 464, - "requests": 97, - "grade": "D", - "score": 49, - "ges": 2.02, - "water": 3.03, - "ecoindex_version": "5.4.2", - "date": "2024-11-17 08:29:04.900060", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D+", - "apdex": 0.978, - "apdexGrade": "C", - "uptime": 99.777, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-18T03:30:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.72, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.9, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "D", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://webinaire.numerique.gouv.fr", - "category": "dinum", - "http": { - "url": "https://webinaire.numerique.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:10:03 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 02:10:02 GMT", - "Server": "nginx", - "Strict-Transport-Security": "max-age=15552000;preload", - "Transfer-Encoding": "chunked", - "Vary": "Cookie", - "X-Content-Type-Options": "nosniff", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Robots-Tag": "none", - "X-XSS-Protection": "1; mode=block" + "id": "cipher_strength_score_weighted", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "36" }, - "scan_id": 57047577, - "score": 75, - "start_time": "Sun, 20 Oct 2024 02:10:01 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://webinaire.numerique.gouv.fr/home", - "redirects": true, - "route": [ - "http://webinaire.numerique.gouv.fr/", - "https://webinaire.numerique.gouv.fr/", - "https://webinaire.numerique.gouv.fr/home" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=15552000;preload", - "includeSubDomains": false, - "max-age": 15552000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "or75", - "url": "https://webinaire.numerique.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-17T07:57:06Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T09:06:59Z", - "next_check_at": "2024-11-24T09:11:58Z", - "created_at": "2022-08-21T11:40:09Z", - "mute_until": null, - "favicon_url": "https://webinaire.numerique.gouv.fr/static/images/favicon.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T08:32:16Z", - "expires_at": "2025-11-18T22:59:59Z", - "valid": true, - "error": null + { + "id": "final_score", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "93" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 339, - "namelookup": 0, - "connection": 107, - "handshake": 115, - "response": 120, - "total": 682 - } + { + "id": "overall_grade", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "webinaire.numerique.gouv.fr", - "protocol": "tcp", - "closed_ports": "995", - "open_ports": [ - { - "service": { - "name": "ssh", - "id": "22", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "upnp", - "id": "5000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https-alt", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -229525,7 +223190,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -229533,7 +223198,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -229541,7 +223206,7 @@ }, { "id": "cipherlist_LOW", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -229549,7 +223214,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -229557,7 +223222,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -229565,469 +223230,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "id": "cipher-tls1_2_xc02f", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 60 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2024-11-18 23:00" + "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2025-11-18 22:59" + "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://crl.dhimyotis.com/wildca.crl http://crl.certigna.fr/wildca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://wildca.ocsp.certigna.fr http://wildca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "Certigna Wild CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "211F3083B9E77A01D0828565897A1CE945EEAAE04942CCC369087D8080C9E4A6" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:06" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:06" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "Certigna Wild CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "302 FOUND ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "1732439081" - }, - { - "id": "HSTS_time", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1731832628" }, { - "id": "HSTS_preload", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "id": "HSTS", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "Cowboy" }, { "id": "banner_application", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-AOO6K362Nzk7mA' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" + }, + { + "id": "Referrer-Policy", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "transport.data.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -230035,7 +223728,7 @@ }, { "id": "heartbleed", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -230044,7 +223737,7 @@ }, { "id": "CCS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -230053,16 +223746,16 @@ }, { "id": "ticketbleed", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -230071,7 +223764,7 @@ }, { "id": "secure_renego", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -230079,16 +223772,16 @@ }, { "id": "secure_client_renego", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -230097,16 +223790,16 @@ }, { "id": "BREACH", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", + "severity": "WARN", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "Test failed as HTTP request stalled and was terminated" }, { "id": "POODLE_SSL", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -230115,14 +223808,14 @@ }, { "id": "fallback_SCSV", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -230131,7 +223824,7 @@ }, { "id": "FREAK", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -230140,7 +223833,7 @@ }, { "id": "DROWN", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -230149,16 +223842,16 @@ }, { "id": "DROWN_hint", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6C708A01DF459CF67F74C53B575EAA6D37D0EC7EBC4A4B64A1EE737863DF0840" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "LOGJAM", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -230167,16 +223860,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -230185,7 +223878,7 @@ }, { "id": "LUCKY13", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -230194,7 +223887,7 @@ }, { "id": "winshock", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -230203,7 +223896,7 @@ }, { "id": "RC4", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -230212,1150 +223905,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" }, { - "id": "scanTime", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "88" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.15.66ef", - "value": "1", - "domain": "webinaire.numerique.gouv.fr", - "path": "/", - "expires": 1732440782, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.15.66ef", - "value": "6118164711299208.1732438982.", - "domain": "webinaire.numerique.gouv.fr", - "path": "/", - "expires": 1766394182, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 09:03:00 GMT", - "server": "nginx", - "strict-transport-security": "max-age=15552000;preload", - "transfer-encoding": "chunked", - "vary": "Cookie", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-robots-tag": "none", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "webinaire.numerique.gouv.fr", - "ip": "51.15.207.28", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://webinaire.numerique.gouv.fr/": { - "status": 302 - }, - "https://webinaire.numerique.gouv.fr/home": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://webinaire.numerique.gouv.fr/", - "finalUrl": "https://webinaire.numerique.gouv.fr/home", - "fetchTime": "2024-11-24T09:02:34.093Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://webinaire.numerique.gouv.fr/) was redirected to https://webinaire.numerique.gouv.fr/home. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.49 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.83 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.75 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 12084, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 7906, - "firstMeaningfulPaint": 7906, - "largestContentfulPaint": 8034, - "interactive": 12084, - "speedIndex": 7906, - "totalBlockingTime": 29, - "maxPotentialFID": 107, - "cumulativeLayoutShift": 0.016947645399305555, - "cumulativeLayoutShiftMainFrame": 0.016947645399305555, - "totalCumulativeLayoutShift": 0.016947645399305555, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 429255789, - "observedNavigationStart": 0, - "observedNavigationStartTs": 429255789, - "observedFirstPaint": 1164, - "observedFirstPaintTs": 430419694, - "observedFirstContentfulPaint": 1164, - "observedFirstContentfulPaintTs": 430419694, - "observedFirstContentfulPaintAllFrames": 1164, - "observedFirstContentfulPaintAllFramesTs": 430419694, - "observedFirstMeaningfulPaint": 1164, - "observedFirstMeaningfulPaintTs": 430419694, - "observedLargestContentfulPaint": 1164, - "observedLargestContentfulPaintTs": 430419694, - "observedLargestContentfulPaintAllFrames": 1164, - "observedLargestContentfulPaintAllFramesTs": 430419694, - "observedTraceEnd": 6410, - "observedTraceEndTs": 435665316, - "observedLoad": 3166, - "observedLoadTs": 432421807, - "observedDomContentLoaded": 1155, - "observedDomContentLoadedTs": 430411015, - "observedCumulativeLayoutShift": 0.016947645399305555, - "observedCumulativeLayoutShiftMainFrame": 0.016947645399305555, - "observedTotalCumulativeLayoutShift": 0.016947645399305555, - "observedFirstVisualChange": 1176, - "observedFirstVisualChangeTs": 430431789, - "observedLastVisualChange": 1776, - "observedLastVisualChangeTs": 431031789, - "observedSpeedIndex": 1202, - "observedSpeedIndexTs": 430458281 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 60, - "numScripts": 11, - "numStylesheets": 8, - "numFonts": 6, - "numTasks": 1513, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 15469268.918060629, - "maxRtt": 107.44, - "maxServerLatency": 223.429, - "totalByteWeight": 2729959, - "totalTaskTime": 220.83899999999932, - "mainDocumentTransferSize": 3426 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://webinaire.numerique.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 3, - "missingWords": [ - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement" - ], - "missingTrackers": [], - "declarationUrl": "https://webinaire.numerique.gouv.fr/mentions_legales" - }, - { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://webinaire.numerique.gouv.fr/donnees_personnelles" - } - ], - "betagouv": null, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://webinaire.numerique.gouv.fr", - "size": 1481.399, - "nodes": 125, - "requests": 23, - "grade": "B", - "score": 80, - "ges": 1.4, - "water": 2.1, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 08:59:35.801253", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 5, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-11-18T22:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.49, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.83, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.75, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://www.rdv-solidarites.fr", - "category": "anct", - "betaId": "rdv-service-public", - "http": { - "url": "https://www.rdv-solidarites.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 01:49:06 GMT", - "grade": "C+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "max-age=0, private, must-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 01:49:06 GMT", - "ETag": "W/\"3dee2b5d88913d3929aa1b1af485e961\"", - "Link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", - "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_rdv_sp_session=ksPxv2R2dhwtWPf2HkyUEyrigvu7U3UE%2Fo3V7u3mn%2F5xe0Go9JP3d8HFYlgYHKB%2B4KqQCVpqeAs3cTwnTIfBv2zFVdRnGfEv71Ts9cQWyDKZbBG1e1vjCvLuKdVJUI50ULIqkfbhKh1Z06SLVSkeEJrklyjsxWxrDg%2BXCJiFhvN%2FGa3aKiKMyudXJtMaFsHGAgt2s5M4PpciqZWtkqyG7jWglXeuRyvSGFqhvTuoEXcfF9avP5hf2G5ObthhzXmGP7k6bG8y1G6X2y17Ebvw1xXEi1pZpizl%2Bhv4X95P1aOYmSXu670zaFJDjkaw--sMM3dawAAXer0D27--hTbjlztkyWOw1Mju1lRE5g%3D%3D; path=/; expires=Sun, 20 Oct 2024 09:49:06 GMT; secure; HttpOnly; SameSite=Lax", - "Strict-Transport-Security": "max-age=63072000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept", - "X-Content-Type-Options": "nosniff", - "X-Download-Options": "noopen", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "c1886615-eafe-4b91-823d-e2a072858696, c1886615-eafe-4b91-823d-e2a072858696", - "X-Runtime": "0.011059", - "X-XSS-Protection": "0" - }, - "scan_id": 57047240, - "score": 60, - "start_time": "Sun, 20 Oct 2024 01:49:05 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "child-src": [ - "blob:", - "'self'" - ], - "connect-src": [ - "etalab-tiles.fr", - "api-adresse.data.gouv.fr", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "data:", - "'self'" - ], - "frame-src": [ - "headway-widget.net", - "*.instatus.com", - "'self'" - ], - "img-src": [ - "data:", - "voxusagers.numerique.gouv.fr", - "'self'" - ], - "media-src": [ - "rdv-insertion-medias-production.s3.fr-par.scw.cloud", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "cdn.headwayapp.co", - "api.mapbox.com", - "'self'" - ], - "style-src": [ - "api.mapbox.com", - "'unsafe-inline'", - "cdn.headwayapp.co", - "*.bootstrapcdn.com", - "'self'" - ], - "worker-src": [ - "blob:" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_rdv_sp_session": { - "domain": "www.rdv-solidarites.fr", - "expires": 1729417746, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.rdv-solidarites.fr/", - "redirects": true, - "route": [ - "http://www.rdv-solidarites.fr/", - "https://www.rdv-solidarites.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains", - "includeSubDomains": true, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "v8ed", - "url": "https://www.rdv-solidarites.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-08T03:40:11Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T09:21:13Z", - "next_check_at": "2024-11-24T09:26:11Z", - "created_at": "2021-04-22T19:59:40Z", - "mute_until": null, - "favicon_url": "https://www.rdv-solidarites.fr/assets/favicon/favicon-a933d69b078f2d798a5fee2eeb0a8e97de10b68c24a6e5af3a2b8b727e14d73d.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T09:01:18Z", - "expires_at": "2025-02-11T15:55:37Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 36, - "connection": 88, - "handshake": 92, - "response": 105, - "total": 322 - } + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "www.rdv-solidarites.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -231363,7 +224298,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -231371,7 +224306,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -231379,7 +224314,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -231387,7 +224322,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -231395,7 +224330,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -231403,497 +224338,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "id": "cipher-tls1_2_xc02f", + "ip": "transport.data.gouv.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2024-11-13 15:55" + "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "2025-02-11 15:55" + "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732439999" - }, - { - "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1731832691" }, { - "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "id": "HSTS", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Cowboy" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { - "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", - "severity": "INFO", - "finding": "0" + "severity": "OK", + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-yTydxMKsR7qbpQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -231901,7 +224836,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -231910,7 +224845,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -231919,16 +224854,16 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -231937,7 +224872,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -231945,16 +224880,16 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -231963,7 +224898,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -231972,7 +224907,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -231981,14 +224916,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -231997,7 +224932,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -232006,7 +224941,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -232015,16 +224950,16 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -232033,16 +224968,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -232051,7 +224986,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -232060,7 +224995,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -232069,7 +225004,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -232078,392 +225013,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "transport.data.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -232471,7 +225406,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -232479,7 +225414,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -232487,7 +225422,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -232495,7 +225430,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -232503,7 +225438,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -232511,497 +225446,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "id": "cipher-tls1_2_xc02f", + "ip": "transport.data.gouv.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-11-13 15:55" + "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-02-11 15:55" + "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732440052" - }, - { - "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1731832745" }, { - "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "id": "HSTS", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Cowboy" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { - "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "0" + "severity": "OK", + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-pyihKtjXfjavMQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -233009,7 +225944,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -233018,7 +225953,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -233027,16 +225962,16 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -233045,7 +225980,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -233053,16 +225988,16 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -233071,7 +226006,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -233080,7 +226015,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -233089,14 +226024,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -233105,7 +226040,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -233114,7 +226049,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -233123,16 +226058,16 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -233141,16 +226076,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -233159,7 +226094,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -233168,7 +226103,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -233177,7 +226112,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -233186,392 +226121,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "transport.data.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -233579,7 +226514,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -233587,7 +226522,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -233595,7 +226530,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -233603,7 +226538,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -233611,7 +226546,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -233619,497 +226554,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "id": "cipher-tls1_2_xc02f", + "ip": "transport.data.gouv.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2024-11-13 15:55" + "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "2025-02-11 15:55" + "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732440104" - }, - { - "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1731832800" }, { - "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "id": "HSTS", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Cowboy" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { - "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "0" + "severity": "OK", + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-skshZcyiUg3n9w' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -234117,7 +227052,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -234126,7 +227061,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -234135,16 +227070,16 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -234153,7 +227088,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -234161,16 +227096,16 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -234179,7 +227114,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -234188,7 +227123,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -234197,14 +227132,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -234213,7 +227148,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -234222,7 +227157,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -234231,16 +227166,16 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -234249,16 +227184,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -234267,7 +227202,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -234276,7 +227211,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -234285,7 +227220,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -234294,392 +227229,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "transport.data.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -234687,7 +227622,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -234695,7 +227630,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -234703,7 +227638,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -234711,7 +227646,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -234719,7 +227654,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -234727,497 +227662,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "id": "cipher-tls1_2_xc02f", + "ip": "transport.data.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2024-11-13 15:55" + "finding": "2024-10-20 03:30" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2025-02-11 15:55" + "finding": "2025-01-18 03:30" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732440157" - }, - { - "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1731832855" }, { - "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "id": "HSTS", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Cowboy" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { - "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "DENY" }, { - "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "0" + "severity": "OK", + "finding": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-7ZxGwEH-ad7fXg' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -235225,7 +228160,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -235234,7 +228169,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -235243,16 +228178,16 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -235261,7 +228196,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -235269,16 +228204,16 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -235287,7 +228222,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -235296,7 +228231,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -235305,14 +228240,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -235321,7 +228256,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -235330,7 +228265,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -235339,16 +228274,16 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=183344426D163E2E3B9226DCADAAE4C3F8DF3C15BDBEE82815E66C7319A8AE58" }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -235357,16 +228292,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -235375,7 +228310,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -235384,7 +228319,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -235393,7 +228328,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -235402,339 +228337,376 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "transport.data.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "transport.data.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "213" + "finding": "502" } ], "thirdparties": { "trackers": [], "cookies": [ { - "name": "_rdv_sp_session", - "value": "JDnzLwVuqEAuXpVs6FWBQdPH8m35lopYU6YI2fQmz8Yc3yAFGQRJ%2BW6xUl%2BQ1j2bTa%2BwwPRjXjFNzTTlyUi7yCJzouBQ6Dq9Vwvb3tq3Ft4EwQ%2BA1WFsQyWOWi%2FwWqtu49r7qh3wJ%2FTPeqwg%2FCv0rx2jzRiZvP3dEDbScmowrTmyW1jnqBiHFS6XUFVsFMWUwymJs6i4I5Uyw0avz%2FLpyDtNRKbDDXSgEDbPusyaCTYSeVWkDAZE1qsozkykJf2STgalMT8WgoQIDjCCID6V6GKiR3pN%2Bf2rXyrpYH05ssNe4XHfyumHAWCZWbjE--70fMr31O5tvaAAGC--t5OOf4BGrrxkW4qsiaFcGQ%3D%3D", - "domain": "www.rdv-solidarites.fr", + "name": "_pk_id.58.964a", + "value": "738fbfd0ddae0f3a.1731832349.", + "domain": ".transport.data.gouv.fr", + "path": "/", + "expires": 1765787549, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_ses.58.964a", + "value": "1", + "domain": ".transport.data.gouv.fr", + "path": "/", + "expires": 1731834148, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_transport_key", + "value": "SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYOUZEdWZQVG5EUldwcV9vYWg2X2paZmZUbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADmNlRE5mM0pOQzM3QmN3bQAAAAZsb2NhbGVtAAAAAmVu.3IER7vllXh3RBIAf9EhflTg6UEOAVj7Yqb475pSa_0Q", + "domain": "transport.data.gouv.fr", "path": "/", - "expires": 1732468730.07517, - "size": 397, + "expires": 1733128348.229547, + "size": 210, "httpOnly": true, - "secure": true, + "secure": false, "session": false, "sameSite": "Lax", "sameParty": false, @@ -235743,27 +228715,27 @@ } ], "headers": { + "sozu-id": "01JCWM0ZDQVGQ9D0EEWV775YJT", "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co", + "content-length": "8308", + "content-security-policy": "connect-src *;default-src 'none';font-src *;frame-ancestors 'none';frame-src https://*.dailymotion.com;img-src 'self' data: https://api.mapbox.com https://data.geopf.fr https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net https://transport-data-gouv-fr-logos-prod.cellar-c2.services.clever-cloud.com;report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;style-src 'self' 'nonce-ceDNf3JNC37Bcw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg='", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 09:18:50 GMT", - "etag": "W/\"dffbad7e32cb85743164b1fae9a26a48\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 17 Nov 2024 08:32:27 GMT", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_rdv_sp_session=JDnzLwVuqEAuXpVs6FWBQdPH8m35lopYU6YI2fQmz8Yc3yAFGQRJ%2BW6xUl%2BQ1j2bTa%2BwwPRjXjFNzTTlyUi7yCJzouBQ6Dq9Vwvb3tq3Ft4EwQ%2BA1WFsQyWOWi%2FwWqtu49r7qh3wJ%2FTPeqwg%2FCv0rx2jzRiZvP3dEDbScmowrTmyW1jnqBiHFS6XUFVsFMWUwymJs6i4I5Uyw0avz%2FLpyDtNRKbDDXSgEDbPusyaCTYSeVWkDAZE1qsozkykJf2STgalMT8WgoQIDjCCID6V6GKiR3pN%2Bf2rXyrpYH05ssNe4XHfyumHAWCZWbjE--70fMr31O5tvaAAGC--t5OOf4BGrrxkW4qsiaFcGQ%3D%3D; path=/; expires=Sun, 24 Nov 2024 17:18:50 GMT; secure; HttpOnly; SameSite=Lax", - "strict-transport-security": "max-age=63072000; includeSubDomains", + "server": "Cowboy", + "set-cookie": "_transport_key=SFMyNTY.g3QAAAADbQAAAAtfY3NyZl90b2tlbm0AAAAYOUZEdWZQVG5EUldwcV9vYWg2X2paZmZUbQAAAA9jc3Bfbm9uY2VfdmFsdWVtAAAADmNlRE5mM0pOQzM3QmN3bQAAAAZsb2NhbGVtAAAAAmVu.3IER7vllXh3RBIAf9EhflTg6UEOAVj7Yqb475pSa_0Q; path=/; expires=Mon, 02 Dec 2024 08:32:28 GMT; max-age=1296000; HttpOnly; SameSite=Lax", + "vary": "accept-encoding", "x-content-type-options": "nosniff", "x-download-options": "noopen", + "x-frame-options": "DENY", "x-permitted-cross-domain-policies": "none", - "x-request-id": "9ff52175-4d48-490f-899b-c7ad6cb338f3\n9ff52175-4d48-490f-899b-c7ad6cb338f3", - "x-runtime": "0.014462", - "x-xss-protection": "0" + "x-request-id": "GAi0WFO800qOo7oCjlzh" }, "endpoints": [ { - "hostname": "www.rdv-solidarites.fr", - "ip": "148.253.96.193", + "hostname": "transport.data.gouv.fr", + "ip": "91.208.207.217", "geoip": { "continent": { "code": "EU", @@ -235821,20 +228793,38 @@ }, "wappalyzer": { "urls": { - "https://www.rdv-solidarites.fr/": { + "https://transport.data.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", + "slug": "uptimerobot", + "name": "UptimeRobot", + "description": "UptimeRobot is a web-based software that is designed to monitor the sites frequently to check whether any site is down owing to server problem or any bug in coding.", "confidence": 100, "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "icon": "UptimeRobot.svg", + "website": "https://uptimerobot.com", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "erlang", + "name": "Erlang", + "description": "Erlang is a general-purpose, concurrent, functional programming language, and a garbage-collected runtime system.", + "confidence": 100, + "version": null, + "icon": "Erlang.png", + "website": "https://www.erlang.org", + "cpe": "cpe:2.3:a:erlang:erlang%2fotp:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -235844,50 +228834,68 @@ ] }, { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "slug": "cowboy", + "name": "Cowboy", + "description": "Cowboy is a small, fast, modular HTTP server written in Erlang.", "confidence": 100, "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "icon": "Cowboy.png", + "website": "https://github.com/ninenines/cowboy", + "cpe": null, "categories": [ { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "id": 22, + "slug": "web-servers", + "name": "Web servers" } ], "rootPath": true }, { - "slug": "turbolinks", - "name": "Turbolinks", - "description": "Turbolinks is a Rails feature, available as a gem and enabled by default in new Rails apps. It is intended to speed up navigating between pages of your application.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://github.com/turbolinks/turbolinks", + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.39.0", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", "cpe": null, "categories": [ { - "id": 92, - "slug": "performance", - "name": "Performance" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } ], "rootPath": true }, { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "slug": "mailchimp", + "name": "MailChimp", + "description": "Mailchimp is a marketing automation platform and email marketing service.", "confidence": 100, "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, + "icon": "mailchimp.svg", + "website": "https://mailchimp.com", + "cpe": "cpe:2.3:a:thinkshout:mailchimp:*:*:*:*:*:*:*:*", "categories": [ { "id": 32, @@ -235903,19 +228911,55 @@ "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "rss", + "name": "RSS", + "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", + "confidence": 100, + "version": null, + "icon": "RSS.svg", + "website": "https://www.rssboard.org/rss-specification", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true @@ -235926,9 +228970,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://www.rdv-solidarites.fr/", - "finalUrl": "https://www.rdv-solidarites.fr/", - "fetchTime": "2024-11-24T09:18:26.738Z", + "requestedUrl": "https://transport.data.gouv.fr/", + "finalUrl": "https://transport.data.gouv.fr/", + "fetchTime": "2024-11-17T08:32:01.225Z", "runWarnings": [], "categories": { "performance": { @@ -235939,7 +228983,7 @@ "snapshot" ], "id": "performance", - "score": 0.9 + "score": 0.72 }, "accessibility": { "title": "Accessibility", @@ -235950,7 +228994,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.9 }, "best-practices": { "title": "Best Practices", @@ -235960,7 +229004,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -235971,7 +229015,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 1 }, "pwa": { "title": "PWA", @@ -235981,7 +229025,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.2 } }, "audits": { @@ -235991,53 +229035,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2969, + "numericValue": 4657, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2704, - "firstMeaningfulPaint": 2779, - "largestContentfulPaint": 2929, - "interactive": 2969, - "speedIndex": 2704, - "totalBlockingTime": 70, - "maxPotentialFID": 190, - "cumulativeLayoutShift": 0.0038595489925808374, - "cumulativeLayoutShiftMainFrame": 0.0038595489925808374, - "totalCumulativeLayoutShift": 0.0038595489925808374, + "firstContentfulPaint": 1052, + "firstMeaningfulPaint": 4657, + "largestContentfulPaint": 6835, + "interactive": 4657, + "speedIndex": 1515, + "totalBlockingTime": 183, + "maxPotentialFID": 233, + "cumulativeLayoutShift": 0.0009435492621527779, + "cumulativeLayoutShiftMainFrame": 0.0009435492621527779, + "totalCumulativeLayoutShift": 0.0009435492621527779, "observedTimeOrigin": 0, - "observedTimeOriginTs": 424467880, + "observedTimeOriginTs": 493028536, "observedNavigationStart": 0, - "observedNavigationStartTs": 424467880, - "observedFirstPaint": 688, - "observedFirstPaintTs": 425156043, - "observedFirstContentfulPaint": 688, - "observedFirstContentfulPaintTs": 425156043, - "observedFirstContentfulPaintAllFrames": 688, - "observedFirstContentfulPaintAllFramesTs": 425156043, - "observedFirstMeaningfulPaint": 688, - "observedFirstMeaningfulPaintTs": 425156043, - "observedLargestContentfulPaint": 688, - "observedLargestContentfulPaintTs": 425156043, - "observedLargestContentfulPaintAllFrames": 688, - "observedLargestContentfulPaintAllFramesTs": 425156043, - "observedTraceEnd": 3224, - "observedTraceEndTs": 427692114, - "observedLoad": 827, - "observedLoadTs": 425294753, - "observedDomContentLoaded": 693, - "observedDomContentLoadedTs": 425161180, - "observedCumulativeLayoutShift": 0.0038595489925808374, - "observedCumulativeLayoutShiftMainFrame": 0.0038595489925808374, - "observedTotalCumulativeLayoutShift": 0.0038595489925808374, - "observedFirstVisualChange": 698, - "observedFirstVisualChangeTs": 425165880, - "observedLastVisualChange": 1315, - "observedLastVisualChangeTs": 425782880, - "observedSpeedIndex": 709, - "observedSpeedIndexTs": 425176492 + "observedNavigationStartTs": 493028536, + "observedFirstPaint": 498, + "observedFirstPaintTs": 493526874, + "observedFirstContentfulPaint": 498, + "observedFirstContentfulPaintTs": 493526874, + "observedFirstContentfulPaintAllFrames": 498, + "observedFirstContentfulPaintAllFramesTs": 493526874, + "observedFirstMeaningfulPaint": 1002, + "observedFirstMeaningfulPaintTs": 494030389, + "observedLargestContentfulPaint": 1002, + "observedLargestContentfulPaintTs": 494030389, + "observedLargestContentfulPaintAllFrames": 1002, + "observedLargestContentfulPaintAllFramesTs": 494030389, + "observedTraceEnd": 4415, + "observedTraceEndTs": 497443982, + "observedLoad": 2106, + "observedLoadTs": 495134426, + "observedDomContentLoaded": 825, + "observedDomContentLoadedTs": 493853984, + "observedCumulativeLayoutShift": 0.0009435492621527779, + "observedCumulativeLayoutShiftMainFrame": 0.0009435492621527779, + "observedTotalCumulativeLayoutShift": 0.0009435492621527779, + "observedFirstVisualChange": 501, + "observedFirstVisualChangeTs": 493529536, + "observedLastVisualChange": 2484, + "observedLastVisualChangeTs": 495512536, + "observedSpeedIndex": 772, + "observedSpeedIndexTs": 493800914 }, { "lcpInvalidated": false @@ -236055,23 +229099,23 @@ "type": "debugdata", "items": [ { - "numRequests": 26, + "numRequests": 97, "numScripts": 2, - "numStylesheets": 3, - "numFonts": 5, - "numTasks": 1028, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 2168, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.151, - "throughput": 20894013.222292148, - "maxRtt": 82.151, - "maxServerLatency": 4.302999999999997, - "totalByteWeight": 739144, - "totalTaskTime": 239.01199999999812, - "mainDocumentTransferSize": 5649 + "rtt": 84.693, + "throughput": 30904188.685937792, + "maxRtt": 90.506, + "maxServerLatency": 1.2480000000000047, + "totalByteWeight": 2178359, + "totalTaskTime": 288.7919999999944, + "mainDocumentTransferSize": 10265 } ] } @@ -236091,7 +229135,7 @@ }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://www.rdv-solidarites.fr/accessibility" + "declarationUrl": "https://transport.data.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -236101,73 +229145,81 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://www.rdv-solidarites.fr/mentions_legales" + "declarationUrl": "https://transport.data.gouv.fr/legal" }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://www.rdv-solidarites.fr/politique_de_confidentialite" + "missingTrackers": [] } ], "betagouv": { - "id": "rdv-service-public", + "id": "transport", "type": "startup", "attributes": { - "name": "RDV Service Public", - "pitch": "Faciliter la gestion et la prise de rendez-vous dans les administrations", - "stats_url": "https://www.rdv-solidarites.fr/stats/", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#RDV-Services-Publics", - "link": "https://rdv.anct.gouv.fr", - "repository": "https://github.com/betagouv/rdv-solidarites.fr", - "contact": "support@rdv-service-public.fr", - "content_url_encoded_markdown": "%23%23%20Qui%20sommes-nous%20%3F%0A%0ANous%20sommes%20l%E2%80%99%C3%A9quipe%20produit%20RDV%20Service%20Public%2C%20solution%20num%C3%A9rique%20port%C3%A9e%20par%20l%E2%80%99Agence%20Nationale%20de%20la%20Coh%C3%A9sion%20des%20Territoires%20et%20la%20Direction%20Interminist%C3%A9rielle%20du%20Num%C3%A9rique.%0A%0AL%E2%80%99%C3%A9quipe%20est%20guid%C3%A9e%20par%20une%20vision%20%3A%20%2A%C3%AAtre%20la%20solution%20de%20gestion%20et%20de%20prise%20de%20rendez-vous%20simple%20%C3%A0%20utiliser%20et%20simple%20%C3%A0%20d%C3%A9ployer%20dans%20les%20administrations%20publiques%2A.%0A%0A%23%23%20Notre%20mission%0A%0ADonner%20la%20possibilit%C3%A9%20%C3%A0%20tout%20agent%20qui%20le%20souhaite%2C%20%C3%A0%20un%20groupe%20d%E2%80%99agents%2C%20%C3%A0%20une%20administration%20ou%20%C3%A0%20l%E2%80%99occasion%20d%E2%80%99une%20politique%20publique%20locale%20ou%20nationale%2C%20de%20g%C3%A9rer%20ses%20rendez-vous%20et%20proposer%20ses%20disponibilit%C3%A9s%20aux%20usagers%20en%20pr%C3%A9sentiel%20ou%20%C3%A0%20distance.%0A%0A%23%23%20Qui%20peut%20l%E2%80%99utiliser%20%3F%0A%0A%0A%2A%2AAdministrations%20de%20l%E2%80%99%C3%89tat%2A%2A%0A%0AAdministrations%20d%C3%A9centralis%C3%A9es%2C%20agences%20nationales%20ou%20minist%C3%A8res%2C%20la%20solution%20est%20ouverte%20%C3%A0%20l%E2%80%99ensemble%20des%20services%20de%20l%E2%80%99%C3%89tat.%0A%0A%2A%2ACollectivit%C3%A9s%20territoriales%2A%2A%0A%0AServices%20communaux%2C%20d%C3%A9partementaux%20ou%20r%C3%A9gionaux%2C%20la%20solution%20est%20ouverte%20%C3%A0%20toutes%20les%20comp%C3%A9tences%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AOp%C3%A9rateurs%20publics%2A%2A%0A%0ALa%20solution%20est%20ouverte%20aux%20op%C3%A9rateurs%20publics%20nationaux%20comme%20aux%20structures%20mutualisatrices%20territoriales.%0A%0A%23%23%20Les%20probl%C3%A8mes%20%C3%A0%20r%C3%A9soudre%0ALe%20rendez-vous%20est%20omnipr%C3%A9sent%20dans%20la%20fonction%20publique%20%E2%80%94%20tant%20au%20sein%20des%20collectivit%C3%A9s%20territoriales%2C%20des%20services%20de%20l%E2%80%99%C3%89tat%20que%20des%20op%C3%A9rateurs%20%E2%80%94%20pour%20permettre%20un%20temps%20d%E2%80%99%C3%A9changes%20entre%20un%20agent%20et%20un%20usager.%20C%E2%80%99est%20une%20t%C3%A2che%20basique%20mais%20qui%20engendre%20de%20nombreux%20probl%C3%A8mes%20m%C3%A9tiers%20et%20techniques%20dans%20le%20quotidien%20des%20agents.%0A%0A-%20Gestion%20administrative%20chronophage%0A-%20Des%20rendez-vous%20non%20honor%C3%A9s%20%F0%9F%90%B0%0A-%20Manque%20de%20souplesse%20pour%20l%E2%80%99usager%0A-%20Absence%20de%20donn%C3%A9es%20pour%20mesurer%20l%E2%80%99activit%C3%A9%0A-%20D%C3%A9pendance%20aux%20solutions%20propri%C3%A9taires%0A%0A%23%23%20Les%20solutions%0A%0A%2A%2A%E2%9E%9C%20Centralisez%20les%20informations%2A%2A%0A%0ALes%20informations%20des%20usagers%2C%20des%20disponiblit%C3%A9s%20et%20des%20rendez-vous%20sont%20centralis%C3%A9es%20pour%20simplifier%20le%20quotidien%20des%20agents%20et%20permettre%20une%20r%C3%A9ponse%20rapide%20aux%20usagers.%0A%0A%2A%2A%E2%9E%9C%20%C3%89viter%20les%20rendez-vous%20non%20honor%C3%A9s%2A%2A%0A%0ADes%20notifications%20SMS%20et%20emails%20de%20cr%C3%A9ation%2C%20de%20modification%20et%20de%20rappel%20de%20rendez-vous%20sont%20envoy%C3%A9es%20automatiquement%20aux%20usagers%20limitant%20le%20nombre%20de%20rendez-vous%20non%20honor%C3%A9s.%0A%0A%2A%2A%E2%9E%9C%20Ouvrir%20vos%20disponibilit%C3%A9s%20en%20ligne%2A%2A%0A%0AVotre%20administration%20peut%20rendre%20accessible%20ses%20disponibilit%C3%A9s%20en%20ligne.%20Les%20usagers%20peuvent%20planifier%20des%20rendez-vous%20t%C3%A9l%C3%A9phonique%2C%20en%20visioconf%C3%A9rence%20ou%20en%20pr%C3%A9sentiel%20en%20choisissant%20leur%20pr%C3%A9f%C3%A9rence%20selon%20vos%20disponiblit%C3%A9s.%0A%0A%2A%2A%E2%9E%9C%20Am%C3%A9liorer%20l%E2%80%99exp%C3%A9rience%20usager%2A%2A%0A%0AL%E2%80%99interface%20%28aux%20couleurs%20de%20la%20charte%20de%20l%E2%80%99%C3%89tat%29%20propose%20un%20parcours%20simple%20et%20rapide%20pour%20les%20usagers%20facilitant%20ainsi%20les%20d%C3%A9marches%20avec%20vos%20services.%20Les%20usagers%20peuvent%20modifier%20ou%20annuler%20un%20rendez-vous%20en%20autonomie.%0A%0A%2A%2A%E2%9E%9C%20Produire%20des%20statistiques%2A%2A%0A%0ALes%20donn%C3%A9es%20des%20rendez-vous%20sont%20centralis%C3%A9es%20et%20permettent%20la%20production%20de%20statistiques%20pour%20mesurer%20votre%20activit%C3%A9%20et%20accompagner%20votre%20prise%20de%20d%C3%A9cision.%0A%0A%23%23%20L%27utilisation%0A%0ARDV%20Service%20Public%20c%27est%20%2A%2A2%20715%20045%20rendez-vous%20planifi%C3%A9s%2A%2A%20dans%20%2A%2A990%20structures%2A%2A%20pour%20%2A%2A9000%20utilisateurs%2A%2A.%20%0A%0A%23%23%20Notre%20histoire%0A%0ALe%20point%20de%20d%C3%A9part%20est%20une%20investigation%20men%C3%A9e%20en%202018%20par%20le%20d%C3%A9partement%20du%20Pas-De-Calais%20qui%20a%20mis%20en%20%C3%A9vidence%20les%20difficult%C3%A9s%20de%20prise%20de%20rendez-vous%20dans%20les%20services%20m%C3%A9dico-sociaux%20du%20d%C3%A9partement.%0A%0A%2A%2ADe%202019%20%C3%A0%202022%2A%2A%0A%0AAvec%20l%E2%80%99accompagnement%20de%20la%20DINUM%20puis%20de%20l%E2%80%99ANCT%2C%2013%20d%C3%A9partements%20ont%20form%C3%A9%20un%20consortium%20pour%20d%C3%A9velopper%20une%20solution%20num%C3%A9rique%20commune%20appel%C3%A9e%20RDV%20Solidarit%C3%A9s.%0A%0A%2A%2AEn%202023%2A%2A%0A%0AConsciente%20du%20potentiel%20de%20la%20solution%20num%C3%A9rique%20au%20sein%20des%20d%E2%80%99autres%20cat%C3%A9gories%20d%E2%80%99administration%2C%20l%E2%80%99%C3%A9quipe%20teste%20la%20solution%20aupr%C3%A8s%20de%20structures%20vari%C3%A9es%20pour%20valider%20l%E2%80%99int%C3%A9r%C3%AAt%20d%E2%80%99une%20solution%20g%C3%A9n%C3%A9rique.%0A%0A%2A%2AEn%202024%2A%2A%0A%0AL%E2%80%99%C3%A9quipe%20assume%20l%E2%80%99intention%20de%20la%20g%C3%A9n%C3%A9ricit%C3%A9%20et%20s%E2%80%99engage%20dans%20une%20roadmap%20%C3%A0%20la%20mission%20et%20la%20vision%20renouvel%C3%A9e.%20La%20solution%20est%20appel%C3%A9e%20RDV%20Service%20Public.%20", + "name": "transport.data.gouv.fr", + "pitch": "Faciliter l'accès à l’information voyageur pour tous, partout en France, grâce à l’ouverture des données.", + "stats_url": "https://transport.data.gouv.fr/stats", + "budget_url": "https://transport.data.gouv.fr/budget", + "link": "https://transport.data.gouv.fr", + "repository": "https://github.com/etalab/transport-site", + "contact": "contact@transport.data.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20que%20r%C3%A9sout%20transport.data.gouv.fr%0A%0ADans%20un%20pays%20avec%20plus%20de%20330%20r%C3%A9seaux%20de%20transports%20urbains%20et%20des%20dizaines%20de%20milliers%20de%20points%20d%E2%80%99arr%C3%AAts%2C%20il%20est%20parfois%20difficile%20de%20trouver%20le%20meilleur%20moyen%20de%20se%20rendre%20d%E2%80%99un%20point%20A%20%C3%A0%20un%20point%20B.%20%0A%0ATransport.data.gouv.fr%20a%20pour%20mission%20de%20faciliter%20les%20d%C3%A9placements%20des%20usagers%20en%20permettant%20%C3%A0%20tout%20un%20chacun%20de%20d%C3%A9terminer%20le%20plus%20simplement%20possible%20la%20meilleure%20option%20de%20mobilit%C3%A9%20lors%20d%E2%80%99un%20trajet%20%3A%20bus%2C%20tram%2C%20ferry%2C%20m%C3%A9tro%2C%20v%C3%A9lo%2C%20voiture%E2%80%A6%20ou%20tout%20%C3%A0%20la%20fois%20%21%0A%0ALes%20donn%C3%A9es%20de%20transport%2C%20lorsqu%27elles%20existent%2C%20sont%20expos%C3%A9es%20sur%20diff%C3%A9rents%20portails%20de%20diffusion%20de%20donn%C3%A9es%20ouvertes.%20transport.data.gouv.fr%20regroupe%20sur%20une%20m%C3%AAme%20plateforme%2C%20toutes%20les%20donn%C3%A9es%20pertinentes%20pour%20am%C3%A9liorer%20l%E2%80%99information%20dont%20dispose%20les%20usagers%20%E2%80%93%20par%20exemple%20les%20horaires%20des%20lignes%20de%20bus%20partout%20en%20France%2C%20ou%20encore%20la%20localisation%20des%20stations%20de%20v%C3%A9los%20en%20libre%20service.%20Ces%20donn%C3%A9es%20sont%20mises%20%C3%A0%20disposition%20de%20mani%C3%A8re%20ouverte%20avec%20un%20format%20et%20une%20licence%20harmonis%C3%A9es%20afin%20de%20faciliter%20la%20diffusion%20d%E2%80%99une%20information%20voyageur%20fiable%20sur%20tous%20les%20services%20%28planification%20de%20trajets%2C%20covoiturage%E2%80%A6%29%20utilis%C3%A9s%20par%20le%20grand%20public.%0A%0A%23%23%20Les%20r%C3%A9sultats%0A%0AAvec%20plus%20de%20350%20jeux%20de%20donn%C3%A9es%20r%C3%A9f%C3%A9renc%C3%A9s%2C%20transport.data.gouv.fr%20est%20une%20des%20plateformes%20de%20donn%C3%A9es%20de%20transport%20les%20plus%20pl%C3%A9biscit%C3%A9es%20par%20les%20r%C3%A9utilisateurs%20de%20donn%C3%A9es%20et%20acteurs%20de%20mobilit%C3%A9%20comme%20les%20applications%20grand%20public%20de%20calculateurs%20d%E2%80%99itin%C3%A9raires.%20A%20ce%20jour%2C%20elle%20couvre%20plus%20de%2090%25%20de%20la%20population%20fran%C3%A7aise%20dans%2014%20r%C3%A9gions.%0A%0ALes%20statistiques%20compl%C3%A8tes%20sont%20disponibles%20%C3%A0%20https%3A%2F%2Ftransport.data.gouv.fr%2Fstats.%0A%0A%23%23%20Int%C3%A9gration%20de%20transport.data.gouv.fr%20au%20sein%20du%20minist%C3%A8re%20charg%C3%A9%20des%20Transports%0A%0AApr%C3%A8s%203%20ans%20et%20demi%20d%27incubation%20au%20sein%20de%20la%20DINUM%2C%20%5Btransport.data.gouv.fr%20quitte%20le%20programme%20beta.gouv.fr%20et%20est%20officiellement%20transf%C3%A9r%C3%A9%20le%205%20mars%202021%5D%28https%3A%2F%2Fwww.ecologie.gouv.fr%2Ftransportdatagouvfr-lopen-data-au-service-tous-voyageurs-france%29%20%C3%A0%20la%20DGITM%20au%20sein%20du%20minist%C3%A8re%20charg%C3%A9%20des%20Transports.%0A%0AAvec%20transport.data.gouv.fr%2C%20le%20minist%C3%A8re%20charg%C3%A9%20des%20Transports%20se%20dote%20d%E2%80%99un%20outil%20permettant%20de%20conduire%20des%20politiques%20ambitieuses%20en%20mati%C3%A8re%20de%20donn%C3%A9es%20publiques%20ouvertes%20au%20service%20de%20la%20mobilit%C3%A9%20de%20tous%20les%20voyageurs%20et%20favorise%20ainsi%20le%20d%C3%A9veloppement%20de%20services%20num%C3%A9riques%20innovants%20%C3%A0%20fort%20impact.%20La%20facilitation%20de%20l%E2%80%99information%20voyageur%20pose%20la%20premi%C3%A8re%20brique%20de%20la%20mise%20au%20point%20des%20applications%20de%20type%20%C2%AB%20Mobility%20as%20a%20Service%20%C2%BB%2C%20pr%C3%A9vues%20par%20l%E2%80%99article%2028%20de%20la%20Loi%20d%E2%80%99orientation%20des%20mobilit%C3%A9s%2C%20qui%20entre%20en%20vigueur%20le%201er%20juillet%202021.%0A%0A%0A%0A", "events": [ { "name": "national_impact", - "date": "2022-12-31", + "date": "2021-12-31", "comment": "" } ], "phases": [ { "name": "investigation", - "start": "2018-01-18", + "start": "2017-07-03", "end": "" }, { "name": "construction", - "start": "2018-01-18", + "start": "2017-10-01", "end": "" }, { "name": "acceleration", - "start": "2019-04-01", + "start": "2018-09-01", + "end": "" + }, + { + "name": "transfer", + "start": "2020-09-01", + "end": "" + }, + { + "name": "success", + "start": "2021-03-05", "end": "" } ], "sponsors": [ - "anct", - "dinum" + "dgitm", + "dinum", + "mtes", + "sgpe" ], "thematiques": [ - "Collectivités", - "Social", - "Administratif", - "Inclusion numérique" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/www-rdv-solidarites-fr/", - "accessibility_status": "non conforme" + "Transports", + "Open-Data", + "Inclusion numérique", + "Territoires" + ] }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "anct" + "id": "mtes" } } } @@ -236176,93 +229228,93 @@ { "width": 1920, "height": 1080, - "url": "https://www.rdv-solidarites.fr", - "size": 764.169, - "nodes": 163, - "requests": 22, - "grade": "A", - "score": 83, - "ges": 1.34, - "water": 2.01, + "url": "https://transport.data.gouv.fr", + "size": 2303.051, + "nodes": 464, + "requests": 97, + "grade": "D", + "score": 49, + "ges": 2.02, + "water": 3.03, "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:15:31.418880", - "page_type": null + "date": "2024-11-17 08:29:04.900060", + "page_type": "website" } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "C+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, + "httpGrade": "D+", + "apdex": 0.978, + "apdexGrade": "C", + "uptime": 99.777, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-11T15:55:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, + "testsslExpireDate": "2025-01-18T03:30:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "C", + "cookiesCount": 3, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 1, + "lighthouse_performance": 0.72, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.9, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "A", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "A", - "dsfrGrade": "A" + "declaration-rgpd-pc": "F", + "ecoindexGrade": "D", + "dsfrGrade": "F" } }, { "404": null, - "url": "https://osmose.numerique.gouv.fr", + "url": "https://webinaire.numerique.gouv.fr", "category": "dinum", "http": { - "url": "https://osmose.numerique.gouv.fr", + "url": "https://webinaire.numerique.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:29:34 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 02:10:03 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "no-cache, no-store, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html;charset=UTF-8", - "Date": "Sun, 20 Oct 2024 02:29:33 GMT", - "Expires": "0", - "Feature-Policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", - "Permissions-Policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", - "Pragma": "no-cache", - "Referrer-Policy": "strict-origin", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains; preload", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 02:10:02 GMT", + "Server": "nginx", + "Strict-Transport-Security": "max-age=15552000;preload", "Transfer-Encoding": "chunked", + "Vary": "Cookie", "X-Content-Type-Options": "nosniff", - "X-XSS-Protection": "1" + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Robots-Tag": "none", + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 57047939, - "score": 55, - "start_time": "Sun, 20 Oct 2024 02:29:31 GMT", + "scan_id": 57047577, + "score": 75, + "start_time": "Sun, 20 Oct 2024 02:10:01 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { @@ -236284,23 +229336,12 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "JSESSIONID": { - "domain": "osmose.numerique.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - } - }, - "sameSite": false + "data": null, + "sameSite": null }, "pass": true, - "result": "cookies-secure-with-httponly-sessions", - "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", + "result": "cookies-not-found", + "score_description": "No cookies detected", "score_modifier": 0 }, "cross-origin-resource-sharing": { @@ -236322,12 +229363,12 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", + "destination": "https://webinaire.numerique.gouv.fr/home", "redirects": true, "route": [ - "http://osmose.numerique.gouv.fr/", - "https://osmose.numerique.gouv.fr/", - "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F" + "http://webinaire.numerique.gouv.fr/", + "https://webinaire.numerique.gouv.fr/", + "https://webinaire.numerique.gouv.fr/home" ], "status_code": 200 }, @@ -236340,22 +229381,22 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000; includeSubdomains; preload", - "includeSubDomains": true, - "max-age": 31536000, + "data": "max-age=15552000;preload", + "includeSubDomains": false, + "max-age": 15552000, "preload": true, "preloaded": false }, @@ -236390,78 +229431,86 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1" + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-enabled", - "score_description": "Deprecated X-XSS-Protection header set to \"1\"", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "t1r8", - "url": "https://osmose.numerique.gouv.fr", - "alias": null, + "token": "or75", + "url": "https://webinaire.numerique.gouv.fr", + "alias": "", "last_status": 200, - "uptime": 97.916, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T02:04:51Z", + "up_since": "2024-11-28T03:24:39Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ + "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T09:35:01Z", - "next_check_at": "2024-11-24T09:36:00Z", - "created_at": "2024-01-15T13:37:42Z", + "last_check_at": "2024-12-01T09:10:44Z", + "next_check_at": "2024-12-01T09:15:42Z", + "created_at": "2022-08-21T11:40:09Z", "mute_until": null, - "favicon_url": "https://osmose.numerique.gouv.fr/upload/docs/image/png/2020-03/profil_picture_carre_2020-03-30_14-38-45_732.png?v=20241115150137", + "favicon_url": "https://webinaire.numerique.gouv.fr/static/images/favicon.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T09:30:06Z", - "expires_at": "2025-04-03T21:59:59Z", + "tested_at": "2024-12-01T08:50:52Z", + "expires_at": "2025-11-18T22:59:59Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 448, + "redirect": 298, "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 166, - "total": 614 + "connection": 96, + "handshake": 100, + "response": 105, + "total": 599 } }, - "uptimeGrade": "C", + "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "osmose.numerique.gouv.fr", + "host": "webinaire.numerique.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "995", "open_ports": [ + { + "service": { + "name": "ssh", + "id": "22", + "vulnerabilities": [] + } + }, { "service": { "name": "http", @@ -236477,86 +229526,93 @@ "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "upnp", + "id": "5000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https-alt", + "id": "8443", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236564,7 +229620,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236572,7 +229628,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236580,7 +229636,7 @@ }, { "id": "cipherlist_LOW", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236588,7 +229644,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236596,7 +229652,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236604,497 +229660,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 60 days" + "finding": "352 >= 60 days" }, { "id": "cert_notBefore", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "2024-03-27 23:00" + "finding": "2024-11-18 23:00" }, { "id": "cert_notAfter", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "2025-04-03 21:59" + "finding": "2025-11-18 22:59" }, { "id": "cert_extlifeSpan", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/wildca.crl http://crl.certigna.fr/wildca.crl" }, { "id": "cert_ocspURL", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "http://wildca.ocsp.certigna.fr http://wildca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "Certigna Wild CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "211F3083B9E77A01D0828565897A1CE945EEAAE04942CCC369087D8080C9E4A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:06" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "2025-11-22 11:06" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "Certigna Wild CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "302 ('/')" + "finding": "302 FOUND ('/')" }, { "id": "HTTP_clock_skew", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "1732440870" + "finding": "1733044225" }, { "id": "HSTS_time", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "1 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "cookie_secure", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "cookie_httponly", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "id": "X-Frame-Options", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" + "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Permissions-Policy", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()" - }, { "id": "X-XSS-Protection", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "Referrer-Policy", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "strict-origin" + "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -237102,7 +230130,7 @@ }, { "id": "heartbleed", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -237111,7 +230139,7 @@ }, { "id": "CCS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -237120,16 +230148,16 @@ }, { "id": "ticketbleed", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -237138,7 +230166,7 @@ }, { "id": "secure_renego", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -237146,7 +230174,7 @@ }, { "id": "secure_client_renego", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -237155,7 +230183,7 @@ }, { "id": "CRIME_TLS", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -237164,7 +230192,7 @@ }, { "id": "BREACH", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -237173,7 +230201,7 @@ }, { "id": "POODLE_SSL", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -237182,14 +230210,14 @@ }, { "id": "fallback_SCSV", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -237198,7 +230226,7 @@ }, { "id": "FREAK", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -237207,7 +230235,7 @@ }, { "id": "DROWN", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -237216,16 +230244,16 @@ }, { "id": "DROWN_hint", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C34BC8AA0F012E75F42CFE92D4C3206F46E4AEA2A908CED4BACD0A9392C9A3E9" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6C708A01DF459CF67F74C53B575EAA6D37D0EC7EBC4A4B64A1EE737863DF0840" }, { "id": "LOGJAM", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -237234,16 +230262,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -237252,7 +230280,7 @@ }, { "id": "LUCKY13", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -237261,7 +230289,7 @@ }, { "id": "winshock", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -237270,7 +230298,7 @@ }, { "id": "RC4", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -237279,396 +230307,381 @@ }, { "id": "clientsimulation-android_60", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "53" + "finding": "90" } ], "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Titillium+Web:wght@100;200;300;400;500;600;700;800;900&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Raleway:wght@100;200;300;400;500;600;700;800;900&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, + "trackers": [], + "cookies": [ { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Noto+Serif+SC:wght@100;200;300;400;500;600;700;800;900&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } + "name": "_pk_ses.15.66ef", + "value": "1", + "domain": "webinaire.numerique.gouv.fr", + "path": "/", + "expires": 1733045926, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 }, { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Cormorant+Garamond:wght@100;200;300;400;500;600;700;800;900&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - } - ], - "cookies": [ - { - "name": "JSESSIONID", - "value": "A3F576791D6478EE6C358BD8B33E0C60.n1", - "domain": "osmose.numerique.gouv.fr", + "name": "_pk_id.15.66ef", + "value": "b92048e7ab495934.1733044126.", + "domain": "webinaire.numerique.gouv.fr", "path": "/", - "expires": -1, - "size": 45, - "httpOnly": true, - "secure": true, - "session": true, + "expires": 1766999326, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { - "cache-control": "no-cache, no-store, must-revalidate", + "connection": "keep-alive", "content-encoding": "gzip", - "content-type": "text/html;charset=UTF-8", - "date": "Sun, 24 Nov 2024 09:33:15 GMT", - "expires": "0", - "feature-policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", - "permissions-policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", - "pragma": "no-cache", - "referrer-policy": "strict-origin", - "strict-transport-security": "max-age=31536000; includeSubdomains; preload", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 09:08:44 GMT", + "server": "nginx", + "strict-transport-security": "max-age=15552000;preload", + "transfer-encoding": "chunked", + "vary": "Cookie", "x-content-type-options": "nosniff", - "x-xss-protection": "1" + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-robots-tag": "none", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "osmose.numerique.gouv.fr", - "ip": "148.253.96.234", + "hostname": "webinaire.numerique.gouv.fr", + "ip": "51.15.207.28", "geoip": { "continent": { "code": "EU", @@ -237710,302 +230723,66 @@ "is_in_european_union": true, "iso_code": "FR", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "142.251.163.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://osmose.numerique.gouv.fr/": { - "status": 302 - }, - "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "jalios", - "name": "Jalios", - "description": null, - "confidence": 100, - "version": null, - "icon": "Jalios.png", - "website": "https://www.jalios.com", - "cpe": null, - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ] - }, - { - "slug": "java", - "name": "Java", - "description": "Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.", - "confidence": 100, - "version": null, - "icon": "Java.svg", - "website": "https://java.com", - "cpe": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "3.4.1", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ] - }, - { - "slug": "toastr", - "name": "toastr", - "description": "toastr is a Javascript library for non-blocking notifications. The goal is to create a simple core library that can be customized and extended.", - "confidence": 100, - "version": "2.1.4", - "icon": "toastr.png", - "website": "https://github.com/CodeSeven/toastr", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "prototype", - "name": "Prototype", - "description": "Prototype is a JavaScript Framework that aims to ease development of web applications.", - "confidence": 100, - "version": "1.7.2", - "icon": "Prototype.png", - "website": "https://www.prototypejs.org", - "cpe": "cpe:2.3:a:prototypejs:prototype:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "handlebars", - "name": "Handlebars", - "description": "Handlebars is a JavaScript library used to create reusable webpage templates.", - "confidence": 100, - "version": "4.7.7", - "icon": "Handlebars.svg", - "website": "https://handlebarsjs.com", - "cpe": "cpe:2.3:a:handlebars.js_project:handlebars.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "lightbox", - "name": "Lightbox", - "description": "Lightbox is small javascript library used to overlay images on top of the current page.", - "confidence": 100, - "version": null, - "icon": "Lightbox.png", - "website": "https://lokeshdhakar.com/projects/lightbox2/", - "cpe": "cpe:2.3:a:lightbox_photo_gallery_project:lightbox_photo_gallery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "twitter-emoji-twemoji", - "name": "Twitter Emoji (Twemoji)", - "description": "Twitter Emoji is a set of open-source emoticons and emojis for Twitter, TweetDeck, and also for Android and iOS versions of the application.", - "confidence": 100, - "version": "14.0.2", - "icon": "default.svg", - "website": "https://twitter.github.io/twemoji/", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ] - }, - { - "slug": "moment-js", - "name": "Moment.js", - "description": "Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.", - "confidence": 100, - "version": "2.29.4", - "icon": "Moment.js.svg", - "website": "https://momentjs.com", - "cpe": "cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "jquery-ui", - "name": "jQuery UI", - "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", - "confidence": 100, - "version": "1.13.2", - "icon": "jQuery UI.svg", - "website": "https://jqueryui.com", - "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "jquery-migrate", - "name": "jQuery Migrate", - "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", - "confidence": 100, - "version": "3.4.0", - "icon": "jQuery.svg", - "website": "https://github.com/jquery/jquery-migrate", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } } - ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://webinaire.numerique.gouv.fr/": { + "status": 302 }, + "https://webinaire.numerique.gouv.fr/home": { + "status": 200 + } + }, + "technologies": [ { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", "confidence": 100, - "version": "3.6.3", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ] }, { - "slug": "google-font-api", - "name": "Google Font API", - "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "Google Font API.svg", - "website": "https://google.com/fonts", - "cpe": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" + "id": 10, + "slug": "analytics", + "name": "Analytics" } ] }, @@ -238025,40 +230802,6 @@ "name": "Security" } ] - }, - { - "slug": "prism", - "name": "Prism", - "description": "Prism is an extensible syntax highlighter.", - "confidence": 100, - "version": null, - "icon": "Prism.svg", - "website": "https://prismjs.com", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -238066,11 +230809,11 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://osmose.numerique.gouv.fr/", - "finalUrl": "https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", - "fetchTime": "2024-11-24T09:32:50.382Z", + "requestedUrl": "https://webinaire.numerique.gouv.fr/", + "finalUrl": "https://webinaire.numerique.gouv.fr/home", + "fetchTime": "2024-12-01T09:08:17.414Z", "runWarnings": [ - "The page may not be loading as expected because your test URL (https://osmose.numerique.gouv.fr/) was redirected to https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F. Try testing the second URL directly." + "The page may not be loading as expected because your test URL (https://webinaire.numerique.gouv.fr/) was redirected to https://webinaire.numerique.gouv.fr/home. Try testing the second URL directly." ], "categories": { "performance": { @@ -238081,7 +230824,7 @@ "snapshot" ], "id": "performance", - "score": 0.45 + "score": 0.49 }, "accessibility": { "title": "Accessibility", @@ -238092,7 +230835,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.85 + "score": 0.83 }, "best-practices": { "title": "Best Practices", @@ -238113,7 +230856,7 @@ "snapshot" ], "id": "seo", - "score": 0.83 + "score": 0.75 }, "pwa": { "title": "PWA", @@ -238123,7 +230866,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.3 } }, "audits": { @@ -238133,53 +230876,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 24776, + "numericValue": 12187, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 24731, - "firstMeaningfulPaint": 24776, - "largestContentfulPaint": 24776, - "interactive": 24776, - "speedIndex": 24731, - "totalBlockingTime": 21, - "maxPotentialFID": 91, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, + "firstContentfulPaint": 7904, + "firstMeaningfulPaint": 7904, + "largestContentfulPaint": 8032, + "interactive": 12187, + "speedIndex": 8876, + "totalBlockingTime": 25, + "maxPotentialFID": 89, + "cumulativeLayoutShift": 0.016947645399305555, + "cumulativeLayoutShiftMainFrame": 0.016947645399305555, + "totalCumulativeLayoutShift": 0.016947645399305555, "observedTimeOrigin": 0, - "observedTimeOriginTs": 436480975, + "observedTimeOriginTs": 402665873, "observedNavigationStart": 0, - "observedNavigationStartTs": 436480975, - "observedFirstPaint": 1288, - "observedFirstPaintTs": 437768650, - "observedFirstContentfulPaint": 1288, - "observedFirstContentfulPaintTs": 437768650, - "observedFirstContentfulPaintAllFrames": 1288, - "observedFirstContentfulPaintAllFramesTs": 437768650, - "observedFirstMeaningfulPaint": 1288, - "observedFirstMeaningfulPaintTs": 437768650, - "observedLargestContentfulPaint": 1288, - "observedLargestContentfulPaintTs": 437768650, - "observedLargestContentfulPaintAllFrames": 1288, - "observedLargestContentfulPaintAllFramesTs": 437768650, - "observedTraceEnd": 3767, - "observedTraceEndTs": 440247883, - "observedLoad": 1370, - "observedLoadTs": 437850695, - "observedDomContentLoaded": 1278, - "observedDomContentLoadedTs": 437758568, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1301, - "observedFirstVisualChangeTs": 437781975, - "observedLastVisualChange": 1368, - "observedLastVisualChangeTs": 437848975, - "observedSpeedIndex": 1339, - "observedSpeedIndexTs": 437819653 + "observedNavigationStartTs": 402665873, + "observedFirstPaint": 1177, + "observedFirstPaintTs": 403842415, + "observedFirstContentfulPaint": 1177, + "observedFirstContentfulPaintTs": 403842415, + "observedFirstContentfulPaintAllFrames": 1177, + "observedFirstContentfulPaintAllFramesTs": 403842415, + "observedFirstMeaningfulPaint": 1177, + "observedFirstMeaningfulPaintTs": 403842415, + "observedLargestContentfulPaint": 1177, + "observedLargestContentfulPaintTs": 403842415, + "observedLargestContentfulPaintAllFrames": 1177, + "observedLargestContentfulPaintAllFramesTs": 403842415, + "observedTraceEnd": 6165, + "observedTraceEndTs": 408831341, + "observedLoad": 3050, + "observedLoadTs": 405716186, + "observedDomContentLoaded": 1171, + "observedDomContentLoadedTs": 403837368, + "observedCumulativeLayoutShift": 0.016947645399305555, + "observedCumulativeLayoutShiftMainFrame": 0.016947645399305555, + "observedTotalCumulativeLayoutShift": 0.016947645399305555, + "observedFirstVisualChange": 1184, + "observedFirstVisualChangeTs": 403849873, + "observedLastVisualChange": 1801, + "observedLastVisualChangeTs": 404466873, + "observedSpeedIndex": 1212, + "observedSpeedIndexTs": 403878011 }, { "lcpInvalidated": false @@ -238197,23 +230940,23 @@ "type": "debugdata", "items": [ { - "numRequests": 16, - "numScripts": 1, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 434, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numRequests": 60, + "numScripts": 11, + "numStylesheets": 8, + "numFonts": 6, + "numTasks": 1431, + "numTasksOver10ms": 4, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.669, - "throughput": 72585177.57010785, - "maxRtt": 81.669, - "maxServerLatency": 3.6910000000000025, - "totalByteWeight": 5323702, - "totalTaskTime": 245.80299999999957, - "mainDocumentTransferSize": 6317 + "rtt": 0, + "throughput": 15312141.82237862, + "maxRtt": 106.192, + "maxServerLatency": 137.472, + "totalByteWeight": 2731313, + "totalTaskTime": 275.2899999999983, + "mainDocumentTransferSize": 3431 } ] } @@ -238233,31 +230976,28 @@ }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251951" + "declarationUrl": "https://webinaire.numerique.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", "maxScore": 4, - "score": 4, - "missingWords": [], + "score": 3, + "missingWords": [ + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement" + ], "missingTrackers": [], - "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251952" + "declarationUrl": "https://webinaire.numerique.gouv.fr/mentions_legales" }, { "slug": "pc", "mention": "Données personnelles", - "maxScore": 5, - "score": 2, - "missingWords": [ - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [ - "googlefonts" - ], - "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251953" + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://webinaire.numerique.gouv.fr/donnees_personnelles" } ], "betagouv": null, @@ -238265,88 +231005,95 @@ { "width": 1920, "height": 1080, - "url": "https://osmose.numerique.gouv.fr", - "size": 3360.423, - "nodes": 155, - "requests": 24, + "url": "https://webinaire.numerique.gouv.fr", + "size": 1481.398, + "nodes": 125, + "requests": 23, "grade": "B", - "score": 75, - "ges": 1.5, - "water": 2.25, + "score": 80, + "ges": 1.4, + "water": 2.1, "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:29:52.771234", + "date": "2024-12-01 09:05:10.233140", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": false + "detected": true }, "summary": { - "httpGrade": "C", + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", - "uptime": 97.916, - "uptimeGrade": "C", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 5, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-04-03T21:59:00.000Z", + "testsslExpireDate": "2025-11-18T22:59:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 4, - "lighthouse_performance": 0.45, + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.49, "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.85, - "lighthouse_accessibilityGrade": "A", + "lighthouse_accessibility": 0.83, + "lighthouse_accessibilityGrade": "B", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, + "lighthouse_seo": 0.75, "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "F", "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "A", "ecoindexGrade": "B", - "dsfrGrade": "F" + "dsfrGrade": "A" } }, { "404": null, - "url": "https://www.data.gouv.fr", - "category": "dinum_produits_interministeriels", - "betaId": "data.gouv.fr", + "url": "https://www.rdv-solidarites.fr", + "category": "anct", + "betaId": "rdv-service-public", "http": { - "url": "https://www.data.gouv.fr", + "url": "https://www.rdv-solidarites.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:42:22 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 01:49:06 GMT", + "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "cache-control": "public", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 20 Oct 2024 03:42:19 GMT", - "pragma": "public", - "server": "nginx", - "set-cookie": "session=d2~eyJjc3JmX3Rva2VuIjoiN2IxYTIxMjhjYmE1MTAxYTEyNGE4MmE3ODRkYzc4Y2U4MzU3NDhjOSJ9.ZxR8Gw.bwwqnG6OK53U1B9QtHmrKmxCycs; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding, Cookie", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-xss-protection": "1; mode=block" + "Cache-Control": "max-age=0, private, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 01:49:06 GMT", + "ETag": "W/\"3dee2b5d88913d3929aa1b1af485e961\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "Referrer-Policy": "strict-origin-when-cross-origin", + "Set-Cookie": "_rdv_sp_session=ksPxv2R2dhwtWPf2HkyUEyrigvu7U3UE%2Fo3V7u3mn%2F5xe0Go9JP3d8HFYlgYHKB%2B4KqQCVpqeAs3cTwnTIfBv2zFVdRnGfEv71Ts9cQWyDKZbBG1e1vjCvLuKdVJUI50ULIqkfbhKh1Z06SLVSkeEJrklyjsxWxrDg%2BXCJiFhvN%2FGa3aKiKMyudXJtMaFsHGAgt2s5M4PpciqZWtkqyG7jWglXeuRyvSGFqhvTuoEXcfF9avP5hf2G5ObthhzXmGP7k6bG8y1G6X2y17Ebvw1xXEi1pZpizl%2Bhv4X95P1aOYmSXu670zaFJDjkaw--sMM3dawAAXer0D27--hTbjlztkyWOw1Mju1lRE5g%3D%3D; path=/; expires=Sun, 20 Oct 2024 09:49:06 GMT; secure; HttpOnly; SameSite=Lax", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "Accept", + "X-Content-Type-Options": "nosniff", + "X-Download-Options": "noopen", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "c1886615-eafe-4b91-823d-e2a072858696, c1886615-eafe-4b91-823d-e2a072858696", + "X-Runtime": "0.011059", + "X-XSS-Protection": "0" }, - "scan_id": 57049486, - "score": 55, - "start_time": "Sun, 20 Oct 2024 03:42:17 GMT", + "scan_id": 57047240, + "score": 60, + "start_time": "Sun, 20 Oct 2024 01:49:05 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -238357,25 +231104,87 @@ "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "child-src": [ + "blob:", + "'self'" + ], + "connect-src": [ + "etalab-tiles.fr", + "api-adresse.data.gouv.fr", + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "data:", + "'self'" + ], + "frame-src": [ + "headway-widget.net", + "*.instatus.com", + "'self'" + ], + "img-src": [ + "data:", + "voxusagers.numerique.gouv.fr", + "'self'" + ], + "media-src": [ + "rdv-insertion-medias-production.s3.fr-par.scw.cloud", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'unsafe-inline'", + "cdn.headwayapp.co", + "api.mapbox.com", + "'self'" + ], + "style-src": [ + "api.mapbox.com", + "'unsafe-inline'", + "cdn.headwayapp.co", + "*.bootstrapcdn.com", + "'self'" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { "data": { - "session": { - "domain": ".www.data.gouv.fr", - "expires": null, + "_rdv_sp_session": { + "domain": "www.rdv-solidarites.fr", + "expires": 1729417746, "httponly": true, "max-age": null, "path": "/", @@ -238410,12 +231219,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://www.data.gouv.fr/fr/", + "destination": "https://www.rdv-solidarites.fr/", "redirects": true, "route": [ - "http://www.data.gouv.fr/", - "https://www.data.gouv.fr/", - "https://www.data.gouv.fr/fr/" + "http://www.rdv-solidarites.fr/", + "https://www.rdv-solidarites.fr/" ], "status_code": 200 }, @@ -238428,685 +231236,128 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "strict-origin-when-cross-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, + "data": "max-age=63072000; includeSubDomains", + "includeSubDomains": true, + "max-age": 63072000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", "score_modifier": 0 }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "eh2b", - "url": "https://www.data.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T03:07:37Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T09:41:59Z", - "next_check_at": "2024-11-24T09:42:58Z", - "created_at": "2024-01-15T13:56:21Z", - "mute_until": null, - "favicon_url": "https://static.data.gouv.fr/_themes/gouvfr/img/favicon.png?_=6.0.3", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T09:38:02Z", - "expires_at": "2024-12-17T22:59:59Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.995, - "timings": { - "redirect": 660, - "namelookup": 0, - "connection": 125, - "handshake": 135, - "response": 196, - "total": 1117 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "www.data.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "9.2p1 Debian 2+deb12u3", - "vulnerabilities": [ - { - "cvss": "10.0", - "type": "githubexploit", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "is_exploit": "true" - }, - { - "cvss": "10.0", - "type": "githubexploit", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "cve", - "id": "CVE-2023-38408", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "type": "cve", - "id": "CVE-2023-28531", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "packetstorm", - "id": "PACKETSTORM:179290", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "cve", - "id": "CVE-2024-6387", - "is_exploit": "false" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "zdt", - "id": "1337DAY-ID-39674", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "is_exploit": "true" - }, - { - "cvss": "8.1", - "type": "githubexploit", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "type": "seebug", - "id": "SSV:92579", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "type": "packetstorm", - "id": "PACKETSTORM:173661", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "type": "zdt", - "id": "1337DAY-ID-26576", - "is_exploit": "true" - }, - { - "cvss": "6.5", - "type": "cve", - "id": "CVE-2023-51385", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "type": "cve", - "id": "CVE-2023-48795", - "is_exploit": "false" - }, - { - "cvss": "5.5", - "type": "cve", - "id": "CVE-2023-51384", - "is_exploit": "false" - }, - { - "cvss": "0.0", - "type": "packetstorm", - "id": "PACKETSTORM:140261", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "type": "githubexploit", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "type": "githubexploit", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "is_exploit": "true" - } - ] - } + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "v8ed", + "url": "https://www.rdv-solidarites.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-27T23:56:43Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T09:30:07Z", + "next_check_at": "2024-12-01T09:35:07Z", + "created_at": "2021-04-22T19:59:40Z", + "mute_until": null, + "favicon_url": "https://www.rdv-solidarites.fr/assets/favicon/favicon-a933d69b078f2d798a5fee2eeb0a8e97de10b68c24a6e5af3a2b8b727e14d73d.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T09:20:11Z", + "expires_at": "2025-02-11T15:55:37Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 25, + "connection": 147, + "handshake": 151, + "response": 168, + "total": 491 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "www.rdv-solidarites.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ { "service": { "name": "http", @@ -239117,83 +231368,1197 @@ { "service": { "name": "https", - "product": "nginx", "id": "443", "vulnerabilities": [] } } ], - "grade": "F" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "2024-11-13 15:55" + }, + { + "id": "cert_notAfter", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "2025-02-11 15:55" + }, + { + "id": "cert_extlifeSpan", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "http://r10.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "R10 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "R10 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "1733045177" + }, + { + "id": "HSTS_time", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Content-Type-Options", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + }, + { + "id": "X-XSS-Protection", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" + }, + { + "id": "banner_reverseproxy", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" + }, + { + "id": "LOGJAM", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "www.rdv-solidarites.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "www.rdv-solidarites.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239201,7 +232566,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239209,7 +232574,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239217,7 +232582,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239225,7 +232590,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -239233,519 +232598,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-03-24 23:00" + "finding": "2024-11-13 15:55" }, { "id": "cert_notAfter", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "HIGH", - "finding": "2024-12-17 22:59" + "severity": "OK", + "finding": "2025-02-11 15:55" }, { "id": "cert_extlifeSpan", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "intermediate_cert_badOCSP", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HTTP_status_code", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HTTP_clock_skew", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2013-10-01 08:32" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", - "port": "443", - "severity": "OK", - "finding": "2033-10-01 08:32" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HTTP_headerTime", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Certigna Root CA <-- Certigna Root CA" + "finding": "1733045274" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HSTS_time", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "www.data.gouv.fr/37.59.183.73", - "port": "443", - "severity": "INFO", - "finding": "302 FOUND ('/')" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HSTS_subdomains", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" + "severity": "OK", + "finding": "includes subdomains" }, { - "id": "HTTP_headerTime", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "HSTS_preload", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732441070" - }, - { - "id": "HSTS", - "ip": "www.data.gouv.fr/37.59.183.73", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "cookie_secure", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.rdv-solidarites.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "www.rdv-solidarites.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + }, { "id": "X-XSS-Protection", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0" }, { - "id": "Cache-Control", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "Referrer-Policy", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "public" + "finding": "strict-origin-when-cross-origin" }, { - "id": "Pragma", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "Cache-Control", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "public" + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -239753,7 +233104,7 @@ }, { "id": "heartbleed", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -239762,7 +233113,7 @@ }, { "id": "CCS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -239771,7 +233122,7 @@ }, { "id": "ticketbleed", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -239780,16 +233131,16 @@ }, { "id": "ROBOT", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -239797,7 +233148,7 @@ }, { "id": "secure_client_renego", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -239806,7 +233157,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -239815,16 +233166,16 @@ }, { "id": "BREACH", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -239833,14 +233184,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -239849,7 +233200,7 @@ }, { "id": "FREAK", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -239858,7 +233209,7 @@ }, { "id": "DROWN", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -239867,34 +233218,34 @@ }, { "id": "DROWN_hint", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" }, { - "id": "LOGJAM-common_primes", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "LOGJAM", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "www.data.gouv.fr/37.59.183.73", + "id": "LOGJAM-common_primes", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "--" }, { "id": "BEAST", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -239903,16 +233254,16 @@ }, { "id": "LUCKY13", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -239921,7 +233272,7 @@ }, { "id": "RC4", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -239930,392 +233281,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.data.gouv.fr/37.59.183.73", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "www.data.gouv.fr/37.59.183.73", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "www.rdv-solidarites.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240323,7 +233674,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240331,7 +233682,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240339,7 +233690,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240347,7 +233698,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -240355,519 +233706,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-03-24 23:00" + "finding": "2024-11-13 15:55" }, { "id": "cert_notAfter", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "HIGH", - "finding": "2024-12-17 22:59" + "severity": "OK", + "finding": "2025-02-11 15:55" }, { "id": "cert_extlifeSpan", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "yes" + "severity": "INFO", + "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "intermediate_cert_badOCSP", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HTTP_status_code", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HTTP_clock_skew", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2013-10-01 08:32" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "OK", - "finding": "2033-10-01 08:32" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HTTP_headerTime", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Certigna Root CA <-- Certigna Root CA" + "finding": "1733045372" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HSTS_time", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "INFO", - "finding": "302 FOUND ('/')" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HSTS_subdomains", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" + "severity": "OK", + "finding": "includes subdomains" }, { - "id": "HTTP_headerTime", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "HSTS_preload", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732441206" - }, - { - "id": "HSTS", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "cookie_secure", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.rdv-solidarites.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "www.rdv-solidarites.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + }, { "id": "X-XSS-Protection", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0" }, { - "id": "Cache-Control", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "Referrer-Policy", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "public" + "finding": "strict-origin-when-cross-origin" }, { - "id": "Pragma", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "Cache-Control", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "public" + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -240875,7 +234212,7 @@ }, { "id": "heartbleed", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -240884,7 +234221,7 @@ }, { "id": "CCS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -240893,7 +234230,7 @@ }, { "id": "ticketbleed", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -240902,16 +234239,16 @@ }, { "id": "ROBOT", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -240919,7 +234256,7 @@ }, { "id": "secure_client_renego", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -240928,7 +234265,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -240937,16 +234274,16 @@ }, { "id": "BREACH", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -240955,14 +234292,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -240971,7 +234308,7 @@ }, { "id": "FREAK", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -240980,7 +234317,7 @@ }, { "id": "DROWN", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -240989,34 +234326,34 @@ }, { "id": "DROWN_hint", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" }, { - "id": "LOGJAM-common_primes", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "LOGJAM", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "www.data.gouv.fr/37.59.183.91", + "id": "LOGJAM-common_primes", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "--" }, { "id": "BEAST", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -241025,16 +234362,16 @@ }, { "id": "LUCKY13", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -241043,7 +234380,7 @@ }, { "id": "RC4", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -241052,1227 +234389,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.data.gouv.fr/37.59.183.91", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "www.data.gouv.fr/37.59.183.91", - "port": "443", - "severity": "INFO", - "finding": "277" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.109.7631", - "value": "1", - "domain": "www.data.gouv.fr", - "path": "/", - "expires": 1732442751, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.109.7631", - "value": "301de86efc505f34.1732440952.", - "domain": "www.data.gouv.fr", - "path": "/", - "expires": 1766396152, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "session", - "value": "d1~eyJjc3JmX3Rva2VuIjoiOWIwMzJlMTRlY2ExZThhOWNjNjQ1MDM3N2VmNWIzYzc2MjI0NTg5MCJ9.Z0LzdQ.NK-4lgPfayeuC-2shk0dt4V0Ypc", - "domain": ".www.data.gouv.fr", - "path": "/", - "expires": -1, - "size": 121, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "public", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 09:35:49 GMT", - "pragma": "public", - "server": "nginx", - "set-cookie": "session=d1~eyJjc3JmX3Rva2VuIjoiOWIwMzJlMTRlY2ExZThhOWNjNjQ1MDM3N2VmNWIzYzc2MjI0NTg5MCJ9.Z0LzdQ.NK-4lgPfayeuC-2shk0dt4V0Ypc; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding\nCookie", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "www.data.gouv.fr", - "ip": "37.59.183.73", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://www.data.gouv.fr/": { - "status": 302 - }, - "https://www.data.gouv.fr/fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", - "confidence": 100, - "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", - "cpe": null, - "categories": [ - { - "id": 73, - "slug": "surveys", - "name": "Surveys" - } - ] - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "rss", - "name": "RSS", - "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", - "confidence": 100, - "version": null, - "icon": "RSS.svg", - "website": "https://www.rssboard.org/rss-specification", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://www.data.gouv.fr/", - "finalUrl": "https://www.data.gouv.fr/fr/", - "fetchTime": "2024-11-24T09:35:19.355Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://www.data.gouv.fr/) was redirected to https://www.data.gouv.fr/fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.67 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.99 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 10196, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2937, - "firstMeaningfulPaint": 2937, - "largestContentfulPaint": 3398, - "interactive": 10196, - "speedIndex": 7976, - "totalBlockingTime": 241, - "maxPotentialFID": 485, - "cumulativeLayoutShift": 0.0035777994791666664, - "cumulativeLayoutShiftMainFrame": 0.0035777994791666664, - "totalCumulativeLayoutShift": 0.0035777994791666664, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 408762393, - "observedNavigationStart": 0, - "observedNavigationStartTs": 408762393, - "observedFirstPaint": 1876, - "observedFirstPaintTs": 410638147, - "observedFirstContentfulPaint": 1876, - "observedFirstContentfulPaintTs": 410638147, - "observedFirstContentfulPaintAllFrames": 1876, - "observedFirstContentfulPaintAllFramesTs": 410638147, - "observedFirstMeaningfulPaint": 1876, - "observedFirstMeaningfulPaintTs": 410638147, - "observedLargestContentfulPaint": 1876, - "observedLargestContentfulPaintTs": 410638147, - "observedLargestContentfulPaintAllFrames": 1876, - "observedLargestContentfulPaintAllFramesTs": 410638147, - "observedTraceEnd": 6684, - "observedTraceEndTs": 415446644, - "observedLoad": 4136, - "observedLoadTs": 412898099, - "observedDomContentLoaded": 1870, - "observedDomContentLoadedTs": 410632023, - "observedCumulativeLayoutShift": 0.0035777994791666664, - "observedCumulativeLayoutShiftMainFrame": 0.0035777994791666664, - "observedTotalCumulativeLayoutShift": 0.0035777994791666664, - "observedFirstVisualChange": 1887, - "observedFirstVisualChangeTs": 410649393, - "observedLastVisualChange": 3721, - "observedLastVisualChangeTs": 412483393, - "observedSpeedIndex": 1991, - "observedSpeedIndexTs": 410752903 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 119, - "numScripts": 18, - "numStylesheets": 1, - "numFonts": 5, - "numTasks": 2526, - "numTasksOver10ms": 11, - "numTasksOver25ms": 6, - "numTasksOver50ms": 4, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 144.827, - "throughput": 8392018.142229574, - "maxRtt": 154.463, - "maxServerLatency": 292.281, - "totalByteWeight": 1391690, - "totalTaskTime": 853.8819999999916, - "mainDocumentTransferSize": 45314 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://www.data.gouv.fr/fr/pages/legal/accessibility" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://www.data.gouv.fr/fr/pages/legal/legal-notice" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 3, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://www.data.gouv.fr/fr/suivi/" - } - ], - "betagouv": { - "id": "data.gouv.fr", - "type": "startup", - "attributes": { - "name": "data.gouv.fr", - "pitch": "Partager, améliorer et réutiliser les données publiques.", - "stats_url": "https://stats.data.gouv.fr", - "link": "https://www.data.gouv.fr/", - "repository": "https://github.com/opendatateam/udata", - "contact": "info@data.gouv.fr", - "content_url_encoded_markdown": "data.gouv.fr%20est%20le%20premier%20portail%20open%20data%20national%20%C3%A0%20se%20constituer%20en%20v%C3%A9ritable%20r%C3%A9seau%20social%20entre%20producteurs%20et%20r%C3%A9utilisateurs%20de%20donn%C3%A9es%20publiques.%20Il%20r%C3%A9f%C3%A9rence%20les%20jeux%20de%20donn%C3%A9es%20sur%20tout%20le%20territoire%20et%20les%20r%C3%A9utilisations%20qui%20en%20sont%20faites.", - "events": [ - { - "name": "national_impact", - "date": "2016-01-01", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2013-06-01", - "end": "" - }, - { - "name": "construction", - "start": "2013-06-01", - "end": "" - }, - { - "name": "success", - "start": "2016-01-01", - "end": "" - } - ], - "sponsors": [ - "dinum" - ], - "thematiques": [ - "Open-Data", - "Entreprises" - ], - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum_produits_interministeriels" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://www.data.gouv.fr", - "size": 2730.573, - "nodes": 1004, - "requests": 118, - "grade": "E", - "score": 28, - "ges": 2.44, - "water": 3.66, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:32:08.764067", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "C", - "apdex": 0.995, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-17T22:59:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.67, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "E", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://anais.beta.gouv.fr", - "category": "fabnumdef", - "betaId": "anais", - "http": { - "url": "https://anais.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 07:26:25 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "no-store", - "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 07:26:24 GMT", - "Etag": "W/\"66840da3-2169\"", - "Last-Modified": "Tue, 02 Jul 2024 14:24:35 GMT", - "Referrer-Policy": "strict-origin-when-cross-origin", - "Server": "nginx/1.21.6", - "Strict-Transport-Security": "max-age=315360000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "sameorigin", - "X-Server": "ANAIS-UI", - "X-Xss-Protection": "1; mode=block" - }, - "scan_id": 57054099, - "score": 75, - "start_time": "Sun, 20 Oct 2024 07:26:23 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://anais.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://anais.beta.gouv.fr/", - "https://anais.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=315360000; includeSubDomains", - "includeSubDomains": true, - "max-age": 315360000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "sameorigin" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "q0tn", - "url": "https://anais.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-20T01:03:21Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T09:32:08Z", - "next_check_at": "2024-11-24T10:32:07Z", - "created_at": "2021-04-22T21:33:36Z", - "mute_until": "forever", - "favicon_url": "https://anais.beta.gouv.fr/assets/images/favicon_anais.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T06:33:02Z", - "expires_at": "2024-12-26T13:09:29Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 191, - "connection": 170, - "handshake": 361, - "response": 173, - "total": 895 - } + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "anais.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Golang net/http server", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Golang net/http server", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242280,7 +234782,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242288,7 +234790,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242296,7 +234798,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242304,7 +234806,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -242312,7 +234814,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -242320,483 +234822,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "secp384r1 secp521r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-09-27 13:09" + "finding": "2024-11-13 15:55" }, { "id": "cert_notAfter", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-12-26 13:09" + "finding": "2025-02-11 15:55" }, { "id": "cert_extlifeSpan", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "issue=buypass.com, issue=letsencrypt.org, issue=sectigo.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732441655" + "finding": "1733045469" }, { "id": "HSTS_time", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "3650 days (=315360000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "nginx/1.21.6" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "X-Frame-Options", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "id": "cookie_secure", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "sameorigin" + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.rdv-solidarites.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "www.rdv-solidarites.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co" + }, { "id": "X-XSS-Protection", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0" }, { "id": "Referrer-Policy", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no-store" + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -242804,7 +235320,7 @@ }, { "id": "heartbleed", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -242813,7 +235329,7 @@ }, { "id": "CCS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -242822,7 +235338,7 @@ }, { "id": "ticketbleed", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -242831,7 +235347,7 @@ }, { "id": "ROBOT", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -242840,7 +235356,7 @@ }, { "id": "secure_renego", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -242848,7 +235364,7 @@ }, { "id": "secure_client_renego", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -242857,7 +235373,7 @@ }, { "id": "CRIME_TLS", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -242866,16 +235382,16 @@ }, { "id": "BREACH", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -242884,14 +235400,14 @@ }, { "id": "fallback_SCSV", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -242900,7 +235416,7 @@ }, { "id": "FREAK", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -242909,7 +235425,7 @@ }, { "id": "DROWN", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -242918,16 +235434,16 @@ }, { "id": "DROWN_hint", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=76451A19804F49F912612FF4E9E94E659A6356A4DB3558FF4F8792D256A8EA01" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=633BD28D00F8947E110D214024F8B8BD21CBFC0BAC0FE9ADECBB467456A886A4" }, { "id": "LOGJAM", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -242936,16 +235452,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -242954,7 +235470,7 @@ }, { "id": "LUCKY13", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -242963,7 +235479,7 @@ }, { "id": "winshock", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -242972,7 +235488,7 @@ }, { "id": "RC4", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -242981,350 +235497,368 @@ }, { "id": "clientsimulation-android_60", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "84" + "finding": "81" }, { "id": "overall_grade", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "anais.beta.gouv.fr/91.134.110.2", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "91" + "finding": "395" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "_rdv_sp_session", + "value": "MzGEsD0a%2B0BCrfNKNti1jZmoGqSZbx7WVmibubnlknHzIx89SWUm6ZXo0BKVr5laRTe58htiSIiDtyRoIU9O3aUMD44%2FCLkR%2BG4dv2CINgEk5Bs1dnnI%2BHVxXlFqOoG4VG3mJiZAUA3DIcaW1Xz5TSlqr15q1ku4Z1a8TG5tkfAq6WHvcUBifVZCnTmE4ZsQJJtOaJGFnZ%2BlTE925j0AHTOyIqxrG70f8d%2BVa8JnGb4O%2FtmtVhPniefLKCY3h%2FduQnjtFWN0i45lYM0zPYtQkklylIdGnjgSxAAKZ4l6n%2FA8qg30bmhFUPFHyqJv--Wso0NrKbqGxYZbY%2F--x1bePHXUZr%2FfRNlOgGIPMQ%3D%3D", + "domain": "www.rdv-solidarites.fr", + "path": "/", + "expires": 1733073868.595904, + "size": 401, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { - "cache-control": "no-store", - "content-encoding": "br", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 09:46:35 GMT", - "etag": "W/\"672e17b4-c52d\"", - "last-modified": "Fri, 08 Nov 2024 13:52:52 GMT", + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; font-src 'self' data:; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com headway-widget.net; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; img-src 'self' data: voxusagers.numerique.gouv.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com api.mapbox.com cdn.headwayapp.co; connect-src 'self' api-adresse.data.gouv.fr etalab-tiles.fr; script-src 'self' 'unsafe-inline' api.mapbox.com cdn.headwayapp.co", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 09:24:28 GMT", + "etag": "W/\"555fbdade908e9f4ddc9273ddced96db\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "server": "nginx/1.21.6", - "strict-transport-security": "max-age=315360000; includeSubDomains", - "vary": "Accept-Encoding\nAccept-Encoding", + "set-cookie": "_rdv_sp_session=MzGEsD0a%2B0BCrfNKNti1jZmoGqSZbx7WVmibubnlknHzIx89SWUm6ZXo0BKVr5laRTe58htiSIiDtyRoIU9O3aUMD44%2FCLkR%2BG4dv2CINgEk5Bs1dnnI%2BHVxXlFqOoG4VG3mJiZAUA3DIcaW1Xz5TSlqr15q1ku4Z1a8TG5tkfAq6WHvcUBifVZCnTmE4ZsQJJtOaJGFnZ%2BlTE925j0AHTOyIqxrG70f8d%2BVa8JnGb4O%2FtmtVhPniefLKCY3h%2FduQnjtFWN0i45lYM0zPYtQkklylIdGnjgSxAAKZ4l6n%2FA8qg30bmhFUPFHyqJv--Wso0NrKbqGxYZbY%2F--x1bePHXUZr%2FfRNlOgGIPMQ%3D%3D; path=/; expires=Sun, 01 Dec 2024 17:24:28 GMT; secure; HttpOnly; SameSite=Lax", + "strict-transport-security": "max-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", - "x-frame-options": "sameorigin", - "x-server": "ANAIS-UI", - "x-xss-protection": "1; mode=block" + "x-download-options": "noopen", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "4c761b43-ae85-4db9-a5a1-764813f29155\n4c761b43-ae85-4db9-a5a1-764813f29155", + "x-runtime": "0.028374", + "x-xss-protection": "0" }, "endpoints": [ { - "hostname": "anais.beta.gouv.fr", - "ip": "91.134.110.2", + "hostname": "www.rdv-solidarites.fr", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -243382,38 +235916,20 @@ }, "wappalyzer": { "urls": { - "https://anais.beta.gouv.fr/": { + "https://www.rdv-solidarites.fr/": { "status": 200 } }, "technologies": [ { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "typescript", - "name": "TypeScript", - "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", "confidence": 100, "version": null, - "icon": "TypeScript.svg", - "website": "https://www.typescriptlang.org", - "cpe": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -243423,113 +235939,60 @@ ] }, { - "slug": "angular", - "name": "Angular", - "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", - "confidence": 100, - "version": null, - "icon": "Angular.svg", - "website": "https://angular.io", - "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "zone-js", - "name": "Zone.js", - "description": null, + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", "confidence": 100, "version": null, - "icon": "Angular.svg", - "website": "https://github.com/angular/angular/tree/master/packages/zone.js", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.21.6", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" } ], "rootPath": true }, { - "slug": "hammer-js", - "name": "Hammer.js", - "description": null, + "slug": "turbolinks", + "name": "Turbolinks", + "description": "Turbolinks is a Rails feature, available as a gem and enabled by default in new Rails apps. It is intended to speed up navigating between pages of your application.", "confidence": 100, - "version": "2.0.7", - "icon": "Hammer.js.png", - "website": "https://hammerjs.github.io", + "version": null, + "icon": "default.svg", + "website": "https://github.com/turbolinks/turbolinks", "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", "confidence": 100, - "version": "3.35.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true @@ -243554,146 +236017,13 @@ } ] }, - "zap": { - "@programName": "ZAP", - "@version": "2.14.0", - "@generated": "Sun, 7 Apr 2024 06:30:41", - "site": [ - { - "@name": "https://anais.beta.gouv.fr", - "@host": "anais.beta.gouv.fr", - "@port": "443", - "@ssl": "true", - "alerts": [ - { - "name": "Content Security Policy (CSP) Header Not Set", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "Cross-Domain Misconfiguration", - "riskcode": "2", - "confidence": "2", - "riskdesc": "Medium (Medium)", - "desc": "

Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server

" - }, - { - "name": "Dangerous JS Functions", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" - }, - { - "name": "In Page Banner Information Leak", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

The server returned a version banner string in the response content. Such information leaks may allow attackers to further target specific issues impacting the product and version in use.

" - }, - { - "name": "Permissions Policy Header Not Set", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" - }, - { - "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" - }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, - { - "name": "Base64 Disclosure", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" - }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, - { - "name": "Modern Web Application", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" - }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, - { - "name": "Re-examine Cache-control Directives", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" - }, - { - "name": "Sec-Fetch-Dest Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" - }, - { - "name": "Sec-Fetch-Mode Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" - }, - { - "name": "Sec-Fetch-Site Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" - }, - { - "name": "Sec-Fetch-User Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - } - ] - } - ] - }, + "zap": null, "nuclei": [], "lhr": [ { - "requestedUrl": "https://anais.beta.gouv.fr/", - "finalUrl": "https://anais.beta.gouv.fr/", - "fetchTime": "2024-11-24T09:46:09.023Z", + "requestedUrl": "https://www.rdv-solidarites.fr/", + "finalUrl": "https://www.rdv-solidarites.fr/", + "fetchTime": "2024-12-01T09:24:04.744Z", "runWarnings": [], "categories": { "performance": { @@ -243704,7 +236034,7 @@ "snapshot" ], "id": "performance", - "score": 0.26 + "score": 0.9 }, "accessibility": { "title": "Accessibility", @@ -243715,7 +236045,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.88 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -243725,7 +236055,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -243736,7 +236066,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -243746,7 +236076,7 @@ "navigation" ], "id": "pwa", - "score": 0.3 + "score": 0.4 } }, "audits": { @@ -243756,53 +236086,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8145, + "numericValue": 2722, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6452, - "firstMeaningfulPaint": 6575, - "largestContentfulPaint": 7796, - "interactive": 8145, - "speedIndex": 8074, - "totalBlockingTime": 1293, - "maxPotentialFID": 1146, - "cumulativeLayoutShift": 0.10448490142822266, - "cumulativeLayoutShiftMainFrame": 0.10448490142822266, - "totalCumulativeLayoutShift": 0.10448490142822266, + "firstContentfulPaint": 2722, + "firstMeaningfulPaint": 2722, + "largestContentfulPaint": 2872, + "interactive": 2722, + "speedIndex": 3132, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.004098124186197916, + "cumulativeLayoutShiftMainFrame": 0.004098124186197916, + "totalCumulativeLayoutShift": 0.004098124186197916, "observedTimeOrigin": 0, - "observedTimeOriginTs": 431452887, + "observedTimeOriginTs": 370048909, "observedNavigationStart": 0, - "observedNavigationStartTs": 431452887, - "observedFirstPaint": 487, - "observedFirstPaintTs": 431939620, - "observedFirstContentfulPaint": 2350, - "observedFirstContentfulPaintTs": 433803078, - "observedFirstContentfulPaintAllFrames": 2350, - "observedFirstContentfulPaintAllFramesTs": 433803078, - "observedFirstMeaningfulPaint": 2350, - "observedFirstMeaningfulPaintTs": 433803078, - "observedLargestContentfulPaint": 2483, - "observedLargestContentfulPaintTs": 433935541, - "observedLargestContentfulPaintAllFrames": 2483, - "observedLargestContentfulPaintAllFramesTs": 433935541, - "observedTraceEnd": 4844, - "observedTraceEndTs": 436297145, - "observedLoad": 1745, - "observedLoadTs": 433197832, - "observedDomContentLoaded": 1555, - "observedDomContentLoadedTs": 433007393, - "observedCumulativeLayoutShift": 0.10448490142822266, - "observedCumulativeLayoutShiftMainFrame": 0.10448490142822266, - "observedTotalCumulativeLayoutShift": 0.10448490142822266, - "observedFirstVisualChange": 2363, - "observedFirstVisualChangeTs": 433815887, - "observedLastVisualChange": 2579, - "observedLastVisualChangeTs": 434031887, - "observedSpeedIndex": 2477, - "observedSpeedIndexTs": 433929475 + "observedNavigationStartTs": 370048909, + "observedFirstPaint": 1129, + "observedFirstPaintTs": 371177503, + "observedFirstContentfulPaint": 1129, + "observedFirstContentfulPaintTs": 371177503, + "observedFirstContentfulPaintAllFrames": 1129, + "observedFirstContentfulPaintAllFramesTs": 371177503, + "observedFirstMeaningfulPaint": 1129, + "observedFirstMeaningfulPaintTs": 371177503, + "observedLargestContentfulPaint": 1129, + "observedLargestContentfulPaintTs": 371177503, + "observedLargestContentfulPaintAllFrames": 1129, + "observedLargestContentfulPaintAllFramesTs": 371177503, + "observedTraceEnd": 3854, + "observedTraceEndTs": 373903170, + "observedLoad": 1394, + "observedLoadTs": 371442482, + "observedDomContentLoaded": 1133, + "observedDomContentLoadedTs": 371182234, + "observedCumulativeLayoutShift": 0.004098124186197916, + "observedCumulativeLayoutShiftMainFrame": 0.004098124186197916, + "observedTotalCumulativeLayoutShift": 0.004098124186197916, + "observedFirstVisualChange": 1136, + "observedFirstVisualChangeTs": 371184909, + "observedLastVisualChange": 1752, + "observedLastVisualChangeTs": 371800909, + "observedSpeedIndex": 1152, + "observedSpeedIndexTs": 371200818 }, { "lcpInvalidated": false @@ -243820,23 +236150,23 @@ "type": "debugdata", "items": [ { - "numRequests": 31, - "numScripts": 5, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 991, - "numTasksOver10ms": 7, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, - "numTasksOver100ms": 2, + "numRequests": 26, + "numScripts": 2, + "numStylesheets": 3, + "numFonts": 5, + "numTasks": 1081, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 102.155, - "throughput": 17121541.04370381, - "maxRtt": 102.155, - "maxServerLatency": 1.5190000000000055, - "totalByteWeight": 1550561, - "totalTaskTime": 712.5670000000009, - "mainDocumentTransferSize": 7397 + "rtt": 145.297, + "throughput": 12487792.101356281, + "maxRtt": 145.297, + "maxServerLatency": 21.954000000000036, + "totalByteWeight": 739001, + "totalTaskTime": 164.6549999999998, + "mainDocumentTransferSize": 5663 } ] } @@ -243849,81 +236179,90 @@ "grade": "A" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { "grade": "A" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://www.rdv-solidarites.fr/accessibility" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://www.rdv-solidarites.fr/mentions_legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://www.rdv-solidarites.fr/politique_de_confidentialite" } ], "betagouv": { - "id": "anais", + "id": "rdv-service-public", "type": "startup", "attributes": { - "name": "ANAIS", - "pitch": "Maîtriser notre espace maritime", - "stats_url": "https://monitoring.anais.beta.gouv.fr", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow", - "link": "https://anais.beta.gouv.fr/", - "repository": "https://gitlab.com/fabnumdef/anais", - "contact": "equipe@anais.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A11%20millions%20de%20km2%20%3A%20c%E2%80%99est%20la%20surface%20de%20l%E2%80%99espace%20maritime%20fran%C3%A7ais%2C%20le%20deuxi%C3%A8me%20mondial.%20La%20Marine%20travaille%20%C3%A0%20la%20ma%C3%AEtrise%20de%20cet%20espace%2C%20crucial%20pour%20notre%20s%C3%A9curit%C3%A9%20nationale%2C%20la%20libert%C3%A9%20des%20mers%20et%20la%20pr%C3%A9servation%20des%20ressources%20naturelles.%20Ce%20travail%20passe%20entre%20autres%20par%20une%20ma%C3%AEtrise%20des%20donn%C3%A9es%20maritimes%20%3A%20elles%20sont%20massives%20et%20augmentent%20constamment%20avec%20la%20progression%20des%20%C3%A9changes%20et%20des%20activit%C3%A9s%20en%20mer.%0A%0AEn%20effet%2C%20le%20milieu%20marin%20est%20aussi%20un%20oc%C3%A9an%20de%20donn%C3%A9es%20extr%C3%AAmement%20vari%C3%A9es%20%3A%20donn%C3%A9es%20oc%C3%A9anographiques%2C%20cartographies%2C%20m%C3%A9t%C3%A9o%2C%20transpondeurs%20des%20navires%2C%20donn%C3%A9es%20radar%2C%20satellites%20%28radar%2C%20image%20%E2%80%A6%29%2C%20donn%C3%A9es%20acoustiques%2C%20zones%20de%20p%C3%AAches%2C%20routes%20maritimes%2C%20%E2%80%A6%0A%0A%23%23%20Probl%C3%A9matique%0ALe%20projet%20ANAIS%20%28pour%20%C2%AB%20Analyse%20des%20Incoh%C3%A9rences%20de%20Situation%20maritime%20%C2%BB%29%20vise%20%C3%A0%20mieux%20agr%C3%A9ger%20les%20donn%C3%A9es%20maritimes%20pour%20les%20traiter%20plus%20efficacement.%20%0A%0AL%E2%80%99objectif%20est%20de%20mieux%20suivre%20les%20multiples%20activit%C3%A9s%20en%20mer%2C%20et%20en%20particulier%20d%C3%A9tecter%20les%20comportements%20de%20navires%20suspects%20ou%20dangereux%20afin%20de%20d%C3%A9cider%20plus%20vite%20et%20d%E2%80%99intervenir%20plus%20efficacement.%0A%0AA%20tout%20moment%2C%20ce%20sont%20200%20services%20ou%20op%C3%A9rateurs%20de%20l%27Action%20de%20l%27Etat%20en%20Mer%20connect%C3%A9s%20%C3%A0%20la%20plateforme.%0A%0ADes%20versions%20ont%20%C3%A9t%C3%A9%20d%C3%A9riv%C3%A9es%20pour%20%C3%AAtre%20embarqu%C3%A9es%20%C3%A0%20bord%20de%20b%C3%A2timents%20de%20la%20Marine%20Nationale.%0A%0A%23%23%20Objectifs%0AMaintenir%20l%E2%80%99%C3%A9quipe%20agile%20au%20plus%20pr%C3%A8s%20des%20utilisateurs%20op%C3%A9rationnels%0AS%C3%A9curiser%20r%C3%A9guli%C3%A8rement%20les%20d%C3%A9veloppements%20pour%20d%C3%A9ployer%20plus%20largement%0AD%C3%A9veloppement%20de%20partenariats%20avec%20le%20monde%20acad%C3%A9mique%20pour%20am%C3%A9liorer%20l%E2%80%99efficience%20des%20algorithmes%20d%E2%80%99analyse%20%28publication%20d%27articles%20scientifiques%20en%20collaboration%20avec%20l%27Ecole%20Navale%29%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28printemps%202019%29%20Maquettes%20de%20l%E2%80%99interface%0A%0A__%C3%89tape%202__%20%28%C3%A9t%C3%A9%202019%29%20Premi%C3%A8re%20version%20de%20l%E2%80%99interface%20-%20d%C3%A9but%20d%E2%80%99utilisation%20op%C3%A9rationnelle%20par%20des%20unit%C3%A9s%20pilotes%0A%0A__%C3%89tape%203__%20%28hiver%202019%29%20Consolidation%20des%20alertes%20-%20am%C3%A9lioration%20continue%20-%20exp%C3%A9rimentation%20en%20interadmin.%0A%0A__%C3%89tape%204__%20%28%C3%A9t%C3%A9%202020%29%20Couverture%20mondiale%20-%20am%C3%A9lioration%20continue%20-%20apport%20op%C3%A9rationnel%20reconnu%20-%20augmentation%20du%20nombre%20d%E2%80%99unit%C3%A9s%20et%20administrations%20utilisatrices.%0A%0A__%C3%89tape%205__%20%28printemps%202021%29%20Int%C3%A9gration%20de%20nouveaux%20algorithmes%2C%20mode%20hors%20connexion%20ou%20sur%20flux%20locaux.%20S%C3%A9curisation%20du%20projet%20dans%20la%20dur%C3%A9e.%20Maintien%20de%20l%E2%80%99apport%20op%C3%A9rationnel.%0ANouveaux%20usages.%0A%0A__Etape%206__%20%282022%29%20Mod%C3%A8le%20hybride%20SE%20-%20ESN.%20D%C3%A9veloppement%20du%20produit%20par%20la%20Startup%20d%27Etat%2C%20gestion%20de%20la%20production%20et%20TMA%20assur%C3%A9e%20par%20un%20ESN%0A%0A__Etape%207__%20%282023%29%20Production%20dans%20un%20environnement%20SecNumCloud%0A%0A__Etape%208__%20%282024%29%20Convention%20avec%20la%20Direction%20Nationale%20Garde-C%C3%B4tes%20des%20Douanes.%20%20R%C3%A9organisation%20du%20code%20en%20vue%20d%27automatiser%20les%20APIs%20et%20modulariser%20les%20fonctions%20m%C3%A9tiers%0A%0A__Etape%209__%20%282025%29%20Mise%20%C3%A0%20disposition%20des%20donn%C3%A9es%20pour%20des%20environnements%20de%20data-science%20%0A%0A%0A%0A%23%23%20R%C3%A9sultats%0A-%20Apport%20op%C3%A9rationnel%20concret%20et%20reconnu%0A-%20Exp%C3%A9rimentation%20d%E2%80%99une%20m%C3%A9thode%20et%20d%E2%80%99un%20outil%20innovant%20par%20la%20Marine%20Nationale.%0A-%20Enjeux%20de%20souverainet%C3%A9%20num%C3%A9rique%20et%20de%20d%C3%A9veloppement%20de%20l%E2%80%99IA%20maritime%0A-%20ANAIS%20est%20accessible%20sur%20invitation%20%C3%A0%20ce%20%5Blien%5D%28https%3A%2F%2Fanais.beta.gouv.fr%29%0A", - "events": [], + "name": "RDV Service Public", + "pitch": "Faciliter la gestion et la prise de rendez-vous dans les administrations", + "stats_url": "https://www.rdv-solidarites.fr/stats/", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#RDV-Services-Publics", + "link": "https://rdv.anct.gouv.fr", + "repository": "https://github.com/betagouv/rdv-solidarites.fr", + "contact": "support@rdv-service-public.fr", + "content_url_encoded_markdown": "%23%23%20Qui%20sommes-nous%20%3F%0A%0ANous%20sommes%20l%E2%80%99%C3%A9quipe%20produit%20RDV%20Service%20Public%2C%20solution%20num%C3%A9rique%20port%C3%A9e%20par%20l%E2%80%99Agence%20Nationale%20de%20la%20Coh%C3%A9sion%20des%20Territoires%20et%20la%20Direction%20Interminist%C3%A9rielle%20du%20Num%C3%A9rique.%0A%0AL%E2%80%99%C3%A9quipe%20est%20guid%C3%A9e%20par%20une%20vision%20%3A%20%2A%C3%AAtre%20la%20solution%20de%20gestion%20et%20de%20prise%20de%20rendez-vous%20simple%20%C3%A0%20utiliser%20et%20simple%20%C3%A0%20d%C3%A9ployer%20dans%20les%20administrations%20publiques%2A.%0A%0A%23%23%20Notre%20mission%0A%0ADonner%20la%20possibilit%C3%A9%20%C3%A0%20tout%20agent%20qui%20le%20souhaite%2C%20%C3%A0%20un%20groupe%20d%E2%80%99agents%2C%20%C3%A0%20une%20administration%20ou%20%C3%A0%20l%E2%80%99occasion%20d%E2%80%99une%20politique%20publique%20locale%20ou%20nationale%2C%20de%20g%C3%A9rer%20ses%20rendez-vous%20et%20proposer%20ses%20disponibilit%C3%A9s%20aux%20usagers%20en%20pr%C3%A9sentiel%20ou%20%C3%A0%20distance.%0A%0A%23%23%20Qui%20peut%20l%E2%80%99utiliser%20%3F%0A%0A%0A%2A%2AAdministrations%20de%20l%E2%80%99%C3%89tat%2A%2A%0A%0AAdministrations%20d%C3%A9centralis%C3%A9es%2C%20agences%20nationales%20ou%20minist%C3%A8res%2C%20la%20solution%20est%20ouverte%20%C3%A0%20l%E2%80%99ensemble%20des%20services%20de%20l%E2%80%99%C3%89tat.%0A%0A%2A%2ACollectivit%C3%A9s%20territoriales%2A%2A%0A%0AServices%20communaux%2C%20d%C3%A9partementaux%20ou%20r%C3%A9gionaux%2C%20la%20solution%20est%20ouverte%20%C3%A0%20toutes%20les%20comp%C3%A9tences%20des%20collectivit%C3%A9s%20territoriales.%0A%0A%2A%2AOp%C3%A9rateurs%20publics%2A%2A%0A%0ALa%20solution%20est%20ouverte%20aux%20op%C3%A9rateurs%20publics%20nationaux%20comme%20aux%20structures%20mutualisatrices%20territoriales.%0A%0A%23%23%20Les%20probl%C3%A8mes%20%C3%A0%20r%C3%A9soudre%0ALe%20rendez-vous%20est%20omnipr%C3%A9sent%20dans%20la%20fonction%20publique%20%E2%80%94%20tant%20au%20sein%20des%20collectivit%C3%A9s%20territoriales%2C%20des%20services%20de%20l%E2%80%99%C3%89tat%20que%20des%20op%C3%A9rateurs%20%E2%80%94%20pour%20permettre%20un%20temps%20d%E2%80%99%C3%A9changes%20entre%20un%20agent%20et%20un%20usager.%20C%E2%80%99est%20une%20t%C3%A2che%20basique%20mais%20qui%20engendre%20de%20nombreux%20probl%C3%A8mes%20m%C3%A9tiers%20et%20techniques%20dans%20le%20quotidien%20des%20agents.%0A%0A-%20Gestion%20administrative%20chronophage%0A-%20Des%20rendez-vous%20non%20honor%C3%A9s%20%F0%9F%90%B0%0A-%20Manque%20de%20souplesse%20pour%20l%E2%80%99usager%0A-%20Absence%20de%20donn%C3%A9es%20pour%20mesurer%20l%E2%80%99activit%C3%A9%0A-%20D%C3%A9pendance%20aux%20solutions%20propri%C3%A9taires%0A%0A%23%23%20Les%20solutions%0A%0A%2A%2A%E2%9E%9C%20Centralisez%20les%20informations%2A%2A%0A%0ALes%20informations%20des%20usagers%2C%20des%20disponiblit%C3%A9s%20et%20des%20rendez-vous%20sont%20centralis%C3%A9es%20pour%20simplifier%20le%20quotidien%20des%20agents%20et%20permettre%20une%20r%C3%A9ponse%20rapide%20aux%20usagers.%0A%0A%2A%2A%E2%9E%9C%20%C3%89viter%20les%20rendez-vous%20non%20honor%C3%A9s%2A%2A%0A%0ADes%20notifications%20SMS%20et%20emails%20de%20cr%C3%A9ation%2C%20de%20modification%20et%20de%20rappel%20de%20rendez-vous%20sont%20envoy%C3%A9es%20automatiquement%20aux%20usagers%20limitant%20le%20nombre%20de%20rendez-vous%20non%20honor%C3%A9s.%0A%0A%2A%2A%E2%9E%9C%20Ouvrir%20vos%20disponibilit%C3%A9s%20en%20ligne%2A%2A%0A%0AVotre%20administration%20peut%20rendre%20accessible%20ses%20disponibilit%C3%A9s%20en%20ligne.%20Les%20usagers%20peuvent%20planifier%20des%20rendez-vous%20t%C3%A9l%C3%A9phonique%2C%20en%20visioconf%C3%A9rence%20ou%20en%20pr%C3%A9sentiel%20en%20choisissant%20leur%20pr%C3%A9f%C3%A9rence%20selon%20vos%20disponiblit%C3%A9s.%0A%0A%2A%2A%E2%9E%9C%20Am%C3%A9liorer%20l%E2%80%99exp%C3%A9rience%20usager%2A%2A%0A%0AL%E2%80%99interface%20%28aux%20couleurs%20de%20la%20charte%20de%20l%E2%80%99%C3%89tat%29%20propose%20un%20parcours%20simple%20et%20rapide%20pour%20les%20usagers%20facilitant%20ainsi%20les%20d%C3%A9marches%20avec%20vos%20services.%20Les%20usagers%20peuvent%20modifier%20ou%20annuler%20un%20rendez-vous%20en%20autonomie.%0A%0A%2A%2A%E2%9E%9C%20Produire%20des%20statistiques%2A%2A%0A%0ALes%20donn%C3%A9es%20des%20rendez-vous%20sont%20centralis%C3%A9es%20et%20permettent%20la%20production%20de%20statistiques%20pour%20mesurer%20votre%20activit%C3%A9%20et%20accompagner%20votre%20prise%20de%20d%C3%A9cision.%0A%0A%23%23%20L%27utilisation%0A%0ARDV%20Service%20Public%20c%27est%20%2A%2A2%20715%20045%20rendez-vous%20planifi%C3%A9s%2A%2A%20dans%20%2A%2A990%20structures%2A%2A%20pour%20%2A%2A9000%20utilisateurs%2A%2A.%20%0A%0A%23%23%20Notre%20histoire%0A%0ALe%20point%20de%20d%C3%A9part%20est%20une%20investigation%20men%C3%A9e%20en%202018%20par%20le%20d%C3%A9partement%20du%20Pas-De-Calais%20qui%20a%20mis%20en%20%C3%A9vidence%20les%20difficult%C3%A9s%20de%20prise%20de%20rendez-vous%20dans%20les%20services%20m%C3%A9dico-sociaux%20du%20d%C3%A9partement.%0A%0A%2A%2ADe%202019%20%C3%A0%202022%2A%2A%0A%0AAvec%20l%E2%80%99accompagnement%20de%20la%20DINUM%20puis%20de%20l%E2%80%99ANCT%2C%2013%20d%C3%A9partements%20ont%20form%C3%A9%20un%20consortium%20pour%20d%C3%A9velopper%20une%20solution%20num%C3%A9rique%20commune%20appel%C3%A9e%20RDV%20Solidarit%C3%A9s.%0A%0A%2A%2AEn%202023%2A%2A%0A%0AConsciente%20du%20potentiel%20de%20la%20solution%20num%C3%A9rique%20au%20sein%20des%20d%E2%80%99autres%20cat%C3%A9gories%20d%E2%80%99administration%2C%20l%E2%80%99%C3%A9quipe%20teste%20la%20solution%20aupr%C3%A8s%20de%20structures%20vari%C3%A9es%20pour%20valider%20l%E2%80%99int%C3%A9r%C3%AAt%20d%E2%80%99une%20solution%20g%C3%A9n%C3%A9rique.%0A%0A%2A%2AEn%202024%2A%2A%0A%0AL%E2%80%99%C3%A9quipe%20assume%20l%E2%80%99intention%20de%20la%20g%C3%A9n%C3%A9ricit%C3%A9%20et%20s%E2%80%99engage%20dans%20une%20roadmap%20%C3%A0%20la%20mission%20et%20la%20vision%20renouvel%C3%A9e.%20La%20solution%20est%20appel%C3%A9e%20RDV%20Service%20Public.%20", + "events": [ + { + "name": "national_impact", + "date": "2022-12-31", + "comment": "" + } + ], "phases": [ { "name": "investigation", - "start": "2019-04-05", + "start": "2018-01-18", "end": "" }, { "name": "construction", - "start": "2019-04-05", - "end": "" - }, - { - "name": "transfer", - "start": "2023-11-13", + "start": "2018-01-18", "end": "" }, { - "name": "success", - "start": "2024-10-21", + "name": "acceleration", + "start": "2019-04-01", "end": "" } ], "sponsors": [ - "dgddi", - "ministere-des-armees-etat-major-de-la-marine" + "anct", + "dinum" ], "thematiques": [ - "Mer" + "Collectivités", + "Social", + "Administratif", + "Inclusion numérique" ], - "dashlord_url": "https://dashlord.incubateur.net/url/anais-beta-gouv-fr/" + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/www-rdv-solidarites-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "fabnumdef" + "id": "anct" } } } @@ -243932,25 +236271,25 @@ { "width": 1920, "height": 1080, - "url": "https://anais.beta.gouv.fr", - "size": 1751.214, - "nodes": 111, - "requests": 31, - "grade": "B", - "score": 78, - "ges": 1.44, - "water": 2.16, + "url": "https://www.rdv-solidarites.fr", + "size": 764.189, + "nodes": 163, + "requests": 22, + "grade": "A", + "score": 83, + "ges": 1.34, + "water": 2.01, "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:42:58.883755", + "date": "2024-12-01 09:21:06.192037", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": false + "detected": true }, "summary": { - "httpGrade": "B", + "httpGrade": "C+", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -243959,211 +236298,105 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-26T13:09:00.000Z", + "testsslExpireDate": "2025-02-11T15:55:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "zapCount": 7, - "zapGrade": "D", - "lighthouse_performance": 0.26, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.88, + "lighthouse_performance": 0.9, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", "statsGrade": "A", - "githubRepositoryGrade": "F", + "githubRepositoryGrade": "A", "budgetPageGrade": "A", - "declaration-a11y": "D", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "F" + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "A", + "dsfrGrade": "A" } }, { "404": null, - "url": "https://www.demarches-simplifiees.fr", - "repositories": [ - "betagouv/demarches-simplifiees.fr" - ], - "category": "dinum_produits_interministeriels", - "betaId": "demarches-simplifiees.fr", + "url": "https://osmose.numerique.gouv.fr", + "category": "dinum", "http": { - "url": "https://www.demarches-simplifiees.fr", + "url": "https://osmose.numerique.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 02:50:35 GMT", - "grade": "B+", + "end_time": "Sun, 20 Oct 2024 02:29:34 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 20 Oct 2024 02:50:34 GMT", - "etag": "W/\"ed2432ab0a88fb10359960bc58b89534\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqSnJjSHBNVUdoalNsSmxTblIwUkZCS2EzaFdjMVEzWVVoeVVtazFPRWRJVERORFdFMTFNbXc1ZWtraSIsImV4cCI6IjIwMjUtMTAtMjBUMDI6NTA6MzQuNDU1WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--b5dfd21e30b10f27ac6f170c09fdfe9e62695c4f; path=/; expires=Mon, 20 Oct 2025 02:50:34 GMT; secure; HttpOnly; SameSite=Lax, _DS_session=2ur1Q0Aps1wQGYQRsrH4yhFNneLLL%2FzRlZTQzwj8HVWT0ytuepVnwcPhXTBEiAvIpB2s4yK%2BrVSpVm9ojFmo9sTP35FkWYFn4UnsysNvv21FIjkriP8WS7F6Ih5ZLEMThI2JxhLA8Xt8Bju6nomN7qf1D3MXD8SZ9gahMYR3Onq3SK9O54YZPkekA9BrVuakEaAlAJv4kBY%2B74G%2Fu7L3ep1PNlbHRJeRO0pWv095KRh%2FtECfTbn0UfeQSgoY%2BTSVecuKRaD6fR%2Fxoe8GaegvsgJ4mg%3D%3D--05XMrgbALOuYcGkV--hNrkqFLhjrGHeFopK4SbmA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "strict-transport-security": "max-age=63072000", - "transfer-encoding": "chunked", - "vary": "Accept", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "d9e0cd24-3ff0-4635-a31f-9ee7ee081e8c", - "x-runtime": "0.025476", - "x-xss-protection": "0" + "Cache-Control": "no-cache, no-store, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html;charset=UTF-8", + "Date": "Sun, 20 Oct 2024 02:29:33 GMT", + "Expires": "0", + "Feature-Policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", + "Permissions-Policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", + "Pragma": "no-cache", + "Referrer-Policy": "strict-origin", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains; preload", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-XSS-Protection": "1" }, - "scan_id": 57048229, - "score": 80, - "start_time": "Sun, 20 Oct 2024 02:50:33 GMT", + "scan_id": 57047939, + "score": 55, + "start_time": "Sun, 20 Oct 2024 02:29:31 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "connect-src": [ - "stats.data.gouv.fr", - "data.education.gouv.fr", - "'self'", - "data.geopf.fr", - "www.demarches-simplifiees.fr", - "geo.api.gouv.fr", - "wss://*.crisp.chat", - "*.crisp.chat", - "openmaptiles.geo.data.gouv.fr", - "app.franceconnect.gouv.fr", - "tiles.geo.api.gouv.fr", - "sentry.io", - "api-adresse.data.gouv.fr", - "openmaptiles.github.io", - "static.demarches-simplifiees.fr" - ], - "default-src": [ - "'report-sample'", - "fonts.gstatic.com", - "'self'", - "player.vimeo.com", - "sibautomation.com", - "*.crisp.chat", - "app.franceconnect.gouv.fr", - "blob:", - "in-automate.sendinblue.com", - "*.sibautomation.com", - "*.crisp.help", - "sentry.io", - "data", - "crisp.chat", - "static.demarches-simplifiees.fr" - ], - "frame-src": [ - "stats.data.gouv.fr", - "static.demarches-simplifiees.fr", - "*.crisp.help", - "'self'" - ], - "img-src": [ - "stats.data.gouv.fr", - "*", - "'self'", - "data:", - "*.openstreetmap.org", - "blob:", - "static.demarches-simplifiees.fr" - ], - "script-src": [ - "stats.data.gouv.fr", - "'unsafe-inline'", - "'self'", - "code.jquery.com", - "'unsafe-eval'", - "*.crisp.chat", - "blob:", - "cdn.jsdelivr.net", - "maxcdn.bootstrapcdn.com", - "unpkg.com", - "crisp.chat" - ], - "style-src": [ - "'unsafe-inline'", - "'self'", - "*.crisp.chat", - "cdn.jsdelivr.net", - "maxcdn.bootstrapcdn.com", - "unpkg.com", - "crisp.chat" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { "data": { - "_DS_session": { - "domain": "www.demarches-simplifiees.fr", + "JSESSIONID": { + "domain": "osmose.numerique.gouv.fr", "expires": null, "httponly": true, "max-age": null, "path": "/", "port": null, - "samesite": "Lax", - "secure": true - }, - "_csrf_token": { - "domain": "www.demarches-simplifiees.fr", - "expires": 1760928634, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", + "samesite": false, "secure": true } }, - "sameSite": true + "sameSite": false }, "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 + "result": "cookies-secure-with-httponly-sessions", + "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -244184,11 +236417,12 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://www.demarches-simplifiees.fr/", + "destination": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "redirects": true, "route": [ - "http://www.demarches-simplifiees.fr/", - "https://www.demarches-simplifiees.fr/" + "http://osmose.numerique.gouv.fr/", + "https://osmose.numerique.gouv.fr/", + "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F" ], "status_code": 200 }, @@ -244201,7 +236435,7 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin-when-cross-origin", + "data": "strict-origin", "http": true, "meta": false }, @@ -244214,10 +236448,10 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000", - "includeSubDomains": false, - "max-age": 63072000, - "preload": false, + "data": "max-age=31536000; includeSubdomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, "preloaded": false }, "pass": true, @@ -244251,35 +236485,35 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "0" + "data": "1" }, "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "result": "x-xss-protection-enabled", + "score_description": "Deprecated X-XSS-Protection header set to \"1\"", "score_modifier": 0 } } }, "updownio": { - "token": "5ynk", - "url": "https://www.demarches-simplifiees.fr", + "token": "t1r8", + "url": "https://osmose.numerique.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.987, + "uptime": 98.327, "down": false, "down_since": null, - "up_since": "2024-11-23T16:19:52Z", + "up_since": "2024-12-01T09:30:17Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -244290,140 +236524,134 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T09:55:41Z", - "next_check_at": "2024-11-24T09:56:41Z", + "last_check_at": "2024-12-01T09:43:13Z", + "next_check_at": "2024-12-01T09:44:13Z", "created_at": "2024-01-15T13:37:42Z", "mute_until": null, - "favicon_url": "https://www.demarches-simplifiees.fr/assets/favicons/96x96-e8b88d4ef72feb9f68294873aaa41556176aa6ad5e40473009accb34759dcff2.png", + "favicon_url": "https://osmose.numerique.gouv.fr/upload/docs/image/png/2020-03/profil_picture_carre_2020-03-30_14-38-45_732.png?v=20241115150137", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T09:52:45Z", - "expires_at": "2025-01-08T22:59:59Z", + "tested_at": "2024-12-01T09:37:18Z", + "expires_at": "2025-04-03T21:59:59Z", "valid": true, "error": null }, "metrics": { "apdex": 0.983, "timings": { - "redirect": 0, - "namelookup": 25, - "connection": 147, - "handshake": 151, - "response": 388, - "total": 711 + "redirect": 385, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 323, + "total": 708 } }, - "uptimeGrade": "A", + "uptimeGrade": "B", "apdexGrade": "B" }, "nmap": { - "host": "www.demarches-simplifiees.fr", + "host": "osmose.numerique.gouv.fr", "protocol": "tcp", - "closed_ports": "997", + "closed_ports": "998", "open_ports": [ { "service": { "name": "http", + "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "ident", - "id": "113", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", + "name": "http", "product": "nginx", "id": "443", "vulnerabilities": [] } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244431,7 +236659,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244439,7 +236667,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244447,7 +236675,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244455,7 +236683,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244463,7 +236691,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244471,546 +236699,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "45D892B38361D31F73BDE3DD28F71B30" + "finding": "5C78019F85E4F3F3B6EE76E45B983457" }, { "id": "cert_serialNumberLen", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "033E775BFEEB5B3408A74D1B1E8F7B22E38FE066" + "finding": "51A67FB6FBEFFD32AC490441D2DB7C8B49F9C705" }, { "id": "cert_fingerprintSHA256", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "AE400C82D84F891F4C3DAF0A4682129E304DC3992518F40A6E7D864EEBD4146D" + "finding": "C34BC8AA0F012E75F42CFE92D4C3206F46E4AEA2A908CED4BACD0A9392C9A3E9" }, { "id": "cert", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "demarches-simplifiees.fr" + "finding": "*.osmose.numerique.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "demarches.gouv.fr" + "finding": "*.jaliosagora.com" }, { "id": "cert_subjectAltName", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "admin.demarches-simplifiees.fr dev.demarches-simplifiees.fr pr.demarches-simplifiees.fr qa.demarches-simplifiees.fr static.demarches-simplifiees.fr stats.demarches-simplifiees.fr assets.demarches-simplifiees.fr cdn.demarches-simplifiees.fr demarches-simplifiees.fr api.demarches-simplifiees.fr www.demarches-simplifiees.fr blog.demarches-simplifiees.fr docs.demarches-simplifiees.fr test.demarches-simplifiees.fr" + "finding": "osmose.numerique.gouv.fr *.osmose.numerique.gouv.fr" }, { "id": "cert_trust", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "CRITICAL", - "finding": "Some certificate trust checks failed -> Apple (self signed CA in chain) , OK -> Mozilla Microsoft Linux Java" + "severity": "OK", + "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (45)" + "severity": "OK", + "finding": "123 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "2024-03-21 23:00" + "finding": "2024-03-27 23:00" }, { "id": "cert_notAfter", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-08 22:59" + "severity": "OK", + "finding": "2025-04-03 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" + "finding": "http://crl.dhimyotis.com/wildca.crl http://crl.certigna.fr/wildca.crl" }, { "id": "cert_ocspURL", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" + "finding": "http://wildca.ocsp.certigna.fr http://wildca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "07F2CE55CA1AA6CB992719B1E423C1D02C1EA759A6E2EAB4E150C88282E22550" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "INFO", - "finding": "2015-11-25 11:37" + "severity": "OK", + "finding": "yes (certificate extension)" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "certs_countServer", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "OK", - "finding": "2033-06-03 11:37" + "severity": "INFO", + "finding": "2" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "certs_list_ordering_problem", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "no" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "cert_caIssuers", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna Root CA" + "finding": "Certigna Wild CA (DHIMYOTIS from FR)" }, { - "id": "intermediate_cert <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" + "finding": "211F3083B9E77A01D0828565897A1CE945EEAAE04942CCC369087D8080C9E4A6" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert_notBefore <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "2013-10-01 08:32" + "finding": "2015-11-25 11:06" }, { - "id": "intermediate_cert_notAfter <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert_notAfter <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "2033-10-01 08:32" + "finding": "2025-11-22 11:06" }, { - "id": "intermediate_cert_expiration <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert_expiration <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "intermediate_cert_chain <#1>", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "Certigna Root CA <-- Certigna Root CA" + "finding": "Certigna Wild CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "1732442100" + "finding": "1733046160" }, { "id": "HSTS_time", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "2 at '/'" + "finding": "1 at '/' (30x detected, better try target URL of 30x)" }, { "id": "cookie_secure", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "All (2) at '/' marked as secure" + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "All (1) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "Content-Security-Policy", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "id": "Permissions-Policy", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr" + "finding": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()" }, { "id": "X-XSS-Protection", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "1" }, { "id": "Referrer-Policy", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" - }, - { - "id": "Cache-Control", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -245018,7 +237197,7 @@ }, { "id": "heartbleed", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -245027,7 +237206,7 @@ }, { "id": "CCS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -245036,7 +237215,7 @@ }, { "id": "ticketbleed", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -245045,7 +237224,7 @@ }, { "id": "ROBOT", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -245054,7 +237233,7 @@ }, { "id": "secure_renego", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -245062,7 +237241,7 @@ }, { "id": "secure_client_renego", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -245071,7 +237250,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -245080,16 +237259,16 @@ }, { "id": "BREACH", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -245098,14 +237277,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -245114,7 +237293,7 @@ }, { "id": "FREAK", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -245123,7 +237302,7 @@ }, { "id": "DROWN", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -245132,16 +237311,16 @@ }, { "id": "DROWN_hint", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AE400C82D84F891F4C3DAF0A4682129E304DC3992518F40A6E7D864EEBD4146D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C34BC8AA0F012E75F42CFE92D4C3206F46E4AEA2A908CED4BACD0A9392C9A3E9" }, { "id": "LOGJAM", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -245150,16 +237329,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -245168,7 +237347,7 @@ }, { "id": "LUCKY13", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -245177,7 +237356,7 @@ }, { "id": "winshock", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -245186,7 +237365,7 @@ }, { "id": "RC4", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -245195,427 +237374,396 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-android_70", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "24" }, { "id": "final_score", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "81" }, { "id": "overall_grade", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", - "port": "443", - "severity": "CRITICAL", - "finding": "T" - }, - { - "id": "grade_cap_reason_1", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", - "severity": "INFO", - "finding": "Grade capped to T. Issues with chain of trust (self signed CA in chain)" + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "54" } ], "thirdparties": { "trackers": [ { - "type": "unknown", - "url": "https://sentry.io/api/1429547/envelope/?sentry_key=4248116497b049dea165998d79024565&sentry_version=7&sentry_client=sentry.javascript.browser%2F8.33.1" - } - ], - "cookies": [ + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Titillium+Web:wght@100;200;300;400;500;600;700;800;900&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, { - "name": "_pk_ses.73.dc9f", - "value": "1", - "domain": ".www.demarches-simplifiees.fr", - "path": "/", - "expires": 1732443836, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Raleway:wght@100;200;300;400;500;600;700;800;900&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } }, { - "name": "_pk_id.73.dc9f", - "value": "c7051b8dea22da1f.1732442037.", - "domain": ".www.demarches-simplifiees.fr", - "path": "/", - "expires": 1766397237, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Noto+Serif+SC:wght@100;200;300;400;500;600;700;800;900&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } }, { - "name": "_DS_session", - "value": "49opLOq9XDtx9oCDu3uclb1X3lYlkzIKZQzIR5rNANlPXbfR4SifVD1eOyuMDvTfTxBXPwi6XF6Qgv5UkOn6%2BGgzR%2BdsXNtfxgtovx9P8RySs6UaoTlHpdy2fYyCFRI6%2FrUX5ObujDSrJPZqJtZsDjHkGMAxf1t%2B1Ue%2BxRpXvpDsVeKwYcP5voFJ50T42J4qjKpRELl14m%2BOHpy%2FC%2BvswnlBDMs4mbnXm2bSMpFk4Mlblsx1FX61oK4H9mRE1v4VhesqBTn9NjIERlmOG%2FFvGu6EFA%3D%3D--YSfGF81WRQCGnKs5--j3JhpP8UzzdkuvMa0dvhlA%3D%3D", - "domain": "www.demarches-simplifiees.fr", + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Cormorant+Garamond:wght@100;200;300;400;500;600;700;800;900&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + } + ], + "cookies": [ + { + "name": "JSESSIONID", + "value": "D5DF4E69DCE415886B77CD6D151D0A9F.n1", + "domain": "osmose.numerique.gouv.fr", "path": "/", "expires": -1, - "size": 365, + "size": 45, "httpOnly": true, "secure": true, "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_csrf_token", - "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IklsaDVSMngxZDNZdE4xRnNiblZEYjBjd00wVjZiRkJCZERjdE0xZFVTSGxxWDFKUGJEUTRhRkZKWVZVaSIsImV4cCI6IjIwMjUtMTEtMjRUMDk6NTM6NTUuODAyWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--fd858fd87520edbc19c23a80836f968ee40af3c1", - "domain": "www.demarches-simplifiees.fr", - "path": "/", - "expires": 1763978035.853755, - "size": 253, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { - "cache-control": "max-age=0, private, must-revalidate", + "cache-control": "no-cache, no-store, must-revalidate", "content-encoding": "gzip", - "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 09:53:55 GMT", - "etag": "W/\"c726f91b217dc97871a913ae51532c32\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklsaDVSMngxZDNZdE4xRnNiblZEYjBjd00wVjZiRkJCZERjdE0xZFVTSGxxWDFKUGJEUTRhRkZKWVZVaSIsImV4cCI6IjIwMjUtMTEtMjRUMDk6NTM6NTUuODAyWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--fd858fd87520edbc19c23a80836f968ee40af3c1; path=/; expires=Mon, 24 Nov 2025 09:53:55 GMT; secure; HttpOnly; SameSite=Lax\n_DS_session=49opLOq9XDtx9oCDu3uclb1X3lYlkzIKZQzIR5rNANlPXbfR4SifVD1eOyuMDvTfTxBXPwi6XF6Qgv5UkOn6%2BGgzR%2BdsXNtfxgtovx9P8RySs6UaoTlHpdy2fYyCFRI6%2FrUX5ObujDSrJPZqJtZsDjHkGMAxf1t%2B1Ue%2BxRpXvpDsVeKwYcP5voFJ50T42J4qjKpRELl14m%2BOHpy%2FC%2BvswnlBDMs4mbnXm2bSMpFk4Mlblsx1FX61oK4H9mRE1v4VhesqBTn9NjIERlmOG%2FFvGu6EFA%3D%3D--YSfGF81WRQCGnKs5--j3JhpP8UzzdkuvMa0dvhlA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "strict-transport-security": "max-age=63072000", + "content-type": "text/html;charset=UTF-8", + "date": "Sun, 01 Dec 2024 09:41:26 GMT", + "expires": "0", + "feature-policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", + "permissions-policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", + "pragma": "no-cache", + "referrer-policy": "strict-origin", + "strict-transport-security": "max-age=31536000; includeSubdomains; preload", "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "32b72ca9-6e29-4825-a5bc-b4dc4ef3da6b", - "x-runtime": "0.027601", - "x-xss-protection": "0" + "x-xss-protection": "1" }, "endpoints": [ { - "hostname": "www.demarches-simplifiees.fr", - "ip": "176.31.79.200", + "hostname": "osmose.numerique.gouv.fr", + "ip": "148.253.96.234", "geoip": { "continent": { "code": "EU", @@ -245670,8 +237818,8 @@ } }, { - "hostname": "sentry.io", - "ip": "35.186.247.156", + "hostname": "fonts.googleapis.com", + "ip": "64.233.180.95", "geoip": { "continent": { "code": "NA", @@ -245727,185 +237875,192 @@ }, "wappalyzer": { "urls": { - "https://www.demarches-simplifiees.fr/": { + "https://osmose.numerique.gouv.fr/": { + "status": 302 + }, + "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F": { "status": 200 } }, "technologies": [ { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", + "slug": "jalios", + "name": "Jalios", + "description": null, "confidence": 100, "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "icon": "Jalios.png", + "website": "https://www.jalios.com", "cpe": null, "categories": [ { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" + "id": 1, + "slug": "cms", + "name": "CMS" } - ], - "rootPath": true + ] }, { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "slug": "java", + "name": "Java", + "description": "Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.", "confidence": 100, "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, + "icon": "Java.svg", + "website": "https://java.com", + "cpe": "cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*", "categories": [ { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" } - ], - "rootPath": true + ] }, { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", "confidence": 100, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "version": "3.4.1", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" } ] }, { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "slug": "toastr", + "name": "toastr", + "description": "toastr is a Javascript library for non-blocking notifications. The goal is to create a simple core library that can be customized and extended.", "confidence": 100, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "version": "2.1.4", + "icon": "toastr.png", + "website": "https://github.com/CodeSeven/toastr", + "cpe": null, "categories": [ { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" } - ], - "rootPath": true + ] }, { - "slug": "stimulus", - "name": "Stimulus", - "description": "A modest JavaScript framework for the HTML you already have.", + "slug": "prototype", + "name": "Prototype", + "description": "Prototype is a JavaScript Framework that aims to ease development of web applications.", "confidence": 100, - "version": null, - "icon": "Stimulus.svg", - "website": "https://stimulusjs.org/", - "cpe": null, + "version": "1.7.2", + "icon": "Prototype.png", + "website": "https://www.prototypejs.org", + "cpe": "cpe:2.3:a:prototypejs:prototype:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" } - ], - "rootPath": true + ] }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "handlebars", + "name": "Handlebars", + "description": "Handlebars is a JavaScript library used to create reusable webpage templates.", "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "version": "4.7.7", + "icon": "Handlebars.svg", + "website": "https://handlebarsjs.com", + "cpe": "cpe:2.3:a:handlebars.js_project:handlebars.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" } - ], - "rootPath": true + ] }, { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "slug": "lightbox", + "name": "Lightbox", + "description": "Lightbox is small javascript library used to overlay images on top of the current page.", "confidence": 100, "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "icon": "Lightbox.png", + "website": "https://lokeshdhakar.com/projects/lightbox2/", + "cpe": "cpe:2.3:a:lightbox_photo_gallery_project:lightbox_photo_gallery:*:*:*:*:*:*:*:*", "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } - ], - "rootPath": true + ] }, { - "slug": "turbo", - "name": "Turbo", - "description": "Turbo is a JavaScript framework for building fast web applications.", + "slug": "twitter-emoji-twemoji", + "name": "Twitter Emoji (Twemoji)", + "description": "Twitter Emoji is a set of open-source emoticons and emojis for Twitter, TweetDeck, and also for Android and iOS versions of the application.", "confidence": 100, - "version": null, - "icon": "Turbo.svg", - "website": "https://turbo.hotwired.dev/", + "version": "14.0.2", + "icon": "default.svg", + "website": "https://twitter.github.io/twemoji/", "cpe": null, "categories": [ { - "id": 92, - "slug": "performance", - "name": "Performance" + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" } - ], - "rootPath": true + ] }, { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "slug": "moment-js", + "name": "Moment.js", + "description": "Moment.js is a free and open-source JavaScript library that removes the need to use the native JavaScript Date object directly.", "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "version": "2.29.4", + "icon": "Moment.js.svg", + "website": "https://momentjs.com", + "cpe": "cpe:2.3:a:momentjs:moment:*:*:*:*:*:*:*:*", "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } - ], - "rootPath": true + ] }, { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "slug": "jquery-ui", + "name": "jQuery UI", + "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", "confidence": 100, - "version": "3.37.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", + "version": "1.13.2", + "icon": "jQuery UI.svg", + "website": "https://jqueryui.com", + "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "jquery-migrate", + "name": "jQuery Migrate", + "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", + "confidence": 100, + "version": "3.4.0", + "icon": "jQuery.svg", + "website": "https://github.com/jquery/jquery-migrate", "cpe": null, "categories": [ { @@ -245913,31 +238068,41 @@ "slug": "javascript-libraries", "name": "JavaScript libraries" } - ], - "rootPath": true + ] }, { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.6.3", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "google-font-api", + "name": "Google Font API", + "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", "confidence": 100, "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", + "icon": "Google Font API.svg", + "website": "https://google.com/fonts", "cpe": null, "categories": [ { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" } - ], - "rootPath": true + ] }, { "slug": "hsts", @@ -245954,8 +238119,41 @@ "slug": "security", "name": "Security" } - ], - "rootPath": true + ] + }, + { + "slug": "prism", + "name": "Prism", + "description": "Prism is an extensible syntax highlighter.", + "confidence": 100, + "version": null, + "icon": "Prism.svg", + "website": "https://prismjs.com", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -245963,10 +238161,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://www.demarches-simplifiees.fr/", - "finalUrl": "https://www.demarches-simplifiees.fr/", - "fetchTime": "2024-11-24T09:53:31.540Z", - "runWarnings": [], + "requestedUrl": "https://osmose.numerique.gouv.fr/", + "finalUrl": "https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", + "fetchTime": "2024-12-01T09:41:01.446Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://osmose.numerique.gouv.fr/) was redirected to https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -245976,7 +238176,7 @@ "snapshot" ], "id": "performance", - "score": 0.68 + "score": 0.45 }, "accessibility": { "title": "Accessibility", @@ -245987,7 +238187,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.85 }, "best-practices": { "title": "Best Practices", @@ -245997,7 +238197,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -246008,7 +238208,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.83 }, "pwa": { "title": "PWA", @@ -246028,53 +238228,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6121, + "numericValue": 25429, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2869, - "firstMeaningfulPaint": 4373, - "largestContentfulPaint": 6108, - "interactive": 6121, - "speedIndex": 3865, - "totalBlockingTime": 69, - "maxPotentialFID": 128, + "firstContentfulPaint": 25354, + "firstMeaningfulPaint": 25429, + "largestContentfulPaint": 27004, + "interactive": 25429, + "speedIndex": 25354, + "totalBlockingTime": 0, + "maxPotentialFID": 16, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 377477117, + "observedTimeOriginTs": 452822283, "observedNavigationStart": 0, - "observedNavigationStartTs": 377477117, - "observedFirstPaint": 785, - "observedFirstPaintTs": 378261762, - "observedFirstContentfulPaint": 785, - "observedFirstContentfulPaintTs": 378261762, - "observedFirstContentfulPaintAllFrames": 785, - "observedFirstContentfulPaintAllFramesTs": 378261762, - "observedFirstMeaningfulPaint": 1404, - "observedFirstMeaningfulPaintTs": 378881491, - "observedLargestContentfulPaint": 939, - "observedLargestContentfulPaintTs": 378415625, - "observedLargestContentfulPaintAllFrames": 939, - "observedLargestContentfulPaintAllFramesTs": 378415625, - "observedTraceEnd": 3798, - "observedTraceEndTs": 381275038, - "observedLoad": 1391, - "observedLoadTs": 378868030, - "observedDomContentLoaded": 824, - "observedDomContentLoadedTs": 378300950, + "observedNavigationStartTs": 452822283, + "observedFirstPaint": 1414, + "observedFirstPaintTs": 454236489, + "observedFirstContentfulPaint": 1414, + "observedFirstContentfulPaintTs": 454236489, + "observedFirstContentfulPaintAllFrames": 1414, + "observedFirstContentfulPaintAllFramesTs": 454236489, + "observedFirstMeaningfulPaint": 1414, + "observedFirstMeaningfulPaintTs": 454236489, + "observedLargestContentfulPaint": 1414, + "observedLargestContentfulPaintTs": 454236489, + "observedLargestContentfulPaintAllFrames": 1414, + "observedLargestContentfulPaintAllFramesTs": 454236489, + "observedTraceEnd": 3874, + "observedTraceEndTs": 456696750, + "observedLoad": 1478, + "observedLoadTs": 454299933, + "observedDomContentLoaded": 1377, + "observedDomContentLoadedTs": 454199751, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 791, - "observedFirstVisualChangeTs": 378268117, - "observedLastVisualChange": 1407, - "observedLastVisualChangeTs": 378884117, - "observedSpeedIndex": 1087, - "observedSpeedIndexTs": 378564190 + "observedFirstVisualChange": 1426, + "observedFirstVisualChangeTs": 454248283, + "observedLastVisualChange": 1426, + "observedLastVisualChangeTs": 454248283, + "observedSpeedIndex": 1426, + "observedSpeedIndexTs": 454248496 }, { "lcpInvalidated": false @@ -246092,23 +238292,23 @@ "type": "debugdata", "items": [ { - "numRequests": 41, - "numScripts": 14, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 1300, + "numRequests": 16, + "numScripts": 1, + "numStylesheets": 1, + "numFonts": 3, + "numTasks": 413, "numTasksOver10ms": 4, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 3.4050000000000002, - "throughput": 10128539.457396178, - "maxRtt": 86.369, - "maxServerLatency": 26.915999999999997, - "totalByteWeight": 1038093, - "totalTaskTime": 268.07399999999734, - "mainDocumentTransferSize": 9089 + "rtt": 82.269, + "throughput": 72355926.26959229, + "maxRtt": 82.269, + "maxServerLatency": 3.7109999999999985, + "totalByteWeight": 5323688, + "totalTaskTime": 379.67699999999957, + "mainDocumentTransferSize": 6314 } ] } @@ -246118,17 +238318,17 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://www.demarches-simplifiees.fr/declaration-accessibilite" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251951" }, "declaration-rgpd": [ { @@ -246138,227 +238338,153 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://www.demarches-simplifiees.fr/mentions-legales" + "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251952" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "demarches-simplifiees.fr", - "type": "startup", - "attributes": { - "name": "Démarches Simplifiées", - "pitch": "Dématérialiser n’importe quelle démarche administrative en quelques minutes", - "stats_url": "https://www.demarches-simplifiees.fr/stats", - "link": "https://www.demarches-simplifiees.fr", - "repository": "https://github.com/betagouv/tps", - "contact": "contact@demarches-simplifiees.fr", - "content_url_encoded_markdown": "demarches-simplifiees.fr%20est%20une%20application%20enti%C3%A8rement%20en%20ligne%20qui%20permet%20%C3%A0%20tous%20les%20organismes%20assurant%20des%20missions%20de%20service%20public%20de%20cr%C3%A9er%20des%20d%C3%A9marches%20en%20quelques%20minutes%20et%20de%20g%C3%A9rer%20les%20demandes%20des%20usagers%20sur%20une%20plateforme%20d%C3%A9di%C3%A9e.%0A%0A%2A%2ALe%20constat%2A%2A%0A%0AEn%202017%2C%20les%20usagers%20devraient%20pouvoir%20effectuer%20toutes%20leurs%20d%C3%A9marches%20en%20ligne.%20Ils%20ne%20devraient%20plus%20avoir%20%C3%A0%20transmettre%20des%20informations%20dont%20l%E2%80%99administration%20dispose%20d%C3%A9j%C3%A0%20ou%20faire%20eux-m%C3%AAmes%20le%20lien%20entre%20une%20multitude%20d%E2%80%99interlocuteurs%20publics.%0A%0ALa%20d%C3%A9mat%C3%A9rialisation%2C%20quant%20%C3%A0%20elle%2C%20ne%20devrait%20pas%20%C3%AAtre%20un%20investissement%20humain%20et%20financier%20pour%20les%20gestionnaires%20et%20les%20agents%20publics.%20Elle%20devrait%20%C3%AAtre%20un%20gain%20de%20temps%20et%20un%20facteur%20d%E2%80%99%C3%A9conomie.%0A%0AC%E2%80%99est%20encore%20loin%20d%E2%80%99%C3%AAtre%20le%20cas.%0A%0APour%20les%20seules%20d%C3%A9marches%20des%20entreprises%20sous%20la%20responsabilit%C3%A9%20de%20l%E2%80%99Etat%2C%20plus%20de%201%20000%20d%C3%A9marches%20sont%20encore%20uniquement%20en%20papier.%20Au%20rythme%20actuel%20d%E2%80%99environ%20100%20d%C3%A9marches%20d%C3%A9mat%C3%A9rialis%C3%A9es%20par%20an%2C%20il%20faudra%20pr%C3%A8s%20de%2010%20ans%20pour%20achever%20la%20d%C3%A9mat%C3%A9rialisation.%0A%0AEt%20si%20chaque%20administration%20fait%20le%20choix%20de%20d%C3%A9velopper%20ses%20propres%20outils%20informatique%20%28au%20lieu%20d%E2%80%99utiliser%20un%20outil%20mutualis%C3%A9%20comme%20demarches-simplifiees.fr%29%2C%20ce%20sont%20des%20dizaines%20de%20millions%20d%E2%80%99euros%20qui%20seront%20d%C3%A9pens%C3%A9s%20en%20pure%20perte%E2%80%A6%0A%0A%2A%2Ademarches-simplifiees.fr%2C%20c%E2%80%99est%20pour%20qui%20%3F%2A%2A%0A%0AVous%20travaillez%20dans%20un%20organisme%20public%20%3F%20Vous%20g%C3%A9rez%20des%20d%C3%A9marches%20administratives%20%3F%20Vous%20voulez%20moderniser%20votre%20administration%20%3F%0A%0Ademarches-simplifiees.fr%20est%20pour%20vous.%0A%0A_Faites%20gagner%20du%20temps%20%C3%A0%20vos%20usagers%2C%20faites%20%C3%A9conomiser%20de%20l%E2%80%99argent%20au%20contribuable%20et%20%C3%A0%20votre%20administration%20%3A%20utilisez%20demarches-simplifiees.fr%20%21_%0A%0A%2A%2APourquoi%20utiliser%20demarches-simplifiees.fr%20%3F%2A%2A%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Agratuit%2A%2A%20%28pour%20tous%20les%20organismes%20assurant%20des%20missions%20de%20service%20public%20-%20services%20de%20l%E2%80%99Etat%2C%20op%C3%A9rateurs%2C%20collectivit%C3%A9s%29.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Asimple%2A%2A%20%3A%20outil%20enti%C3%A8rement%20en%20ligne%20%28en%20SaaS%2C%20Software%20as%20a%20Service%29%2C%20sans%20installation%20ni%20param%C3%A9trage%20%C3%A0%20effectuer%2C%20qui%20peut%20%C3%AAtre%20utilis%C3%A9%20directement%20par%20les%20services%20instructeurs.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Aint%C3%A9gr%C3%A9%20%C3%A0%20l%E2%80%99%C3%A9cosyst%C3%A8me%20num%C3%A9rique%20public%2A%2A%20%3A%20r%C3%A9cup%C3%A9ration%20automatique%20des%20informations%20dont%20l%E2%80%99administration%20dispose%20d%C3%A9j%C3%A0%20sur%20le%20demandeur%20via%20l%E2%80%99API%20entreprise%20aujourd%E2%80%99hui%20%28et%20l%E2%80%99API%20particuliers%20demain%29%20et%20connection%20avec%20France%20Connect.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Acollaboratif%2A%2A%20%3A%20possibilit%C3%A9%20d%E2%80%99%C3%A9laborer%20et%20d%E2%80%99instruire%20les%20demandes%20%C3%A0%20plusieurs%2C%20pour%20une%20plus%20grande%20fluidit%C3%A9.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2As%C3%BBr%2A%2A%20%3A%20plateforme%20certifi%C3%A9e%20R%C3%A9f%C3%A9rentiel%20G%C3%A9n%C3%A9ral%20de%20S%C3%A9curit%C3%A9%20%28RGS%29.%0A%0A%2A%2AExemples%20d%E2%80%99utilisation%2A%2A%0A%0A_Pr%C3%A9fecture%20du%20Nord%20Pas-de-Calais_%20%3A%20appel%20%C3%A0%20projet%20pour%20les%20quartiers%20prioritaires%20de%20la%20politique%20de%20la%20ville%0A%0A_Direction%20R%C3%A9gionale%20et%20Interd%C3%A9partementale%20de%20l%E2%80%99Equipement%20et%20de%20l%E2%80%99Am%C3%A9nagement%20d%E2%80%99Ile%20de%20France_%20%3A%20inscription%20au%20registre%20des%20professionnels%20du%20transport%20routier%0A%0A_Minist%C3%A8re%20de%20l%E2%80%99Environnement%2C%20de%20l%E2%80%99Energie%20et%20de%20la%20Mer_%20%3A%20syst%C3%A8me%20d%27%C3%A9change%20de%20quotas%20de%20gaz%20%C3%A0%20effet%20de%20serre%20pour%20les%20installations%20fixes%0A%0A_Agence%20France%20Entrepreneur_%20%3A%20appel%20%C3%A0%20manifestations%20d%E2%80%99int%C3%A9r%C3%AAt%20pour%20le%20d%C3%A9ploiement%20d%E2%80%99une%20offre%20d%E2%80%99acc%C3%A9l%C3%A9rateurs%20de%20d%C3%A9veloppement%20des%20TPE%0A%0A_Assembl%C3%A9e%20Permanente%20des%20Chambres%20des%20M%C3%A9tiers%20et%20de%20l%E2%80%99Artisanat_%20%3A%20pr%C3%A9-inscription%20%C3%A0%20l%27examen%20national%20d%27aptitude%20pour%20l%27acc%C3%A8s%20%C3%A0%20l%27emploi%20de%20secr%C3%A9taire%20g%C3%A9n%C3%A9ral%20des%20chambres%20des%20m%C3%A9tiers%0A%0A%2A%2AContact%2A%2A%0A%0Ademarches-simplifiees.fr%20est%20d%C3%A9velopp%C3%A9%20par%20l%E2%80%99incubateur%20de%20services%20num%C3%A9riques%20de%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%2C%20rattach%C3%A9%20aux%20services%20du%20Premier%20ministre.%0A%0AVous%20voulez%20en%20savoir%20plus%20%3F%20Vous%20voulez%20une%20d%C3%A9mo%20%3F%20%3Ca%20href%3D%22https%3A%2F%2Fwww.demarches-simplifiees.fr%2Fcontact%22%3EContactez-nous%3C%2Fa%3E.", - "events": [ - { - "name": "national_impact", - "date": "2018-01-01", - "comment": "" - }, - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 30000€ pour la promotion 12" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2015-09-15", - "end": "" - }, - { - "name": "construction", - "start": "2015-09-15", - "end": "" - }, - { - "name": "success", - "start": "2020-07-01", - "end": "" - } - ], - "sponsors": [ - "dinum" + "mention": "Données personnelles", + "maxScore": 5, + "score": 2, + "missingWords": [ + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" ], - "thematiques": [ - "Outil technique", - "Administratif" + "missingTrackers": [ + "googlefonts" ], - "analyse_risques_url": "https://github.com/demarches-simplifiees/demarches-simplifiees.fr/blob/main/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur.net/url/www-demarches-simplifiees-fr/", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum_produits_interministeriels" - } - } + "declarationUrl": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/displayPage.jsp?id=c_2251953" } - }, + ], + "betagouv": null, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://www.demarches-simplifiees.fr", - "size": 1080.942, - "nodes": 261, - "requests": 38, + "url": "https://osmose.numerique.gouv.fr", + "size": 3360.293, + "nodes": 155, + "requests": 24, "grade": "B", "score": 75, "ges": 1.5, "water": 2.25, "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:50:35.211286", + "date": "2024-12-01 09:37:55.823421", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "B+", + "httpGrade": "C", "apdex": 0.983, "apdexGrade": "B", - "uptime": 99.987, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", + "uptime": 98.327, + "uptimeGrade": "B", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-08T22:59:00.000Z", - "testsslGrade": "T", - "cookiesGrade": "C", - "cookiesCount": 4, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.68, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, + "testsslExpireDate": "2025-04-03T21:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 4, + "lighthouse_performance": 0.45, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.85, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", + "statsGrade": "F", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", - "declaration-a11y": "B", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", + "declaration-rgpd-pc": "D", "ecoindexGrade": "B", - "dsfrGrade": "A" + "dsfrGrade": "F" } }, { "404": null, - "url": "https://www.snu.gouv.fr", - "category": "engagement_civique", - "betaId": "snu", + "url": "https://www.data.gouv.fr", + "category": "dinum_produits_interministeriels", + "betaId": "data.gouv.fr", "http": { - "url": "https://www.snu.gouv.fr", + "url": "https://www.data.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 07:41:03 GMT", - "grade": "F", + "end_time": "Sun, 20 Oct 2024 03:42:22 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "CF-RAY": "8d575ce47e6576df-SEA", - "Cache-Control": "max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 07:40:59 GMT", - "Expires": "Sun, 20 Oct 2024 07:40:59 GMT", - "Last-Modified": "Sun, 20 Oct 2024 07:40:58 GMT", - "Server": "cloudflare", - "Sozu-Id": "01JAMDYJX7MJ90J179VFBPREZY", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "cf-cache-status": "DYNAMIC" + "cache-control": "public", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 20 Oct 2024 03:42:19 GMT", + "pragma": "public", + "server": "nginx", + "set-cookie": "session=d2~eyJjc3JmX3Rva2VuIjoiN2IxYTIxMjhjYmE1MTAxYTEyNGE4MmE3ODRkYzc4Y2U4MzU3NDhjOSJ9.ZxR8Gw.bwwqnG6OK53U1B9QtHmrKmxCycs; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding, Cookie", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-xss-protection": "1; mode=block" }, - "scan_id": 57054458, - "score": 5, - "start_time": "Sun, 20 Oct 2024 07:40:56 GMT", + "scan_id": 57049486, + "score": 55, + "start_time": "Sun, 20 Oct 2024 03:42:17 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 6, - "tests_passed": 4, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "handl_ip": { - "domain": ".snu.gouv.fr", - "expires": 1732002062, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": false - }, - "handl_landing_page": { - "domain": ".snu.gouv.fr", - "expires": 1732002062, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": false - }, - "handl_url": { - "domain": ".snu.gouv.fr", - "expires": 1732002062, - "httponly": false, + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "session": { + "domain": ".www.data.gouv.fr", + "expires": null, + "httponly": true, "max-age": null, "path": "/", "port": null, - "samesite": false, - "secure": false + "samesite": "Lax", + "secure": true } }, - "sameSite": null + "sameSite": true }, - "pass": false, - "result": "cookies-without-secure-flag", - "score_description": "Cookies set without using the Secure flag or set over HTTP", - "score_modifier": -20 + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -246379,11 +238505,12 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://www.snu.gouv.fr/", + "destination": "https://www.data.gouv.fr/fr/", "redirects": true, "route": [ - "http://www.snu.gouv.fr/", - "https://www.snu.gouv.fr/" + "http://www.data.gouv.fr/", + "https://www.data.gouv.fr/", + "https://www.data.gouv.fr/fr/" ], "status_code": 200 }, @@ -246424,66 +238551,57 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://plausible.io/js/script.js": { - "crossorigin": null, - "integrity": null - }, - "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "n02y", - "url": "https://www.snu.gouv.fr", + "token": "eh2b", + "url": "https://www.data.gouv.fr", "alias": null, "last_status": 200, - "uptime": 100, + "uptime": 99.784, "down": false, "down_since": null, - "up_since": "2024-11-22T10:06:44Z", + "up_since": "2024-11-30T11:57:12Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -246492,984 +238610,1243 @@ "published": true, "disabled_locations": [], "recipients": [ + "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T10:02:55Z", - "next_check_at": "2024-11-24T10:03:55Z", + "last_check_at": "2024-12-01T09:47:34Z", + "next_check_at": "2024-12-01T09:48:34Z", "created_at": "2024-01-15T13:56:21Z", "mute_until": null, - "favicon_url": "https://www.snu.gouv.fr/wp-content/uploads/2023/03/cropped-SNU_LOGO_RVB_VDEF-1-1-192x192.png", + "favicon_url": "https://static.data.gouv.fr/_themes/gouvfr/img/favicon.png?_=6.0.5", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T09:56:56Z", - "expires_at": "2025-02-13T21:11:21Z", + "tested_at": "2024-12-01T09:45:40Z", + "expires_at": "2024-12-17T22:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.847, + "apdex": 0.982, "timings": { - "redirect": 0, - "namelookup": 23, - "connection": 3, - "handshake": 11, - "response": 356, - "total": 393 + "redirect": 790, + "namelookup": 0, + "connection": 148, + "handshake": 158, + "response": 249, + "total": 1346 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "B" }, "nmap": { - "host": "www.snu.gouv.fr", + "host": "www.data.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "997", "open_ports": [ { "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "443", - "vulnerabilities": [] + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "9.2p1 Debian 2+deb12u3", + "vulnerabilities": [ + { + "is_exploit": "true", + "cvss": "10.0", + "type": "githubexploit", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" + }, + { + "is_exploit": "true", + "cvss": "10.0", + "type": "githubexploit", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" + }, + { + "is_exploit": "false", + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-38408" + }, + { + "is_exploit": "false", + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-28531" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "packetstorm", + "id": "PACKETSTORM:179290" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "D1E049F1-393E-552D-80D1-675022B26911" + }, + { + "is_exploit": "false", + "cvss": "8.1", + "type": "cve", + "id": "CVE-2024-6387" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "6FD8F914-B663-533D-8866-23313FD37804" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "452ADB71-199C-561E-B949-FCDE6288B925" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "zdt", + "id": "1337DAY-ID-39674" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "11F020AC-F907-5606-8805-0516E06160EE" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" + }, + { + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "seebug", + "id": "SSV:92579" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "packetstorm", + "id": "PACKETSTORM:173661" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "zdt", + "id": "1337DAY-ID-26576" + }, + { + "is_exploit": "false", + "cvss": "6.5", + "type": "cve", + "id": "CVE-2023-51385" + }, + { + "is_exploit": "false", + "cvss": "5.9", + "type": "cve", + "id": "CVE-2023-48795" + }, + { + "is_exploit": "false", + "cvss": "5.5", + "type": "cve", + "id": "CVE-2023-51384" + }, + { + "is_exploit": "true", + "cvss": "0.0", + "type": "packetstorm", + "id": "PACKETSTORM:140261" + }, + { + "is_exploit": "true", + "cvss": "0.0", + "type": "githubexploit", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" + }, + { + "is_exploit": "true", + "cvss": "0.0", + "type": "githubexploit", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" + } + ] } }, { "service": { "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", + "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", + "name": "https", + "product": "nginx", + "id": "443", "vulnerabilities": [] } } ], - "grade": "B" + "grade": "F" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "cwe": "CWE-310", "finding": "not offered" }, { - "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "LOW", - "cwe": "CWE-310", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" - }, - { - "id": "FS", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" - }, - { - "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "prime256v1" - }, - { - "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" - }, - { - "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "310999E39A93230213CD5C8A4495F0D3" - }, - { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "CA0567CA76682816AB335A900757689BE0188CC8" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" - }, - { - "id": "cert ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "81 >= 60 days" - }, - { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "2024-11-15 21:11" - }, - { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "2025-02-13 21:11" - }, - { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_NULL", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_aNULL", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/MQk" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_EXPORT", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "offered" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_LOW", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "not revoked" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_3DES_IDEA", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "--" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_OBSOLETED", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "LOW", - "finding": "--" + "cwe": "CWE-310", + "finding": "offered" }, { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_STRONG_NOFS", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "yes (certificate extension)" + "finding": "offered" }, { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherlist_STRONG_FS", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "3" + "severity": "OK", + "finding": "offered" }, { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipher_order-tls1_2", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "OK", + "finding": "server" }, { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipherorder_TLSv1_2", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cipher_order", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFCzCCAvOgAwIBAgIQf9niwtIEigR0tieibQhopzANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPbjYWircr7kaYAx1TcA937qNLoHK+jyMtwkfGj1yN+T3mGo7uMyINyRFIuLBizvRpDXICfd7VJg/DbpvPfg7XIM/GkDujggbaOp3/bFa/3OlhlEXkabxPD8kTwK1hRHIggdAPK55oamJqj4oiV3lpK+IkM352YyxdvFFpfiMHsf92gfHuuFi1azUV76HmSCg5lzHZBx+Vp56uz5i8no2KA+Gwl01Qb5NMSh/4233xkJkVf+OW7e4xgepyPVId3yVkpQtwqp7oqLlHyKdaECVgb0Lh1z/njwzwwoNGMyDmS3cEdqFop10VGO/YKHc1rQ6tRuRibuKq+MzvN34PJrMHAgMBAAGjgf4wgfswDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBRmaUnU3iqckQPPiQ4kuA4wA26ILjAfBgNVHSMEGDAWgBTkrysmcRorSCeFL1JmLO/wiRNxPjA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUHMAKGGGh0dHA6Ly9pLnBraS5nb29nL3IxLmNydDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vYy5wa2kuZ29vZy9yL3IxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAgEATuazCBEgkWAn+VGQTQIY7rjBidUihJfm1t/mTjo7KQR+3iDx4o2L06oeF0Q3wpKYpQgI/TeMqUlYMWQmZbWPE0PX8pfsVAE5E5tVOjh34bNAJwDPVnsZVJwzN3nw5BGQ7sxRspFzIcM/qbbTpNeXf9II4Wsk2+Tv6FSVFZUL3/0uHradbruDWjRQ4IZ7mYqKiEqk08dpOZ+TmBzwykEGy1/IXberb6Ap1SSnn2+RI7t6N/fqPCrwwFjp8kg1G6etRATGBaPYCx+GjJMFPX+k97Alvoj3/98SvqdegLPYEPjvxUclHpiKLD63NMmVarVQddIL6kOvTe5k0pnxRnR+mndGHIQc77TLbcZFeja56PynlSqmer578c7CBrPqo1BVmPyWUK+v6sGuzs7Mq7QQaxVs4710cI/MpPp1ovxMVt17ENKxLk34LpEKAKVmqwnzbHHRjhXNeCC984XDOwLEp0K4MzHl8ZOWJQAakCdVlFC+PyA3GP2JX/QLoqWNHGuN9c9vLObDhHVs/L+65De+OdnnjpFGI9xxtsNyRsyaHdFAf5z7ulOoXDXkHCCej/Ehs5docReNt16W2xbH/EBuirJrOzFE2rtALxksl1TdEjOfIKXOJfUqQeVI5+hA7V+n1+A/n7Npg0S+5ODytWh5XW54ccN1drJnMK54ttozh0c=\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "server" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "FS", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + "severity": "OK", + "finding": "offered" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "FS_ciphers", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "FS_ECDHE_curves", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "prime256v1 secp384r1 secp521r1" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "TLS_extensions", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "TLS_session_ticket", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" + "finding": "valid for 7200 seconds only ( ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "SSL_sessionID_support", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "yes" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "sessionresumption_ticket", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "supported" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "sessionresumption_ID", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" + "finding": "supported" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "TLS_timestamp", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" + "severity": "INFO", + "finding": "random" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "certificate_compression", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "none" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "clientAuth", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" + "finding": "none" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_numbers", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "1" }, { - "id": "cert_signatureAlgorithm ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_signatureAlgorithm", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_keySize", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "EC 256 bits (curve P-256)" + "finding": "RSA 3072 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_keyUsage", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "Digital Signature" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_extKeyUsage", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_serialNumber", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "3FBA013F3224F5F711CAE693744629B2" + "finding": "F6B33EBF396E6264E9DC476903B2C094" }, { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_serialNumberLen", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "16" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_fingerprintSHA1", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" + "finding": "16CF2D50CA035C9123316BE1ED759B4BE924DDAD" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_fingerprintSHA256", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" + "finding": "EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" }, { - "id": "cert ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIJDTCCBvWgAwIBAgIRAPazPr85bmJk6dxHaQOywJQwDQYJKoZIhvcNAQELBQAwfTELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURISU1ZT1RJUzEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEdMBsGA1UEYQwUTlRSRlItNDgxNDYzMDgxMDAwMzYxHTAbBgNVBAMMFENlcnRpZ25hIFNlcnZpY2VzIENBMB4XDTI0MDMyNDIzMDAwMFoXDTI0MTIxNzIyNTk1OVowcTELMAkGA1UEBhMCRlIxDjAMBgNVBAcMBVBBUklTMSYwJAYDVQQKDB1HT1VWRVJORU1FTlQgUFJFTUlFUiBNSU5JU1RSRTEVMBMGA1UEAwwMZGF0YS5nb3V2LmZyMRMwEQYDVQQFEwpTMzA0MzgxMTI3MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAxeh2LqPqssPgzFUG5E4+KqjLpnLJWYmDWAG89xVdJz35hIHBby3u/SezLjRMvO4RgRyTLbHbhzsuAXADkKUfbObaULMqWTOvANpkTHFKNOFRO1UBWD80h7yf7DQ60rio2IGo7HsnqPEf9Sp408ZRKCGEmtCrOmtfOAdmj6yZeW9fNMS1OmbDYh5eL4v0h2koEfb+ZjEUCv8Jd6SvDdhkbQjBChRdqp6BOZ3p8WCvzAEBSUmGfUMia5DM4mR/mKprSrbz8Ko2aFtXYFTLnGqFfQ2RTCcTX3E2SeyXY95JtjtcvXz0s3aHqeuXalBzsJ2ll0afVPa6Ne4BjW/JdCVDJMWiTDmKiHfcU/rd2J5XRBepxy0+cDKPmUTkjGhmnbsDWUnlcRTHlKS6fyHP965+KHJHL6bjBpoxt6DXcgLFs/A40cz5sOr6Ag6GL1a+XcFW93RmX4Nx6jcX3SNQTgDnU0OAEjzTT4GtpS6hVyLYhjdnnbG4wSrVlOq096q8uN+TAgMBAAGjggQSMIIEDjCB5AYIKwYBBQUHAQEEgdcwgdQwNgYIKwYBBQUHMAKGKmh0dHA6Ly9hdXRvcml0ZS5jZXJ0aWduYS5mci9zZXJ2aWNlc2NhLmRlcjA4BggrBgEFBQcwAoYsaHR0cDovL2F1dG9yaXRlLmRoaW15b3Rpcy5jb20vc2VydmljZXNjYS5kZXIwLgYIKwYBBQUHMAGGImh0dHA6Ly9zZXJ2aWNlc2NhLm9jc3AuY2VydGlnbmEuZnIwMAYIKwYBBQUHMAGGJGh0dHA6Ly9zZXJ2aWNlc2NhLm9jc3AuZGhpbXlvdGlzLmNvbTAfBgNVHSMEGDAWgBSs7IaPSzccuH8XGxnQruhO4zRcEjAMBgNVHRMBAf8EAjAAMGEGA1UdIARaMFgwCAYGZ4EMAQICMEwGCyqBegGBMQIFAQECMD0wOwYIKwYBBQUHAgEWL2h0dHBzOi8vd3d3LmNlcnRpZ25hLmNvbS9hdXRvcml0ZS1jZXJ0aWZpY2F0aW9uMGUGA1UdHwReMFwwLaAroCmGJ2h0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9zZXJ2aWNlc2NhLmNybDAroCmgJ4YlaHR0cDovL2NybC5jZXJ0aWduYS5mci9zZXJ2aWNlc2NhLmNybDATBgNVHSUEDDAKBggrBgEFBQcDATAOBgNVHQ8BAf8EBAMCBaAwZQYDVR0RBF4wXIISc29ycnkuZGF0YS5nb3V2LmZyghNzdGF0aWMuZGF0YS5nb3V2LmZyggxkYXRhLmdvdXYuZnKCEHd3dy5kYXRhLmdvdXYuZnKCEWRlbW8uZGF0YS5nb3V2LmZyMB0GA1UdDgQWBBSP0BG7xkP9aMejNF6aMuyIGTBvSTCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGOdZQnIQAABAMARzBFAiEAhh86LlEQ3Vu9UVRSPuBYp31iJg/ASFElFCXTxjUDZScCIFy3jFsnjMy1roY/6cLhMYw1AlzoOtU6OfZx/VhNkaDsAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOdZQpNQAABAMARzBFAiEA43rDdXMz/nRYNTPaZgn9ch9iD3qlDKTpf1/XKMMCX2ACIAyXazhRXS0gHsl67KUfpRxdDC4JlPY5egnzc0RnoQe+AHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGOdZQqFwAABAMASDBGAiEAr/hVbCiwIlWK1Yz72rnqW1hmg8MvxNLKLwbFBNnITQMCIQCo+PLEvw3YH3cEKK1+a2M9cTTnjLywNhdvBdYAp8KyRzANBgkqhkiG9w0BAQsFAAOCAgEAlQIvN5mQpb2A+pAarCPx4l7vx1LiPYwxDzDCC/U6M3Zb/2vIwWyHwmJyLUnxASV0DjBDJpuhVELOWwajgqs0gpDb6pLsMKyxh+efBGPiPeJEEZ0CvklTaTQ02P/e1fXcLVdzdWapNdY1xMjihVhmPJpidhknuL/Fft/MDB01qC3GrgKhfuO7He8yw/WzWk8rZ9sr0alSsEW49GyrngQQV8TzlXKTK5fSMzEXxVq3RSBTPXJazN4CPHp/i83l51VlF5vQk3vzkcwGknQ7QIcr46fqITGMQN/zXXlRgSNcNknuOckdviP0pXGMwKylGm+CPAhfHPZvH1TZmLO5EWtqyAuSS04FfP7tFXiZjIMYZveDOK+AOXWDCFuq/hB7HkRCZjHq2qNpX7GcFJRUzmGs6uotvsSIWgNdQ8Q++9f1jJvrGnkgpugkH6RjUwtcjvkQHs9OsUKEBLKGwMgihfOG0dxIh32k0BdPXrqVPWSwg22fy2E+nglGGNc18qRImF8GcGd1F7I3Z00nNp/pKMkwiSy3toROe5qClj3gMeiuST4eSLDqf1SMwPWP1TadZZpgvKxVJxlViQpUCMQ/8n1ZBY18OS0kM5+dMWtcGgyAIiew26fGAgYFV9CLt0oe3Afm2uNgeNbYwi+tprZP1yFwWe4j5ZCWkJTyYVIyGqGZUng=\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_commonName", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "www.snu.gouv.fr" + "finding": "data.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_commonName_wo_SNI", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed, usual for EC certificates" + "finding": "data.gouv.fr" }, { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_subjectAltName", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "www.snu.gouv.fr" + "finding": "sorry.data.gouv.fr static.data.gouv.fr data.gouv.fr www.data.gouv.fr demo.data.gouv.fr" }, { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_trust", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN (same w/o SNI)" }, { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_chain_of_trust", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_certificatePolicies_EV", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_expirationStatus", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "81 >= 60 days" + "severity": "HIGH", + "finding": "expires < 30 days (16)" }, { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_notBefore", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "2024-11-15 21:11" + "finding": "2024-03-24 23:00" }, { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_notAfter", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "2025-02-13 21:11" + "severity": "HIGH", + "finding": "2024-12-17 22:59" }, { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_extlifeSpan", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_eTLS", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_crlDistributionPoints", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" + "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_ocspURL", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/P7o" - }, - { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/104.22.16.136", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "OCSP_stapling", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_mustStapleExtension", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "DNS_CAArecord", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "certificate_transparency", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "certs_countServer", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "3" }, { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "certs_list_ordering_problem", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "cert_caIssuers", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_notBefore <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2015-11-25 11:33" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_notAfter <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2025-11-22 11:33" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_expiration <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_chain <#1>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "Certigna Services CA <-- Certigna" }, { - "id": "intermediate_cert <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIGWzCCBEOgAwIBAgIRAMrpG4nxVQMNo+ZBbcTjpuEwDQYJKoZIhvcNAQELBQAwWjELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURoaW15b3RpczEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEZMBcGA1UEAwwQQ2VydGlnbmEgUm9vdCBDQTAeFw0xMzEwMDEwODMyMjdaFw0zMzEwMDEwODMyMjdaMFoxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxGTAXBgNVBAMMEENlcnRpZ25hIFJvb3QgQ0EwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDNGDllGlmx6mQWDoyUJJV8g9PFOSbcDO8WV43X2KyjQn+Cyu3NW9sOty3tRQgXstmzy9YXUnIo245Onoq2C/mehJpNdt4iKVzSs9IGPjA5qXSjklYcoW9MCiBtnyN6tMbaLOQdLNyzKNAT8kxOAkmhVECe5uUFoC2EyP+YbNDrihqECB63aCPuI9Vwzm1RaRDuoXrC0SIxwoKF0vJVdlB8JXrJhFwLrN1CTivngqIkicuQstDuI7pmTLtipPlTWmR7fJj6o0ieD5Wupxj0auwuA0Wv8HT4Ks16XdG+RCYyKfHx9WzMfgIhC59vpD++nVPiz32pLHxYGpfhPTc3GGYo0kDFUYqMwy3OU4gkWGQwFsWq4NYKpkDfePb1BHxpE4S80dGnBs8B92jAqFe7OmGtBIyT46388NtEbVncSVmurJqZNjBBe3YzIoejwpKGbvlw7q6Hh5UbxHq9MfPU0uWZ/75I7HX1eBYdpnDBfzwboZL7z8g81sWTCo/1VTp2lc5ZmIoJlXcymoO6LAQ6l73UL77XbJuiyn1tJslV1c/DeVIICZkHJC1kJWumIWmbat10TWuXekG9qxf5kBdIjzb5LdXF2+6qhUVB+s06RbFo5jZMm5BX7CO5hwjCxAnxl4YqKE3idMDaxIzb3+KhF1nOJFl0Mdp//TBt2dzhauH8XwIDAQABo4IBGjCCARYwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBiHVuBud+4kNTxOc5of1uHieX4rMB8GA1UdIwQYMBaAFBiHVuBud+4kNTxOc5of1uHieX4rMEQGA1UdIAQ9MDswOQYEVR0gADAxMC8GCCsGAQUFBwIBFiNodHRwczovL3d3d3cuY2VydGlnbmEuZnIvYXV0b3JpdGVzLzBtBgNVHR8EZjBkMC+gLaArhilodHRwOi8vY3JsLmNlcnRpZ25hLmZyL2NlcnRpZ25hcm9vdGNhLmNybDAxoC+gLYYraHR0cDovL2NybC5kaGlteW90aXMuY29tL2NlcnRpZ25hcm9vdGNhLmNybDANBgkqhkiG9w0BAQsFAAOCAgEAlLieT/DjlQgi581oQfccVdV8AOItOoldaDgvUSILSo3L6btdPrtcPbEo/uRTVRPPoZAbAh1fZkYJMyjhDSSXcNMQH+pkV5a7XdrnxIxPTGRGHVyH41neQtGbqH6mid2PHMkwgu07nM3A6RngatgCdTer9zQoKJHyBApPNeNgJgH60BGM+RFq7q89w1DTj18zeTyGqHNFkIwgtnJzFyO+B2XleJINugHA64wcZr+shncBlA2c5uk5jR+mUYyZDDl34bSb+hxnV29qao6pK0xXeXpXIs/NX2NGjVxZOob4Mkdio2cNGJHc+6Zr9UhhcyNZjgKnvETq9Emd8VRY+WCv2hikLyhF3HqgiIZd8zvn/yk1gPxkQ5Tm4xxvvq0OKmOZK8l+hfZx6AYDlf7ej0gcWtSS6Cvu5zHbugRqh5jnxV/vfaci9wHYTfmJ0A6aBVmknpjZbyvKcL5kwlWj9Omvw5Ip3IgWJJk8jSaYtlu3zM63Nwf9JtmYhST/WSMDmu2dnajkXjjO11INb9I/bbEFa0nOipFGc/T2L/Coc3cOZayhjWZSaX5LaAzHHjcng6WMxwLkFM1JAbBzs/3GkDpv0mztO+7skb6iQ12LAEpmJURw3kAP+HwV96LOPNdeE4yBFxgX0b3xdxA61GU5wSesVywlVP+i2k+KYTlerj1KjL0=\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_notBefore <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2013-10-01 08:32" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_notAfter <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2033-10-01 08:32" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_expiration <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_chain <#2>", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "Certigna Root CA <-- Certigna Root CA" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "intermediate_cert_badOCSP", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 FOUND ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "1732442454" + "finding": "1733046318" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "nginx" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "X-Frame-Options", + "ip": "www.data.gouv.fr/37.59.183.91", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "www.data.gouv.fr/37.59.183.91", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "www.data.gouv.fr/37.59.183.91", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "max-age=0" + "finding": "public" + }, + { + "id": "Pragma", + "ip": "www.data.gouv.fr/37.59.183.91", + "port": "443", + "severity": "INFO", + "finding": "public" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -247477,7 +239854,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -247486,7 +239863,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -247495,7 +239872,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -247504,7 +239881,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -247513,7 +239890,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -247521,7 +239898,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -247530,7 +239907,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -247539,16 +239916,16 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -247557,14 +239934,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -247573,7 +239950,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -247582,7 +239959,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -247591,34 +239968,34 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" }, { - "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "LOGJAM-common_primes", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", - "severity": "OK", + "severity": "INFO", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "RFC7919/ffdhe2048" }, { - "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.16.136", + "id": "LOGJAM", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -247627,7 +240004,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -247636,7 +240013,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -247645,7 +240022,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -247654,399 +240031,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.data.gouv.fr/37.59.183.91", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "not offered" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -248054,7 +240424,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -248062,7 +240432,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -248070,7 +240440,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -248078,7 +240448,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -248086,7 +240456,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -248094,791 +240464,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" - }, - { - "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "310999E39A93230213CD5C8A4495F0D3" - }, - { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "CA0567CA76682816AB335A900757689BE0188CC8" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" - }, - { - "id": "cert ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "81 >= 60 days" - }, - { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "2024-11-15 21:11" - }, - { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "2025-02-13 21:11" - }, - { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/MQk" - }, - { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "TLS_session_ticket", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" + "finding": "valid for 7200 seconds only ( ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "SSL_sessionID_support", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "yes" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "sessionresumption_ticket", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "supported" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "sessionresumption_ID", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" + "finding": "supported" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "TLS_timestamp", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" + "severity": "INFO", + "finding": "random" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "certificate_compression", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "none" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "clientAuth", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" + "finding": "none" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_numbers", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "1" }, { - "id": "cert_signatureAlgorithm ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_signatureAlgorithm", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_keySize", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "EC 256 bits (curve P-256)" + "finding": "RSA 3072 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_keyUsage", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "Digital Signature" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_extKeyUsage", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_serialNumber", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "3FBA013F3224F5F711CAE693744629B2" + "finding": "F6B33EBF396E6264E9DC476903B2C094" }, { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_serialNumberLen", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "16" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_fingerprintSHA1", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" + "finding": "16CF2D50CA035C9123316BE1ED759B4BE924DDAD" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_fingerprintSHA256", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" + "finding": "EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" }, { - "id": "cert ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDnDCCA0OgAwIBAgIQP7oBPzIk9fcRyuaTdEYpsjAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMTE1MjExMTIyWhcNMjUwMjEzMjExMTIxWjAaMRgwFgYDVQQDEw93d3cuc251LmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATMSM/0Pf7C/8zt7KSZhSj9ODOnmxiGmH+J9hwFeWDGVPFrIv57EuJiGts+k5DrXEhPR0C/TyKUGBDL9ljmNUvgo4ICSDCCAkQwDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOcrGVTUyMzUVuua+P3ZvVJTWljcMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvUDdvMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MBoGA1UdEQQTMBGCD3d3dy5zbnUuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvQk1WR19YTDBsX00uY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGTMeGCfgAABAMARzBFAiBUSf9J6VQiY5FTVeNaMbfPddkXLXH45BdKGzxkMiHTgQIhAJnHqqe9soPaSUiV6FgEYJQyLFNeX3KkLnO6LkcDqIs5AHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGTMeGCYAAABAMARzBFAiAMYcRQVnB5BCMc5W4EouMZ9hKdpu3YmPEPhuwsy/vLFQIhAOIRt0SKCbyt84ApZaY89+ref1mT8Oo7STJZnSEbKzgCMAoGCCqGSM49BAMCA0cAMEQCICVtMOzPapMK2X25j4aqpY3frj8s3A9WOJIS3IIgggMbAiAYFvYMoQ9Y6GL+6NsEu9NH10sCqRO5gM+M/tEPYy6ymQ==\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_commonName", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "www.snu.gouv.fr" + "finding": "data.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_commonName_wo_SNI", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed, usual for EC certificates" + "finding": "data.gouv.fr" }, { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_subjectAltName", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "www.snu.gouv.fr" + "finding": "sorry.data.gouv.fr static.data.gouv.fr data.gouv.fr www.data.gouv.fr demo.data.gouv.fr" }, { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_trust", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN (same w/o SNI)" }, { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_chain_of_trust", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_certificatePolicies_EV", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_expirationStatus", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "81 >= 60 days" + "severity": "HIGH", + "finding": "expires < 30 days (16)" }, { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_notBefore", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "2024-11-15 21:11" + "finding": "2024-03-24 23:00" }, { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_notAfter", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "2025-02-13 21:11" + "severity": "HIGH", + "finding": "2024-12-17 22:59" }, { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_extlifeSpan", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_eTLS", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_crlDistributionPoints", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" + "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_ocspURL", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/P7o" - }, - { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "OCSP_stapling", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_mustStapleExtension", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "DNS_CAArecord", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "certificate_transparency", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "certs_countServer", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "3" }, { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "certs_list_ordering_problem", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "cert_caIssuers", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_notBefore <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2015-11-25 11:33" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_notAfter <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2025-11-22 11:33" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_expiration <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_chain <#1>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "Certigna Services CA <-- Certigna" }, { - "id": "intermediate_cert <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_notBefore <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2013-10-01 08:32" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_notAfter <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2033-10-01 08:32" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_expiration <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_chain <#2>", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "Certigna Root CA <-- Certigna Root CA" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "intermediate_cert_badOCSP", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "302 FOUND ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "1732442511" + "finding": "1733046391" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "nginx" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "X-Frame-Options", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "max-age=0" + "finding": "public" + }, + { + "id": "Pragma", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "INFO", + "finding": "public" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -248886,7 +240976,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -248895,7 +240985,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -248904,7 +240994,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -248913,7 +241003,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -248922,7 +241012,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -248930,7 +241020,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -248939,7 +241029,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -248948,16 +241038,16 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -248966,14 +241056,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -248982,7 +241072,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -248991,7 +241081,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -249000,34 +241090,34 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAAF141C3B2B815383721F6B4213571531D2402F8206E3A924F741AE6B300CFC" }, { - "id": "LOGJAM", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "LOGJAM-common_primes", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", - "severity": "OK", + "severity": "INFO", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "RFC7919/ffdhe2048" }, { - "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/172.67.4.138", + "id": "LOGJAM", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -249036,7 +241126,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -249045,7 +241135,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -249054,7 +241144,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -249063,399 +241153,1227 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.data.gouv.fr/37.59.183.73", "port": "443", "severity": "INFO", "finding": "24" }, { - "id": "final_score", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "81" + "id": "final_score", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "www.data.gouv.fr/37.59.183.73", + "port": "443", + "severity": "INFO", + "finding": "151" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "_pk_ses.109.7631", + "value": "1", + "domain": "www.data.gouv.fr", + "path": "/", + "expires": 1733048039, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.109.7631", + "value": "03ea3e2021315bdb.1733046239.", + "domain": "www.data.gouv.fr", + "path": "/", + "expires": 1767001439, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "session", + "value": "d2~eyJjc3JmX3Rva2VuIjoiZGFlYWE0OTc4N2EyZDMzM2U5NTM0Y2UzYjFlOTZmNjA3NTE1NGUzNiJ9.Z0wv3g.zerFUTWN1mKmyZCF4BRW7zEq6-o", + "domain": ".www.data.gouv.fr", + "path": "/", + "expires": -1, + "size": 121, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "public", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 09:43:58 GMT", + "pragma": "public", + "server": "nginx", + "set-cookie": "session=d2~eyJjc3JmX3Rva2VuIjoiZGFlYWE0OTc4N2EyZDMzM2U5NTM0Y2UzYjFlOTZmNjA3NTE1NGUzNiJ9.Z0wv3g.zerFUTWN1mKmyZCF4BRW7zEq6-o; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding\nCookie", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "www.data.gouv.fr", + "ip": "37.59.183.91", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://www.data.gouv.fr/": { + "status": 302 + }, + "https://www.data.gouv.fr/fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ] + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "confidence": 100, + "version": null, + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, + "categories": [ + { + "id": 73, + "slug": "surveys", + "name": "Surveys" + } + ] + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "rss", + "name": "RSS", + "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", + "confidence": 100, + "version": null, + "icon": "RSS.svg", + "website": "https://www.rssboard.org/rss-specification", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://www.data.gouv.fr/", + "finalUrl": "https://www.data.gouv.fr/fr/", + "fetchTime": "2024-12-01T09:43:32.130Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://www.data.gouv.fr/) was redirected to https://www.data.gouv.fr/fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.7 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.99 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 10032, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3022, + "firstMeaningfulPaint": 3022, + "largestContentfulPaint": 3323, + "interactive": 10032, + "speedIndex": 6333, + "totalBlockingTime": 236, + "maxPotentialFID": 384, + "cumulativeLayoutShift": 0.0035777994791666664, + "cumulativeLayoutShiftMainFrame": 0.0035777994791666664, + "totalCumulativeLayoutShift": 0.0035777994791666664, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 366169300, + "observedNavigationStart": 0, + "observedNavigationStartTs": 366169300, + "observedFirstPaint": 1138, + "observedFirstPaintTs": 367307152, + "observedFirstContentfulPaint": 1138, + "observedFirstContentfulPaintTs": 367307152, + "observedFirstContentfulPaintAllFrames": 1138, + "observedFirstContentfulPaintAllFramesTs": 367307152, + "observedFirstMeaningfulPaint": 1138, + "observedFirstMeaningfulPaintTs": 367307152, + "observedLargestContentfulPaint": 1138, + "observedLargestContentfulPaintTs": 367307152, + "observedLargestContentfulPaintAllFrames": 1138, + "observedLargestContentfulPaintAllFramesTs": 367307152, + "observedTraceEnd": 4888, + "observedTraceEndTs": 371056875, + "observedLoad": 1770, + "observedLoadTs": 367939358, + "observedDomContentLoaded": 1131, + "observedDomContentLoadedTs": 367300237, + "observedCumulativeLayoutShift": 0.0035777994791666664, + "observedCumulativeLayoutShiftMainFrame": 0.0035777994791666664, + "observedTotalCumulativeLayoutShift": 0.0035777994791666664, + "observedFirstVisualChange": 1149, + "observedFirstVisualChangeTs": 367318300, + "observedLastVisualChange": 2382, + "observedLastVisualChangeTs": 368551300, + "observedSpeedIndex": 1216, + "observedSpeedIndexTs": 367385137 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 70, + "numScripts": 18, + "numStylesheets": 1, + "numFonts": 5, + "numTasks": 2033, + "numTasksOver10ms": 11, + "numTasksOver25ms": 6, + "numTasksOver50ms": 4, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 84.506, + "throughput": 14825427.96435076, + "maxRtt": 84.954, + "maxServerLatency": 5.5810000000000315, + "totalByteWeight": 1387037, + "totalTaskTime": 773.0609999999959, + "mainDocumentTransferSize": 55529 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://www.data.gouv.fr/fr/pages/legal/accessibility" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://www.data.gouv.fr/fr/pages/legal/legal-notice" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 3, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://www.data.gouv.fr/fr/suivi/" + } + ], + "betagouv": { + "id": "data.gouv.fr", + "type": "startup", + "attributes": { + "name": "data.gouv.fr", + "pitch": "Partager, améliorer et réutiliser les données publiques.", + "stats_url": "https://stats.data.gouv.fr", + "link": "https://www.data.gouv.fr/", + "repository": "https://github.com/opendatateam/udata", + "contact": "info@data.gouv.fr", + "content_url_encoded_markdown": "data.gouv.fr%20est%20le%20premier%20portail%20open%20data%20national%20%C3%A0%20se%20constituer%20en%20v%C3%A9ritable%20r%C3%A9seau%20social%20entre%20producteurs%20et%20r%C3%A9utilisateurs%20de%20donn%C3%A9es%20publiques.%20Il%20r%C3%A9f%C3%A9rence%20les%20jeux%20de%20donn%C3%A9es%20sur%20tout%20le%20territoire%20et%20les%20r%C3%A9utilisations%20qui%20en%20sont%20faites.", + "events": [ + { + "name": "national_impact", + "date": "2016-01-01", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2013-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2013-06-01", + "end": "" + }, + { + "name": "success", + "start": "2016-01-01", + "end": "" + } + ], + "sponsors": [ + "dinum" + ], + "thematiques": [ + "Open-Data", + "Entreprises" + ], + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum_produits_interministeriels" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://www.data.gouv.fr", + "size": 2726.268, + "nodes": 1005, + "requests": 69, + "grade": "E", + "score": 37, + "ges": 2.26, + "water": 3.39, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 09:40:33.149785", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "C", + "apdex": 0.982, + "apdexGrade": "B", + "uptime": 99.784, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-17T22:59:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.7, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "E", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://anais.beta.gouv.fr", + "category": "fabnumdef", + "betaId": "anais", + "http": { + "url": "https://anais.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 07:26:25 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-store", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 07:26:24 GMT", + "Etag": "W/\"66840da3-2169\"", + "Last-Modified": "Tue, 02 Jul 2024 14:24:35 GMT", + "Referrer-Policy": "strict-origin-when-cross-origin", + "Server": "nginx/1.21.6", + "Strict-Transport-Security": "max-age=315360000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "sameorigin", + "X-Server": "ANAIS-UI", + "X-Xss-Protection": "1; mode=block" }, - { - "id": "overall_grade", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57054099, + "score": 75, + "start_time": "Sun, 20 Oct 2024 07:26:23 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://anais.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://anais.beta.gouv.fr/", + "https://anais.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=315360000; includeSubDomains", + "includeSubDomains": true, + "max-age": 315360000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "sameorigin" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "q0tn", + "url": "https://anais.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-20T01:03:21Z", + "error": null, + "period": 3600, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T09:41:05Z", + "next_check_at": "2024-12-01T10:40:42Z", + "created_at": "2021-04-22T21:33:36Z", + "mute_until": "forever", + "favicon_url": "https://anais.beta.gouv.fr/assets/images/favicon_anais.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T07:41:52Z", + "expires_at": "2025-02-24T13:09:39Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/172.67.4.138", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 99, + "connection": 94, + "handshake": 204, + "response": 95, + "total": 492 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "anais.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Golang net/http server", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Golang net/http server", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249463,7 +242381,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249471,7 +242389,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249479,7 +242397,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249487,7 +242405,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -249495,799 +242413,491 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_signatureAlgorithm", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_keySize", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "RSA 4096 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_keyUsage", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_extKeyUsage", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_serialNumber", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "310999E39A93230213CD5C8A4495F0D3" + "finding": "04F840F7A29842B4E99C5DA8992E9C99C190" }, { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_serialNumberLen", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_fingerprintSHA1", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "CA0567CA76682816AB335A900757689BE0188CC8" + "finding": "054AF34A4ECF69D7D06080D2187106717C5989A8" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_fingerprintSHA256", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" + "finding": "C860F7096006D8733BACB56349BAF47BCA7117EAA7402E721A9DF6E0FE079E78" }, { - "id": "cert ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFKjCCBBKgAwIBAgIQMQmZ45qTIwITzVyKRJXw0zANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTE1MjExMTEzWhcNMjUwMjEzMjExMTEyWjAaMRgwFgYDVQQDEw93d3cuc251LmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPOnub2sIZQpgfVqp3wpePpwTVol1WrqbamYi2vodUNywsAgFxmuAwGEVGH8oIObTpmdtUJVDgCOB/nNlmVptiFxkj2Odayo0Vo/LjqFVOBuqJMReXJNjHEeOpw+SdeMlliLBBown8oR7cguKkKI4dTK/Fft00bKG8dQAnGFnldPAFECdQR3ow20IG84OksuIP16j6x6BbHpZ9PYjWTZcIMGywnyyKaJGQY3HIl5ZcpbqIkJLmIruEp3DGy2fXzvEwKE3Kzn3NSZu3Ns4L5W+iKSFgpoNVuqVr4CfMYV3TNSvsGt/kC957FEcg364dpOopZLpcHW5GXvMPwbcBMpJPAgMBAAGjggJJMIICRTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlnDxFbWtZUP7g35GEEi5fT/x71IwHwYDVR0jBBgwFoAUZmlJ1N4qnJEDz4kOJLgOMANuiC4wXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dyMS9NUWswJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dyMS5jcnQwGgYDVR0RBBMwEYIPd3d3LnNudS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS9DT19wZ3pjQ2NKdy5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAZMx4WCRAAAEAwBHMEUCIEGR9RQajHMjfxG/iQCI3MaGxDJEntezb5aRZilVHSBpAiEArkBSi14xY2nM2hq7xq2U4a4gdvEf4Hl55LanMGSAhu0AdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAZMx4WTDAAAEAwBIMEYCIQCpz1sxAyWrytWoKbbh9e15eujCvG7z5ZGuWJG1AAdXvQIhAIT34xSxJpJaaRkBmdhaR2mPbx8lblCmImjJ6yqdleouMA0GCSqGSIb3DQEBCwUAA4IBAQCaxF+CA61x0WAbrg3ROxRQUF0A2SnPSCxOO1KkF7bKRxbX3JadX0A+ZXCXrkRdUg6XY+8oCwg9Jap2wFTzPRWac8J2CHInpstdZ4fd5oNgd1ZjEwOfGlt70sdLU0UKhcFgCbaarbPpO+lc/mBbnqh17UdndrzPhY78+HH7L24CpSuMbYeapvv6cf1/NvKM/91FF85B7YTAbarXd2tlRqJfFCoAY6QjMeUWkxmgvXuVQ+B/fkbL/g5OlsDDanQyfR8amRj/26Ro5JFuXHPu2OeWutVScoun/k1TTPWoxQytZWrAoluZwBcQcjUaz7DvCQYKQz/fiPMbDK+bb+BVCmEQ\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIGJjCCBQ6gAwIBAgISBPhA96KYQrTpnF2omS6cmcGQMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMTI2MTMwOTQwWhcNMjUwMjI0MTMwOTM5WjAfMR0wGwYDVQQDExRhbmFpcy5zbmMuc2VhbmFpcy5mcjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAPS8IfoxN36KvBfLebeWUG5emn4EVF4eGfMoyZNGEVIeN5X+Usx+j2nC/9amschuqZ4k7C18EkVUPkfN59N8n14s1bYfGv8oYVK5ij/UyV/lzHB7H973Wq0/JvOQJxghwcYpI1P9ucDOC6KyS6ExC4rbPKF8+vmfIL/wC8B2/W780yHJB2mkOFK8We1fax3WCNqqSFvvwIOlFbYctrCo0DkBTx46xh8U4yBhvwlIOaENwuvZMns+UEI0MDlIxqtH2VskSqp75soySnQfRpbqvYqVkpTD7BZZNY3LxGaAb9YqupSxQP+DbqQeqDtOiuZuKPKyJggqFeVvXWSm3veEHWnMUwn7cpxn+lO9etKHL0ARC5WOqUmyQ5stXk1hAyfVjFKVsZaboCimwEEqdkLswxuzLr6GT4YPovgmnIYFGiJMs+iNVEc7bfeZvtntDFmQ4yuwFUJYxsGgy0W6wZfzXvOa6o5pKS4Sl32Qyhlx2Z2mckGzGyrZtNi7bMM1RZT41ubE1t5L44rISdpyCHtLFytJecSrf+1dDxG9V2wDmE+l5hT+jG9dk4fP6pFLtyw4KMBfuh9Tm16u/jYSoaIPrB11Ht6kr4/GtP3rekNLPTTap9LcVdqxFm3lxUguyOyU8ACZjlmvWVg4VmFHM2ULTo4sL+g982fFJtY0HdjDO+JLAgMBAAGjggJGMIICQjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLpxQQ5CQWCcs4h4VuXNHZnWakSOMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wTAYDVR0RBEUwQ4ISYW5haXMuYmV0YS5nb3V2LmZyghRhbmFpcy5zbmMuc2VhbmFpcy5mcoIXbWFwcy5hbmFpcy5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZNozRTQAAAEAwBHMEUCIF98jn2+RcMlEcQaUBc5X2cg37LeSBKnAPq1mcyW7DyhAiEAopbI4zb90MudtlJMZEkeUsl/kVYd7MJpGe5ShMkzRLkAdwATSt8atZhCCXgMb+9MepGkFrcjSc5YV2rfrtqnwqvgIgAAAZNozRW+AAAEAwBIMEYCIQD9PRXGGnRQWNGo7TDEKogkiF8ChWjLkQE/D1T6ufbCVwIhAK8It34oX+uQNW6H/6FrwfYNalGv0m3+7m9AOxUoa0HbMA0GCSqGSIb3DQEBCwUAA4IBAQCq8ID+5LUa2k3akXoVmePO/EBUwJ85IkF2hSUb01H2+kcMrMf0gOvph5Nojqc0MFh4QU3U7IqdW+MhNSHjD9CxTbDQaLtjnahRgSnxnR7cHVsn6ejGQ0LBfBOBhTee13m+2yeszUX1h0oMQ2BzLPXs4kG6stJrqcy8CK5Ei2HO2EKcz6abZt5WsqELAG0mJDDplWMo1k/s9u9BTN1RbpnUtUWQhSvMRPcaLZTBAQuZmDFQlLCcNGbi9X6Oc6r6MLumsA17UPc4t9VWtCsF3YREXzTCgnDyz3345NyF5e0ImTP41NNhHyTtCtfvGuLZANdlvaWj6PS8LWBm+YD86Nnj\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_commonName", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "www.snu.gouv.fr" + "finding": "anais.snc.seanais.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_commonName_wo_SNI", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_subjectAltName", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "www.snu.gouv.fr" + "finding": "anais.beta.gouv.fr anais.snc.seanais.fr maps.anais.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_trust", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN (SNI mandatory)" }, { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_chain_of_trust", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_certificatePolicies_EV", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_expirationStatus", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "81 >= 60 days" + "finding": "85 >= 30 days" }, { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_notBefore", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "2024-11-15 21:11" + "finding": "2024-11-26 13:09" }, { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_notAfter", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "2025-02-13 21:11" + "finding": "2025-02-24 13:09" }, { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_extlifeSpan", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_eTLS", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_crlDistributionPoints", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" + "finding": "--" }, { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_ocspURL", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/MQk" - }, - { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://r11.o.lencr.org" }, { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "OCSP_stapling", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_mustStapleExtension", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "DNS_CAArecord", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=buypass.com, issue=letsencrypt.org, issue=sectigo.com" }, { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "certificate_transparency", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "certs_countServer", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "certs_list_ordering_problem", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cert_caIssuers", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_notBefore <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_notAfter <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_expiration <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_chain <#1>", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "intermediate_cert_badOCSP", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "ECDSA with SHA256" - }, - { - "id": "cert_keySize ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" - }, - { - "id": "cert_keyUsage ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature" - }, - { - "id": "cert_extKeyUsage ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "3FBA013F3224F5F711CAE693744629B2" - }, - { - "id": "cert_serialNumberLen ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" - }, - { - "id": "cert ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed, usual for EC certificates" - }, - { - "id": "cert_subjectAltName ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "www.snu.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "81 >= 60 days" - }, - { - "id": "cert_notBefore ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "2024-11-15 21:11" - }, - { - "id": "cert_notAfter ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "2025-02-13 21:11" - }, - { - "id": "cert_extlifeSpan ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HTTP_status_code", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "not present" + "finding": "200 OK ('/')" }, { - "id": "cert_crlDistributionPoints ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HTTP_clock_skew", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" + "finding": "0 seconds from localtime" }, { - "id": "cert_ocspURL ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HTTP_headerTime", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/P7o" - }, - { - "id": "OCSP_stapling ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "1733046940" }, { - "id": "cert_ocspRevoked ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HSTS_time", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "LOW", - "finding": "--" + "finding": "3650 days (=315360000 seconds) > 15552000 seconds" }, { - "id": "certificate_transparency ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HSTS_subdomains", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "includes subdomains" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HSTS_preload", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "domain is NOT marked for preloading" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "HPKP", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "intermediate_cert <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "banner_server", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "nginx/1.21.6" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "banner_application", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "No application banner found" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "cookie_count", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "0 at '/'" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "X-Frame-Options", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "sameorigin" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "X-Content-Type-Options", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "1732442567" - }, - { - "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "cloudflare" + "finding": "nosniff" }, { - "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "X-XSS-Protection", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "1; mode=block" }, { - "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.17.136", + "id": "Referrer-Policy", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "max-age=0" + "finding": "no-store" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -250295,7 +242905,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -250304,7 +242914,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -250313,7 +242923,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -250322,16 +242932,16 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -250339,7 +242949,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -250348,7 +242958,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -250357,7 +242967,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -250366,7 +242976,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -250375,14 +242985,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -250391,7 +243001,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -250400,7 +243010,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -250409,16 +243019,16 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C860F7096006D8733BACB56349BAF47BCA7117EAA7402E721A9DF6E0FE079E78" }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -250427,7 +243037,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -250436,7 +243046,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -250445,16 +243055,16 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -250463,7 +243073,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -250472,570 +243082,350 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "84" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.17.136", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "172" + "finding": "81" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a" - }, - { - "type": "unknown", - "url": "https://plausible.io/js/script.js" - }, - { - "type": "cloudflare", - "url": "https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://cdn.tarteaucitron.io/css/tarteaucitron.min.css" - }, - { - "type": "unknown", - "url": "https://cdn.tarteaucitron.io/lang/tarteaucitron.fr.min.js" - }, - { - "type": "unknown", - "url": "https://cdn.tarteaucitron.io/tarteaucitron.services.min.js" - }, - { - "type": "unknown", - "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1732442389775" - } - ], + "trackers": [], "cookies": [], "headers": { - "cache-control": "max-age=0", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e788c586cbf3934-IAD", + "cache-control": "no-store", "content-encoding": "br", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 09:59:47 GMT", - "expires": "Sun, 24 Nov 2024 09:59:47 GMT", - "last-modified": "Sun, 24 Nov 2024 03:41:46 GMT", - "server": "cloudflare", - "server-timing": "cfCacheStatus;desc=\"DYNAMIC\"", - "sozu-id": "01JDESSCY02N8Y7NHP2T2J0KJ3", - "vary": "Accept-Encoding" + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 09:54:49 GMT", + "etag": "W/\"672e17b4-c52d\"", + "last-modified": "Fri, 08 Nov 2024 13:52:52 GMT", + "referrer-policy": "strict-origin-when-cross-origin", + "server": "nginx/1.21.6", + "strict-transport-security": "max-age=315360000; includeSubDomains", + "vary": "Accept-Encoding\nAccept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "sameorigin", + "x-server": "ANAIS-UI", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "www.snu.gouv.fr", - "ip": "104.22.16.136", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "tarteaucitron.io", - "ip": "51.68.111.231", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "plausible.io", - "ip": "138.199.40.58", - "geoip": { - "city": { - "geoname_id": 5128581, - "names": { - "de": "New York City", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 40.7123, - "longitude": -74.0068, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "10118" - }, - "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } - } - ] - } - }, - { - "hostname": "static.cloudflareinsights.com", - "ip": "104.16.79.73", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.tarteaucitron.io", - "ip": "51.68.111.234", + "hostname": "anais.beta.gouv.fr", + "ip": "91.134.110.2", "geoip": { "continent": { "code": "EU", @@ -251093,78 +243483,38 @@ }, "wappalyzer": { "urls": { - "https://www.snu.gouv.fr/": { + "https://anais.beta.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "wordpress", - "name": "WordPress", - "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", - "confidence": 100, - "version": "6.7.1", - "icon": "WordPress.svg", - "website": "https://wordpress.org", - "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - }, - { - "id": 11, - "slug": "blogs", - "name": "Blogs" - } - ], - "rootPath": true - }, - { - "slug": "proton-mail", - "name": "Proton Mail", - "description": "Proton Mail is the world’s largest secure email service with over 70 million users. Available on Web, iOS, Android, and desktop. Protected by Swiss privacy law.", + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, "version": null, - "icon": "Proton Mail.svg", - "website": "https://proton.me/mail", + "icon": "Sentry.svg", + "website": "https://sentry.io/", "cpe": null, "categories": [ { - "id": 30, - "slug": "webmail", - "name": "Webmail" + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" } ], "rootPath": true }, { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "typescript", + "name": "TypeScript", + "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", "confidence": 100, "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "icon": "TypeScript.svg", + "website": "https://www.typescriptlang.org", + "cpe": null, "categories": [ { "id": 27, @@ -251174,148 +243524,30 @@ ] }, { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": "10.10.0", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "youtube", - "name": "YouTube", - "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", - "confidence": 100, - "version": null, - "icon": "YouTube.png", - "website": "https://www.youtube.com", - "cpe": null, - "categories": [ - { - "id": 14, - "slug": "video-players", - "name": "Video players" - } - ], - "rootPath": true - }, - { - "slug": "vimeo", - "name": "Vimeo", - "description": "Vimeo is a video hosting, sharing and services platform. Vimeo operation an ad-free basis by providing subscription plans.", - "confidence": 100, - "version": null, - "icon": "Vimeo.svg", - "website": "https://vimeo.com", - "cpe": null, - "categories": [ - { - "id": 14, - "slug": "video-players", - "name": "Video players" - } - ], - "rootPath": true - }, - { - "slug": "mediaelement-js", - "name": "MediaElement.js", - "description": "MediaElement.js is a set of custom Flash plugins that mimic the HTML5 MediaElement API for browsers that don't support HTML5 or don't support the media codecs.", - "confidence": 100, - "version": "4.2.17", - "icon": "MediaElement.js.svg", - "website": "https://www.mediaelementjs.com", - "cpe": null, - "categories": [ - { - "id": 14, - "slug": "video-players", - "name": "Video players" - } - ], - "rootPath": true - }, - { - "slug": "draftpress-hfcm", - "name": "Draftpress HFCM", - "description": "Header Footer Code Manager by Draftpress is a easy interface to add snippets to the header or footer or above or below the content of your page.", - "confidence": 100, - "version": null, - "icon": "Draftpress.png", - "website": "https://draftpress.com/products/header-footer-code-manager-pro/", - "cpe": null, - "categories": [ - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "wp-rocket", - "name": "WP Rocket", - "description": "WP Rocket is a caching and performance optimisation plugin to improve the loading speed of WordPress websites.", - "confidence": 100, - "version": null, - "icon": "WP Rocket.png", - "website": "https://wp-rocket.me", - "cpe": null, - "categories": [ - { - "id": 23, - "slug": "caching", - "name": "Caching" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "slug": "angular", + "name": "Angular", + "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", "confidence": 100, "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, + "icon": "Angular.svg", + "website": "https://angular.io", + "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" } - ], - "rootPath": true + ] }, { - "slug": "gsap", - "name": "GSAP", - "description": "GSAP is an animation library that allows you to create animations with JavaScript.", + "slug": "zone-js", + "name": "Zone.js", + "description": null, "confidence": 100, - "version": "3.12.5", - "icon": "TweenMax.png", - "website": "https://greensock.com/gsap", + "version": null, + "icon": "Angular.svg", + "website": "https://github.com/angular/angular/tree/master/packages/zone.js", "cpe": null, "categories": [ { @@ -251327,78 +243559,37 @@ "rootPath": true }, { - "slug": "yoast-seo", - "name": "Yoast SEO", - "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", - "confidence": 100, - "version": "23.9", - "icon": "Yoast SEO.png", - "website": "https://yoast.com/wordpress/plugins/seo/", - "cpe": null, - "categories": [ - { - "id": 54, - "slug": "seo", - "name": "SEO" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare-browser-insights", - "name": "Cloudflare Browser Insights", - "description": "Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.", + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, + "version": "1.21.6", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 22, + "slug": "web-servers", + "name": "Web servers" }, { - "id": 78, - "slug": "rum", - "name": "RUM" - } - ], - "rootPath": true - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ], "rootPath": true }, { - "slug": "jquery-migrate", - "name": "jQuery Migrate", - "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", "confidence": 100, - "version": "3.4.1", - "icon": "jQuery.svg", - "website": "https://github.com/jquery/jquery-migrate", - "cpe": null, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", "categories": [ { "id": 59, @@ -251409,14 +243600,14 @@ "rootPath": true }, { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "slug": "hammer-js", + "name": "Hammer.js", + "description": null, "confidence": 100, - "version": "3.7.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "version": "2.0.7", + "icon": "Hammer.js.png", + "website": "https://hammerjs.github.io", + "cpe": null, "categories": [ { "id": 59, @@ -251427,13 +243618,13 @@ "rootPath": true }, { - "slug": "isotope", - "name": "Isotope", - "description": "Isotope.js is a JavaScript library that makes it easy to sort, filter, and add Masonry layouts to items on a webpage.", + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", "confidence": 100, - "version": null, - "icon": "Isotope.svg", - "website": "https://isotope.metafizzy.co", + "version": "3.35.1", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", "cpe": null, "categories": [ { @@ -251445,31 +243636,13 @@ "rootPath": true }, { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { @@ -251477,94 +243650,151 @@ "slug": "security", "name": "Security" } - ] - }, + ], + "rootPath": true + } + ] + }, + "zap": { + "@programName": "ZAP", + "@version": "2.14.0", + "@generated": "Sun, 7 Apr 2024 06:30:41", + "site": [ { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ + "@name": "https://anais.beta.gouv.fr", + "@host": "anais.beta.gouv.fr", + "@port": "443", + "@ssl": "true", + "alerts": [ { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ + "name": "Cross-Domain Misconfiguration", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server

" + }, { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "rss", - "name": "RSS", - "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", - "confidence": 100, - "version": null, - "icon": "RSS.svg", - "website": "https://www.rssboard.org/rss-specification", - "cpe": null, - "categories": [ + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" + }, { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ + "name": "In Page Banner Information Leak", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

The server returned a version banner string in the response content. Such information leaks may allow attackers to further target specific issues impacting the product and version in use.

" + }, { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" + }, + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, + { + "name": "Non-Storable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" + }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + }, + { + "name": "Sec-Fetch-Dest Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" + }, + { + "name": "Sec-Fetch-Mode Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" + }, + { + "name": "Sec-Fetch-Site Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" + }, + { + "name": "Sec-Fetch-User Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies if a navigation request was initiated by a user.

" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" } - ], - "rootPath": true + ] } ] }, - "zap": null, "nuclei": [], "lhr": [ { - "requestedUrl": "https://www.snu.gouv.fr/", - "finalUrl": "https://www.snu.gouv.fr/", - "fetchTime": "2024-11-24T09:59:21.175Z", + "requestedUrl": "https://anais.beta.gouv.fr/", + "finalUrl": "https://anais.beta.gouv.fr/", + "fetchTime": "2024-12-01T09:54:25.039Z", "runWarnings": [], "categories": { "performance": { @@ -251575,7 +243805,7 @@ "snapshot" ], "id": "performance", - "score": 0.5 + "score": 0.27 }, "accessibility": { "title": "Accessibility", @@ -251586,7 +243816,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.95 + "score": 0.91 }, "best-practices": { "title": "Best Practices", @@ -251607,7 +243837,7 @@ "snapshot" ], "id": "seo", - "score": 1 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -251617,7 +243847,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.3 } }, "audits": { @@ -251627,53 +243857,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12490, + "numericValue": 7961, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2806, - "firstMeaningfulPaint": 2806, - "largestContentfulPaint": 13629, - "interactive": 12490, - "speedIndex": 11542, - "totalBlockingTime": 165, - "maxPotentialFID": 275, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, + "firstContentfulPaint": 6451, + "firstMeaningfulPaint": 6516, + "largestContentfulPaint": 8626, + "interactive": 7961, + "speedIndex": 7258, + "totalBlockingTime": 1135, + "maxPotentialFID": 1156, + "cumulativeLayoutShift": 0.10448490142822266, + "cumulativeLayoutShiftMainFrame": 0.10448490142822266, + "totalCumulativeLayoutShift": 0.10448490142822266, "observedTimeOrigin": 0, - "observedTimeOriginTs": 402243401, + "observedTimeOriginTs": 412149594, "observedNavigationStart": 0, - "observedNavigationStartTs": 402243401, - "observedFirstPaint": 797, - "observedFirstPaintTs": 403040266, - "observedFirstContentfulPaint": 897, - "observedFirstContentfulPaintTs": 403140419, - "observedFirstContentfulPaintAllFrames": 897, - "observedFirstContentfulPaintAllFramesTs": 403140419, - "observedFirstMeaningfulPaint": 897, - "observedFirstMeaningfulPaintTs": 403140419, - "observedLargestContentfulPaint": 897, - "observedLargestContentfulPaintTs": 403140419, - "observedLargestContentfulPaintAllFrames": 897, - "observedLargestContentfulPaintAllFramesTs": 403140419, - "observedTraceEnd": 3674, - "observedTraceEndTs": 405917624, - "observedLoad": 1105, - "observedLoadTs": 403348128, - "observedDomContentLoaded": 1070, - "observedDomContentLoadedTs": 403313142, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 907, - "observedFirstVisualChangeTs": 403150401, - "observedLastVisualChange": 1640, - "observedLastVisualChangeTs": 403883401, - "observedSpeedIndex": 1311, - "observedSpeedIndexTs": 403554357 + "observedNavigationStartTs": 412149594, + "observedFirstPaint": 423, + "observedFirstPaintTs": 412572385, + "observedFirstContentfulPaint": 1871, + "observedFirstContentfulPaintTs": 414020572, + "observedFirstContentfulPaintAllFrames": 1871, + "observedFirstContentfulPaintAllFramesTs": 414020572, + "observedFirstMeaningfulPaint": 1871, + "observedFirstMeaningfulPaintTs": 414020572, + "observedLargestContentfulPaint": 1954, + "observedLargestContentfulPaintTs": 414103410, + "observedLargestContentfulPaintAllFrames": 1954, + "observedLargestContentfulPaintAllFramesTs": 414103410, + "observedTraceEnd": 4332, + "observedTraceEndTs": 416481712, + "observedLoad": 1408, + "observedLoadTs": 413557733, + "observedDomContentLoaded": 1251, + "observedDomContentLoadedTs": 413400166, + "observedCumulativeLayoutShift": 0.10448490142822266, + "observedCumulativeLayoutShiftMainFrame": 0.10448490142822266, + "observedTotalCumulativeLayoutShift": 0.10448490142822266, + "observedFirstVisualChange": 1883, + "observedFirstVisualChangeTs": 414032594, + "observedLastVisualChange": 2067, + "observedLastVisualChangeTs": 414216594, + "observedSpeedIndex": 1975, + "observedSpeedIndexTs": 414124268 }, { "lcpInvalidated": false @@ -251691,23 +243921,23 @@ "type": "debugdata", "items": [ { - "numRequests": 48, - "numScripts": 17, + "numRequests": 31, + "numScripts": 5, "numStylesheets": 1, - "numFonts": 4, - "numTasks": 1527, - "numTasksOver10ms": 14, + "numFonts": 3, + "numTasks": 895, + "numTasksOver10ms": 8, "numTasksOver25ms": 5, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0.343, - "throughput": 78198519.00476794, - "maxRtt": 83.878, - "maxServerLatency": 10.123000000000001, - "totalByteWeight": 2859192, - "totalTaskTime": 611.0019999999945, - "mainDocumentTransferSize": 98303 + "rtt": 84.432, + "throughput": 20724576.469402503, + "maxRtt": 84.432, + "maxServerLatency": 1, + "totalByteWeight": 1550561, + "totalTaskTime": 661.167, + "mainDocumentTransferSize": 7397 } ] } @@ -251720,84 +243950,81 @@ "grade": "A" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://www.snu.gouv.fr/accessibilite/" + "mention": "Accessibilité : non conforme" }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 2, - "missingWords": [ - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://www.snu.gouv.fr/mentions-legales/" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 5, - "score": 4, - "missingWords": [ - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://www.snu.gouv.fr/donnees-personnelles/" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] } ], "betagouv": { - "id": "snu", + "id": "anais", "type": "startup", "attributes": { - "name": "Service National Universel", - "pitch": "Développer la conscience citoyenne des jeunes", - "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", - "link": "https://snu.gouv.fr/", - "repository": "https://github.com/betagouv/service-national-universel", - "contact": "contact@snu.gouv.fr", - "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", + "name": "ANAIS", + "pitch": "Maîtriser notre espace maritime", + "stats_url": "https://monitoring.anais.beta.gouv.fr", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow", + "link": "https://anais.beta.gouv.fr/", + "repository": "https://gitlab.com/fabnumdef/anais", + "contact": "equipe@anais.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A11%20millions%20de%20km2%20%3A%20c%E2%80%99est%20la%20surface%20de%20l%E2%80%99espace%20maritime%20fran%C3%A7ais%2C%20le%20deuxi%C3%A8me%20mondial.%20La%20Marine%20travaille%20%C3%A0%20la%20ma%C3%AEtrise%20de%20cet%20espace%2C%20crucial%20pour%20notre%20s%C3%A9curit%C3%A9%20nationale%2C%20la%20libert%C3%A9%20des%20mers%20et%20la%20pr%C3%A9servation%20des%20ressources%20naturelles.%20Ce%20travail%20passe%20entre%20autres%20par%20une%20ma%C3%AEtrise%20des%20donn%C3%A9es%20maritimes%20%3A%20elles%20sont%20massives%20et%20augmentent%20constamment%20avec%20la%20progression%20des%20%C3%A9changes%20et%20des%20activit%C3%A9s%20en%20mer.%0A%0AEn%20effet%2C%20le%20milieu%20marin%20est%20aussi%20un%20oc%C3%A9an%20de%20donn%C3%A9es%20extr%C3%AAmement%20vari%C3%A9es%20%3A%20donn%C3%A9es%20oc%C3%A9anographiques%2C%20cartographies%2C%20m%C3%A9t%C3%A9o%2C%20transpondeurs%20des%20navires%2C%20donn%C3%A9es%20radar%2C%20satellites%20%28radar%2C%20image%20%E2%80%A6%29%2C%20donn%C3%A9es%20acoustiques%2C%20zones%20de%20p%C3%AAches%2C%20routes%20maritimes%2C%20%E2%80%A6%0A%0A%23%23%20Probl%C3%A9matique%0ALe%20projet%20ANAIS%20%28pour%20%C2%AB%20Analyse%20des%20Incoh%C3%A9rences%20de%20Situation%20maritime%20%C2%BB%29%20vise%20%C3%A0%20mieux%20agr%C3%A9ger%20les%20donn%C3%A9es%20maritimes%20pour%20les%20traiter%20plus%20efficacement.%20%0A%0AL%E2%80%99objectif%20est%20de%20mieux%20suivre%20les%20multiples%20activit%C3%A9s%20en%20mer%2C%20et%20en%20particulier%20d%C3%A9tecter%20les%20comportements%20de%20navires%20suspects%20ou%20dangereux%20afin%20de%20d%C3%A9cider%20plus%20vite%20et%20d%E2%80%99intervenir%20plus%20efficacement.%0A%0AA%20tout%20moment%2C%20ce%20sont%20200%20services%20ou%20op%C3%A9rateurs%20de%20l%27Action%20de%20l%27Etat%20en%20Mer%20connect%C3%A9s%20%C3%A0%20la%20plateforme.%0A%0ADes%20versions%20ont%20%C3%A9t%C3%A9%20d%C3%A9riv%C3%A9es%20pour%20%C3%AAtre%20embarqu%C3%A9es%20%C3%A0%20bord%20de%20b%C3%A2timents%20de%20la%20Marine%20Nationale.%0A%0A%23%23%20Objectifs%0AMaintenir%20l%E2%80%99%C3%A9quipe%20agile%20au%20plus%20pr%C3%A8s%20des%20utilisateurs%20op%C3%A9rationnels%0AS%C3%A9curiser%20r%C3%A9guli%C3%A8rement%20les%20d%C3%A9veloppements%20pour%20d%C3%A9ployer%20plus%20largement%0AD%C3%A9veloppement%20de%20partenariats%20avec%20le%20monde%20acad%C3%A9mique%20pour%20am%C3%A9liorer%20l%E2%80%99efficience%20des%20algorithmes%20d%E2%80%99analyse%20%28publication%20d%27articles%20scientifiques%20en%20collaboration%20avec%20l%27Ecole%20Navale%29%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28printemps%202019%29%20Maquettes%20de%20l%E2%80%99interface%0A%0A__%C3%89tape%202__%20%28%C3%A9t%C3%A9%202019%29%20Premi%C3%A8re%20version%20de%20l%E2%80%99interface%20-%20d%C3%A9but%20d%E2%80%99utilisation%20op%C3%A9rationnelle%20par%20des%20unit%C3%A9s%20pilotes%0A%0A__%C3%89tape%203__%20%28hiver%202019%29%20Consolidation%20des%20alertes%20-%20am%C3%A9lioration%20continue%20-%20exp%C3%A9rimentation%20en%20interadmin.%0A%0A__%C3%89tape%204__%20%28%C3%A9t%C3%A9%202020%29%20Couverture%20mondiale%20-%20am%C3%A9lioration%20continue%20-%20apport%20op%C3%A9rationnel%20reconnu%20-%20augmentation%20du%20nombre%20d%E2%80%99unit%C3%A9s%20et%20administrations%20utilisatrices.%0A%0A__%C3%89tape%205__%20%28printemps%202021%29%20Int%C3%A9gration%20de%20nouveaux%20algorithmes%2C%20mode%20hors%20connexion%20ou%20sur%20flux%20locaux.%20S%C3%A9curisation%20du%20projet%20dans%20la%20dur%C3%A9e.%20Maintien%20de%20l%E2%80%99apport%20op%C3%A9rationnel.%0ANouveaux%20usages.%0A%0A__Etape%206__%20%282022%29%20Mod%C3%A8le%20hybride%20SE%20-%20ESN.%20D%C3%A9veloppement%20du%20produit%20par%20la%20Startup%20d%27Etat%2C%20gestion%20de%20la%20production%20et%20TMA%20assur%C3%A9e%20par%20un%20ESN%0A%0A__Etape%207__%20%282023%29%20Production%20dans%20un%20environnement%20SecNumCloud%0A%0A__Etape%208__%20%282024%29%20Convention%20avec%20la%20Direction%20Nationale%20Garde-C%C3%B4tes%20des%20Douanes.%20%20R%C3%A9organisation%20du%20code%20en%20vue%20d%27automatiser%20les%20APIs%20et%20modulariser%20les%20fonctions%20m%C3%A9tiers%0A%0A__Etape%209__%20%282025%29%20Mise%20%C3%A0%20disposition%20des%20donn%C3%A9es%20pour%20des%20environnements%20de%20data-science%20%0A%0A%0A%0A%23%23%20R%C3%A9sultats%0A-%20Apport%20op%C3%A9rationnel%20concret%20et%20reconnu%0A-%20Exp%C3%A9rimentation%20d%E2%80%99une%20m%C3%A9thode%20et%20d%E2%80%99un%20outil%20innovant%20par%20la%20Marine%20Nationale.%0A-%20Enjeux%20de%20souverainet%C3%A9%20num%C3%A9rique%20et%20de%20d%C3%A9veloppement%20de%20l%E2%80%99IA%20maritime%0A-%20ANAIS%20est%20accessible%20sur%20invitation%20%C3%A0%20ce%20%5Blien%5D%28https%3A%2F%2Fanais.beta.gouv.fr%29%0A", "events": [], "phases": [ { "name": "investigation", - "start": "2020-04-01", + "start": "2019-04-05", "end": "" }, { "name": "construction", - "start": "2020-07-01", + "start": "2019-04-05", "end": "" }, { - "name": "acceleration", - "start": "2021-01-01", + "name": "transfer", + "start": "2023-11-13", + "end": "" + }, + { + "name": "success", + "start": "2024-10-21", "end": "" } ], "sponsors": [ - "djepva" + "dgddi", + "ministere-des-armees-etat-major-de-la-marine" ], "thematiques": [ - "Jeunesse", - "Education" + "Mer" ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", - "accessibility_status": "non conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/anais-beta-gouv-fr/" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "engagement_civique" + "id": "fabnumdef" } } } @@ -251806,17 +244033,17 @@ { "width": 1920, "height": 1080, - "url": "https://www.snu.gouv.fr", - "size": 11014.725, - "nodes": 2190, - "requests": 49, - "grade": "E", - "score": 28, - "ges": 2.44, - "water": 3.66, + "url": "https://anais.beta.gouv.fr", + "size": 1751.222, + "nodes": 111, + "requests": 31, + "grade": "B", + "score": 78, + "ges": 1.44, + "water": 2.16, "ecoindex_version": "5.4.2", - "date": "2024-11-24 09:56:20.467051", - "page_type": "website" + "date": "2024-12-01 09:51:08.553975", + "page_type": null } ], "sonarcloud": null, @@ -251824,106 +244051,220 @@ "detected": false }, "summary": { - "httpGrade": "F", - "apdex": 0.847, - "apdexGrade": "F", + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": null, - "testsslExpireDate": null, - "testsslGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-24T13:09:00.000Z", + "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 7, - "lighthouse_performance": 0.5, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.95, + "trackersGrade": "A", + "trackersCount": 0, + "zapCount": 7, + "zapGrade": "D", + "lighthouse_performance": 0.27, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "E", + "githubRepositoryGrade": "F", + "budgetPageGrade": "A", + "declaration-a11y": "D", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", "dsfrGrade": "F" } }, { "404": null, - "url": "https://moncompte.snu.gouv.fr", - "category": "engagement_civique", - "betaId": "snu", - "tools": { - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false - }, + "url": "https://www.demarches-simplifiees.fr", + "repositories": [ + "betagouv/demarches-simplifiees.fr" + ], + "category": "dinum_produits_interministeriels", + "betaId": "demarches-simplifiees.fr", "http": { - "url": "https://moncompte.snu.gouv.fr", + "url": "https://www.demarches-simplifiees.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 07:40:34 GMT", - "grade": "B-", + "end_time": "Sun, 20 Oct 2024 02:50:35 GMT", + "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "no-cache", - "Connection": "keep-alive", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 07:40:33 GMT", - "Referrer-Policy": "origin-when-cross-origin", - "Strict-Transport-Security": "max-age=63072000", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-XSS-Protection": "1; mode=block" + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 20 Oct 2024 02:50:34 GMT", + "etag": "W/\"ed2432ab0a88fb10359960bc58b89534\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "server": "nginx", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqSnJjSHBNVUdoalNsSmxTblIwUkZCS2EzaFdjMVEzWVVoeVVtazFPRWRJVERORFdFMTFNbXc1ZWtraSIsImV4cCI6IjIwMjUtMTAtMjBUMDI6NTA6MzQuNDU1WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--b5dfd21e30b10f27ac6f170c09fdfe9e62695c4f; path=/; expires=Mon, 20 Oct 2025 02:50:34 GMT; secure; HttpOnly; SameSite=Lax, _DS_session=2ur1Q0Aps1wQGYQRsrH4yhFNneLLL%2FzRlZTQzwj8HVWT0ytuepVnwcPhXTBEiAvIpB2s4yK%2BrVSpVm9ojFmo9sTP35FkWYFn4UnsysNvv21FIjkriP8WS7F6Ih5ZLEMThI2JxhLA8Xt8Bju6nomN7qf1D3MXD8SZ9gahMYR3Onq3SK9O54YZPkekA9BrVuakEaAlAJv4kBY%2B74G%2Fu7L3ep1PNlbHRJeRO0pWv095KRh%2FtECfTbn0UfeQSgoY%2BTSVecuKRaD6fR%2Fxoe8GaegvsgJ4mg%3D%3D--05XMrgbALOuYcGkV--hNrkqFLhjrGHeFopK4SbmA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "strict-transport-security": "max-age=63072000", + "transfer-encoding": "chunked", + "vary": "Accept", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "d9e0cd24-3ff0-4635-a31f-9ee7ee081e8c", + "x-runtime": "0.025476", + "x-xss-protection": "0" }, - "scan_id": 57054427, - "score": 65, - "start_time": "Sun, 20 Oct 2024 07:40:32 GMT", + "scan_id": 57048229, + "score": 80, + "start_time": "Sun, 20 Oct 2024 02:50:33 GMT", "state": "FINISHED", - "status_code": 202, - "tests_failed": 3, - "tests_passed": 7, + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "connect-src": [ + "stats.data.gouv.fr", + "data.education.gouv.fr", + "'self'", + "data.geopf.fr", + "www.demarches-simplifiees.fr", + "geo.api.gouv.fr", + "wss://*.crisp.chat", + "*.crisp.chat", + "openmaptiles.geo.data.gouv.fr", + "app.franceconnect.gouv.fr", + "tiles.geo.api.gouv.fr", + "sentry.io", + "api-adresse.data.gouv.fr", + "openmaptiles.github.io", + "static.demarches-simplifiees.fr" + ], + "default-src": [ + "'report-sample'", + "fonts.gstatic.com", + "'self'", + "player.vimeo.com", + "sibautomation.com", + "*.crisp.chat", + "app.franceconnect.gouv.fr", + "blob:", + "in-automate.sendinblue.com", + "*.sibautomation.com", + "*.crisp.help", + "sentry.io", + "data", + "crisp.chat", + "static.demarches-simplifiees.fr" + ], + "frame-src": [ + "stats.data.gouv.fr", + "static.demarches-simplifiees.fr", + "*.crisp.help", + "'self'" + ], + "img-src": [ + "stats.data.gouv.fr", + "*", + "'self'", + "data:", + "*.openstreetmap.org", + "blob:", + "static.demarches-simplifiees.fr" + ], + "script-src": [ + "stats.data.gouv.fr", + "'unsafe-inline'", + "'self'", + "code.jquery.com", + "'unsafe-eval'", + "*.crisp.chat", + "blob:", + "cdn.jsdelivr.net", + "maxcdn.bootstrapcdn.com", + "unpkg.com", + "crisp.chat" + ], + "style-src": [ + "'unsafe-inline'", + "'self'", + "*.crisp.chat", + "cdn.jsdelivr.net", + "maxcdn.bootstrapcdn.com", + "unpkg.com", + "crisp.chat" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, - "sameSite": null + "data": { + "_DS_session": { + "domain": "www.demarches-simplifiees.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + }, + "_csrf_token": { + "domain": "www.demarches-simplifiees.fr", + "expires": 1760928634, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true }, "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -251944,13 +244285,13 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://moncompte.snu.gouv.fr/", + "destination": "https://www.demarches-simplifiees.fr/", "redirects": true, "route": [ - "http://moncompte.snu.gouv.fr/", - "https://moncompte.snu.gouv.fr/" + "http://www.demarches-simplifiees.fr/", + "https://www.demarches-simplifiees.fr/" ], - "status_code": 202 + "status_code": 200 }, "pass": true, "result": "redirection-to-https", @@ -251961,14 +244302,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "origin-when-cross-origin", + "data": "strict-origin-when-cross-origin", "http": true, "meta": false }, - "pass": false, - "result": "referrer-policy-unsafe", - "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", - "score_modifier": -5 + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -251989,17 +244330,12 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://js.hcaptcha.com/1/api.js?onload=onloadCallback": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -252016,7 +244352,7 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": "SAMEORIGIN" }, "pass": true, "result": "x-frame-options-sameorigin-or-deny", @@ -252027,24 +244363,24 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": "0" }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": 0 } } }, "updownio": { - "token": "wsxn", - "url": "https://moncompte.snu.gouv.fr", + "token": "5ynk", + "url": "https://www.demarches-simplifiees.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T09:44:07Z", + "up_since": "2024-11-27T16:35:28Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -252055,38 +244391,38 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T10:09:07Z", - "next_check_at": "2024-11-24T10:10:06Z", + "last_check_at": "2024-12-01T10:02:17Z", + "next_check_at": "2024-12-01T10:03:17Z", "created_at": "2024-01-15T13:37:42Z", "mute_until": null, - "favicon_url": "https://moncompte.snu.gouv.fr/favicon.ico", + "favicon_url": "https://www.demarches-simplifiees.fr/assets/favicons/96x96-e8b88d4ef72feb9f68294873aaa41556176aa6ad5e40473009accb34759dcff2.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T10:07:09Z", - "expires_at": "2024-12-17T12:51:19Z", + "tested_at": "2024-12-01T10:02:19Z", + "expires_at": "2025-01-08T22:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.986, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 37, - "connection": 377, - "handshake": 0, - "response": 130, - "total": 671 + "namelookup": 30, + "connection": 132, + "handshake": 135, + "response": 155, + "total": 452 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" }, "nmap": { - "host": "moncompte.snu.gouv.fr", + "host": "www.demarches-simplifiees.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "997", "open_ports": [ { "service": { @@ -252095,92 +244431,100 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "ident", + "id": "113", + "vulnerabilities": [] + } + }, { "service": { "name": "https", + "product": "nginx", "id": "443", "vulnerabilities": [] } } ], - "grade": "A" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252188,7 +244532,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252196,7 +244540,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252204,7 +244548,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252212,7 +244556,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -252220,498 +244564,554 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10'" }, { "id": "TLS_session_ticket", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "03DC504BB673FFE61A9F7B182C11DE6AE37E" + "finding": "45D892B38361D31F73BDE3DD28F71B30" }, { "id": "cert_serialNumberLen", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "AF7A86CB9655D303939D6D60C0B8A74E4179E2B3" + "finding": "033E775BFEEB5B3408A74D1B1E8F7B22E38FE066" }, { "id": "cert_fingerprintSHA256", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "CD64A8FF0887C2C4EAC4E9201F698FE21EC99FBCDDDD1F14BF2F7DC3C9050DE7" + "finding": "AE400C82D84F891F4C3DAF0A4682129E304DC3992518F40A6E7D864EEBD4146D" }, { "id": "cert", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", - "finding": "moncompte.snu.gouv.fr" + "finding": "demarches-simplifiees.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "moncompte.snu.gouv.fr" + "finding": "demarches.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "inscription.snu.gouv.fr moncompte.snu.gouv.fr" + "finding": "admin.demarches-simplifiees.fr dev.demarches-simplifiees.fr pr.demarches-simplifiees.fr qa.demarches-simplifiees.fr static.demarches-simplifiees.fr stats.demarches-simplifiees.fr assets.demarches-simplifiees.fr cdn.demarches-simplifiees.fr demarches-simplifiees.fr api.demarches-simplifiees.fr www.demarches-simplifiees.fr blog.demarches-simplifiees.fr docs.demarches-simplifiees.fr test.demarches-simplifiees.fr" }, { "id": "cert_trust", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "OK", - "finding": "passed." + "severity": "CRITICAL", + "finding": "Some certificate trust checks failed -> Apple (self signed CA in chain) , OK -> Mozilla Microsoft Linux Java" }, { "id": "cert_certificatePolicies_EV", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "MEDIUM", - "finding": "expires < 30 days (23)" + "finding": "expires < 60 days (38)" }, { "id": "cert_notBefore", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "2024-09-18 12:51" + "finding": "2024-03-21 23:00" }, { "id": "cert_notAfter", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "MEDIUM", - "finding": "2024-12-17 12:51" + "finding": "2025-01-08 22:59" }, { "id": "cert_extlifeSpan", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "07F2CE55CA1AA6CB992719B1E423C1D02C1EA759A6E2EAB4E150C88282E22550" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2015-11-25 11:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-06-03 11:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Certigna Services CA <-- Certigna Root CA" + }, + { + "id": "intermediate_cert <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIGWzCCBEOgAwIBAgIRAMrpG4nxVQMNo+ZBbcTjpuEwDQYJKoZIhvcNAQELBQAwWjELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURoaW15b3RpczEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEZMBcGA1UEAwwQQ2VydGlnbmEgUm9vdCBDQTAeFw0xMzEwMDEwODMyMjdaFw0zMzEwMDEwODMyMjdaMFoxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxGTAXBgNVBAMMEENlcnRpZ25hIFJvb3QgQ0EwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDNGDllGlmx6mQWDoyUJJV8g9PFOSbcDO8WV43X2KyjQn+Cyu3NW9sOty3tRQgXstmzy9YXUnIo245Onoq2C/mehJpNdt4iKVzSs9IGPjA5qXSjklYcoW9MCiBtnyN6tMbaLOQdLNyzKNAT8kxOAkmhVECe5uUFoC2EyP+YbNDrihqECB63aCPuI9Vwzm1RaRDuoXrC0SIxwoKF0vJVdlB8JXrJhFwLrN1CTivngqIkicuQstDuI7pmTLtipPlTWmR7fJj6o0ieD5Wupxj0auwuA0Wv8HT4Ks16XdG+RCYyKfHx9WzMfgIhC59vpD++nVPiz32pLHxYGpfhPTc3GGYo0kDFUYqMwy3OU4gkWGQwFsWq4NYKpkDfePb1BHxpE4S80dGnBs8B92jAqFe7OmGtBIyT46388NtEbVncSVmurJqZNjBBe3YzIoejwpKGbvlw7q6Hh5UbxHq9MfPU0uWZ/75I7HX1eBYdpnDBfzwboZL7z8g81sWTCo/1VTp2lc5ZmIoJlXcymoO6LAQ6l73UL77XbJuiyn1tJslV1c/DeVIICZkHJC1kJWumIWmbat10TWuXekG9qxf5kBdIjzb5LdXF2+6qhUVB+s06RbFo5jZMm5BX7CO5hwjCxAnxl4YqKE3idMDaxIzb3+KhF1nOJFl0Mdp//TBt2dzhauH8XwIDAQABo4IBGjCCARYwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBiHVuBud+4kNTxOc5of1uHieX4rMB8GA1UdIwQYMBaAFBiHVuBud+4kNTxOc5of1uHieX4rMEQGA1UdIAQ9MDswOQYEVR0gADAxMC8GCCsGAQUFBwIBFiNodHRwczovL3d3d3cuY2VydGlnbmEuZnIvYXV0b3JpdGVzLzBtBgNVHR8EZjBkMC+gLaArhilodHRwOi8vY3JsLmNlcnRpZ25hLmZyL2NlcnRpZ25hcm9vdGNhLmNybDAxoC+gLYYraHR0cDovL2NybC5kaGlteW90aXMuY29tL2NlcnRpZ25hcm9vdGNhLmNybDANBgkqhkiG9w0BAQsFAAOCAgEAlLieT/DjlQgi581oQfccVdV8AOItOoldaDgvUSILSo3L6btdPrtcPbEo/uRTVRPPoZAbAh1fZkYJMyjhDSSXcNMQH+pkV5a7XdrnxIxPTGRGHVyH41neQtGbqH6mid2PHMkwgu07nM3A6RngatgCdTer9zQoKJHyBApPNeNgJgH60BGM+RFq7q89w1DTj18zeTyGqHNFkIwgtnJzFyO+B2XleJINugHA64wcZr+shncBlA2c5uk5jR+mUYyZDDl34bSb+hxnV29qao6pK0xXeXpXIs/NX2NGjVxZOob4Mkdio2cNGJHc+6Zr9UhhcyNZjgKnvETq9Emd8VRY+WCv2hikLyhF3HqgiIZd8zvn/yk1gPxkQ5Tm4xxvvq0OKmOZK8l+hfZx6AYDlf7ej0gcWtSS6Cvu5zHbugRqh5jnxV/vfaci9wHYTfmJ0A6aBVmknpjZbyvKcL5kwlWj9Omvw5Ip3IgWJJk8jSaYtlu3zM63Nwf9JtmYhST/WSMDmu2dnajkXjjO11INb9I/bbEFa0nOipFGc/T2L/Coc3cOZayhjWZSaX5LaAzHHjcng6WMxwLkFM1JAbBzs/3GkDpv0mztO+7skb6iQ12LAEpmJURw3kAP+HwV96LOPNdeE4yBFxgX0b3xdxA61GU5wSesVywlVP+i2k+KYTlerj1KjL0=\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "INFO", + "finding": "D48D3D23EEDB50A459E55197601C27774B9D7B18C94D5A059511A10250B93168" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "INFO", + "finding": "2013-10-01 08:32" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "OK", + "finding": "2033-10-01 08:32" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "INFO", + "finding": "Certigna Root CA <-- Certigna Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "1732442893" + "finding": "1733047284" }, { "id": "HSTS_time", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "2 at '/'" + }, + { + "id": "cookie_secure", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "OK", + "finding": "All (2) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "OK", + "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "OK", + "finding": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr" + }, { "id": "X-XSS-Protection", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0" }, { "id": "Referrer-Policy", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -252719,7 +245119,7 @@ }, { "id": "heartbleed", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -252728,7 +245128,7 @@ }, { "id": "CCS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -252737,7 +245137,7 @@ }, { "id": "ticketbleed", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -252746,7 +245146,7 @@ }, { "id": "ROBOT", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -252755,7 +245155,7 @@ }, { "id": "secure_renego", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -252763,7 +245163,7 @@ }, { "id": "secure_client_renego", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -252772,7 +245172,7 @@ }, { "id": "CRIME_TLS", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -252781,7 +245181,7 @@ }, { "id": "BREACH", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -252790,7 +245190,7 @@ }, { "id": "POODLE_SSL", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -252799,14 +245199,14 @@ }, { "id": "fallback_SCSV", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -252815,7 +245215,7 @@ }, { "id": "FREAK", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -252824,7 +245224,7 @@ }, { "id": "DROWN", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -252833,16 +245233,16 @@ }, { "id": "DROWN_hint", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CD64A8FF0887C2C4EAC4E9201F698FE21EC99FBCDDDD1F14BF2F7DC3C9050DE7" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=AE400C82D84F891F4C3DAF0A4682129E304DC3992518F40A6E7D864EEBD4146D" }, { "id": "LOGJAM", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252851,7 +245251,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252860,7 +245260,7 @@ }, { "id": "BEAST", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -252869,16 +245269,16 @@ }, { "id": "LUCKY13", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -252887,7 +245287,7 @@ }, { "id": "RC4", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -252896,389 +245296,427 @@ }, { "id": "clientsimulation-android_60", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-android_70", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "No connection" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "No connection" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "key_exchange_score", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "0" }, { "id": "final_score", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "0" }, { "id": "overall_grade", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "CRITICAL", + "finding": "T" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to T. Issues with chain of trust (self signed CA in chain)" }, { "id": "scanTime", - "ip": "moncompte.snu.gouv.fr/185.179.148.148", + "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "106" } ], "thirdparties": { "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://plausible.io/js/script.manual.outbound-links.file-downloads.js" - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Caveat:wght@400;600&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, { "type": "unknown", - "url": "https://sentry.selego.co/api/143/envelope/?sentry_key=9f62b6f87edc757e44b10d7728db5913&sentry_version=7&sentry_client=sentry.javascript.react%2F8.25.0" + "url": "https://sentry.io/api/1429547/envelope/?sentry_key=4248116497b049dea165998d79024565&sentry_version=7&sentry_client=sentry.javascript.browser%2F8.33.1" } ], "cookies": [ { - "name": "bln_challengejs", - "value": "vblszcuvfG8acLR9-mRxawP1fGDGxhvktTKQ3srVaFtETtmimbVwfFb6bf7v0tqK8EV84z9P_yylvqmCjemqv2MV7O98J3n_ZYh9lh3xETAIllOU93Jon937NNK2r-XTgEbDiwOselWE16DhEHPowNKdFPoigHacpfXLeYpGVW9K1zZ_hkjdTnancy2eo6PmUUlhx7PlZSAbdGAbJ3aLVFZayy6GGC4QvoJMHhvtduKIGyCFyu8iII_uZ4yFr92dqHPYy8RNchZUZy8ZU2ZCNY3GJN3Lz3CLz4WFerV78v2j4DDDCGV9-ktRior2TNCi", - "domain": ".snu.gouv.fr", + "name": "_pk_ses.73.dc9f", + "value": "1", + "domain": ".www.demarches-simplifiees.fr", "path": "/", - "expires": 1732443753.242334, - "size": 335, + "expires": 1733048982, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.73.dc9f", + "value": "6606ab0249dab4c9.1733047183.", + "domain": ".www.demarches-simplifiees.fr", + "path": "/", + "expires": 1767002383, + "size": 42, "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_DS_session", + "value": "VXhv79U5ISq5D0YnkeSnQj04CBa8JbmhwAaYUeq0igDoqwdOmcEuwb4luPJYS44jY9br496cqT7%2F146Ln0mwIo%2B%2F%2FNu5emWLyPz%2BwfArxGkiAifbiZQWAMs6dA5dxb2tZesFAAOdI5Toa0aeJ0VGM5AYbYQFJalw3tFeuKBEN8L9g5uDiASuwDCQ2GmfhqflGhxVVrTzzGlZLAQQ09u1fu5k4NarIwf7EFEhQAV9ZIPn6kTm7hSYrljJNTFeTUlufs2CQhkImWPiuyPIgc4lBVUjCA%3D%3D--1jXHT4oTqDAZripI--DxLUkKH51%2BRNMQYb%2FIx5DA%3D%3D", + "domain": "www.demarches-simplifiees.fr", + "path": "/", + "expires": -1, + "size": 361, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_csrf_token", + "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IkluWlVUM0ZNWjJKSFFsaHJTMkk0YlhwTGFrMW1Ta1p2VUhoaFNtOUVRa1JzVEZFNFdteDBjSEpRWVdjaSIsImV4cCI6IjIwMjUtMTItMDFUMDk6NTk6NDAuNzE5WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--7af871bbe15647a9346c2eb111d532b9e81c5022", + "domain": "www.demarches-simplifiees.fr", + "path": "/", + "expires": 1764583180.795362, + "size": 253, + "httpOnly": true, "secure": true, "session": false, - "sameSite": "None", + "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { + "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 10:07:33 GMT", - "etag": "W/\"673f015d-8e2\"", - "last-modified": "Thu, 21 Nov 2024 09:46:05 GMT", - "referrer-policy": ": no-referrer", - "sozu-id": "01JDET71A3ZBQAB9VNQYQQZJEE", - "strict-transport-security": ": max-age=31536000; includeSubDomains; preload", - "x-content-type-options": ": nosniff", - "x-download-options": ": noopen", - "x-frame-options": ": DENY", - "x-xss-protection": "1; mode=block" + "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr data.geopf.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr static.demarches-simplifiees.fr *.crisp.help; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 09:59:40 GMT", + "etag": "W/\"b69ae59f7a6499725b5114f013544eae\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "server": "nginx", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkluWlVUM0ZNWjJKSFFsaHJTMkk0YlhwTGFrMW1Ta1p2VUhoaFNtOUVRa1JzVEZFNFdteDBjSEpRWVdjaSIsImV4cCI6IjIwMjUtMTItMDFUMDk6NTk6NDAuNzE5WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--7af871bbe15647a9346c2eb111d532b9e81c5022; path=/; expires=Mon, 01 Dec 2025 09:59:40 GMT; secure; HttpOnly; SameSite=Lax\n_DS_session=VXhv79U5ISq5D0YnkeSnQj04CBa8JbmhwAaYUeq0igDoqwdOmcEuwb4luPJYS44jY9br496cqT7%2F146Ln0mwIo%2B%2F%2FNu5emWLyPz%2BwfArxGkiAifbiZQWAMs6dA5dxb2tZesFAAOdI5Toa0aeJ0VGM5AYbYQFJalw3tFeuKBEN8L9g5uDiASuwDCQ2GmfhqflGhxVVrTzzGlZLAQQ09u1fu5k4NarIwf7EFEhQAV9ZIPn6kTm7hSYrljJNTFeTUlufs2CQhkImWPiuyPIgc4lBVUjCA%3D%3D--1jXHT4oTqDAZripI--DxLUkKH51%2BRNMQYb%2FIx5DA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "strict-transport-security": "max-age=63072000", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "61daf73a-6693-490f-bed0-7efccf000900", + "x-runtime": "0.021981", + "x-xss-protection": "0" }, "endpoints": [ { - "hostname": "moncompte.snu.gouv.fr", - "ip": "185.179.148.148", + "hostname": "www.demarches-simplifiees.fr", + "ip": "176.31.79.200", "geoip": { "continent": { "code": "EU", @@ -253333,8 +245771,8 @@ } }, { - "hostname": "fonts.googleapis.com", - "ip": "142.250.191.138", + "hostname": "sentry.io", + "ip": "35.186.247.156", "geoip": { "continent": { "code": "NA", @@ -253385,192 +245823,222 @@ } } } + } + ] + }, + "wappalyzer": { + "urls": { + "https://www.demarches-simplifiees.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", + "confidence": 100, + "version": null, + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true }, { - "hostname": "plausible.io", - "ip": "138.199.40.58", - "geoip": { - "city": { - "geoname_id": 5128581, - "names": { - "de": "New York City", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 40.7123, - "longitude": -74.0068, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "10118" - }, - "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 100, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 100, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "stimulus", + "name": "Stimulus", + "description": "A modest JavaScript framework for the HTML you already have.", + "confidence": 100, + "version": null, + "icon": "Stimulus.svg", + "website": "https://stimulusjs.org/", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } - } - ] - } + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true }, { - "hostname": "sentry.selego.co", - "ip": "91.134.19.201", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", + "confidence": 100, + "version": null, + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://moncompte.snu.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ + ], + "rootPath": true + }, { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 10, + "slug": "analytics", + "name": "Analytics" } ], "rootPath": true }, { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.37.1", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", "confidence": 100, "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" } - ] + ], + "rootPath": true }, { "slug": "hsts", @@ -253596,9 +246064,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://moncompte.snu.gouv.fr/", - "finalUrl": "https://moncompte.snu.gouv.fr/", - "fetchTime": "2024-11-24T10:07:06.333Z", + "requestedUrl": "https://www.demarches-simplifiees.fr/", + "finalUrl": "https://www.demarches-simplifiees.fr/", + "fetchTime": "2024-12-01T09:59:09.785Z", "runWarnings": [], "categories": { "performance": { @@ -253609,7 +246077,7 @@ "snapshot" ], "id": "performance", - "score": 0.3 + "score": 0.62 }, "accessibility": { "title": "Accessibility", @@ -253620,7 +246088,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.93 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -253630,7 +246098,7 @@ "snapshot" ], "id": "best-practices", - "score": null + "score": 1 }, "seo": { "title": "SEO", @@ -253641,7 +246109,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -253651,7 +246119,7 @@ "navigation" ], "id": "pwa", - "score": 0.3 + "score": 0.4 } }, "audits": { @@ -253661,53 +246129,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6937, + "numericValue": 5610, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5469, - "firstMeaningfulPaint": 5469, - "largestContentfulPaint": 9390, - "interactive": 6937, - "speedIndex": 7975, - "totalBlockingTime": 594, - "maxPotentialFID": 749, - "cumulativeLayoutShift": 0.2782958984375, - "cumulativeLayoutShiftMainFrame": 0.2782958984375, - "totalCumulativeLayoutShift": 0.2782958984375, + "firstContentfulPaint": 3333, + "firstMeaningfulPaint": 3408, + "largestContentfulPaint": 6748, + "interactive": 5610, + "speedIndex": 5141, + "totalBlockingTime": 151, + "maxPotentialFID": 151, + "cumulativeLayoutShift": 0.0018292950524224174, + "cumulativeLayoutShiftMainFrame": 0.0018292950524224174, + "totalCumulativeLayoutShift": 0.0018292950524224174, "observedTimeOrigin": 0, - "observedTimeOriginTs": 445001717, + "observedTimeOriginTs": 406642499, "observedNavigationStart": 0, - "observedNavigationStartTs": 445001717, - "observedFirstPaint": 394, - "observedFirstPaintTs": 445395839, - "observedFirstContentfulPaint": 1004, - "observedFirstContentfulPaintTs": 446006071, - "observedFirstContentfulPaintAllFrames": 1004, - "observedFirstContentfulPaintAllFramesTs": 446006071, - "observedFirstMeaningfulPaint": 1004, - "observedFirstMeaningfulPaintTs": 446006071, - "observedLargestContentfulPaint": 2604, - "observedLargestContentfulPaintTs": 447606140, - "observedLargestContentfulPaintAllFrames": 2604, - "observedLargestContentfulPaintAllFramesTs": 447606140, - "observedTraceEnd": 5062, - "observedTraceEndTs": 450063944, - "observedLoad": 983, - "observedLoadTs": 445984388, - "observedDomContentLoaded": 980, - "observedDomContentLoadedTs": 445981689, - "observedCumulativeLayoutShift": 0.2782958984375, - "observedCumulativeLayoutShiftMainFrame": 0.2782958984375, - "observedTotalCumulativeLayoutShift": 0.2782958984375, - "observedFirstVisualChange": 397, - "observedFirstVisualChangeTs": 445398717, - "observedLastVisualChange": 2730, - "observedLastVisualChangeTs": 447731717, - "observedSpeedIndex": 2427, - "observedSpeedIndexTs": 447428602 + "observedNavigationStartTs": 406642499, + "observedFirstPaint": 1420, + "observedFirstPaintTs": 408062852, + "observedFirstContentfulPaint": 1420, + "observedFirstContentfulPaintTs": 408062852, + "observedFirstContentfulPaintAllFrames": 1420, + "observedFirstContentfulPaintAllFramesTs": 408062852, + "observedFirstMeaningfulPaint": 1420, + "observedFirstMeaningfulPaintTs": 408062852, + "observedLargestContentfulPaint": 1645, + "observedLargestContentfulPaintTs": 408287538, + "observedLargestContentfulPaintAllFrames": 1645, + "observedLargestContentfulPaintAllFramesTs": 408287538, + "observedTraceEnd": 4669, + "observedTraceEndTs": 411311561, + "observedLoad": 2200, + "observedLoadTs": 408842170, + "observedDomContentLoaded": 1372, + "observedDomContentLoadedTs": 408014942, + "observedCumulativeLayoutShift": 0.0018292950524224174, + "observedCumulativeLayoutShiftMainFrame": 0.0018292950524224174, + "observedTotalCumulativeLayoutShift": 0.0018292950524224174, + "observedFirstVisualChange": 1424, + "observedFirstVisualChangeTs": 408066499, + "observedLastVisualChange": 1707, + "observedLastVisualChangeTs": 408349499, + "observedSpeedIndex": 1569, + "observedSpeedIndexTs": 408211504 }, { "lcpInvalidated": false @@ -253725,23 +246193,23 @@ "type": "debugdata", "items": [ { - "numRequests": 61, - "numScripts": 25, - "numStylesheets": 7, + "numRequests": 41, + "numScripts": 14, + "numStylesheets": 2, "numFonts": 5, - "numTasks": 2008, - "numTasksOver10ms": 9, + "numTasks": 1335, + "numTasksOver10ms": 4, "numTasksOver25ms": 2, "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.863999999999999, - "throughput": 15353476.694475926, - "maxRtt": 103.118, - "maxServerLatency": 21.900999999999996, - "totalByteWeight": 1216938, - "totalTaskTime": 589.7969999999964, - "mainDocumentTransferSize": 2156 + "rtt": 3.3979999999999997, + "throughput": 10789188.577427473, + "maxRtt": 151.105, + "maxServerLatency": 42.882000000000005, + "totalByteWeight": 1048639, + "totalTaskTime": 299.0969999999975, + "mainDocumentTransferSize": 9091 } ] } @@ -253750,57 +246218,94 @@ } ], "screenshot": true, - "stats": null, + "stats": { + "grade": "A" + }, "github_repository": { "grade": "A" }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://www.demarches-simplifiees.fr/declaration-accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://www.demarches-simplifiees.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], "betagouv": { - "id": "snu", + "id": "demarches-simplifiees.fr", "type": "startup", "attributes": { - "name": "Service National Universel", - "pitch": "Développer la conscience citoyenne des jeunes", - "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", - "link": "https://snu.gouv.fr/", - "repository": "https://github.com/betagouv/service-national-universel", - "contact": "contact@snu.gouv.fr", - "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", - "events": [], + "name": "Démarches Simplifiées", + "pitch": "Dématérialiser n’importe quelle démarche administrative en quelques minutes", + "stats_url": "https://www.demarches-simplifiees.fr/stats", + "link": "https://www.demarches-simplifiees.fr", + "repository": "https://github.com/betagouv/tps", + "contact": "contact@demarches-simplifiees.fr", + "content_url_encoded_markdown": "demarches-simplifiees.fr%20est%20une%20application%20enti%C3%A8rement%20en%20ligne%20qui%20permet%20%C3%A0%20tous%20les%20organismes%20assurant%20des%20missions%20de%20service%20public%20de%20cr%C3%A9er%20des%20d%C3%A9marches%20en%20quelques%20minutes%20et%20de%20g%C3%A9rer%20les%20demandes%20des%20usagers%20sur%20une%20plateforme%20d%C3%A9di%C3%A9e.%0A%0A%2A%2ALe%20constat%2A%2A%0A%0AEn%202017%2C%20les%20usagers%20devraient%20pouvoir%20effectuer%20toutes%20leurs%20d%C3%A9marches%20en%20ligne.%20Ils%20ne%20devraient%20plus%20avoir%20%C3%A0%20transmettre%20des%20informations%20dont%20l%E2%80%99administration%20dispose%20d%C3%A9j%C3%A0%20ou%20faire%20eux-m%C3%AAmes%20le%20lien%20entre%20une%20multitude%20d%E2%80%99interlocuteurs%20publics.%0A%0ALa%20d%C3%A9mat%C3%A9rialisation%2C%20quant%20%C3%A0%20elle%2C%20ne%20devrait%20pas%20%C3%AAtre%20un%20investissement%20humain%20et%20financier%20pour%20les%20gestionnaires%20et%20les%20agents%20publics.%20Elle%20devrait%20%C3%AAtre%20un%20gain%20de%20temps%20et%20un%20facteur%20d%E2%80%99%C3%A9conomie.%0A%0AC%E2%80%99est%20encore%20loin%20d%E2%80%99%C3%AAtre%20le%20cas.%0A%0APour%20les%20seules%20d%C3%A9marches%20des%20entreprises%20sous%20la%20responsabilit%C3%A9%20de%20l%E2%80%99Etat%2C%20plus%20de%201%20000%20d%C3%A9marches%20sont%20encore%20uniquement%20en%20papier.%20Au%20rythme%20actuel%20d%E2%80%99environ%20100%20d%C3%A9marches%20d%C3%A9mat%C3%A9rialis%C3%A9es%20par%20an%2C%20il%20faudra%20pr%C3%A8s%20de%2010%20ans%20pour%20achever%20la%20d%C3%A9mat%C3%A9rialisation.%0A%0AEt%20si%20chaque%20administration%20fait%20le%20choix%20de%20d%C3%A9velopper%20ses%20propres%20outils%20informatique%20%28au%20lieu%20d%E2%80%99utiliser%20un%20outil%20mutualis%C3%A9%20comme%20demarches-simplifiees.fr%29%2C%20ce%20sont%20des%20dizaines%20de%20millions%20d%E2%80%99euros%20qui%20seront%20d%C3%A9pens%C3%A9s%20en%20pure%20perte%E2%80%A6%0A%0A%2A%2Ademarches-simplifiees.fr%2C%20c%E2%80%99est%20pour%20qui%20%3F%2A%2A%0A%0AVous%20travaillez%20dans%20un%20organisme%20public%20%3F%20Vous%20g%C3%A9rez%20des%20d%C3%A9marches%20administratives%20%3F%20Vous%20voulez%20moderniser%20votre%20administration%20%3F%0A%0Ademarches-simplifiees.fr%20est%20pour%20vous.%0A%0A_Faites%20gagner%20du%20temps%20%C3%A0%20vos%20usagers%2C%20faites%20%C3%A9conomiser%20de%20l%E2%80%99argent%20au%20contribuable%20et%20%C3%A0%20votre%20administration%20%3A%20utilisez%20demarches-simplifiees.fr%20%21_%0A%0A%2A%2APourquoi%20utiliser%20demarches-simplifiees.fr%20%3F%2A%2A%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Agratuit%2A%2A%20%28pour%20tous%20les%20organismes%20assurant%20des%20missions%20de%20service%20public%20-%20services%20de%20l%E2%80%99Etat%2C%20op%C3%A9rateurs%2C%20collectivit%C3%A9s%29.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Asimple%2A%2A%20%3A%20outil%20enti%C3%A8rement%20en%20ligne%20%28en%20SaaS%2C%20Software%20as%20a%20Service%29%2C%20sans%20installation%20ni%20param%C3%A9trage%20%C3%A0%20effectuer%2C%20qui%20peut%20%C3%AAtre%20utilis%C3%A9%20directement%20par%20les%20services%20instructeurs.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Aint%C3%A9gr%C3%A9%20%C3%A0%20l%E2%80%99%C3%A9cosyst%C3%A8me%20num%C3%A9rique%20public%2A%2A%20%3A%20r%C3%A9cup%C3%A9ration%20automatique%20des%20informations%20dont%20l%E2%80%99administration%20dispose%20d%C3%A9j%C3%A0%20sur%20le%20demandeur%20via%20l%E2%80%99API%20entreprise%20aujourd%E2%80%99hui%20%28et%20l%E2%80%99API%20particuliers%20demain%29%20et%20connection%20avec%20France%20Connect.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2Acollaboratif%2A%2A%20%3A%20possibilit%C3%A9%20d%E2%80%99%C3%A9laborer%20et%20d%E2%80%99instruire%20les%20demandes%20%C3%A0%20plusieurs%2C%20pour%20une%20plus%20grande%20fluidit%C3%A9.%0A%0A-%20Parce%20que%20c%E2%80%99est%20%2A%2As%C3%BBr%2A%2A%20%3A%20plateforme%20certifi%C3%A9e%20R%C3%A9f%C3%A9rentiel%20G%C3%A9n%C3%A9ral%20de%20S%C3%A9curit%C3%A9%20%28RGS%29.%0A%0A%2A%2AExemples%20d%E2%80%99utilisation%2A%2A%0A%0A_Pr%C3%A9fecture%20du%20Nord%20Pas-de-Calais_%20%3A%20appel%20%C3%A0%20projet%20pour%20les%20quartiers%20prioritaires%20de%20la%20politique%20de%20la%20ville%0A%0A_Direction%20R%C3%A9gionale%20et%20Interd%C3%A9partementale%20de%20l%E2%80%99Equipement%20et%20de%20l%E2%80%99Am%C3%A9nagement%20d%E2%80%99Ile%20de%20France_%20%3A%20inscription%20au%20registre%20des%20professionnels%20du%20transport%20routier%0A%0A_Minist%C3%A8re%20de%20l%E2%80%99Environnement%2C%20de%20l%E2%80%99Energie%20et%20de%20la%20Mer_%20%3A%20syst%C3%A8me%20d%27%C3%A9change%20de%20quotas%20de%20gaz%20%C3%A0%20effet%20de%20serre%20pour%20les%20installations%20fixes%0A%0A_Agence%20France%20Entrepreneur_%20%3A%20appel%20%C3%A0%20manifestations%20d%E2%80%99int%C3%A9r%C3%AAt%20pour%20le%20d%C3%A9ploiement%20d%E2%80%99une%20offre%20d%E2%80%99acc%C3%A9l%C3%A9rateurs%20de%20d%C3%A9veloppement%20des%20TPE%0A%0A_Assembl%C3%A9e%20Permanente%20des%20Chambres%20des%20M%C3%A9tiers%20et%20de%20l%E2%80%99Artisanat_%20%3A%20pr%C3%A9-inscription%20%C3%A0%20l%27examen%20national%20d%27aptitude%20pour%20l%27acc%C3%A8s%20%C3%A0%20l%27emploi%20de%20secr%C3%A9taire%20g%C3%A9n%C3%A9ral%20des%20chambres%20des%20m%C3%A9tiers%0A%0A%2A%2AContact%2A%2A%0A%0Ademarches-simplifiees.fr%20est%20d%C3%A9velopp%C3%A9%20par%20l%E2%80%99incubateur%20de%20services%20num%C3%A9riques%20de%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%2C%20rattach%C3%A9%20aux%20services%20du%20Premier%20ministre.%0A%0AVous%20voulez%20en%20savoir%20plus%20%3F%20Vous%20voulez%20une%20d%C3%A9mo%20%3F%20%3Ca%20href%3D%22https%3A%2F%2Fwww.demarches-simplifiees.fr%2Fcontact%22%3EContactez-nous%3C%2Fa%3E.", + "events": [ + { + "name": "national_impact", + "date": "2018-01-01", + "comment": "" + }, + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 30000€ pour la promotion 12" + } + ], "phases": [ { "name": "investigation", - "start": "2020-04-01", + "start": "2015-09-15", "end": "" }, { "name": "construction", - "start": "2020-07-01", + "start": "2015-09-15", "end": "" }, { - "name": "acceleration", - "start": "2021-01-01", + "name": "success", + "start": "2020-07-01", "end": "" } ], "sponsors": [ - "djepva" + "dinum" ], "thematiques": [ - "Jeunesse", - "Education" + "Outil technique", + "Administratif" ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", - "accessibility_status": "non conforme" + "analyse_risques_url": "https://github.com/demarches-simplifiees/demarches-simplifiees.fr/blob/main/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur.net/url/www-demarches-simplifiees-fr/", + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "engagement_civique" + "id": "dinum_produits_interministeriels" } } } @@ -253809,16 +246314,16 @@ { "width": 1920, "height": 1080, - "url": "https://moncompte.snu.gouv.fr", - "size": 1271.871, - "nodes": 164, - "requests": 54, + "url": "https://www.demarches-simplifiees.fr", + "size": 1091.548, + "nodes": 261, + "requests": 38, "grade": "B", - "score": 74, - "ges": 1.52, - "water": 2.28, + "score": 75, + "ges": 1.5, + "water": 2.25, "ecoindex_version": "5.4.2", - "date": "2024-11-24 10:04:21.910380", + "date": "2024-12-01 09:56:06.300797", "page_type": null } ], @@ -253827,74 +246332,75 @@ "detected": true }, "summary": { - "httpGrade": "B-", - "apdex": 0.986, - "apdexGrade": "B", + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-17T12:51:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 4, - "lighthouse_performance": 0.3, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.93, + "nmapGrade": "B", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-08T22:59:00.000Z", + "testsslGrade": "T", + "cookiesGrade": "C", + "cookiesCount": 4, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.62, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 0.85, + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", "ecoindexGrade": "B", "dsfrGrade": "A" } }, { "404": null, - "url": "https://admin.snu.gouv.fr", + "url": "https://www.snu.gouv.fr", "category": "engagement_civique", "betaId": "snu", - "tools": { - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false - }, "http": { - "url": "https://admin.snu.gouv.fr", + "url": "https://www.snu.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 07:48:47 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 07:41:03 GMT", + "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "no-cache", + "CF-RAY": "8d575ce47e6576df-SEA", + "Cache-Control": "max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 07:48:46 GMT", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=63072000", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 07:40:59 GMT", + "Expires": "Sun, 20 Oct 2024 07:40:59 GMT", + "Last-Modified": "Sun, 20 Oct 2024 07:40:58 GMT", + "Server": "cloudflare", + "Sozu-Id": "01JAMDYJX7MJ90J179VFBPREZY", "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-XSS-Protection": "1; mode=block" + "Vary": "Accept-Encoding", + "cf-cache-status": "DYNAMIC" }, - "scan_id": 57054701, - "score": 75, - "start_time": "Sun, 20 Oct 2024 07:48:45 GMT", + "scan_id": 57054458, + "score": 5, + "start_time": "Sun, 20 Oct 2024 07:40:56 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, + "tests_failed": 6, + "tests_passed": 4, "tests_quantity": 10, "details": { "content-security-policy": { @@ -253916,13 +246422,44 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, + "data": { + "handl_ip": { + "domain": ".snu.gouv.fr", + "expires": 1732002062, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + }, + "handl_landing_page": { + "domain": ".snu.gouv.fr", + "expires": 1732002062, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + }, + "handl_url": { + "domain": ".snu.gouv.fr", + "expires": 1732002062, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + } + }, "sameSite": null }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -253943,11 +246480,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://admin.snu.gouv.fr/", + "destination": "https://www.snu.gouv.fr/", "redirects": true, "route": [ - "http://admin.snu.gouv.fr/", - "https://admin.snu.gouv.fr/" + "http://www.snu.gouv.fr/", + "https://www.snu.gouv.fr/" ], "status_code": 200 }, @@ -253960,85 +246497,94 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000", + "data": null, "includeSubDomains": false, - "max-age": 63072000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "https://plausible.io/js/script.js": { + "crossorigin": null, + "integrity": null + }, + "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "mii3", - "url": "https://admin.snu.gouv.fr", + "token": "n02y", + "url": "https://www.snu.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T08:12:57Z", + "up_since": "2024-11-27T11:56:32Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -254049,132 +246595,150 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T10:15:55Z", - "next_check_at": "2024-11-24T10:16:55Z", - "created_at": "2024-01-15T13:37:42Z", + "last_check_at": "2024-12-01T10:11:33Z", + "next_check_at": "2024-12-01T10:12:32Z", + "created_at": "2024-01-15T13:56:21Z", "mute_until": null, - "favicon_url": "https://admin.snu.gouv.fr/favicon.ico", + "favicon_url": "https://www.snu.gouv.fr/wp-content/uploads/2023/03/cropped-SNU_LOGO_RVB_VDEF-1-1-192x192.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T10:14:57Z", - "expires_at": "2024-12-17T12:50:17Z", + "tested_at": "2024-12-01T10:09:34Z", + "expires_at": "2025-02-13T21:11:21Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.87, "timings": { "redirect": 0, - "namelookup": 47, - "connection": 121, - "handshake": 125, - "response": 122, - "total": 414 + "namelookup": 11, + "connection": 6, + "handshake": 14, + "response": 370, + "total": 401 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { - "host": "admin.snu.gouv.fr", + "host": "www.snu.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "996", "open_ports": [ { "service": { "name": "http", + "product": "Cloudflare http proxy", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", + "name": "http", + "product": "Cloudflare http proxy", "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254182,7 +246746,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254190,7 +246754,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254198,7 +246762,7 @@ }, { "id": "cipherlist_LOW", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254206,7 +246770,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -254214,7 +246778,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -254222,490 +246786,791 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 64800 seconds only (", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_keySize ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_keyUsage ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_extKeyUsage ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_serialNumber ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "0357376243CAA675F30C8A07B6DB3D9C7477" + "finding": "310999E39A93230213CD5C8A4495F0D3" }, { - "id": "cert_serialNumberLen", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_serialNumberLen ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_fingerprintSHA1 ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "B60CB77B91C755AEA594274CD3E129F71D900418" + "finding": "CA0567CA76682816AB335A900757689BE0188CC8" }, { - "id": "cert_fingerprintSHA256", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_fingerprintSHA256 ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "279B348FBDBEE78B38B0472A63464C238569CE306D6481DE326E484BE2B7C7EA" + "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { - "id": "cert", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_commonName ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "admin.snu.gouv.fr" + "finding": "www.snu.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_commonName_wo_SNI ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "admin.snu.gouv.fr" + "finding": "request w/o SNI didn't succeed" }, { - "id": "cert_subjectAltName", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_subjectAltName ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "admin.snu.gouv.fr" + "finding": "www.snu.gouv.fr" }, { - "id": "cert_trust", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_trust ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_chain_of_trust ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_certificatePolicies_EV ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_expirationStatus ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 30 days (23)" + "severity": "OK", + "finding": "74 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_notBefore ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "2024-09-18 12:50" + "finding": "2024-11-15 21:11" }, { - "id": "cert_notAfter", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_notAfter ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-17 12:50" + "severity": "OK", + "finding": "2025-02-13 21:11" }, { - "id": "cert_extlifeSpan", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_extlifeSpan ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_eTLS ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_crlDistributionPoints ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/wr1/MQk" + }, + { + "id": "OCSP_stapling ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "cert_ocspURL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "DNS_CAArecord ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "3" + }, + { + "id": "certs_list_ordering_problem ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "WR1 (Google Trust Services from US)" + }, + { + "id": "intermediate_cert <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + }, + { + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "2023-12-13 09:00" + }, + { + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "2029-02-20 14:00" + }, + { + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "WR1 <-- GTS Root R1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "2020-06-19 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R1 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "cert_signatureAlgorithm ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "ECDSA with SHA256" + }, + { + "id": "cert_keySize ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" + }, + { + "id": "cert_keyUsage ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature" + }, + { + "id": "cert_extKeyUsage ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication" + }, + { + "id": "cert_serialNumber ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "3FBA013F3224F5F711CAE693744629B2" + }, + { + "id": "cert_serialNumberLen ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1 ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" + }, + { + "id": "cert_fingerprintSHA256 ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" + }, + { + "id": "cert ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "www.snu.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed, usual for EC certificates" + }, + { + "id": "cert_subjectAltName ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "www.snu.gouv.fr" + }, + { + "id": "cert_trust ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "74 >= 60 days" + }, + { + "id": "cert_notBefore ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "2024-11-15 21:11" + }, + { + "id": "cert_notAfter ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "2025-02-13 21:11" + }, + { + "id": "cert_extlifeSpan ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/we1/P7o" }, { - "id": "OCSP_stapling", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "OCSP_stapling ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cert_ocspRevoked", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_ocspRevoked ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not revoked" }, { - "id": "cert_mustStapleExtension", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_mustStapleExtension ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "DNS_CAArecord ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "certificate_transparency ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "certs_countServer ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "certs_list_ordering_problem ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cert_caIssuers ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { - "id": "HTTP_clock_skew", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2023-11-15 03:43" }, { - "id": "HTTP_headerTime", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "INFO", - "finding": "1732443307" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "HSTS_time", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "ok > 40 days" }, { - "id": "HSTS_subdomains", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_chain <#2> ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { - "id": "HSTS_preload", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "intermediate_cert_badOCSP ", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HPKP", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "HTTP_status_code", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "200 OK ('/')" }, { - "id": "banner_server", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "HTTP_clock_skew", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "-1 seconds from localtime" }, { - "id": "banner_application", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "HTTP_headerTime", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "1733047753" }, { - "id": "cookie_count", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "HSTS", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "INFO", - "finding": "0 at '/'" + "severity": "LOW", + "finding": "not offered" }, { - "id": "X-Frame-Options", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "HPKP", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "OK", - "finding": "DENY" + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "X-Content-Type-Options", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "banner_server", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", - "severity": "OK", - "finding": "nosniff" + "severity": "INFO", + "finding": "cloudflare" }, { - "id": "X-XSS-Protection", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "banner_application", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "No application banner found" }, { - "id": "Referrer-Policy", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "id": "cookie_count", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -254713,7 +247578,7 @@ }, { "id": "heartbleed", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -254722,7 +247587,7 @@ }, { "id": "CCS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -254731,25 +247596,25 @@ }, { "id": "ticketbleed", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -254757,7 +247622,7 @@ }, { "id": "secure_client_renego", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -254766,7 +247631,7 @@ }, { "id": "CRIME_TLS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -254775,16 +247640,16 @@ }, { "id": "BREACH", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -254793,14 +247658,14 @@ }, { "id": "fallback_SCSV", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -254809,7 +247674,7 @@ }, { "id": "FREAK", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -254818,7 +247683,7 @@ }, { "id": "DROWN", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -254827,16 +247692,16 @@ }, { "id": "DROWN_hint", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=279B348FBDBEE78B38B0472A63464C238569CE306D6481DE326E484BE2B7C7EA" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { "id": "LOGJAM", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -254845,16 +247710,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -254863,7 +247728,7 @@ }, { "id": "LUCKY13", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -254872,7 +247737,7 @@ }, { "id": "winshock", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -254881,7 +247746,7 @@ }, { "id": "RC4", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -254890,1291 +247755,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "100" }, - { - "id": "protocol_support_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "admin.snu.gouv.fr/185.231.167.165", - "port": "443", - "severity": "INFO", - "finding": "55" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://plausible.io/js/script.manual.outbound-links.file-downloads.js" - }, - { - "type": "unknown", - "url": "https://sentry.selego.co/api/140/envelope/?sentry_key=70778e8aa9a6f1b9f483a8b6c9046a12&sentry_version=7&sentry_client=sentry.javascript.react%2F8.25.0" - } - ], - "cookies": [ - { - "name": "bln_challengejs", - "value": "O_FiLGf-CcCCpXCzt9J96U7mGVaZe9N9jiLohbYSjopLhcf8egIczqq3TH6OrvOELfZWtsladwhV3nZPpKt61j5fq2G0rfBlERkPYG7mM49N41E8DRZY-KP-gHnwCRu5N97Wg_cBg_KkT1QXTfhRJp0f14aGMchqiJsrT2tQ-Pkm3cOBTpKAqiXnO-4ATjoukqHALKcWX_fNbhU-JuRxqG4Cz7BP3hfQxTzZu681J0sKwInJenrsghGinC-CXgNR5W-8k-TLL2Qf9APqLjOFjbRSGE246mjqicFWm8ckRddUqHKL9iwOEq5qZbWMU5KJ", - "domain": ".snu.gouv.fr", - "path": "/", - "expires": 1732444167.390862, - "size": 335, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 10:14:27 GMT", - "etag": "W/\"673f0162-c4c\"", - "last-modified": "Thu, 21 Nov 2024 09:46:10 GMT", - "referrer-policy": ": no-referrer", - "sozu-id": "01JDETKXR5HY0W43DF0WM65W16", - "strict-transport-security": ": max-age=31536000; includeSubDomains; preload", - "x-content-type-options": ": nosniff", - "x-download-options": ": noopen", - "x-frame-options": ": DENY", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "admin.snu.gouv.fr", - "ip": "185.231.167.165", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "172.253.115.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "plausible.io", - "ip": "37.19.207.34", - "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, - "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - }, - { - "hostname": "sentry.selego.co", - "ip": "91.134.19.201", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://admin.snu.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://admin.snu.gouv.fr/", - "finalUrl": "https://admin.snu.gouv.fr/", - "fetchTime": "2024-11-24T10:14:00.682Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.51 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.86 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.71 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 7108, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 6874, - "firstMeaningfulPaint": 6874, - "largestContentfulPaint": 9433, - "interactive": 7108, - "speedIndex": 7293, - "totalBlockingTime": 184, - "maxPotentialFID": 932, - "cumulativeLayoutShift": 0.00027438693576388885, - "cumulativeLayoutShiftMainFrame": 0.00027438693576388885, - "totalCumulativeLayoutShift": 0.00027438693576388885, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 350917399, - "observedNavigationStart": 0, - "observedNavigationStartTs": 350917399, - "observedFirstPaint": 574, - "observedFirstPaintTs": 351491220, - "observedFirstContentfulPaint": 1054, - "observedFirstContentfulPaintTs": 351971249, - "observedFirstContentfulPaintAllFrames": 1054, - "observedFirstContentfulPaintAllFramesTs": 351971249, - "observedFirstMeaningfulPaint": 1054, - "observedFirstMeaningfulPaintTs": 351971249, - "observedLargestContentfulPaint": 2205, - "observedLargestContentfulPaintTs": 353122452, - "observedLargestContentfulPaintAllFrames": 2205, - "observedLargestContentfulPaintAllFramesTs": 353122452, - "observedTraceEnd": 4643, - "observedTraceEndTs": 355560860, - "observedLoad": 1021, - "observedLoadTs": 351938222, - "observedDomContentLoaded": 1020, - "observedDomContentLoadedTs": 351937809, - "observedCumulativeLayoutShift": 0.00027438693576388885, - "observedCumulativeLayoutShiftMainFrame": 0.00027438693576388885, - "observedTotalCumulativeLayoutShift": 0.00027438693576388885, - "observedFirstVisualChange": 1618, - "observedFirstVisualChangeTs": 352535399, - "observedLastVisualChange": 2351, - "observedLastVisualChangeTs": 353268399, - "observedSpeedIndex": 2197, - "observedSpeedIndexTs": 353114042 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 53, - "numScripts": 30, - "numStylesheets": 6, - "numFonts": 3, - "numTasks": 1533, - "numTasksOver10ms": 7, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 1.261, - "throughput": 20038346.555953927, - "maxRtt": 84.67099999999999, - "maxServerLatency": 59.850999999999985, - "totalByteWeight": 1323585, - "totalTaskTime": 542.449999999999, - "mainDocumentTransferSize": 2156 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": null, - "github_repository": { - "grade": "A" - }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, - "betagouv": { - "id": "snu", - "type": "startup", - "attributes": { - "name": "Service National Universel", - "pitch": "Développer la conscience citoyenne des jeunes", - "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", - "link": "https://snu.gouv.fr/", - "repository": "https://github.com/betagouv/service-national-universel", - "contact": "contact@snu.gouv.fr", - "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2020-04-01", - "end": "" - }, - { - "name": "construction", - "start": "2020-07-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2021-01-01", - "end": "" - } - ], - "sponsors": [ - "djepva" - ], - "thematiques": [ - "Jeunesse", - "Education" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "engagement_civique" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://admin.snu.gouv.fr", - "size": 1431.01, - "nodes": 119, - "requests": 54, - "grade": "B", - "score": 74, - "ges": 1.52, - "water": 2.28, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 10:11:07.726780", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-17T12:50:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.51, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.86, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 0.71, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "githubRepositoryGrade": "A", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://www.jeveuxaider.gouv.fr", - "category": "engagement_civique", - "betaId": "jeveuxaider", - "http": { - "url": "https://www.jeveuxaider.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 07:54:31 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "8d57709e8daa7696-SEA", - "Cache-Control": "max-age=300, public, no-transform", - "Connection": "keep-alive", - "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 20 Oct 2024 07:54:28 GMT", - "Server": "cloudflare", - "Transfer-Encoding": "chunked", - "alt-svc": "h3=\":443\"; ma=86400", - "expires": "Sun, 20 Oct 2024 07:59:27 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-powered-by": "Nuxt", - "x-request-id": "5831782a-556c-4416-b6b0-be21742adc8a, 5831782a-556c-4416-b6b0-be21742adc8a" - }, - "scan_id": 57054814, - "score": 50, - "start_time": "Sun, 20 Oct 2024 07:54:25 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.jeveuxaider.gouv.fr/", - "redirects": true, - "route": [ - "http://www.jeveuxaider.gouv.fr/", - "https://www.jeveuxaider.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "bnuv", - "url": "https://www.jeveuxaider.gouv.fr", - "alias": "", - "last_status": 200, - "uptime": 90.666, - "down": false, - "down_since": null, - "up_since": "2024-11-24T10:20:17Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [], - "last_check_at": "2024-11-24T10:26:17Z", - "next_check_at": "2024-11-24T10:27:17Z", - "created_at": "2024-01-15T13:56:21Z", - "mute_until": null, - "favicon_url": "https://www.jeveuxaider.gouv.fr/favicon.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T10:18:48Z", - "expires_at": "2025-02-01T04:28:30Z", - "valid": true, - "error": null + { + "id": "protocol_support_score_weighted", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "30" }, - "metrics": { - "apdex": 0.397, - "timings": { - "redirect": 0, - "namelookup": 16, - "connection": 4, - "handshake": 10, - "response": 878, - "total": 907 - } + { + "id": "key_exchange_score", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.snu.gouv.fr/104.22.16.136", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "F", - "apdexGrade": "F" - }, - "nmap": { - "host": "www.jeveuxaider.gouv.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -256182,7 +248155,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -256190,7 +248163,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -256198,7 +248171,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -256206,7 +248179,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -256214,7 +248187,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -256222,840 +248195,791 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "5F9BAB8D3E50B5E511177026A7630D7A" + "finding": "310999E39A93230213CD5C8A4495F0D3" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" + "finding": "CA0567CA76682816AB335A900757689BE0188CC8" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFKjCCBBKgAwIBAgIQMQmZ45qTIwITzVyKRJXw0zANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTE1MjExMTEzWhcNMjUwMjEzMjExMTEyWjAaMRgwFgYDVQQDEw93d3cuc251LmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPOnub2sIZQpgfVqp3wpePpwTVol1WrqbamYi2vodUNywsAgFxmuAwGEVGH8oIObTpmdtUJVDgCOB/nNlmVptiFxkj2Odayo0Vo/LjqFVOBuqJMReXJNjHEeOpw+SdeMlliLBBown8oR7cguKkKI4dTK/Fft00bKG8dQAnGFnldPAFECdQR3ow20IG84OksuIP16j6x6BbHpZ9PYjWTZcIMGywnyyKaJGQY3HIl5ZcpbqIkJLmIruEp3DGy2fXzvEwKE3Kzn3NSZu3Ns4L5W+iKSFgpoNVuqVr4CfMYV3TNSvsGt/kC957FEcg364dpOopZLpcHW5GXvMPwbcBMpJPAgMBAAGjggJJMIICRTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlnDxFbWtZUP7g35GEEi5fT/x71IwHwYDVR0jBBgwFoAUZmlJ1N4qnJEDz4kOJLgOMANuiC4wXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dyMS9NUWswJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dyMS5jcnQwGgYDVR0RBBMwEYIPd3d3LnNudS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS9DT19wZ3pjQ2NKdy5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAZMx4WCRAAAEAwBHMEUCIEGR9RQajHMjfxG/iQCI3MaGxDJEntezb5aRZilVHSBpAiEArkBSi14xY2nM2hq7xq2U4a4gdvEf4Hl55LanMGSAhu0AdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAZMx4WTDAAAEAwBIMEYCIQCpz1sxAyWrytWoKbbh9e15eujCvG7z5ZGuWJG1AAdXvQIhAIT34xSxJpJaaRkBmdhaR2mPbx8lblCmImjJ6yqdleouMA0GCSqGSIb3DQEBCwUAA4IBAQCaxF+CA61x0WAbrg3ROxRQUF0A2SnPSCxOO1KkF7bKRxbX3JadX0A+ZXCXrkRdUg6XY+8oCwg9Jap2wFTzPRWac8J2CHInpstdZ4fd5oNgd1ZjEwOfGlt70sdLU0UKhcFgCbaarbPpO+lc/mBbnqh17UdndrzPhY78+HH7L24CpSuMbYeapvv6cf1/NvKM/91FF85B7YTAbarXd2tlRqJfFCoAY6QjMeUWkxmgvXuVQ+B/fkbL/g5OlsDDanQyfR8amRj/26Ro5JFuXHPu2OeWutVScoun/k1TTPWoxQytZWrAoluZwBcQcjUaz7DvCQYKQz/fiPMbDK+bb+BVCmEQ\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "74 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "2024-11-03 04:28" + "finding": "2024-11-15 21:11" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "2025-02-01 04:28" + "finding": "2025-02-13 21:11" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" + "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/X5s" + "finding": "http://o.pki.goog/s/wr1/MQk" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "WR1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "WR1 <-- GTS Root R1" }, { "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "6D80AF7B9A530E200DD36F1749753E6F" + "finding": "3FBA013F3224F5F711CAE693744629B2" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "E79D116789818800EE44EA2FF7EA860513463750" + "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" + "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "74 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "2024-11-03 04:28" + "finding": "2024-11-15 21:11" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "2025-02-01 04:28" + "finding": "2025-02-13 21:11" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" + "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/bYA" + "finding": "http://o.pki.goog/s/we1/P7o" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "WE1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "WE1 <-- GTS Root R4" }, { "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2023-11-15 03:43" }, { "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "INFO", - "finding": "1732443786" - }, - { - "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733047813" }, { - "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "id": "HSTS", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Nuxt" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple Cache-Control headers. Using first header: max-age=300" - }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "max-age=300" + "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -257063,7 +248987,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -257072,7 +248996,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -257081,7 +249005,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -257090,7 +249014,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -257099,7 +249023,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -257107,7 +249031,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -257116,7 +249040,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -257125,16 +249049,16 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -257143,23 +249067,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "uses 64 bit block ciphers" + "finding": "not vulnerable" }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -257168,7 +249092,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -257177,16 +249101,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -257195,34 +249119,25 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, - { - "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" - }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -257231,7 +249146,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -257240,7 +249155,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -257249,406 +249164,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "95" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "28" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "79" + "finding": "81" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", - "severity": "MEDIUM", - "finding": "B" + "severity": "OK", + "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" - }, - { - "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257656,7 +249564,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257664,7 +249572,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257672,7 +249580,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257680,7 +249588,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -257688,7 +249596,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -257696,840 +249604,791 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "5F9BAB8D3E50B5E511177026A7630D7A" + "finding": "310999E39A93230213CD5C8A4495F0D3" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" + "finding": "CA0567CA76682816AB335A900757689BE0188CC8" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + "finding": "745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFKjCCBBKgAwIBAgIQMQmZ45qTIwITzVyKRJXw0zANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTE1MjExMTEzWhcNMjUwMjEzMjExMTEyWjAaMRgwFgYDVQQDEw93d3cuc251LmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPOnub2sIZQpgfVqp3wpePpwTVol1WrqbamYi2vodUNywsAgFxmuAwGEVGH8oIObTpmdtUJVDgCOB/nNlmVptiFxkj2Odayo0Vo/LjqFVOBuqJMReXJNjHEeOpw+SdeMlliLBBown8oR7cguKkKI4dTK/Fft00bKG8dQAnGFnldPAFECdQR3ow20IG84OksuIP16j6x6BbHpZ9PYjWTZcIMGywnyyKaJGQY3HIl5ZcpbqIkJLmIruEp3DGy2fXzvEwKE3Kzn3NSZu3Ns4L5W+iKSFgpoNVuqVr4CfMYV3TNSvsGt/kC957FEcg364dpOopZLpcHW5GXvMPwbcBMpJPAgMBAAGjggJJMIICRTAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlnDxFbWtZUP7g35GEEi5fT/x71IwHwYDVR0jBBgwFoAUZmlJ1N4qnJEDz4kOJLgOMANuiC4wXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dyMS9NUWswJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dyMS5jcnQwGgYDVR0RBBMwEYIPd3d3LnNudS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS9DT19wZ3pjQ2NKdy5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAZMx4WCRAAAEAwBHMEUCIEGR9RQajHMjfxG/iQCI3MaGxDJEntezb5aRZilVHSBpAiEArkBSi14xY2nM2hq7xq2U4a4gdvEf4Hl55LanMGSAhu0AdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAZMx4WTDAAAEAwBIMEYCIQCpz1sxAyWrytWoKbbh9e15eujCvG7z5ZGuWJG1AAdXvQIhAIT34xSxJpJaaRkBmdhaR2mPbx8lblCmImjJ6yqdleouMA0GCSqGSIb3DQEBCwUAA4IBAQCaxF+CA61x0WAbrg3ROxRQUF0A2SnPSCxOO1KkF7bKRxbX3JadX0A+ZXCXrkRdUg6XY+8oCwg9Jap2wFTzPRWac8J2CHInpstdZ4fd5oNgd1ZjEwOfGlt70sdLU0UKhcFgCbaarbPpO+lc/mBbnqh17UdndrzPhY78+HH7L24CpSuMbYeapvv6cf1/NvKM/91FF85B7YTAbarXd2tlRqJfFCoAY6QjMeUWkxmgvXuVQ+B/fkbL/g5OlsDDanQyfR8amRj/26Ro5JFuXHPu2OeWutVScoun/k1TTPWoxQytZWrAoluZwBcQcjUaz7DvCQYKQz/fiPMbDK+bb+BVCmEQ\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "74 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "2024-11-03 04:28" + "finding": "2024-11-15 21:11" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "2025-02-01 04:28" + "finding": "2025-02-13 21:11" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" + "finding": "http://c.pki.goog/wr1/CO_pgzcCcJw.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/X5s" + "finding": "http://o.pki.goog/s/wr1/MQk" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "WR1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "WR1 <-- GTS Root R1" }, { "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "6D80AF7B9A530E200DD36F1749753E6F" + "finding": "3FBA013F3224F5F711CAE693744629B2" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "E79D116789818800EE44EA2FF7EA860513463750" + "finding": "4CA8EFAA8D481EEA2F9412CD569C089BE2D5D3FF" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" + "finding": "B68DDCCF925F3681D78E40601C2F1BFC5D35F7DFC54C52340CB8CF21C822028D" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIDnDCCA0OgAwIBAgIQP7oBPzIk9fcRyuaTdEYpsjAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMTE1MjExMTIyWhcNMjUwMjEzMjExMTIxWjAaMRgwFgYDVQQDEw93d3cuc251LmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATMSM/0Pf7C/8zt7KSZhSj9ODOnmxiGmH+J9hwFeWDGVPFrIv57EuJiGts+k5DrXEhPR0C/TyKUGBDL9ljmNUvgo4ICSDCCAkQwDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOcrGVTUyMzUVuua+P3ZvVJTWljcMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvUDdvMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MBoGA1UdEQQTMBGCD3d3dy5zbnUuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvQk1WR19YTDBsX00uY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGTMeGCfgAABAMARzBFAiBUSf9J6VQiY5FTVeNaMbfPddkXLXH45BdKGzxkMiHTgQIhAJnHqqe9soPaSUiV6FgEYJQyLFNeX3KkLnO6LkcDqIs5AHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGTMeGCYAAABAMARzBFAiAMYcRQVnB5BCMc5W4EouMZ9hKdpu3YmPEPhuwsy/vLFQIhAOIRt0SKCbyt84ApZaY89+ref1mT8Oo7STJZnSEbKzgCMAoGCCqGSM49BAMCA0cAMEQCICVtMOzPapMK2X25j4aqpY3frj8s3A9WOJIS3IIgggMbAiAYFvYMoQ9Y6GL+6NsEu9NH10sCqRO5gM+M/tEPYy6ymQ==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "www.snu.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "74 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "2024-11-03 04:28" + "finding": "2024-11-15 21:11" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "2025-02-01 04:28" + "finding": "2025-02-13 21:11" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" + "finding": "http://c.pki.goog/we1/BMVG_XL0l_M.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/bYA" + "finding": "http://o.pki.goog/s/we1/P7o" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "WE1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "WE1 <-- GTS Root R4" }, { "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2023-11-15 03:43" }, { "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "1732443854" - }, - { - "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733047873" }, { - "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "id": "HSTS", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Nuxt" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple Cache-Control headers. Using first header: max-age=300" - }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "max-age=300" + "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -258537,7 +250396,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -258546,7 +250405,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -258555,7 +250414,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -258564,7 +250423,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -258573,7 +250432,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -258581,7 +250440,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -258590,7 +250449,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -258599,16 +250458,16 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -258617,23 +250476,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "uses 64 bit block ciphers" + "finding": "not vulnerable" }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -258642,7 +250501,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -258651,16 +250510,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=745A0FD1C0AB53C416DDEB040FA750CBA3183C7D39A4415BDC96DC2270E43770" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -258669,34 +250528,25 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, - { - "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" - }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -258705,7 +250555,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -258714,7 +250564,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -258723,406 +250573,1715 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "95" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "28" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "27" }, { - "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "60" - }, + "id": "cipher_strength_score", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "www.snu.gouv.fr/172.67.4.138", + "port": "443", + "severity": "INFO", + "finding": "183" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a" + }, + { + "type": "unknown", + "url": "https://plausible.io/js/script.js" + }, + { + "type": "cloudflare", + "url": "https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://cdn.tarteaucitron.io/css/tarteaucitron.min.css" + }, + { + "type": "unknown", + "url": "https://cdn.tarteaucitron.io/lang/tarteaucitron.fr.min.js" + }, + { + "type": "unknown", + "url": "https://cdn.tarteaucitron.io/tarteaucitron.services.min.js" + }, + { + "type": "unknown", + "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1733047685620" + } + ], + "cookies": [], + "headers": { + "cache-control": "max-age=0", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb246154f893882-IAD", + "content-encoding": "br", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 10:08:03 GMT", + "expires": "Sun, 01 Dec 2024 10:08:03 GMT", + "last-modified": "Sun, 01 Dec 2024 09:41:05 GMT", + "server": "cloudflare", + "server-timing": "cfCacheStatus;desc=\"DYNAMIC\"", + "sozu-id": "01JE0V1JDVR4HAT22G2DRZ38KB", + "vary": "Accept-Encoding" + }, + "endpoints": [ + { + "hostname": "www.snu.gouv.fr", + "ip": "104.22.17.136", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "tarteaucitron.io", + "ip": "51.68.111.231", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "plausible.io", + "ip": "138.199.40.58", + "geoip": { + "city": { + "geoname_id": 5128581, + "names": { + "de": "New York City", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 40.7123, + "longitude": -74.0068, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "10118" + }, + "registered_country": { + "geoname_id": 2635167, + "iso_code": "GB", + "names": { + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" + } + }, + "subdivisions": [ + { + "geoname_id": 5128638, + "iso_code": "NY", + "names": { + "de": "New York", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク州", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк", + "zh-CN": "纽约州" + } + } + ] + } + }, + { + "hostname": "static.cloudflareinsights.com", + "ip": "104.16.79.73", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.tarteaucitron.io", + "ip": "51.68.111.234", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://www.snu.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wordpress", + "name": "WordPress", + "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", + "confidence": 100, + "version": "6.7.1", + "icon": "WordPress.svg", + "website": "https://wordpress.org", + "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + }, + { + "id": 11, + "slug": "blogs", + "name": "Blogs" + } + ], + "rootPath": true + }, + { + "slug": "proton-mail", + "name": "Proton Mail", + "description": "Proton Mail is the world’s largest secure email service with over 70 million users. Available on Web, iOS, Android, and desktop. Protected by Swiss privacy law.", + "confidence": 100, + "version": null, + "icon": "Proton Mail.svg", + "website": "https://proton.me/mail", + "cpe": null, + "categories": [ + { + "id": 30, + "slug": "webmail", + "name": "Webmail" + } + ], + "rootPath": true + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "10.10.0", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "youtube", + "name": "YouTube", + "description": "YouTube is a video sharing service where users can create their own profile, upload videos, watch, like and comment on other videos.", + "confidence": 100, + "version": null, + "icon": "YouTube.png", + "website": "https://www.youtube.com", + "cpe": null, + "categories": [ + { + "id": 14, + "slug": "video-players", + "name": "Video players" + } + ], + "rootPath": true + }, + { + "slug": "vimeo", + "name": "Vimeo", + "description": "Vimeo is a video hosting, sharing and services platform. Vimeo operation an ad-free basis by providing subscription plans.", + "confidence": 100, + "version": null, + "icon": "Vimeo.svg", + "website": "https://vimeo.com", + "cpe": null, + "categories": [ + { + "id": 14, + "slug": "video-players", + "name": "Video players" + } + ], + "rootPath": true + }, + { + "slug": "mediaelement-js", + "name": "MediaElement.js", + "description": "MediaElement.js is a set of custom Flash plugins that mimic the HTML5 MediaElement API for browsers that don't support HTML5 or don't support the media codecs.", + "confidence": 100, + "version": "4.2.17", + "icon": "MediaElement.js.svg", + "website": "https://www.mediaelementjs.com", + "cpe": null, + "categories": [ + { + "id": 14, + "slug": "video-players", + "name": "Video players" + } + ], + "rootPath": true + }, + { + "slug": "draftpress-hfcm", + "name": "Draftpress HFCM", + "description": "Header Footer Code Manager by Draftpress is a easy interface to add snippets to the header or footer or above or below the content of your page.", + "confidence": 100, + "version": null, + "icon": "Draftpress.png", + "website": "https://draftpress.com/products/header-footer-code-manager-pro/", + "cpe": null, + "categories": [ + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "wp-rocket", + "name": "WP Rocket", + "description": "WP Rocket is a caching and performance optimisation plugin to improve the loading speed of WordPress websites.", + "confidence": 100, + "version": null, + "icon": "WP Rocket.png", + "website": "https://wp-rocket.me", + "cpe": null, + "categories": [ + { + "id": 23, + "slug": "caching", + "name": "Caching" + }, + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "gsap", + "name": "GSAP", + "description": "GSAP is an animation library that allows you to create animations with JavaScript.", + "confidence": 100, + "version": "3.12.5", + "icon": "TweenMax.png", + "website": "https://greensock.com/gsap", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "yoast-seo", + "name": "Yoast SEO", + "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", + "confidence": 100, + "version": "23.9", + "icon": "Yoast SEO.png", + "website": "https://yoast.com/wordpress/plugins/seo/", + "cpe": null, + "categories": [ + { + "id": 54, + "slug": "seo", + "name": "SEO" + }, + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare-browser-insights", + "name": "Cloudflare Browser Insights", + "description": "Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + }, + { + "id": 78, + "slug": "rum", + "name": "RUM" + } + ], + "rootPath": true + }, + { + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "jquery-migrate", + "name": "jQuery Migrate", + "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", + "confidence": 100, + "version": "3.4.1", + "icon": "jQuery.svg", + "website": "https://github.com/jquery/jquery-migrate", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.7.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "isotope", + "name": "Isotope", + "description": "Isotope.js is a JavaScript library that makes it easy to sort, filter, and add Masonry layouts to items on a webpage.", + "confidence": 100, + "version": null, + "icon": "Isotope.svg", + "website": "https://isotope.metafizzy.co", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "rss", + "name": "RSS", + "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", + "confidence": 100, + "version": null, + "icon": "RSS.svg", + "website": "https://www.rssboard.org/rss-specification", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://www.snu.gouv.fr/", + "finalUrl": "https://www.snu.gouv.fr/", + "fetchTime": "2024-12-01T10:07:36.376Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.52 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.95 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.93 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12403, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2439, + "firstMeaningfulPaint": 2439, + "largestContentfulPaint": 13429, + "interactive": 12403, + "speedIndex": 11418, + "totalBlockingTime": 154, + "maxPotentialFID": 278, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 352729340, + "observedNavigationStart": 0, + "observedNavigationStartTs": 352729340, + "observedFirstPaint": 873, + "observedFirstPaintTs": 353601918, + "observedFirstContentfulPaint": 873, + "observedFirstContentfulPaintTs": 353601918, + "observedFirstContentfulPaintAllFrames": 873, + "observedFirstContentfulPaintAllFramesTs": 353601918, + "observedFirstMeaningfulPaint": 873, + "observedFirstMeaningfulPaintTs": 353601918, + "observedLargestContentfulPaint": 873, + "observedLargestContentfulPaintTs": 353601918, + "observedLargestContentfulPaintAllFrames": 873, + "observedLargestContentfulPaintAllFramesTs": 353601918, + "observedTraceEnd": 3679, + "observedTraceEndTs": 356408485, + "observedLoad": 1109, + "observedLoadTs": 353838356, + "observedDomContentLoaded": 1074, + "observedDomContentLoadedTs": 353803041, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 873, + "observedFirstVisualChangeTs": 353602340, + "observedLastVisualChange": 1639, + "observedLastVisualChangeTs": 354368340, + "observedSpeedIndex": 1295, + "observedSpeedIndexTs": 354024172 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 48, + "numScripts": 17, + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 1537, + "numTasksOver10ms": 13, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 4.891, + "throughput": 76249898.3313799, + "maxRtt": 86.285, + "maxServerLatency": 10.369, + "totalByteWeight": 2859314, + "totalTaskTime": 543.9939999999967, + "mainDocumentTransferSize": 98086 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://www.snu.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 2, + "missingWords": [ + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://www.snu.gouv.fr/mentions-legales/" }, { - "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "79" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 5, + "score": 4, + "missingWords": [ + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://www.snu.gouv.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "snu", + "type": "startup", + "attributes": { + "name": "Service National Universel", + "pitch": "Développer la conscience citoyenne des jeunes", + "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", + "link": "https://snu.gouv.fr/", + "repository": "https://github.com/betagouv/service-national-universel", + "contact": "contact@snu.gouv.fr", + "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-04-01", + "end": "" + }, + { + "name": "construction", + "start": "2020-07-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-01-01", + "end": "" + } + ], + "sponsors": [ + "djepva" + ], + "thematiques": [ + "Jeunesse", + "Education" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "engagement_civique" + } + } + } + }, + "ecoindex": [ { - "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "MEDIUM", - "finding": "B" + "width": 1920, + "height": 1080, + "url": "https://www.snu.gouv.fr", + "size": 11834.21, + "nodes": 2190, + "requests": 51, + "grade": "E", + "score": 27, + "ges": 2.46, + "water": 3.69, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 10:04:37.826888", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "F", + "apdex": 0.87, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": null, + "testsslExpireDate": null, + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 7, + "lighthouse_performance": 0.52, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.95, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.93, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "E", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://moncompte.snu.gouv.fr", + "category": "engagement_civique", + "betaId": "snu", + "tools": { + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false + }, + "http": { + "url": "https://moncompte.snu.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 07:40:34 GMT", + "grade": "B-", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-cache", + "Connection": "keep-alive", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 07:40:33 GMT", + "Referrer-Policy": "origin-when-cross-origin", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-XSS-Protection": "1; mode=block" }, - { - "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" + "scan_id": 57054427, + "score": 65, + "start_time": "Sun, 20 Oct 2024 07:40:32 GMT", + "state": "FINISHED", + "status_code": 202, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://moncompte.snu.gouv.fr/", + "redirects": true, + "route": [ + "http://moncompte.snu.gouv.fr/", + "https://moncompte.snu.gouv.fr/" + ], + "status_code": 202 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": false, + "result": "referrer-policy-unsafe", + "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", + "score_modifier": -5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://js.hcaptcha.com/1/api.js?onload=onloadCallback": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "wsxn", + "url": "https://moncompte.snu.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T17:51:57Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T10:15:51Z", + "next_check_at": "2024-12-01T10:16:51Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://moncompte.snu.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T10:09:51Z", + "expires_at": "2024-12-17T12:51:19Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 35, + "connection": 114, + "handshake": 120, + "response": 121, + "total": 390 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "moncompte.snu.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259130,7 +252289,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259138,7 +252297,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259146,7 +252305,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259154,7 +252313,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -259162,7 +252321,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -259170,840 +252329,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_signatureAlgorithm", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_keySize", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_keyUsage", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "5F9BAB8D3E50B5E511177026A7630D7A" - }, - { - "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" - }, - { - "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "68 >= 60 days" - }, - { - "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "2024-11-03 04:28" - }, - { - "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "2025-02-01 04:28" - }, - { - "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/X5s" - }, - { - "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "ECDSA with SHA256" - }, - { - "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" - }, - { - "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature" - }, - { - "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_extKeyUsage", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_serialNumber", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "6D80AF7B9A530E200DD36F1749753E6F" + "finding": "03DC504BB673FFE61A9F7B182C11DE6AE37E" }, { - "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_serialNumberLen", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + { + "id": "cert_fingerprintSHA1", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "E79D116789818800EE44EA2FF7EA860513463750" + "finding": "AF7A86CB9655D303939D6D60C0B8A74E4179E2B3" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_fingerprintSHA256", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" + "finding": "CD64A8FF0887C2C4EAC4E9201F698FE21EC99FBCDDDD1F14BF2F7DC3C9050DE7" }, { - "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_commonName", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "moncompte.snu.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_commonName_wo_SNI", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed, usual for EC certificates" + "finding": "moncompte.snu.gouv.fr" }, { - "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_subjectAltName", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr" + "finding": "inscription.snu.gouv.fr moncompte.snu.gouv.fr" }, { - "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_trust", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN and CN (same w/o SNI)" }, { - "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_chain_of_trust", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_certificatePolicies_EV", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_expirationStatus", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "OK", - "finding": "68 >= 60 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (16)" }, { - "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_notBefore", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "2024-11-03 04:28" + "finding": "2024-09-18 12:51" }, { - "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_notAfter", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "OK", - "finding": "2025-02-01 04:28" + "severity": "MEDIUM", + "finding": "2024-12-17 12:51" }, { - "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_extlifeSpan", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_eTLS", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_crlDistributionPoints", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" + "finding": "--" }, { - "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_ocspURL", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/bYA" + "finding": "http://r11.o.lencr.org" }, { - "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "OCSP_stapling", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_ocspRevoked", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "not revoked" }, { - "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_mustStapleExtension", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "DNS_CAArecord", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "certificate_transparency", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "certs_countServer", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { - "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "certs_list_ordering_problem", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIICnzCCAiWgAwIBAgIQf/MZd5csIkp2FV0TttaF4zAKBggqhkjOPQQDAzBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjQwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARvzTr+Z1dHTCEDhUDCR127WEcPQMFcF4XGGTfn1XzthkubgdnXGhOlCgP4mMTG6J7/EFmPLCaY9eYmJbsPAvpWo4H+MIH7MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUkHeSNWfE/6jMqeZ72YB5e8yT+TgwHwYDVR0jBBgwFoAUgEzW63T/STaj1dj8tT7FavCUHYwwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzAChhhodHRwOi8vaS5wa2kuZ29vZy9yNC5jcnQwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2MucGtpLmdvb2cvci9yNC5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwCgYIKoZIzj0EAwMDaAAwZQIxAOcCq1HW90OVznX+0RGU1cxAQXomvtgM8zItPZCuFQ8jSBJSjz5keROv9aYsAm5VsQIwJonMaAFi54mrfhfoFNZEfuNMSQ6/bIBiNLiyoX46FohQvKeIoJ99cx7sUkFN7uJW\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "cert_caIssuers", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_notBefore <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_notAfter <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_expiration <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_chain <#1>", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "intermediate_cert_badOCSP", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "1732443923" + "finding": "1733048085" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Nuxt" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "id": "X-Frame-Options", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "MEDIUM", - "finding": "Multiple Cache-Control headers. Using first header: max-age=300" + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Referrer-Policy", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "max-age=300" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -260011,7 +252820,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -260020,7 +252829,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -260029,25 +252838,25 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -260055,7 +252864,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -260064,7 +252873,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -260073,16 +252882,16 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -260091,23 +252900,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "uses 64 bit block ciphers" + "finding": "not vulnerable" }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -260116,7 +252925,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -260125,16 +252934,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CD64A8FF0887C2C4EAC4E9201F698FE21EC99FBCDDDD1F14BF2F7DC3C9050DE7" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -260143,34 +252952,25 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" + "finding": "--" }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -260179,7 +252979,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -260188,7 +252988,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -260197,615 +252997,389 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "95" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "28" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "79" + "finding": "81" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "MEDIUM", - "finding": "B" - }, - { - "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" - }, - { - "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "moncompte.snu.gouv.fr/185.231.167.148", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "63" } ], "thirdparties": { "trackers": [ { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/65523/responsive/SO5WGjkqsVxpLQ0rgI6cy57DsSTqzl___card_600_286.webp?v=1726046678" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/67882/responsive/wAA1ZLYFM9rlZ7ThyryMNdEGbJ9dJ3___card_600_286.webp?v=1727083523" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12146/responsive/art-et-culture-pour-tous-6___card_600_286.webp?v=1650537895" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/8475/responsive/a26fP7ibvc7fB1r___card_600_286.webp?v=1650543984" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/8470/responsive/34GhCAUYCCJ7Php___card_600_286.webp?v=1650544086" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/59916/responsive/rDUzCrtoR2FrTDMleO2vwTpxFLD9Ak___card_600_286.webp?v=1721041901" - }, - { - "type": "google tag manager", - "url": "https://www.googletagmanager.com/gtm.js?id=GTM-5S3DCV6", + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", "details": { - "id": "google tag manager", - "message": "Use hosted Matomo instance" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_blog_posts/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_blog_posts/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/30331/responsive/ntYcHt7wuT6QRsqf7QiO5JnMO7xIR6___card_600_286.webp?v=1674642755" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12184/responsive/education-pour-tous-8___card_600_286.webp?v=1650543616" - }, - { - "type": "unknown", - "url": "https://plausible.io/api/event" + "url": "https://plausible.io/js/script.manual.outbound-links.file-downloads.js" }, { - "type": "unknown", - "url": "https://static.axept.io/sdk.js" + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Caveat:wght@400;600&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } }, { "type": "unknown", - "url": "https://client.axept.io/606dd246669e09466761ef93.json?r=0" - }, + "url": "https://sentry.selego.co/api/143/envelope/?sentry_key=9f62b6f87edc757e44b10d7728db5913&sentry_version=7&sentry_client=sentry.javascript.react%2F8.25.0" + } + ], + "cookies": [ { - "type": "unknown", - "url": "https://client.axept.io/pack/fr" + "name": "bln_challengejs", + "value": "cXyaw6QzHGfQ9XikXY6O-cwFvu2yW3rTjdpLEW6leQeD3OG9Jd20KY0Ziwy6nmPW2XAOZy9i1jxkKZ_qSSAyGYEvJMogL0n81OCyKTsKWSQH4pGhkeudoc4YGu8FLYRhPDpLOOyOs7w14eTEL4_DRs7gFYmtZJpR-xY8uMdDaa6IE9dU5YtWYflOGn87Zn9umDu2U3QC-vlERIMFXyPFKG2oduDrCgX3RU6FBy7_kFmw4KvxTLhsJj6eKtaMaP_3TPPeIQpBgaC4dh_kQrDctaklvj7KNdkogyufArnEfg5OKC2SpLqSnZ3-O3uPkrkz", + "domain": ".snu.gouv.fr", + "path": "/", + "expires": 1733048943.043757, + "size": 335, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], - "cookies": [], "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "max-age=300\npublic, no-transform", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e78ac7f9ee7102d-LAX", - "content-encoding": "br", - "content-length": "49634", - "content-type": "text/html;charset=utf-8", - "date": "Sun, 24 Nov 2024 10:21:45 GMT", - "expires": "Sun, 24 Nov 2024 10:26:45 GMT", - "server": "cloudflare", - "server-timing": "cfCacheStatus;desc=\"DYNAMIC\"", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-powered-by": "Nuxt", - "x-request-id": "0d3a1739-0674-444a-9d20-c5bf9bca362f\n0d3a1739-0674-444a-9d20-c5bf9bca362f" + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 10:14:03 GMT", + "etag": "W/\"67498932-778\"", + "last-modified": "Fri, 29 Nov 2024 09:28:18 GMT", + "referrer-policy": ": no-referrer", + "sozu-id": "01JE0VD0C8MSZ4R9J44WDDDXTW", + "strict-transport-security": ": max-age=31536000; includeSubDomains; preload", + "x-content-type-options": ": nosniff", + "x-download-options": ": noopen", + "x-frame-options": ": DENY", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "jeveuxaider.fra1.digitaloceanspaces.com", - "ip": "5.101.109.44", - "geoip": { - "city": { - "geoname_id": 2925533, - "names": { - "de": "Frankfurt am Main", - "en": "Frankfurt am Main", - "es": "Francfort", - "fr": "Francfort-sur-le-Main", - "ja": "フランクフルト・アム・マイン", - "pt-BR": "Frankfurt am Main", - "ru": "Франкфурт", - "zh-CN": "法兰克福" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2921044, - "is_in_european_union": true, - "iso_code": "DE", - "names": { - "de": "Deutschland", - "en": "Germany", - "es": "Alemania", - "fr": "Allemagne", - "ja": "ドイツ連邦共和国", - "pt-BR": "Alemanha", - "ru": "ФРГ", - "zh-CN": "德国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 50.1187, - "longitude": 8.6842, - "time_zone": "Europe/Berlin" - }, - "postal": { - "code": "60313" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 2905330, - "iso_code": "HE", - "names": { - "de": "Hessen", - "en": "Hesse", - "es": "Hessen", - "fr": "Hesse", - "ja": "ヘッセン州", - "pt-BR": "Hesse", - "ru": "Гессен", - "zh-CN": "黑森州" - } - } - ] - } - }, - { - "hostname": "www.googletagmanager.com", - "ip": "142.250.176.8", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "gqlg3qh7po-dsn.algolia.net", - "ip": "37.187.157.100", + "hostname": "moncompte.snu.gouv.fr", + "ip": "185.231.167.148", "geoip": { "continent": { "code": "EU", @@ -260860,22 +253434,9 @@ } }, { - "hostname": "plausible.io", - "ip": "38.32.110.58", + "hostname": "fonts.googleapis.com", + "ip": "172.217.4.74", "geoip": { - "city": { - "geoname_id": 5308655, - "names": { - "de": "Phoenix", - "en": "Phoenix", - "es": "Phoenix", - "fr": "Phoenix", - "ja": "フェニックス", - "pt-BR": "Phoenix", - "ru": "Финикс", - "zh-CN": "凤凰城" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -260905,14 +253466,10 @@ } }, "location": { - "accuracy_radius": 20, - "latitude": 33.4475, - "longitude": -112.0866, - "metro_code": 753, - "time_zone": "America/Phoenix" - }, - "postal": { - "code": "85036" + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -260927,28 +253484,26 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5551752, - "iso_code": "AZ", - "names": { - "de": "Arizona", - "en": "Arizona", - "es": "Arizona", - "fr": "Arizona", - "ja": "アリゾナ州", - "pt-BR": "Arizona", - "ru": "Аризона" - } - } - ] + } } }, { - "hostname": "static.axept.io", - "ip": "18.238.85.84", + "hostname": "plausible.io", + "ip": "169.150.236.104", "geoip": { + "city": { + "geoname_id": 4887398, + "names": { + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -260978,77 +253533,99 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, + "accuracy_radius": 20, + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, "time_zone": "America/Chicago" }, + "postal": { + "code": "60602" + }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } - } + }, + "subdivisions": [ + { + "geoname_id": 4896861, + "iso_code": "IL", + "names": { + "de": "Illinois", + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" + } + } + ] } }, { - "hostname": "client.axept.io", - "ip": "18.238.109.89", + "hostname": "sentry.selego.co", + "ip": "91.134.19.201", "geoip": { "continent": { - "code": "NA", - "geoname_id": 6255149, + "code": "EU", + "geoname_id": 6255148, "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" } }, "country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } } } @@ -261057,235 +253634,60 @@ }, "wappalyzer": { "urls": { - "https://www.jeveuxaider.gouv.fr/": { + "https://moncompte.snu.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "nuxt-js", - "name": "Nuxt.js", - "description": "Nuxt is a Vue framework for developing modern web applications.", - "confidence": 100, - "version": null, - "icon": "Nuxt.js.svg", - "website": "https://nuxt.com", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "google-tag-manager", - "name": "Google Tag Manager", - "description": "Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.", - "confidence": 100, - "version": null, - "icon": "Google Tag Manager.svg", - "website": "https://www.google.com/tagmanager", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.18.3", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "axeptio", - "name": "Axeptio", - "description": "Axeptio is a trusted third party that collects and archive users' consent in a GDPR compliant fashion.", - "confidence": 100, - "version": null, - "icon": "Axeptio.png", - "website": "https://www.axeptio.eu", - "cpe": null, - "categories": [ - { - "id": 67, - "slug": "cookie-compliance", - "name": "Cookie compliance" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", "confidence": 100, "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", "categories": [ { - "id": 31, - "slug": "cdn", - "name": "CDN" + "id": 1, + "slug": "cms", + "name": "CMS" } ], "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", "confidence": 100, "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" } ] }, { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true @@ -261296,9 +253698,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://www.jeveuxaider.gouv.fr/", - "finalUrl": "https://www.jeveuxaider.gouv.fr/", - "fetchTime": "2024-11-24T10:21:11.541Z", + "requestedUrl": "https://moncompte.snu.gouv.fr/", + "finalUrl": "https://moncompte.snu.gouv.fr/", + "fetchTime": "2024-12-01T10:13:34.977Z", "runWarnings": [], "categories": { "performance": { @@ -261309,7 +253711,7 @@ "snapshot" ], "id": "performance", - "score": 0.52 + "score": 0.24 }, "accessibility": { "title": "Accessibility", @@ -261320,7 +253722,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 0.93 }, "best-practices": { "title": "Best Practices", @@ -261330,7 +253732,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": null }, "seo": { "title": "SEO", @@ -261341,7 +253743,7 @@ "snapshot" ], "id": "seo", - "score": 0.99 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -261361,53 +253763,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11817, + "numericValue": 7933, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3861, - "firstMeaningfulPaint": 3861, - "largestContentfulPaint": 4386, - "interactive": 11817, - "speedIndex": 7818, - "totalBlockingTime": 399, - "maxPotentialFID": 379, - "cumulativeLayoutShift": 0.0035970458984375, - "cumulativeLayoutShiftMainFrame": 0.0035970458984375, - "totalCumulativeLayoutShift": 0.003617011176215278, + "firstContentfulPaint": 5346, + "firstMeaningfulPaint": 5346, + "largestContentfulPaint": 9612, + "interactive": 7933, + "speedIndex": 8058, + "totalBlockingTime": 851, + "maxPotentialFID": 796, + "cumulativeLayoutShift": 0.2782958984375, + "cumulativeLayoutShiftMainFrame": 0.2782958984375, + "totalCumulativeLayoutShift": 0.2782958984375, "observedTimeOrigin": 0, - "observedTimeOriginTs": 451285916, + "observedTimeOriginTs": 315215282, "observedNavigationStart": 0, - "observedNavigationStartTs": 451285916, - "observedFirstPaint": 1455, - "observedFirstPaintTs": 452740932, - "observedFirstContentfulPaint": 1455, - "observedFirstContentfulPaintTs": 452740932, - "observedFirstContentfulPaintAllFrames": 1455, - "observedFirstContentfulPaintAllFramesTs": 452740932, - "observedFirstMeaningfulPaint": 1455, - "observedFirstMeaningfulPaintTs": 452740932, - "observedLargestContentfulPaint": 1455, - "observedLargestContentfulPaintTs": 452740932, - "observedLargestContentfulPaintAllFrames": 1455, - "observedLargestContentfulPaintAllFramesTs": 452740932, - "observedTraceEnd": 6150, - "observedTraceEndTs": 457435946, - "observedLoad": 2340, - "observedLoadTs": 453625621, - "observedDomContentLoaded": 1536, - "observedDomContentLoadedTs": 452822046, - "observedCumulativeLayoutShift": 0.0035970458984375, - "observedCumulativeLayoutShiftMainFrame": 0.0035970458984375, - "observedTotalCumulativeLayoutShift": 0.003617011176215278, - "observedFirstVisualChange": 1462, - "observedFirstVisualChangeTs": 452747916, - "observedLastVisualChange": 6095, - "observedLastVisualChangeTs": 457380916, - "observedSpeedIndex": 1516, - "observedSpeedIndexTs": 452802221 + "observedNavigationStartTs": 315215282, + "observedFirstPaint": 610, + "observedFirstPaintTs": 315825236, + "observedFirstContentfulPaint": 1059, + "observedFirstContentfulPaintTs": 316273856, + "observedFirstContentfulPaintAllFrames": 1059, + "observedFirstContentfulPaintAllFramesTs": 316273856, + "observedFirstMeaningfulPaint": 1059, + "observedFirstMeaningfulPaintTs": 316273856, + "observedLargestContentfulPaint": 2573, + "observedLargestContentfulPaintTs": 317788651, + "observedLargestContentfulPaintAllFrames": 2573, + "observedLargestContentfulPaintAllFramesTs": 317788651, + "observedTraceEnd": 6213, + "observedTraceEndTs": 321428111, + "observedLoad": 1177, + "observedLoadTs": 316392503, + "observedDomContentLoaded": 1034, + "observedDomContentLoadedTs": 316249520, + "observedCumulativeLayoutShift": 0.2782958984375, + "observedCumulativeLayoutShiftMainFrame": 0.2782958984375, + "observedTotalCumulativeLayoutShift": 0.2782958984375, + "observedFirstVisualChange": 622, + "observedFirstVisualChangeTs": 315837282, + "observedLastVisualChange": 2755, + "observedLastVisualChangeTs": 317970282, + "observedSpeedIndex": 2378, + "observedSpeedIndexTs": 317592962 }, { "lcpInvalidated": false @@ -261425,23 +253827,23 @@ "type": "debugdata", "items": [ { - "numRequests": 158, - "numScripts": 80, - "numStylesheets": 21, - "numFonts": 3, - "numTasks": 3131, - "numTasksOver10ms": 11, - "numTasksOver25ms": 9, - "numTasksOver50ms": 4, - "numTasksOver100ms": 2, + "numRequests": 64, + "numScripts": 26, + "numStylesheets": 7, + "numFonts": 5, + "numTasks": 2129, + "numTasksOver10ms": 9, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.970999999999999, - "throughput": 16898752.880599014, - "maxRtt": 145.776, - "maxServerLatency": 288.498, - "totalByteWeight": 3535424, - "totalTaskTime": 966.5969999999983, - "mainDocumentTransferSize": 50047 + "rtt": 1.8079999999999927, + "throughput": 12880060.2622213, + "maxRtt": 107.363, + "maxServerLatency": 26.56100000000002, + "totalByteWeight": 1223324, + "totalTaskTime": 638.0839999999962, + "mainDocumentTransferSize": 2155 } ] } @@ -261450,73 +253852,39 @@ } ], "screenshot": true, - "stats": { - "grade": "A" - }, + "stats": null, "github_repository": { "grade": "A" }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://www.jeveuxaider.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 3, - "missingWords": [ - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://www.jeveuxaider.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://www.jeveuxaider.gouv.fr/politique-de-confidentialite" - } - ], + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, "betagouv": { - "id": "jeveuxaider", + "id": "snu", "type": "startup", "attributes": { - "name": "JeVeuxAider.gouv.fr", - "pitch": "Encourager l'engagement bénévole partout en France", - "stats_url": "https://www.jeveuxaider.gouv.fr/stats", - "link": "https://www.jeveuxaider.gouv.fr", - "repository": "https://github.com/betagouv/jeveuxaider-back", - "contact": "jeveuxaider@beta.gouv.fr", - "content_url_encoded_markdown": "%5BJeVeuxAider.gouv.fr%5D%28https%3A%2F%2Fwww.jeveuxaider.gouv.fr%2F%29%20est%20la%20plateforme%20publique%20du%20b%C3%A9n%C3%A9volat%2C%20propos%C3%A9e%20par%20la%20R%C3%A9serve%20Civique.%5C%0A%5C%0APlus%20de%2013%20800%20associations%2C%20collectivit%C3%A9s%20et%20organisations%20publiques%20y%20proposent%20des%20missions%2C%20lorsqu%E2%80%99elles%20ont%20besoin%20de%20renfort.%20Pour%20y%20r%C3%A9pondre%2C%20elles%20peuvent%20compter%20sur%20pr%C3%A8s%20de%20550%20000%20b%C3%A9n%C3%A9voles%20inscrits%20sur%20la%20plateforme.%20Ceux-ci%20choisissent%20parmi%20des%20milliers%20de%20missions%2C%20dans%20tous%20les%20domaines%20%28solidarit%C3%A9%2C%20%C3%A9ducation%2C%20sant%C3%A9%2C%20environnement%2C%20sport%2C%20culture%E2%80%A6%29%20et%20partout%20en%20France.%20%5C%0A%5C%0AJeVeuxAider.gouv.fr%20est%20ouverte%20%C3%A0%20toutes%20les%20personnes%20r%C3%A9sidant%20en%20France%2C%20%C3%A2g%C3%A9es%20de%20plus%20de%2016%20ans.%20Flexible%2C%20accessible%20et%20universel%2C%20ce%20service%20public%20num%C3%A9rique%20permet%20%C3%A0%20toutes%20et%20%C3%A0%20tous%20de%20participer%20%C3%A0%20la%20soci%C3%A9t%C3%A9%20de%20l%E2%80%99engagement%2C%20pour%20plus%20de%20solidarit%C3%A9.", - "events": [ - { - "name": "national_impact", - "date": "2023-12-31", - "comment": "" - } - ], + "name": "Service National Universel", + "pitch": "Développer la conscience citoyenne des jeunes", + "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", + "link": "https://snu.gouv.fr/", + "repository": "https://github.com/betagouv/service-national-universel", + "contact": "contact@snu.gouv.fr", + "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", + "events": [], "phases": [ { "name": "investigation", - "start": "2017-03-23", + "start": "2020-04-01", "end": "" }, { "name": "construction", - "start": "2020-03-02", + "start": "2020-07-01", "end": "" }, { "name": "acceleration", - "start": "2020-10-05", + "start": "2021-01-01", "end": "" } ], @@ -261524,11 +253892,11 @@ "djepva" ], "thematiques": [ - "Social", - "Démocratie" + "Jeunesse", + "Education" ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-jeveuxaider-gouv-fr/", - "accessibility_status": "partiellement conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { @@ -261543,96 +253911,88 @@ { "width": 1920, "height": 1080, - "url": "https://www.jeveuxaider.gouv.fr", - "size": 5654.649, - "nodes": 1451, - "requests": 160, - "grade": "F", - "score": 15, - "ges": 2.7, - "water": 4.05, + "url": "https://moncompte.snu.gouv.fr", + "size": 1279.007, + "nodes": 164, + "requests": 55, + "grade": "B", + "score": 73, + "ges": 1.54, + "water": 2.31, "ecoindex_version": "5.4.2", - "date": "2024-11-24 10:17:56.538641", + "date": "2024-12-01 10:10:49.939327", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": false + "detected": true }, "summary": { - "httpGrade": "C", - "apdex": 0.397, - "apdexGrade": "F", - "uptime": 90.666, - "uptimeGrade": "F", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": null, - "testsslExpireDate": null, - "testsslGrade": "B", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 21, - "lighthouse_performance": 0.52, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.98, + "httpGrade": "B-", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-17T12:51:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 4, + "lighthouse_performance": 0.24, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", - "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "F", - "dsfrGrade": "F" + "ecoindexGrade": "B", + "dsfrGrade": "A" } }, { "404": null, - "url": "https://www.monstagedetroisieme.fr", - "category": "anct", - "betaId": "monstage", + "url": "https://admin.snu.gouv.fr", + "category": "engagement_civique", + "betaId": "snu", + "tools": { + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false + }, "http": { - "url": "https://www.monstagedetroisieme.fr", + "url": "https://admin.snu.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 01:49:33 GMT", + "end_time": "Sun, 20 Oct 2024 07:48:47 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "max-age=0, private, must-revalidate", + "Cache-Control": "no-cache", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "5984", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 01:49:32 GMT", - "ETag": "W/\"179dbaf4dda05622b3a280095dee52f8\"", - "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_monstage_session=n9mZwzrLcNr4805oqA0m1JoG3Bwv0h%2BGq5Mu6yofpLd5OrsVPiWgvl4xf22LXOSXhwc3n0Wq6%2BMgQluziU%2BghZKhYzQxmDXdKSo6TELU3wyLX%2Fz8QZCDBes3XjUjD%2BtboUz4ykjDfL%2BgEtuDzZLB%2F3T5sYOmYAh9uW18%2FqaHvz1KubBUPGGoy7uKpDPdBGfeJLCCuFfpMktO9NPV3rEcEnUw%2BE9hhWxrNu8jbNo5NDka4daVODvIbGnsBzZbPK9OtDKVeE5PSQO9Brmogv0PZOkzm6Vr7MqVGw%3D%3D--KIIY5UZY6%2Fm5oeim--ZTlkc5uiGX54EzgD1ucBJw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "Sozu-Id": "01JAKSV26KEY6MWB03N47VR5YZ", - "Strict-Transport-Security": "max-age=63072000; includeSubDomains", - "Vary": "Accept,Accept-Encoding", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 07:48:46 GMT", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-Id": "f45840b2-a4bc-4afd-9df7-31c93c788f07", - "X-Runtime": "0.015627", - "X-XSS-Protection": "0", - "link": "; rel=preload; as=style; nopush" + "X-Frame-Options": "DENY", + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 57047250, + "scan_id": 57054701, "score": 75, - "start_time": "Sun, 20 Oct 2024 01:49:31 GMT", + "start_time": "Sun, 20 Oct 2024 07:48:45 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -261658,24 +254018,13 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "_monstage_session": { - "domain": "www.monstagedetroisieme.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true + "data": null, + "sameSite": null }, "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -261696,11 +254045,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://www.monstagedetroisieme.fr/", + "destination": "https://admin.snu.gouv.fr/", "redirects": true, "route": [ - "http://www.monstagedetroisieme.fr/", - "https://www.monstagedetroisieme.fr/" + "http://admin.snu.gouv.fr/", + "https://admin.snu.gouv.fr/" ], "status_code": 200 }, @@ -261713,7 +254062,7 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin-when-cross-origin", + "data": "no-referrer", "http": true, "meta": false }, @@ -261726,8 +254075,8 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000; includeSubDomains", - "includeSubDomains": true, + "data": "max-age=63072000", + "includeSubDomains": false, "max-age": 63072000, "preload": false, "preloaded": false @@ -261763,7 +254112,7 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": "DENY" }, "pass": true, "result": "x-frame-options-sameorigin-or-deny", @@ -261774,45 +254123,45 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "0" + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "7p1e", - "url": "https://www.monstagedetroisieme.fr", - "alias": "", + "token": "mii3", + "url": "https://admin.snu.gouv.fr", + "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-21T07:18:30Z", + "up_since": "2024-11-27T10:32:44Z", "error": null, - "period": 3600, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T09:55:52Z", - "next_check_at": "2024-11-24T10:55:37Z", - "created_at": "2021-12-01T16:35:58Z", + "last_check_at": "2024-12-01T10:26:03Z", + "next_check_at": "2024-12-01T10:27:03Z", + "created_at": "2024-01-15T13:37:42Z", "mute_until": null, - "favicon_url": "https://www.monstagedetroisieme.fr/packs/media/images/favicon-d21ba7166343077ed001c60d663a06e1.png", + "favicon_url": "https://admin.snu.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T05:57:00Z", - "expires_at": "2025-01-12T01:23:49Z", + "tested_at": "2024-12-01T10:25:06Z", + "expires_at": "2024-12-17T12:50:17Z", "valid": true, "error": null }, @@ -261820,20 +254169,20 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 160, - "connection": 100, - "handshake": 104, - "response": 126, - "total": 490 + "namelookup": 30, + "connection": 115, + "handshake": 121, + "response": 118, + "total": 383 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "www.monstagedetroisieme.fr", + "host": "admin.snu.gouv.fr", "protocol": "tcp", - "closed_ports": "986", + "closed_ports": "998", "open_ports": [ { "service": { @@ -261842,171 +254191,92 @@ "vulnerabilities": [] } }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, { "service": { "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "admin.snu.gouv.fr/185.231.167.165", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -262014,7 +254284,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -262022,7 +254292,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -262030,7 +254300,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -262038,7 +254308,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -262046,519 +254316,498 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "id": "cipherorder_TLSv1_2", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" + "finding": "0357376243CAA675F30C8A07B6DB3D9C7477" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" + "finding": "B60CB77B91C755AEA594274CD3E129F71D900418" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "279B348FBDBEE78B38B0472A63464C238569CE306D6481DE326E484BE2B7C7EA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "www.monstagedetroisieme.fr" + "finding": "admin.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "admin.snu.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "www.monstagedetroisieme.fr" + "finding": "admin.snu.gouv.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "48 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (16)" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "2024-10-14 01:23" + "finding": "2024-09-18 12:50" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "2025-01-12 01:23" + "severity": "MEDIUM", + "finding": "2024-12-17 12:50" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "admin.snu.gouv.fr/185.231.167.165", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "1732444158" + "finding": "1733048678" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -262566,7 +254815,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -262575,7 +254824,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -262584,7 +254833,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -262593,7 +254842,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -262602,7 +254851,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -262610,16 +254859,16 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -262628,7 +254877,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -262637,7 +254886,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -262646,14 +254895,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -262662,7 +254911,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -262671,7 +254920,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -262680,16 +254929,16 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=279B348FBDBEE78B38B0472A63464C238569CE306D6481DE326E484BE2B7C7EA" }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -262698,16 +254947,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -262716,2079 +254965,2198 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "INFO", - "finding": "36" + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" }, { - "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "id": "RC4", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "INFO", - "finding": "93" + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.223", + "id": "clientsimulation-android_60", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_70", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_81", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_90", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_X", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_11", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-android_12", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-chrome_79_win10", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-chrome_101_win10", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "offered with final" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-firefox_66_win81", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-firefox_100_win10", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_6_xp", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_8_win7", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_8_xp", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_11_win7", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { - "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_11_win81", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_11_winphone81", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { - "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-ie_11_win10", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-edge_15_win10", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-safari_121_ios_122", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-safari_130_osx_10146", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-safari_154_osx_1231", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-java_7u25", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-java_8u161", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-java1102", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-java1703", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-go_1178", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-libressl_283", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-openssl_102e", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-openssl_110l", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-openssl_111d", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "random" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-openssl_303", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-apple_mail_16_0", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { - "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "clientsimulation-thunderbird_91_9", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "1" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "rating_spec", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "rating_doc", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "protocol_support_score", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "100" }, { - "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "protocol_support_score_weighted", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "30" }, { - "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "key_exchange_score", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" + "finding": "90" }, { - "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "key_exchange_score_weighted", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "27" }, { - "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_strength_score", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" + "finding": "60" }, { - "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_strength_score_weighted", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "24" }, { - "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "final_score", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "81" }, { - "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "overall_grade", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", - "finding": "www.monstagedetroisieme.fr" + "finding": "A+" }, { - "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "scanTime", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "101" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "unknown", + "url": "https://plausible.io/js/script.manual.outbound-links.file-downloads.js" + }, + { + "type": "unknown", + "url": "https://sentry.selego.co/api/140/envelope/?sentry_key=70778e8aa9a6f1b9f483a8b6c9046a12&sentry_version=7&sentry_client=sentry.javascript.react%2F8.25.0" + } + ], + "cookies": [ + { + "name": "bln_challengejs", + "value": "O_FiLGf-CcCCpXCzt9J96U7mGVaZe9N9jiLohbYSjopLhcf8egIczqq3TH6OrvOELfZWtsladwhV3nZPpKt61j5fq2G0rfBlERkPYG7mM49N41E8DRZY-KP-gHnwCRu5N97Wg_cBg_KkT1QXTfhRJp0f14aGMchqiJsrT2tQ-Pn5ixQMZgeP62M7ESYw34umkbz38qi3QtpMDmL165ADa3XfvGrPLWmqNzpLzCvkXTL5csxv8QoQtQHlLkriBO_HiL6YHznu7AQN7FRj6oco9cqkflZqx0oU8sgh9vH9W74NymOfbLQnXFwm2mS1IoCi", + "domain": ".snu.gouv.fr", + "path": "/", + "expires": 1733049504.90224, + "size": 335, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 10:23:25 GMT", + "etag": "W/\"6749893e-ae2\"", + "last-modified": "Fri, 29 Nov 2024 09:28:30 GMT", + "referrer-policy": ": no-referrer", + "sozu-id": "01JE0VXKKTCW9V4DB7MM2297RM", + "strict-transport-security": ": max-age=31536000; includeSubDomains; preload", + "x-content-type-options": ": nosniff", + "x-download-options": ": noopen", + "x-frame-options": ": DENY", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "admin.snu.gouv.fr", + "ip": "185.231.167.165", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.250.72.202", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "plausible.io", + "ip": "169.150.221.147", + "geoip": { + "city": { + "geoname_id": 5392171, + "names": { + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "95141" + }, + "registered_country": { + "geoname_id": 2635167, + "iso_code": "GB", + "names": { + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "sentry.selego.co", + "ip": "91.134.19.201", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://admin.snu.gouv.fr/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "www.monstagedetroisieme.fr" + "requestedUrl": "https://admin.snu.gouv.fr/", + "finalUrl": "https://admin.snu.gouv.fr/", + "fetchTime": "2024-12-01T10:22:56.050Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.37 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": null + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.71 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 7602, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 6973, + "firstMeaningfulPaint": 7123, + "largestContentfulPaint": 9536, + "interactive": 7602, + "speedIndex": 8806, + "totalBlockingTime": 579, + "maxPotentialFID": 1011, + "cumulativeLayoutShift": 0.00027438693576388885, + "cumulativeLayoutShiftMainFrame": 0.00027438693576388885, + "totalCumulativeLayoutShift": 0.00027438693576388885, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 321452098, + "observedNavigationStart": 0, + "observedNavigationStartTs": 321452098, + "observedFirstPaint": 757, + "observedFirstPaintTs": 322209342, + "observedFirstContentfulPaint": 1533, + "observedFirstContentfulPaintTs": 322984941, + "observedFirstContentfulPaintAllFrames": 1533, + "observedFirstContentfulPaintAllFramesTs": 322984941, + "observedFirstMeaningfulPaint": 1533, + "observedFirstMeaningfulPaintTs": 322984941, + "observedLargestContentfulPaint": 3239, + "observedLargestContentfulPaintTs": 324691002, + "observedLargestContentfulPaintAllFrames": 3239, + "observedLargestContentfulPaintAllFramesTs": 324691002, + "observedTraceEnd": 5886, + "observedTraceEndTs": 327338268, + "observedLoad": 1504, + "observedLoadTs": 322956215, + "observedDomContentLoaded": 1504, + "observedDomContentLoadedTs": 322955779, + "observedCumulativeLayoutShift": 0.00027438693576388885, + "observedCumulativeLayoutShiftMainFrame": 0.00027438693576388885, + "observedTotalCumulativeLayoutShift": 0.00027438693576388885, + "observedFirstVisualChange": 1701, + "observedFirstVisualChangeTs": 323153098, + "observedLastVisualChange": 3601, + "observedLastVisualChangeTs": 325053098, + "observedSpeedIndex": 3231, + "observedSpeedIndexTs": 324683179 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 53, + "numScripts": 30, + "numStylesheets": 6, + "numFonts": 3, + "numTasks": 1739, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 1.6919999999999997, + "throughput": 9636602.278177038, + "maxRtt": 153.265, + "maxServerLatency": 45.25999999999999, + "totalByteWeight": 1338539, + "totalTaskTime": 599.7319999999974, + "mainDocumentTransferSize": 2153 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": null, + "github_repository": { + "grade": "A" + }, + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, + "betagouv": { + "id": "snu", + "type": "startup", + "attributes": { + "name": "Service National Universel", + "pitch": "Développer la conscience citoyenne des jeunes", + "stats_url": "https://data.snu.gouv.fr/public/dashboard/9331f066-bc6d-4e32-a481-4831e1ec5174?date=thisyear&d%25C3%25A9partement=", + "link": "https://snu.gouv.fr/", + "repository": "https://github.com/betagouv/service-national-universel", + "contact": "contact@snu.gouv.fr", + "content_url_encoded_markdown": "%2A%2AContexte%2A%2A%0A%0AUn%20des%20fondements%20de%20la%20d%C3%A9mocratie%20est%20l%E2%80%99implication%20de%20ses%20citoyens%20%C3%A0%20la%20construction%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20C%27est%20en%20ce%20sens%20que%20le%20gouvernement%20a%20souhait%C3%A9%20exp%C3%A9rimenter%20le%20Service%20national%20Universel%20qui%20cherche%20%C3%A0%20promouvoir%20aupr%C3%A8s%20des%20mineurs%2C%20d%C3%A8s%20leurs%2015%20ans%2C%20les%20valeurs%20de%20l%27engagement%20et%20de%20la%20citoyennet%C3%A9.%0A%0ALe%20Service%20National%20Universel%20se%20compose%20d%27un%20stage%20collectif%20de%20coh%C3%A9sion%20et%20d%27une%20participation%20de%20deux%20semaines%20minimum%20%C3%A0%20une%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20pourra%20%C3%AAtre%20poursuivi%20par%20la%20participation%20%C3%A0%20d%27autres%20missions%20jusqu%27%C3%A0%2025%20ans.%0A%0ALancement%20progressif%20%3A%20apr%C3%A8s%20une%20premi%C3%A8re%20ann%C3%A9e%20d%27exp%C3%A9rimentation%20en%202019%20aupr%C3%A8s%20de%203000%20jeunes%20et%2013%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%2C%20le%20dispositif%20est%20%C3%A9tendu%20%C3%A0%20pr%C3%A8s%20de%2010%20000%20jeunes%2C%20France%20enti%C3%A8re%2C%20en%202020.%0A%0A%2A%2ALa%20probl%C3%A9matique%2A%2A%20%0A%0AUne%20soci%C3%A9t%C3%A9%20de%20l%27engagement%20ne%20se%20d%C3%A9cr%C3%A8te%20pas.%20D%C3%A8s%20lors%2C%20comment%20susciter%20l%27adh%C3%A9sion%20d%27un%20jeune%20de%2015%20ans%20aux%20principes%20du%20service%20national%20universel%20alors%20m%C3%AAme%20que%20celui-ci%20se%20d%C3%A9roule%20selon%20un%20canevas%20impos%C3%A9%20%3F%0A%0A%2A%2ALa%20solution%2A%2A%0A%0APour%20y%20r%C3%A9pondre%2C%20nous%20cherchons%20%C3%A0%20proposer%20une%20solution%20permettant%20aux%20jeunes%20d%27%C3%AAtre%20acteur%20de%20leur%20service%20national%20universel.%0A%0ANous%20pensons%20que%20les%20jeunes%20seront%20plus%20enclins%20%C3%A0%20participer%20activement%20%C3%A0%20leur%20mission%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20s%27ils%20ont%20d%27entr%C3%A9e%20de%20jeu%20une%20vision%20la%20plus%20exhaustive%20possible%20des%20diff%C3%A9rentes%20missions%20propos%C3%A9es%20et%20la%20main%20pour%20choisir%20celle%20qu%27ils%20souhaitent%20rejoindre.%0A%0ALa%20startup%20d%27Etat%20vise%20donc%20%C3%A0%20cr%C3%A9er%20un%20espace%20personnel%20o%C3%B9%20chacun%20des%20jeunes%20effectuant%20son%20SNU%20pourra%20g%C3%A9rer%20sa%20participation%20en%20choisissant%20ses%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20et%20obtenir%20si%20n%C3%A9cessaire%20de%20l%27aide.%20Cet%20espace%20qui%20pourra%20ensuite%20int%C3%A9grer%20des%20services%20compl%C3%A9mentaires%20li%C3%A9s%20au%20d%C3%A9roulement%20du%20SNU%20sera%20partie%20prenante%20du%20site%20informationnel%20snu.gouv.fr.%0A%0ANotre%20souhait%20est%20de%20construire%20un%20service%20adapt%C3%A9%20aux%20usages%20de%20jeunes%20de%2015%20ans%20et%20non%20pas%20destin%C3%A9%20%C3%A0%20r%C3%A9pondre%20aux%20contraintes%20de%20l%27administration.%0A%0AEn%20miroir%2C%20la%20startup%20d%27Etat%20construit%20une%20interface%20de%20gestion%20permettant%20aux%20structures%20proposant%20les%20missions%20d%27int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral%20de%20d%C3%A9poser%20des%20offres%20de%20missions%20et%20de%20les%20g%C3%A9rer%20et%20aux%20coordinateurs%20du%20service%20national%20universel%20%28r%C3%A9seau%20de%20r%C3%A9f%C3%A9rents%20d%C3%A9partementaux%20et%20r%C3%A9gionaux%29%20de%20se%20d%C3%A9charger%20des%20process%20administratifs%20afin%20de%20pouvoir%20%C3%AAtre%20plus%20disponibles%20pour%20appuyer%20les%20jeunes%20qui%20en%20expriment%20le%20besoin.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-04-01", + "end": "" + }, + { + "name": "construction", + "start": "2020-07-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-01-01", + "end": "" + } + ], + "sponsors": [ + "djepva" + ], + "thematiques": [ + "Jeunesse", + "Education" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/www-snu-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "engagement_civique" + } + } + } + }, + "ecoindex": [ { - "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "width": 1920, + "height": 1080, + "url": "https://admin.snu.gouv.fr", + "size": 1446.465, + "nodes": 118, + "requests": 54, + "grade": "B", + "score": 74, + "ges": 1.52, + "water": 2.28, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 10:20:07.564332", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-17T12:50:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.37, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 0.71, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "githubRepositoryGrade": "A", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://www.jeveuxaider.gouv.fr", + "category": "engagement_civique", + "betaId": "jeveuxaider", + "http": { + "url": "https://www.jeveuxaider.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 07:54:31 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "CF-Cache-Status": "DYNAMIC", + "CF-RAY": "8d57709e8daa7696-SEA", + "Cache-Control": "max-age=300, public, no-transform", + "Connection": "keep-alive", + "Content-Type": "text/html;charset=utf-8", + "Date": "Sun, 20 Oct 2024 07:54:28 GMT", + "Server": "cloudflare", + "Transfer-Encoding": "chunked", + "alt-svc": "h3=\":443\"; ma=86400", + "expires": "Sun, 20 Oct 2024 07:59:27 GMT", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-powered-by": "Nuxt", + "x-request-id": "5831782a-556c-4416-b6b0-be21742adc8a, 5831782a-556c-4416-b6b0-be21742adc8a" + }, + "scan_id": 57054814, + "score": 50, + "start_time": "Sun, 20 Oct 2024 07:54:25 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.jeveuxaider.gouv.fr/", + "redirects": true, + "route": [ + "http://www.jeveuxaider.gouv.fr/", + "https://www.jeveuxaider.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "bnuv", + "url": "https://www.jeveuxaider.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 90.586, + "down": false, + "down_since": null, + "up_since": "2024-12-01T10:18:43Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [], + "last_check_at": "2024-12-01T10:31:38Z", + "next_check_at": "2024-12-01T10:32:37Z", + "created_at": "2024-01-15T13:56:21Z", + "mute_until": null, + "favicon_url": "https://www.jeveuxaider.gouv.fr/favicon.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T10:30:39Z", + "expires_at": "2025-02-01T04:28:30Z", + "valid": true, + "error": null }, - { - "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "passed." + "metrics": { + "apdex": 0.362, + "timings": { + "redirect": 0, + "namelookup": 10, + "connection": 6, + "handshake": 14, + "response": 707, + "total": 737 + } }, + "uptimeGrade": "F", + "apdexGrade": "F" + }, + "nmap": { + "host": "www.jeveuxaider.gouv.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "service", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "48 >= 30 days" + "finding": "HTTP" }, { - "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "pre_128cipher", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2024-10-14 01:23" + "finding": "No 128 cipher limit bug" }, { - "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "SSLv2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "2025-01-12 01:23" + "finding": "not offered" }, { - "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "SSLv3", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "http://r10.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "LOW", "finding": "not offered" }, { - "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "offered (deprecated)" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS1_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "severity": "LOW", + "finding": "offered (deprecated)" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS1_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "1732444215" + "finding": "offered" }, { - "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS1_3", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "offered with final" }, { - "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "ALPN_HTTP2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" + "finding": "h2" }, { - "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "ALPN", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "1 at '/'" + "finding": "http/1.1" }, { - "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_NULL", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "All (1) at '/' marked as secure" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_aNULL", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_EXPORT", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_LOW", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" - }, - { - "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_3DES_IDEA", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not offered" }, { - "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_OBSOLETED", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "offered" }, { - "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_STRONG_NOFS", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherlist_STRONG_FS", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_order-tls1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" + "finding": "server" }, { - "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherorder_TLSv1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "ECDHE-RSA-AES128-SHA" }, { - "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_order-tls1_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "server" }, { - "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherorder_TLSv1_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" }, { - "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_order-tls1_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "server" }, { - "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipherorder_TLSv1_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cipher_order", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" + "finding": "server -- TLS 1.3 client determined" }, { - "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "FS", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "offered" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "FS_ciphers", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "FS_ECDHE_curves", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "prime256v1" }, { - "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS_extensions", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "TLS_session_ticket", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "valid for 64800 seconds only (", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "severity": "OK", + "finding": "SHA256 with RSA" }, { - "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLS Web Server Authentication" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "5F9BAB8D3E50B5E511177026A7630D7A" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "16" }, { - "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" }, { - "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" }, { - "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFODCCBCCgAwIBAgIQX5urjT5QteURF3Amp2MNejANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTAzMDQyODIxWhcNMjUwMjAxMDQyODIwWjAiMSAwHgYDVQQDExd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOyEFA3ZON466pz/S3ooQHG+A3cNh0b01jEXKACiJ5tPVr/rNNalt3Fu6yCh2sCsMN8z+JCR4R9HqgXDyRkeR4lZDM2r63iheahu9dJQSTzlzV8kobJu8PypdYrzmu23UqRkGGwf4zkAno3vLriR66cr5+ePNB6liHjo2E9ua8xZ54T+sd5eSRD+RnqVo7MkZTUCvvj+XgmBEuXkG5+fsCwrjxhu0vBn6sOj66UE5Y+zWlvJz1FaO58tgUQHfjUQmEdXQtsm+6UWPJ9EZYDXK2pRVlBmblCxkCy2iofjE0JSWBqosLD9E81F3in2axdI+vQVVNPr0o+/gj5chdJVRU8CAwEAAaOCAk8wggJLMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTi41cWvrt2SZjCIYA8nYMTk0Y6VzAfBgNVHSMEGDAWgBRmaUnU3iqckQPPiQ4kuA4wA26ILjBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd3IxL1g1czAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IxLmNydDAiBgNVHREEGzAZghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93cjEvZWhteGs0WDBNcWsuY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGS8H7rXgAABAMARzBFAiBSL/aN/TQ0clw6Pag2GWT0XOlOnNnxA5BAFV1M/BA+UgIhAKzhQVsmbNnWh2atYMZFYFwfGNvBcK5+oXhvET0Ouu5UAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGS8H7rKgAABAMARjBEAiAV7ch4RRxuHjRLcY3cawwjomEKP3udO/FSFePDUfk6bAIgcC+upuaW6OWBden2vGJUWdfqJ2sG7ixQJfUQr+UO3GwwDQYJKoZIhvcNAQELBQADggEBAAiafZLt5HXS9Uv2ZgEWHLd10yvHtGlT7GIulPNY0yznMWqxXV+5B+0aWfq9m88niho/kaeaYospns/YC6cLKxBrzhCmtZkcrxW4vXEZfuCQAoNSnfJOdzl/6o9B7wYmlu93x9Li3WTfMvSmMZnDFlEyCwSTyvJtHHESrcIUPIQN89n0mY4W/q2qJ9xLZ5cgZIgB7+XoNHEE+ojs22SbAc7HH5do3owGDcLbdfbU88c3tGTA2lcyR5o0nOgUN5jEJxqXqTIwI/iisLc6gzjdfM6G7j2SUI+thcsHIITmlQV1TUQdodK96VX+UGNaTqDiwRSIEJuuhQumBj33eV0gQHc=\n-----END CERTIFICATE-----" }, { - "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "30" + "severity": "OK", + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "request w/o SNI didn't succeed" }, { - "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "90" + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "36" + "severity": "OK", + "finding": "passed." }, { - "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "no" }, { - "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "HTTP" + "finding": "61 >= 60 days" }, { - "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "2024-11-03 04:28" }, { - "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "not offered" + "finding": "2025-02-01 04:28" }, { - "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "not offered" + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "not present" }, { - "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "offered with final" + "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" }, { - "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "http://o.pki.goog/s/wr1/X5s" }, { - "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "offered" }, { - "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "not revoked" }, { - "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "--" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "--" }, { - "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "offered" + "finding": "yes (certificate extension)" }, { - "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "finding": "3" }, { - "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "severity": "INFO", + "finding": "no" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "WR1 <-- GTS Root R1" }, { - "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "random" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "none" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_signatureAlgorithm ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" + "finding": "6D80AF7B9A530E200DD36F1749753E6F" }, { - "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" + "finding": "E79D116789818800EE44EA2FF7EA860513463750" }, { - "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" }, { - "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { - "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "61 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2024-10-14 01:23" + "finding": "2024-11-03 04:28" }, { - "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "2025-01-12 01:23" + "finding": "2025-02-01 04:28" }, { - "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" }, { - "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/bYA" }, { - "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "1732444275" + "finding": "1733048910" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "0 at '/'" }, { - "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "id": "Cache-Control_multiple", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "MEDIUM", + "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -264796,7 +257164,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -264805,7 +257173,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -264814,25 +257182,25 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -264840,16 +257208,16 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -264858,16 +257226,16 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -264876,23 +257244,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "uses 64 bit block ciphers" }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -264901,7 +257269,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -264910,16 +257278,16 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -264928,34 +257296,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, + { + "id": "BEAST_CBC_TLS1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" + }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -264964,7 +257341,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -264973,385 +257350,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "79" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -265359,7 +257757,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -265367,7 +257765,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -265375,7 +257773,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -265383,7 +257781,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -265391,519 +257789,848 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cipher_order", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "finding": "server -- TLS 1.3 client determined" }, { - "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "FS", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "offered" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "FS_ciphers", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + }, + { + "id": "FS_ECDHE_curves", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "prime256v1" + }, + { + "id": "TLS_extensions", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + }, + { + "id": "TLS_session_ticket", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "valid for 64800 seconds only (", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication" + }, + { + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "5F9BAB8D3E50B5E511177026A7630D7A" + }, + { + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" + }, + { + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + }, + { + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "www.jeveuxaider.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "www.jeveuxaider.gouv.fr" + }, + { + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "61 >= 60 days" + }, + { + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "2024-11-03 04:28" + }, + { + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "2025-02-01 04:28" + }, + { + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/wr1/X5s" + }, + { + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "WR1 <-- GTS Root R1" }, { - "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "random" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "none" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_signatureAlgorithm ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" + "finding": "6D80AF7B9A530E200DD36F1749753E6F" }, { - "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" + "finding": "E79D116789818800EE44EA2FF7EA860513463750" }, { - "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" }, { - "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISA/Mq9Jso092l7TnF7r+8B5+zMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE0MDEyMzUwWhcNMjUwMTEyMDEyMzQ5WjAlMSMwIQYDVQQDExp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIJROK2VyAPBE3brgAmHJKa5sfuoulkMFxKNKnlzU7wluL8m/HMmB7THk/iti5nxe72172N+27c//EcC2x/GkpEarFexxxaHsByK370+/GuPBF05AhyIZmaKFiVkIxmrwgO/XTEug1HTe+kflmFFWQ7mEIMGgwccz3BF/DEGgCQviEPdevdE70eLOdg5YslRApf390hWE4o99Xo+Gw6NU0kedibOtT8T1VTytUWppEiUvDGyOGtygex2ACzlmTycBsnRRnZX91sUsnZIKehmXBINdKeiwoAyKzHXuMSRPiezSHBA5f3Sn1c4/CJAaBZfKcihVJ0fyYVpR05QHq/5yOsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUWKiUWpaB7X5lZuby3T5Z/BGUWKYwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkojVasoAAAQDAEcwRQIgP9GtgQxhgITzyw1Za1oxb+wnib+GXUlsvARh3DSW3xwCIQCuLqssuK3vykfnnzwhTDhqE2LvpD5kPiwNgVkakakj7gB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkojVaxQAAAQDAEgwRgIhAJUY42t6ddBlTsVIc23ghsIRU1AwZnMyvN62bCTaiJoKAiEAumeshn0j8MjXZCGAdCHoTZcxbc275D2NW/FiZzFILwYwDQYJKoZIhvcNAQELBQADggEBAB6dQOlNm66ZCr1hsdTM4nP0wViOU/0dYAKXcw9E3Y7dGPyonb+64ZykeHhyXPvh116f5lVj6VRHqGrWhdPcGlA7vYmQ4NO9ajR9Q4Lao368ErQjCEgUCrHYMjyXpIcI5hgw6IWGpT+AApnuvU90igZhQjBv1kCfT0c17GXLBXBelEhy/9CsJCPp8HaoHyGnQHsqpq3DEUzBTVI1NImzGr7ngufdDR71eF+3Ff1udSFOl7c4xCXFtVZRuY0Ir2lCN4jFE3L7bzr/JbRCcvSoKLB50p5/n1XnOyPgdcBAaPXudiE01HOQaofLb8gBRSQ+nhSEXv+IfH7mDJ3akMYd40E=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { - "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "61 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2024-10-14 01:23" + "finding": "2024-11-03 04:28" }, { - "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "2025-01-12 01:23" + "finding": "2025-02-01 04:28" }, { - "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" }, { - "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/bYA" }, { - "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "1732444334" + "finding": "1733048978" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "0 at '/'" }, { - "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "id": "Cache-Control_multiple", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "MEDIUM", + "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -265911,7 +258638,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -265920,7 +258647,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -265929,25 +258656,25 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -265955,16 +258682,16 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -265973,16 +258700,16 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -265991,23 +258718,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "uses 64 bit block ciphers" }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -266016,7 +258743,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -266025,16 +258752,16 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -266043,34 +258770,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, + { + "id": "BEAST_CBC_TLS1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" + }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -266079,7 +258815,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -266088,385 +258824,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "79" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -266474,7 +259231,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -266482,7 +259239,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -266490,7 +259247,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -266498,7 +259255,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -266506,519 +259263,848 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cipher_order", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "finding": "server -- TLS 1.3 client determined" }, { - "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "FS", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + }, + { + "id": "FS_ECDHE_curves", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "prime256v1" + }, + { + "id": "TLS_extensions", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + }, + { + "id": "TLS_session_ticket", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "valid for 64800 seconds only (", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication" + }, + { + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "5F9BAB8D3E50B5E511177026A7630D7A" + }, + { + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "92ED93F73DB038E59D7BDC29A655BFBE7489A011" + }, + { + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" + }, + { + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFODCCBCCgAwIBAgIQX5urjT5QteURF3Amp2MNejANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTAzMDQyODIxWhcNMjUwMjAxMDQyODIwWjAiMSAwHgYDVQQDExd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOyEFA3ZON466pz/S3ooQHG+A3cNh0b01jEXKACiJ5tPVr/rNNalt3Fu6yCh2sCsMN8z+JCR4R9HqgXDyRkeR4lZDM2r63iheahu9dJQSTzlzV8kobJu8PypdYrzmu23UqRkGGwf4zkAno3vLriR66cr5+ePNB6liHjo2E9ua8xZ54T+sd5eSRD+RnqVo7MkZTUCvvj+XgmBEuXkG5+fsCwrjxhu0vBn6sOj66UE5Y+zWlvJz1FaO58tgUQHfjUQmEdXQtsm+6UWPJ9EZYDXK2pRVlBmblCxkCy2iofjE0JSWBqosLD9E81F3in2axdI+vQVVNPr0o+/gj5chdJVRU8CAwEAAaOCAk8wggJLMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTi41cWvrt2SZjCIYA8nYMTk0Y6VzAfBgNVHSMEGDAWgBRmaUnU3iqckQPPiQ4kuA4wA26ILjBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd3IxL1g1czAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IxLmNydDAiBgNVHREEGzAZghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93cjEvZWhteGs0WDBNcWsuY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGS8H7rXgAABAMARzBFAiBSL/aN/TQ0clw6Pag2GWT0XOlOnNnxA5BAFV1M/BA+UgIhAKzhQVsmbNnWh2atYMZFYFwfGNvBcK5+oXhvET0Ouu5UAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGS8H7rKgAABAMARjBEAiAV7ch4RRxuHjRLcY3cawwjomEKP3udO/FSFePDUfk6bAIgcC+upuaW6OWBden2vGJUWdfqJ2sG7ixQJfUQr+UO3GwwDQYJKoZIhvcNAQELBQADggEBAAiafZLt5HXS9Uv2ZgEWHLd10yvHtGlT7GIulPNY0yznMWqxXV+5B+0aWfq9m88niho/kaeaYospns/YC6cLKxBrzhCmtZkcrxW4vXEZfuCQAoNSnfJOdzl/6o9B7wYmlu93x9Li3WTfMvSmMZnDFlEyCwSTyvJtHHESrcIUPIQN89n0mY4W/q2qJ9xLZ5cgZIgB7+XoNHEE+ojs22SbAc7HH5do3owGDcLbdfbU88c3tGTA2lcyR5o0nOgUN5jEJxqXqTIwI/iisLc6gzjdfM6G7j2SUI+thcsHIITmlQV1TUQdodK96VX+UGNaTqDiwRSIEJuuhQumBj33eV0gQHc=\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "www.jeveuxaider.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "www.jeveuxaider.gouv.fr" + }, + { + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "61 >= 60 days" + }, + { + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "2024-11-03 04:28" + }, + { + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "2025-02-01 04:28" + }, + { + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/wr1/ehmxk4X0Mqk.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/wr1/X5s" + }, + { + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "no" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "WR1 <-- GTS Root R1" }, { - "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "random" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "none" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_signatureAlgorithm ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_keySize ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_keyUsage ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_extKeyUsage ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_serialNumber ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" + "finding": "6D80AF7B9A530E200DD36F1749753E6F" }, { - "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_serialNumberLen ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_fingerprintSHA1 ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" + "finding": "E79D116789818800EE44EA2FF7EA860513463750" }, { - "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_fingerprintSHA256 ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "0566FB2B3AB8F66F870CEF4F077A0380C9EB516056293549C4D315CE291EABAC" }, { - "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIDrjCCA1SgAwIBAgIQbYCve5pTDiAN028XSXU+bzAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMTAzMDQyODMxWhcNMjUwMjAxMDQyODMwWjAiMSAwHgYDVQQDExd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJN9tVxnHyjaZhQ16YYK99HvDws2SXnY5nrV396o9gVsZQSh0DavbsniX9DKvVzz7EScHY7c8i/UnBYgsZlmoDijggJRMIICTTAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUeHQiwCvM4U3F3QcJfdh4Fi+G5gMwHwYDVR0jBBgwFoAUkHeSNWfE/6jMqeZ72YB5e8yT+TgwXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dlMS9iWUEwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dlMS5jcnQwIgYDVR0RBBswGYIXd3d3LmpldmV1eGFpZGVyLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwNgYDVR0fBC8wLTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd2UxL200QmtyVGtQWDVZLmNybDCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkvB/D20AAAQDAEcwRQIgI1zMrersCNnO0mWwXQ+iy4hsIGeu3iiNpZ8/ocKkZN8CIQCMZkGGY6UfTVKd7M8XOIMOdj2a772i/OEHpeCcEEGc1gB3AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkvB/D1IAAAQDAEgwRgIhANJsQxdYXyba4b94Q1rHBqkq0vv+K28YrFti9lT59CPLAiEA4wmsEU2lSIBBdewcYdLMAIptBNm/R+LH6IDYniz2MrMwCgYIKoZIzj0EAwIDSAAwRQIhAKpSsgtCwnwDdAak/HxNMJ7rPMijnUto9WKTO04nR1wuAiBT4jpZkdgp/QUTP88GKk4Vyh2/EnktTxmmsZaQXxXdYA==\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_commonName ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_commonName_wo_SNI ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { - "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_subjectAltName ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "www.monstagedetroisieme.fr" + "finding": "www.jeveuxaider.gouv.fr" }, { - "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_trust ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_chain_of_trust ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_certificatePolicies_EV ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_expirationStatus ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "61 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_notBefore ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2024-10-14 01:23" + "finding": "2024-11-03 04:28" }, { - "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_notAfter ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "2025-01-12 01:23" + "finding": "2025-02-01 04:28" }, { - "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_extlifeSpan ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_eTLS ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_crlDistributionPoints ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/m4BkrTkPX5Y.crl" }, { - "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_ocspURL ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/bYA" }, { - "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "OCSP_stapling ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_ocspRevoked ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "DNS_CAArecord ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "certificate_transparency ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "certs_countServer ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "certs_list_ordering_problem ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "cert_caIssuers ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_expiration <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert_chain <#1> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "1732444393" + "finding": "1733049046" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "0 at '/'" }, { - "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "id": "Cache-Control_multiple", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "MEDIUM", + "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -267026,7 +260112,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -267035,7 +260121,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -267044,25 +260130,25 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -267070,16 +260156,16 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -267088,16 +260174,16 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -267106,23 +260192,23 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "uses 64 bit block ciphers" }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -267131,7 +260217,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -267140,16 +260226,16 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=86C6B0624AB439B16E11E96BA8FE249634A55029DB73322BA2BACF9C12F45EEE" }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -267158,34 +260244,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, + { + "id": "BEAST_CBC_TLS1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-RSA-AES128-SHA AES128-SHA ECDHE-RSA-AES256-SHA AES256-SHA DES-CBC3-SHA" + }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -267194,7 +260289,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -267203,385 +260298,1841 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" + }, + { + "id": "key_exchange_score", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "79" + }, + { + "id": "overall_grade", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "scanTime", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "208" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12169/responsive/solidarite-et-insertion-5___card_600_286.webp?v=1650532157" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12146/responsive/art-et-culture-pour-tous-6___card_600_286.webp?v=1650537895" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/8475/responsive/a26fP7ibvc7fB1r___card_600_286.webp?v=1650543984" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/16694/responsive/UUNeVXeP7cRZcqZlOgDSDhDikw6qRc___card_600_286.webp?v=1656317884" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/8470/responsive/34GhCAUYCCJ7Php___card_600_286.webp?v=1650544086" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/59916/responsive/rDUzCrtoR2FrTDMleO2vwTpxFLD9Ak___card_600_286.webp?v=1721041901" + }, + { + "type": "google tag manager", + "url": "https://www.googletagmanager.com/gtm.js?id=GTM-5S3DCV6", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_blog_posts/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_blog_posts/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.24.0)%3B%20Browser" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/30331/responsive/ntYcHt7wuT6QRsqf7QiO5JnMO7xIR6___card_600_286.webp?v=1674642755" + }, + { + "type": "unknown", + "url": "https://plausible.io/api/event" + }, + { + "type": "unknown", + "url": "https://static.axept.io/sdk.js" + }, + { + "type": "unknown", + "url": "https://client.axept.io/606dd246669e09466761ef93.json?r=0" + }, + { + "type": "unknown", + "url": "https://client.axept.io/pack/fr" + } + ], + "cookies": [], + "headers": { + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "max-age=300\npublic, no-transform", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb2622e5e445ae6-IAD", + "content-encoding": "br", + "content-length": "49918", + "content-type": "text/html;charset=utf-8", + "date": "Sun, 01 Dec 2024 10:27:15 GMT", + "expires": "Sun, 01 Dec 2024 10:32:15 GMT", + "server": "cloudflare", + "server-timing": "cfCacheStatus;desc=\"DYNAMIC\"", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-powered-by": "Nuxt", + "x-request-id": "cf131b08-0d7f-4790-b8f3-1043427f1c14\ncf131b08-0d7f-4790-b8f3-1043427f1c14" + }, + "endpoints": [ + { + "hostname": "www.jeveuxaider.gouv.fr", + "ip": "104.22.76.85", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "jeveuxaider.fra1.digitaloceanspaces.com", + "ip": "5.101.109.44", + "geoip": { + "city": { + "geoname_id": 2925533, + "names": { + "de": "Frankfurt am Main", + "en": "Frankfurt am Main", + "es": "Francfort", + "fr": "Francfort-sur-le-Main", + "ja": "フランクフルト・アム・マイン", + "pt-BR": "Frankfurt am Main", + "ru": "Франкфурт", + "zh-CN": "法兰克福" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2921044, + "is_in_european_union": true, + "iso_code": "DE", + "names": { + "de": "Deutschland", + "en": "Germany", + "es": "Alemania", + "fr": "Allemagne", + "ja": "ドイツ連邦共和国", + "pt-BR": "Alemanha", + "ru": "ФРГ", + "zh-CN": "德国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 50.1187, + "longitude": 8.6842, + "time_zone": "Europe/Berlin" + }, + "postal": { + "code": "60313" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 2905330, + "iso_code": "HE", + "names": { + "de": "Hessen", + "en": "Hesse", + "es": "Hessen", + "fr": "Hesse", + "ja": "ヘッセン州", + "pt-BR": "Hesse", + "ru": "Гессен", + "zh-CN": "黑森州" + } + } + ] + } + }, + { + "hostname": "www.googletagmanager.com", + "ip": "142.251.163.97", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "gqlg3qh7po-dsn.algolia.net", + "ip": "95.211.18.123", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2750405, + "is_in_european_union": true, + "iso_code": "NL", + "names": { + "de": "Niederlande", + "en": "The Netherlands", + "es": "Holanda", + "fr": "Pays-Bas", + "ja": "オランダ王国", + "pt-BR": "Holanda", + "ru": "Нидерланды", + "zh-CN": "荷兰" + } + }, + "location": { + "accuracy_radius": 100, + "latitude": 52.3824, + "longitude": 4.8995, + "time_zone": "Europe/Amsterdam" + }, + "registered_country": { + "geoname_id": 2750405, + "is_in_european_union": true, + "iso_code": "NL", + "names": { + "de": "Niederlande", + "en": "The Netherlands", + "es": "Holanda", + "fr": "Pays-Bas", + "ja": "オランダ王国", + "pt-BR": "Holanda", + "ru": "Нидерланды", + "zh-CN": "荷兰" + } + } + } + }, + { + "hostname": "plausible.io", + "ip": "38.104.169.186", + "geoip": { + "city": { + "geoname_id": 4460243, + "names": { + "de": "Charlotte", + "en": "Charlotte", + "es": "Charlotte", + "fr": "Charlotte", + "ja": "シャーロット", + "pt-BR": "Charlotte", + "ru": "Шарлотт", + "zh-CN": "夏洛特" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 35.2316, + "longitude": -80.8428, + "metro_code": 517, + "time_zone": "America/New_York" + }, + "postal": { + "code": "28202" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4482348, + "iso_code": "NC", + "names": { + "de": "North Carolina", + "en": "North Carolina", + "es": "Carolina del Norte", + "fr": "Caroline du Nord", + "ja": "ノースカロライナ州", + "pt-BR": "Carolina do Norte", + "ru": "Северная Каролина", + "zh-CN": "北卡罗来纳州" + } + } + ] + } + }, + { + "hostname": "static.axept.io", + "ip": "3.167.112.56", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "client.axept.io", + "ip": "18.160.18.115", + "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://www.jeveuxaider.gouv.fr/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "nuxt-js", + "name": "Nuxt.js", + "description": "Nuxt is a Vue framework for developing modern web applications.", + "confidence": 100, + "version": null, + "icon": "Nuxt.js.svg", + "website": "https://nuxt.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "google-tag-manager", + "name": "Google Tag Manager", + "description": "Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.", + "confidence": 100, + "version": null, + "icon": "Google Tag Manager.svg", + "website": "https://www.google.com/tagmanager", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.18.3", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "axeptio", + "name": "Axeptio", + "description": "Axeptio is a trusted third party that collects and archive users' consent in a GDPR compliant fashion.", + "confidence": 100, + "version": null, + "icon": "Axeptio.png", + "website": "https://www.axeptio.eu", + "cpe": null, + "categories": [ + { + "id": 67, + "slug": "cookie-compliance", + "name": "Cookie compliance" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "requestedUrl": "https://www.jeveuxaider.gouv.fr/", + "finalUrl": "https://www.jeveuxaider.gouv.fr/", + "fetchTime": "2024-12-01T10:26:44.370Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.47 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.99 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 11919, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3868, + "firstMeaningfulPaint": 3868, + "largestContentfulPaint": 6643, + "interactive": 11919, + "speedIndex": 7834, + "totalBlockingTime": 301, + "maxPotentialFID": 336, + "cumulativeLayoutShift": 0.0035970458984375, + "cumulativeLayoutShiftMainFrame": 0.0035970458984375, + "totalCumulativeLayoutShift": 0.003621785481770833, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 347243962, + "observedNavigationStart": 0, + "observedNavigationStartTs": 347243962, + "observedFirstPaint": 1181, + "observedFirstPaintTs": 348424899, + "observedFirstContentfulPaint": 1181, + "observedFirstContentfulPaintTs": 348424899, + "observedFirstContentfulPaintAllFrames": 1181, + "observedFirstContentfulPaintAllFramesTs": 348424899, + "observedFirstMeaningfulPaint": 1181, + "observedFirstMeaningfulPaintTs": 348424899, + "observedLargestContentfulPaint": 1212, + "observedLargestContentfulPaintTs": 348456085, + "observedLargestContentfulPaintAllFrames": 1212, + "observedLargestContentfulPaintAllFramesTs": 348456085, + "observedTraceEnd": 5078, + "observedTraceEndTs": 352322232, + "observedLoad": 1761, + "observedLoadTs": 349004495, + "observedDomContentLoaded": 1302, + "observedDomContentLoadedTs": 348546362, + "observedCumulativeLayoutShift": 0.0035970458984375, + "observedCumulativeLayoutShiftMainFrame": 0.0035970458984375, + "observedTotalCumulativeLayoutShift": 0.003621785481770833, + "observedFirstVisualChange": 1192, + "observedFirstVisualChangeTs": 348435962, + "observedLastVisualChange": 4691, + "observedLastVisualChangeTs": 351934962, + "observedSpeedIndex": 1297, + "observedSpeedIndexTs": 348540558 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 157, + "numScripts": 80, + "numStylesheets": 21, + "numFonts": 3, + "numTasks": 3062, + "numTasksOver10ms": 12, + "numTasksOver25ms": 9, + "numTasksOver50ms": 4, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 6.175999999999999, + "throughput": 24642701.81250375, + "maxRtt": 92.626, + "maxServerLatency": 200.242, + "totalByteWeight": 3245182, + "totalTaskTime": 879.4979999999942, + "mainDocumentTransferSize": 50338 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://www.jeveuxaider.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 3, + "missingWords": [ + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://www.jeveuxaider.gouv.fr/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://www.jeveuxaider.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "jeveuxaider", + "type": "startup", + "attributes": { + "name": "JeVeuxAider.gouv.fr", + "pitch": "Encourager l'engagement bénévole partout en France", + "stats_url": "https://www.jeveuxaider.gouv.fr/stats", + "link": "https://www.jeveuxaider.gouv.fr", + "repository": "https://github.com/betagouv/jeveuxaider-back", + "contact": "jeveuxaider@beta.gouv.fr", + "content_url_encoded_markdown": "%5BJeVeuxAider.gouv.fr%5D%28https%3A%2F%2Fwww.jeveuxaider.gouv.fr%2F%29%20est%20la%20plateforme%20publique%20du%20b%C3%A9n%C3%A9volat%2C%20propos%C3%A9e%20par%20la%20R%C3%A9serve%20Civique.%5C%0A%5C%0APlus%20de%2013%20800%20associations%2C%20collectivit%C3%A9s%20et%20organisations%20publiques%20y%20proposent%20des%20missions%2C%20lorsqu%E2%80%99elles%20ont%20besoin%20de%20renfort.%20Pour%20y%20r%C3%A9pondre%2C%20elles%20peuvent%20compter%20sur%20pr%C3%A8s%20de%20550%20000%20b%C3%A9n%C3%A9voles%20inscrits%20sur%20la%20plateforme.%20Ceux-ci%20choisissent%20parmi%20des%20milliers%20de%20missions%2C%20dans%20tous%20les%20domaines%20%28solidarit%C3%A9%2C%20%C3%A9ducation%2C%20sant%C3%A9%2C%20environnement%2C%20sport%2C%20culture%E2%80%A6%29%20et%20partout%20en%20France.%20%5C%0A%5C%0AJeVeuxAider.gouv.fr%20est%20ouverte%20%C3%A0%20toutes%20les%20personnes%20r%C3%A9sidant%20en%20France%2C%20%C3%A2g%C3%A9es%20de%20plus%20de%2016%20ans.%20Flexible%2C%20accessible%20et%20universel%2C%20ce%20service%20public%20num%C3%A9rique%20permet%20%C3%A0%20toutes%20et%20%C3%A0%20tous%20de%20participer%20%C3%A0%20la%20soci%C3%A9t%C3%A9%20de%20l%E2%80%99engagement%2C%20pour%20plus%20de%20solidarit%C3%A9.", + "events": [ + { + "name": "national_impact", + "date": "2023-12-31", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2017-03-23", + "end": "" + }, + { + "name": "construction", + "start": "2020-03-02", + "end": "" + }, + { + "name": "acceleration", + "start": "2020-10-05", + "end": "" + } + ], + "sponsors": [ + "djepva" + ], + "thematiques": [ + "Social", + "Démocratie" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/www-jeveuxaider-gouv-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "engagement_civique" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "36" + "width": 1920, + "height": 1080, + "url": "https://www.jeveuxaider.gouv.fr", + "size": 5324.782, + "nodes": 1462, + "requests": 160, + "grade": "F", + "score": 15, + "ges": 2.7, + "water": 4.05, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 10:23:37.794577", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 0.362, + "apdexGrade": "F", + "uptime": 90.586, + "uptimeGrade": "F", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": null, + "testsslExpireDate": null, + "testsslGrade": "B", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 19, + "lighthouse_performance": 0.47, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://www.monstagedetroisieme.fr", + "category": "anct", + "betaId": "monstage", + "http": { + "url": "https://www.monstagedetroisieme.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 01:49:33 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=0, private, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Length": "5984", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 01:49:32 GMT", + "ETag": "W/\"179dbaf4dda05622b3a280095dee52f8\"", + "Referrer-Policy": "strict-origin-when-cross-origin", + "Set-Cookie": "_monstage_session=n9mZwzrLcNr4805oqA0m1JoG3Bwv0h%2BGq5Mu6yofpLd5OrsVPiWgvl4xf22LXOSXhwc3n0Wq6%2BMgQluziU%2BghZKhYzQxmDXdKSo6TELU3wyLX%2Fz8QZCDBes3XjUjD%2BtboUz4ykjDfL%2BgEtuDzZLB%2F3T5sYOmYAh9uW18%2FqaHvz1KubBUPGGoy7uKpDPdBGfeJLCCuFfpMktO9NPV3rEcEnUw%2BE9hhWxrNu8jbNo5NDka4daVODvIbGnsBzZbPK9OtDKVeE5PSQO9Brmogv0PZOkzm6Vr7MqVGw%3D%3D--KIIY5UZY6%2Fm5oeim--ZTlkc5uiGX54EzgD1ucBJw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Sozu-Id": "01JAKSV26KEY6MWB03N47VR5YZ", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains", + "Vary": "Accept,Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-Id": "f45840b2-a4bc-4afd-9df7-31c93c788f07", + "X-Runtime": "0.015627", + "X-XSS-Protection": "0", + "link": "; rel=preload; as=style; nopush" }, - { - "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "93" + "scan_id": 57047250, + "score": 75, + "start_time": "Sun, 20 Oct 2024 01:49:31 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_monstage_session": { + "domain": "www.monstagedetroisieme.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.monstagedetroisieme.fr/", + "redirects": true, + "route": [ + "http://www.monstagedetroisieme.fr/", + "https://www.monstagedetroisieme.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains", + "includeSubDomains": true, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "7p1e", + "url": "https://www.monstagedetroisieme.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T10:55:17Z", + "error": null, + "period": 3600, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T10:32:41Z", + "next_check_at": "2024-12-01T11:32:12Z", + "created_at": "2021-12-01T16:35:58Z", + "mute_until": null, + "favicon_url": "https://www.monstagedetroisieme.fr/packs/media/images/favicon-d21ba7166343077ed001c60d663a06e1.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T06:33:55Z", + "expires_at": "2025-01-12T01:23:49Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 161, + "connection": 119, + "handshake": 123, + "response": 140, + "total": 543 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "www.monstagedetroisieme.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -267589,7 +262140,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -267597,7 +262148,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -267605,7 +262156,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -267613,7 +262164,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -267621,7 +262172,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -267629,511 +262180,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISA/Mq9Jso092l7TnF7r+8B5+zMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE0MDEyMzUwWhcNMjUwMTEyMDEyMzQ5WjAlMSMwIQYDVQQDExp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIJROK2VyAPBE3brgAmHJKa5sfuoulkMFxKNKnlzU7wluL8m/HMmB7THk/iti5nxe72172N+27c//EcC2x/GkpEarFexxxaHsByK370+/GuPBF05AhyIZmaKFiVkIxmrwgO/XTEug1HTe+kflmFFWQ7mEIMGgwccz3BF/DEGgCQviEPdevdE70eLOdg5YslRApf390hWE4o99Xo+Gw6NU0kedibOtT8T1VTytUWppEiUvDGyOGtygex2ACzlmTycBsnRRnZX91sUsnZIKehmXBINdKeiwoAyKzHXuMSRPiezSHBA5f3Sn1c4/CJAaBZfKcihVJ0fyYVpR05QHq/5yOsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUWKiUWpaB7X5lZuby3T5Z/BGUWKYwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkojVasoAAAQDAEcwRQIgP9GtgQxhgITzyw1Za1oxb+wnib+GXUlsvARh3DSW3xwCIQCuLqssuK3vykfnnzwhTDhqE2LvpD5kPiwNgVkakakj7gB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkojVaxQAAAQDAEgwRgIhAJUY42t6ddBlTsVIc23ghsIRU1AwZnMyvN62bCTaiJoKAiEAumeshn0j8MjXZCGAdCHoTZcxbc275D2NW/FiZzFILwYwDQYJKoZIhvcNAQELBQADggEBAB6dQOlNm66ZCr1hsdTM4nP0wViOU/0dYAKXcw9E3Y7dGPyonb+64ZykeHhyXPvh116f5lVj6VRHqGrWhdPcGlA7vYmQ4NO9ajR9Q4Lao368ErQjCEgUCrHYMjyXpIcI5hgw6IWGpT+AApnuvU90igZhQjBv1kCfT0c17GXLBXBelEhy/9CsJCPp8HaoHyGnQHsqpq3DEUzBTVI1NImzGr7ngufdDR71eF+3Ff1udSFOl7c4xCXFtVZRuY0Ir2lCN4jFE3L7bzr/JbRCcvSoKLB50p5/n1XnOyPgdcBAaPXudiE01HOQaofLb8gBRSQ+nhSEXv+IfH7mDJ3akMYd40E=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732444451" + "finding": "1733049517" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -268141,7 +262692,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -268150,7 +262701,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -268159,7 +262710,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -268168,7 +262719,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -268177,7 +262728,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -268185,7 +262736,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -268194,7 +262745,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -268203,7 +262754,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -268212,7 +262763,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -268221,14 +262772,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -268237,7 +262788,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -268246,7 +262797,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -268255,7 +262806,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -268264,7 +262815,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -268273,7 +262824,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -268282,7 +262833,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -268291,7 +262842,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -268300,7 +262851,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -268309,7 +262860,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -268318,385 +262869,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -268704,7 +263255,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -268712,7 +263263,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -268720,7 +263271,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -268728,7 +263279,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -268736,7 +263287,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -268744,511 +263295,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISA/Mq9Jso092l7TnF7r+8B5+zMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE0MDEyMzUwWhcNMjUwMTEyMDEyMzQ5WjAlMSMwIQYDVQQDExp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIJROK2VyAPBE3brgAmHJKa5sfuoulkMFxKNKnlzU7wluL8m/HMmB7THk/iti5nxe72172N+27c//EcC2x/GkpEarFexxxaHsByK370+/GuPBF05AhyIZmaKFiVkIxmrwgO/XTEug1HTe+kflmFFWQ7mEIMGgwccz3BF/DEGgCQviEPdevdE70eLOdg5YslRApf390hWE4o99Xo+Gw6NU0kedibOtT8T1VTytUWppEiUvDGyOGtygex2ACzlmTycBsnRRnZX91sUsnZIKehmXBINdKeiwoAyKzHXuMSRPiezSHBA5f3Sn1c4/CJAaBZfKcihVJ0fyYVpR05QHq/5yOsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUWKiUWpaB7X5lZuby3T5Z/BGUWKYwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkojVasoAAAQDAEcwRQIgP9GtgQxhgITzyw1Za1oxb+wnib+GXUlsvARh3DSW3xwCIQCuLqssuK3vykfnnzwhTDhqE2LvpD5kPiwNgVkakakj7gB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkojVaxQAAAQDAEgwRgIhAJUY42t6ddBlTsVIc23ghsIRU1AwZnMyvN62bCTaiJoKAiEAumeshn0j8MjXZCGAdCHoTZcxbc275D2NW/FiZzFILwYwDQYJKoZIhvcNAQELBQADggEBAB6dQOlNm66ZCr1hsdTM4nP0wViOU/0dYAKXcw9E3Y7dGPyonb+64ZykeHhyXPvh116f5lVj6VRHqGrWhdPcGlA7vYmQ4NO9ajR9Q4Lao368ErQjCEgUCrHYMjyXpIcI5hgw6IWGpT+AApnuvU90igZhQjBv1kCfT0c17GXLBXBelEhy/9CsJCPp8HaoHyGnQHsqpq3DEUzBTVI1NImzGr7ngufdDR71eF+3Ff1udSFOl7c4xCXFtVZRuY0Ir2lCN4jFE3L7bzr/JbRCcvSoKLB50p5/n1XnOyPgdcBAaPXudiE01HOQaofLb8gBRSQ+nhSEXv+IfH7mDJ3akMYd40E=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732444509" + "finding": "1733049571" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -269256,7 +263807,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -269265,7 +263816,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -269274,7 +263825,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -269283,7 +263834,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -269292,7 +263843,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -269300,7 +263851,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -269309,7 +263860,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -269318,7 +263869,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -269327,7 +263878,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -269336,14 +263887,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -269352,7 +263903,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -269361,7 +263912,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -269370,7 +263921,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -269379,7 +263930,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -269388,7 +263939,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -269397,7 +263948,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -269406,7 +263957,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -269415,7 +263966,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -269424,7 +263975,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -269433,385 +263984,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.220", + "ip": "www.monstagedetroisieme.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -269819,7 +264370,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -269827,7 +264378,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -269835,7 +264386,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -269843,7 +264394,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -269851,7 +264402,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -269859,511 +264410,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISA/Mq9Jso092l7TnF7r+8B5+zMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwHhcNMjQxMDE0MDEyMzUwWhcNMjUwMTEyMDEyMzQ5WjAlMSMwIQYDVQQDExp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIJROK2VyAPBE3brgAmHJKa5sfuoulkMFxKNKnlzU7wluL8m/HMmB7THk/iti5nxe72172N+27c//EcC2x/GkpEarFexxxaHsByK370+/GuPBF05AhyIZmaKFiVkIxmrwgO/XTEug1HTe+kflmFFWQ7mEIMGgwccz3BF/DEGgCQviEPdevdE70eLOdg5YslRApf390hWE4o99Xo+Gw6NU0kedibOtT8T1VTytUWppEiUvDGyOGtygex2ACzlmTycBsnRRnZX91sUsnZIKehmXBINdKeiwoAyKzHXuMSRPiezSHBA5f3Sn1c4/CJAaBZfKcihVJ0fyYVpR05QHq/5yOsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUWKiUWpaB7X5lZuby3T5Z/BGUWKYwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAABkojVasoAAAQDAEcwRQIgP9GtgQxhgITzyw1Za1oxb+wnib+GXUlsvARh3DSW3xwCIQCuLqssuK3vykfnnzwhTDhqE2LvpD5kPiwNgVkakakj7gB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABkojVaxQAAAQDAEgwRgIhAJUY42t6ddBlTsVIc23ghsIRU1AwZnMyvN62bCTaiJoKAiEAumeshn0j8MjXZCGAdCHoTZcxbc275D2NW/FiZzFILwYwDQYJKoZIhvcNAQELBQADggEBAB6dQOlNm66ZCr1hsdTM4nP0wViOU/0dYAKXcw9E3Y7dGPyonb+64ZykeHhyXPvh116f5lVj6VRHqGrWhdPcGlA7vYmQ4NO9ajR9Q4Lao368ErQjCEgUCrHYMjyXpIcI5hgw6IWGpT+AApnuvU90igZhQjBv1kCfT0c17GXLBXBelEhy/9CsJCPp8HaoHyGnQHsqpq3DEUzBTVI1NImzGr7ngufdDR71eF+3Ff1udSFOl7c4xCXFtVZRuY0Ir2lCN4jFE3L7bzr/JbRCcvSoKLB50p5/n1XnOyPgdcBAaPXudiE01HOQaofLb8gBRSQ+nhSEXv+IfH7mDJ3akMYd40E=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", - "finding": "1732444568" + "finding": "1733049625" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -270371,7 +264922,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -270380,7 +264931,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -270389,7 +264940,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -270398,7 +264949,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -270407,7 +264958,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -270415,7 +264966,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -270424,7 +264975,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -270433,7 +264984,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -270442,7 +264993,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -270451,14 +265002,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -270467,7 +265018,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -270476,7 +265027,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -270485,7 +265036,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -270494,7 +265045,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -270503,7 +265054,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -270512,7 +265063,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -270521,7 +265072,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -270530,7 +265081,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -270539,7 +265090,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -270548,385 +265099,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.223", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -270934,7 +265485,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -270942,7 +265493,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -270950,7 +265501,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -270958,7 +265509,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -270966,7 +265517,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -270974,511 +265525,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "03F32AF49B28D3DDA5ED39C5EEBFBC079FB3" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "A740DC362F2365A04A806CB44BC3D0AE03A9C0E1" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732444627" + "finding": "1733049680" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -271486,7 +266037,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -271495,7 +266046,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -271504,7 +266055,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -271513,7 +266064,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -271522,7 +266073,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -271530,7 +266081,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -271539,7 +266090,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -271548,7 +266099,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -271557,7 +266108,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -271566,14 +266117,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -271582,7 +266133,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -271591,7 +266142,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -271600,7 +266151,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -271609,7 +266160,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -271618,7 +266169,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -271627,7 +266178,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -271636,7 +266187,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -271645,7 +266196,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -271654,7 +266205,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -271663,1864 +266214,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "536" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - }, - { - "type": "unknown", - "url": "https://betagouv-matomo.osc-secnum-fr1.scalingo.io/piwik.js" - }, - { - "type": "unknown", - "url": "https://betagouv-matomo.osc-secnum-fr1.scalingo.io/js/container_pi6b6eL6.js" - } - ], - "cookies": [ - { - "name": "_monstage_session", - "value": "E0jpuzQ0aGKPQBKT5SHWjcaxx6bGZmVokdoNyKQ48bRGuL3O4s%2Bnul1%2Fepi2mMSyWNzoTElszbXyrrYZhKnA8%2F%2FS3IYqACiWluMrmAsYQSEyMSulCvxj1TLVl6q0JBMhU4MgJWpUdzWxTvPrYkGpJhJTAo59W%2BK%2BAOB%2FfxderJC3r5d4nYeECGut5U1Erl7P3LTDgqJ3QMNvNM8b2RzjunNwATo4u9dgEADL1YD2NxJ7X89Hx5sUfed66xJdLv9kaG1WkAZYNkTqHyun%2BdyXLk9sF9SzwMLGkg%3D%3D--5cUjsXuw0VEEuRj%2F--jt0tvW9TCsL8P7U6Z5FDaw%3D%3D", - "domain": "www.monstagedetroisieme.fr", - "path": "/", - "expires": -1, - "size": 379, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=0, private, must-revalidate", - "connection": "keep-alive", - "content-encoding": "gzip", - "content-length": "5985", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 10:27:55 GMT", - "etag": "W/\"0673521468252159f544d3fb7e61bef1\"", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_monstage_session=E0jpuzQ0aGKPQBKT5SHWjcaxx6bGZmVokdoNyKQ48bRGuL3O4s%2Bnul1%2Fepi2mMSyWNzoTElszbXyrrYZhKnA8%2F%2FS3IYqACiWluMrmAsYQSEyMSulCvxj1TLVl6q0JBMhU4MgJWpUdzWxTvPrYkGpJhJTAo59W%2BK%2BAOB%2FfxderJC3r5d4nYeECGut5U1Erl7P3LTDgqJ3QMNvNM8b2RzjunNwATo4u9dgEADL1YD2NxJ7X89Hx5sUfed66xJdLv9kaG1WkAZYNkTqHyun%2BdyXLk9sF9SzwMLGkg%3D%3D--5cUjsXuw0VEEuRj%2F--jt0tvW9TCsL8P7U6Z5FDaw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "sozu-id": "01JDEVDCWN42WGYKKQ4YE9DR5R", - "strict-transport-security": "max-age=63072000; includeSubDomains", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "709c351f-607e-41d9-96a5-29df3673c47a", - "x-runtime": "0.010602", - "x-xss-protection": "0", - "link": "; rel=preload; as=style; nopush" - }, - "endpoints": [ - { - "hostname": "www.monstagedetroisieme.fr", - "ip": "91.208.207.221", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "betagouv-matomo.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://www.monstagedetroisieme.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", - "confidence": 100, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "trix", - "name": "Trix", - "description": "Trix is an open-source project from Basecamp, the creators of Ruby on Rails.", - "confidence": 100, - "version": "2.1.1", - "icon": "trix.png", - "website": "https://trix-editor.org", - "cpe": null, - "categories": [ - { - "id": 24, - "slug": "rich-text-editors", - "name": "Rich text editors" - } - ], - "rootPath": true - }, - { - "slug": "leaflet", - "name": "Leaflet", - "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", - "confidence": 100, - "version": "1.9.4", - "icon": "Leaflet.png", - "website": "https://leafletjs.com", - "cpe": null, - "categories": [ - { - "id": 35, - "slug": "maps", - "name": "Maps" - } - ], - "rootPath": true - }, - { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", - "confidence": 100, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "stimulus", - "name": "Stimulus", - "description": "A modest JavaScript framework for the HTML you already have.", - "confidence": 100, - "version": null, - "icon": "Stimulus.svg", - "website": "https://stimulusjs.org/", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "turbo", - "name": "Turbo", - "description": "Turbo is a JavaScript framework for building fast web applications.", - "confidence": 100, - "version": null, - "icon": "Turbo.svg", - "website": "https://turbo.hotwired.dev/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "livefyre", - "name": "Livefyre", - "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", - "confidence": 0, - "version": "1.9.4", - "icon": "Livefyre.png", - "website": "https://livefyre.com", - "cpe": null, - "categories": [ - { - "id": 15, - "slug": "comment-systems", - "name": "Comment systems" - } - ], - "rootPath": true - }, - { - "slug": "hammer-js", - "name": "Hammer.js", - "description": null, - "confidence": 100, - "version": "2.0.7", - "icon": "Hammer.js.png", - "website": "https://hammerjs.github.io", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.31.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "google-workspace", - "name": "Google Workspace", - "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", - "confidence": 100, - "version": null, - "icon": "Google.svg", - "website": "https://workspace.google.com/", - "cpe": null, - "categories": [ - { - "id": 30, - "slug": "webmail", - "name": "Webmail" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://www.monstagedetroisieme.fr/", - "finalUrl": "https://www.monstagedetroisieme.fr/", - "fetchTime": "2024-11-24T10:27:29.673Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.41 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 17928, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 6131, - "firstMeaningfulPaint": 6131, - "largestContentfulPaint": 6384, - "interactive": 17928, - "speedIndex": 8629, - "totalBlockingTime": 362, - "maxPotentialFID": 634, - "cumulativeLayoutShift": 0.004132242838541667, - "cumulativeLayoutShiftMainFrame": 0.004132242838541667, - "totalCumulativeLayoutShift": 0.004132242838541667, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 437099186, - "observedNavigationStart": 0, - "observedNavigationStartTs": 437099186, - "observedFirstPaint": 1042, - "observedFirstPaintTs": 438140871, - "observedFirstContentfulPaint": 1042, - "observedFirstContentfulPaintTs": 438140871, - "observedFirstContentfulPaintAllFrames": 1042, - "observedFirstContentfulPaintAllFramesTs": 438140871, - "observedFirstMeaningfulPaint": 1042, - "observedFirstMeaningfulPaintTs": 438140871, - "observedLargestContentfulPaint": 1042, - "observedLargestContentfulPaintTs": 438140871, - "observedLargestContentfulPaintAllFrames": 1042, - "observedLargestContentfulPaintAllFramesTs": 438140871, - "observedTraceEnd": 3967, - "observedTraceEndTs": 441065706, - "observedLoad": 1540, - "observedLoadTs": 438639622, - "observedDomContentLoaded": 1357, - "observedDomContentLoadedTs": 438456672, - "observedCumulativeLayoutShift": 0.004132242838541667, - "observedCumulativeLayoutShiftMainFrame": 0.004132242838541667, - "observedTotalCumulativeLayoutShift": 0.004132242838541667, - "observedFirstVisualChange": 1049, - "observedFirstVisualChangeTs": 438148186, - "observedLastVisualChange": 1683, - "observedLastVisualChangeTs": 438782186, - "observedSpeedIndex": 1064, - "observedSpeedIndexTs": 438162806 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 19, - "numScripts": 4, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 1006, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 24942480.207752388, - "maxRtt": 102.99799999999999, - "maxServerLatency": 16.294999999999998, - "totalByteWeight": 2964261, - "totalTaskTime": 299.04399999999885, - "mainDocumentTransferSize": 7159 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://www.monstagedetroisieme.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://www.monstagedetroisieme.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://www.monstagedetroisieme.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "monstage", - "type": "startup", - "attributes": { - "name": "Mon stage de 3e", - "pitch": "Permettre aux élèves de 3e d'accéder à des stages pertinents pour combattre les déterminismes sociaux", - "stats_url": "https://www.monstagedetroisieme.fr/statistiques", - "link": "https://www.monstagedetroisieme.fr/", - "repository": "https://github.com/betagouv/monstage", - "contact": "support@monstagedetroisieme.fr", - "content_url_encoded_markdown": "%23%23%20Qui%20sommes-nous%20%3F%0A%5BMon%20stage%20de%203e%5D%28https%3A%2F%2Fwww.monstagedetroisieme.fr%2F%29%20est%20un%20service%20num%C3%A9rique%20mis%20en%20place%20par%20l%E2%80%99Agence%20nationale%20de%20la%20coh%C3%A9sion%20des%20territoires%2C%20ce%20produit%20est%20copilot%C3%A9%20par%20les%20minist%C3%A8res%20en%20charge%20de%20la%20ville%2C%20de%20l%E2%80%99%C3%A9ducation%20nationale%20et%20de%20la%20fonction%20publique.%20Il%20permet%20aux%20%C3%A9l%C3%A8ves%20de%20troisi%C3%A8me%20des%20coll%C3%A8ges%20du%20r%C3%A9seau%20%C3%A9ducation%20prioritaire%20%28REP%20et%20REP%2B%29%20d%E2%80%99avoir%20acc%C3%A8s%20%C3%A0%20une%20offre%20de%20stages%20de%20qualit%C3%A9.%0A%0AQue%20ce%20soit%20en%20entreprise%2C%20en%20association%2C%20au%20sein%20d%E2%80%99%C3%A9tablissements%20publics%20ou%20de%20collectivit%C3%A9s%20territoriales%2C%20%C3%A9voluer%20au%20contact%20de%20professionnels%20permet%20aux%20%C3%A9l%C3%A8ves%20de%20mieux%20pr%C3%A9ciser%20leur%20projet%20d%E2%80%99orientation%20et%20de%20mieux%20appr%C3%A9hender%20les%20r%C3%A9alit%C3%A9s%20du%20monde%20du%20travail.%0A%0A%23%23%20Pourquoi%20Mon%20stage%20de%20troisi%C3%A8me%20%3F%0A%23%23%23%20Un%20constat%20d%E2%80%99in%C3%A9galit%C3%A9%20sociale%20d%C3%A8s%20le%20coll%C3%A8ge%0AAu%20moins%2054%25%20des%20%C3%A9l%C3%A8ves%20de%20troisi%C3%A8me%20trouvent%20leur%20stage%20gr%C3%A2ce%20%C3%A0%20leur%20entourage.%20Ainsi%2C%20les%20stages%20d%E2%80%99observation%20inspirants%2C%20instructifs%20et%20constructifs%2C%20sont%20souvent%20r%C3%A9serv%C3%A9s%20aux%20%C3%A9l%C3%A8ves%20b%C3%A9n%C3%A9ficiant%20d%E2%80%99un%20r%C3%A9seau%20d%C3%A9velopp%C3%A9%20gr%C3%A2ce%20aux%20bonnes%20connexions%20de%20leur%20entourage.%0A%0AAussi%2C%20pour%20faciliter%20l%E2%80%99acc%C3%A8s%20%C3%A0%20des%20stages%20de%203e%20pertinents%20et%20de%20qualit%C3%A9%20pour%20%C3%A9manciper%20et%20combattre%20les%20d%C3%A9terminismes%20sociaux%2C%20la%20Startup%20d%E2%80%99%C3%89tat%20propose%20une%20plateforme%20logicielle%2C%20dont%20l%E2%80%99objectif%20est%20de%20mettre%20%C3%A0%20disposition%2C%20des%20%C3%A9l%C3%A8ves%20de%20REP%2C%20REP%2B%20et%20QPV%20un%20%C3%A9ventail%20large%20d%E2%80%99offres%20de%20stage%20de%20qualit%C3%A9%2C%20%C3%A9manant%20du%20secteur%20public%20et%20du%20secteur%20priv%C3%A9%2C%20et%20ce%20sur%20toute%20la%20France.%0A%0A%23%23%20Les%20principales%20fonctionnalit%C3%A9s%20de%20la%20plateforme%20%3A%0A-%20Un%20souci%20constant%20d%27ergonomie%20%28d%C3%A9p%C3%B4t%20des%20offres%2C%20recherche%20de%20stages%2C%20suivi%20des%20candidatures%2C%20signature%20des%20conventions%2C%20%E2%80%A6%29%20%3B%0A-%20Une%20mise%20en%20relation%20entre%20l%27offre%20et%20la%20demande%20%28accompagnement%20des%20entreprises%20et%20administrations%2C%20candidatures%20des%20%C3%A9l%C3%A8ves%20fluides%20et%20unifi%C3%A9es%2C%20accompagnement%20des%20%C3%A9l%C3%A8ves%2C%20accompagnement%20%C3%A0%20la%20mobilit%C3%A9%E2%80%A6%29%20%3B%0A-%20Une%20convention%20d%C3%A9mat%C3%A9rialis%C3%A9e%20pour%20les%20professionnels%20et%20les%20%C3%A9tablissements%20scolaires%20avec%20signature%20num%C3%A9rique%20%3B%0A-%20Un%20espace%20d%C3%A9di%C3%A9%20aux%20%C3%A9quipes%20p%C3%A9dagogiques%20pour%20accompagner%20leurs%20%C3%A9l%C3%A8ves%20et%20suivre%20leurs%20candidatures%20%3B%0A-%20Analyses%20de%20donn%C3%A9es%20compl%C3%A8tes%20%C3%A0%20destination%20de%20tous%20les%20usagers%20et%20%C3%A0%20tous%20les%20niveaux%20hi%C3%A9rarchiques%20n%C3%A9cessaires.%0A%0A%23%23%20L%E2%80%99%C3%A9mergence%20d%E2%80%99un%20%C3%A9cosyst%C3%A8me%20pour%20accompagner%20et%20p%C3%A9renniser%20cet%20outil%20num%C3%A9rique%0APour%20que%20cette%20plateforme%20devienne%20un%20outil%20naturellement%20prescrit%20par%20les%20enseignants%20et%20les%20personnels%20encadrants%20des%20coll%C3%A8ges%20et%20donc%20p%C3%A9renne%2C%20il%20est%20n%C3%A9cessaire%20%3A%0A-%20Qu%27elle%20s%27inscrive%20dans%20une%20logique%20de%20parcours%20de%20formation%20d%27avenir%20des%20%C3%A9l%C3%A8ves%2C%20sous%20l%27%C3%A9gide%20de%20l%27%C3%89ducation%20Nationale%20%3B%0A-%20Que%20les%20associations%2C%20sp%C3%A9cialistes%20de%20ces%20sujets%2C%20continuent%20%C3%A0%20y%20%C3%AAtre%20associ%C3%A9es%2C%20gr%C3%A2ce%20%C3%A0%20leur%20travail%20d%27accompagnement%20aupr%C3%A8s%20des%20coll%C3%A8ges%2C%20structures%20d%27accueil%2C%20voire%20parents%20d%27%C3%A9l%C3%A8ves%20%3B%0A-%20Que%20les%20structures%20d%27accueil%2C%20publiques%20et%20priv%C3%A9es%2C%20renforcent%20leur%20capacit%C3%A9%20%C3%A0%20bien%20communiquer%20et%20%C3%A0%20savoir%20bien%20accompagner%20les%20%C3%A9l%C3%A8ves%20sur%20leur%20site%20%3B%0A-%20Que%20les%20personnels%20p%C3%A9dagogiques%20des%20coll%C3%A8ges%20soient%20r%C3%A9guli%C3%A8rement%20inform%C3%A9s%20sur%20la%20diversit%C3%A9%20des%20m%C3%A9tiers%2C%20afin%20de%20mieux%20orienter%20leurs%20%C3%A9l%C3%A8ves%20%3B%0A-%20Que%20les%20processus%2C%20comme%20des%20subventions%2C%20stages%20collectifs%2C%20permettent%20d%27%C3%A9vacuer%20les%20probl%C3%A9matiques%20de%20mobilit%C3%A9.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2018-12-01", - "end": "" - }, - { - "name": "construction", - "start": "2018-12-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2021-01-01", - "end": "" - }, - { - "name": "transfer", - "start": "2024-04-30", - "end": "" - } - ], - "sponsors": [ - "anct" - ], - "thematiques": [ - "Jeunesse", - "Education" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-monstagedetroisieme-fr/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "anct" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://www.monstagedetroisieme.fr", - "size": 3234.366, - "nodes": 352, - "requests": 25, - "grade": "C", - "score": 67, - "ges": 1.66, - "water": 2.49, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 10:24:29.971810", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T01:23:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.41, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://civilsdeladefense.fabnum.fr/", - "repositories": [ - "betagouv/civilsdeladefense" - ], - "category": "fabnumdef", - "betaId": "civils-de-la-defense", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "scanProblem", - "ip": "civilsdeladefense.fabnum.fr/", + "id": "clientsimulation-openssl_110l", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'civilsdeladefense.fabnum.fr' available" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "scanTime", - "ip": "civilsdeladefense.fabnum.fr/", + "id": "clientsimulation-openssl_111d", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://civilsdeladefense.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (civilsdeladefense.fabnum.fr)" - } + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-openssl_303", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "civils-de-la-defense", - "type": "startup", - "attributes": { - "name": "Civils de la Défense", - "pitch": "Recruter simplement des agents civils sous contrat", - "stats_url": "https://stats.data.gouv.fr/index.php?module=CoreHome&action=index&idSite=75&period=day&date=yesterday", - "link": "https://contractuels.civils.defense.gouv.fr/", - "repository": "https://github.com/betagouv/civilsdeladefense", - "contact": "drh-md-srhc-civilsdeladefense.charge-qualite.fct@intradef.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A9matique%20%20%0ALe%20minist%C3%A8re%20des%20Arm%C3%A9es%20recrute%20d%C3%A9sormais%20chaque%20ann%C3%A9e%20environ%201%20000%20agents%20civils%20sous%20contrat%20notamment%20sur%20des%20m%C3%A9tiers%20en%20tension%20%28SIC%2C%20infrastructures...%29.%20Satisfaire%20ce%20besoin%20a%20rapidement%20mis%20en%20%C3%A9vidence%20les%20probl%C3%A9matiques%20suivantes%20%3A%20%20%0A%2A%20Une%20forte%20concurrence%20avec%20le%20secteur%20priv%C3%A9%20pour%20le%20recrutement%20des%20profils%20recherch%C3%A9s%20%3B%0A%2A%20Une%20visibilit%C3%A9%20trop%20faible%20de%20l%27offre%20de%20recrutement%20civil%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20%3B%0A%2A%20Un%20processus%20de%20recrutement%20long%20et%20opaque%20pour%20les%20candidats.%0A%0AEn%20cons%C3%A9quence%20de%20ce%20manque%20d%E2%80%99informations%20et%20d%E2%80%99accompagnement%2C%20les%20candidats%20abandonnent%20souvent%20en%20cours%20de%20processus%20de%20recrutement%20au%20profit%20d%E2%80%99autres%20employeurs%20plus%20visibles%20et%20attractifs%20notamment%20dans%20le%20secteur%20priv%C3%A9.%0A%0A%23%23%20Objectifs%20%20%20%20%0ADisposer%20d%27une%20solution%20permettant%20de%20simplifier%20et%20acc%C3%A9l%C3%A9rer%20le%20processus%20de%20recrutement%20aussi%20bien%20pour%20les%20candidats%20que%20pour%20les%20employeurs%20et%20les%20services%20RH%20du%20MinArm.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28S2%202018%29%20%3A%20Hackathon%20%C2%AB%20E%20%E2%80%93%20recrutement%20%C2%BB%20et%201er%20ateliers%0A%0ALivrables%20%3A%20%20%20%0A%2A%20Concat%C3%A9nation%20des%20meilleurs%20projets%20r%C3%A9alis%C3%A9s%20lors%20du%20hackathon%20%20%20%20%20%0A%2A%20R%C3%A9alisation%20User%20journey%20actuelle%20et%20id%C3%A9ale%20%20%20%0A%2A%20Identification%20de%20l%E2%80%99architecture%20de%20la%20confidentialit%C3%A9%20%28r%C3%B4les%20et%20droits%20associ%C3%A9s%29%20%20%20%0A%2A%20R%C3%A9alisation%20Maquette%20cliquable%20%20%20%20%0A%0A__%C3%89tape%202__%20%28S1%202019%29%20%3A%20D%C3%A9but%20des%20d%C3%A9veloppement%0A%0ALivrables%20%3A%20%20%20%20%0A%2A%20Fonctionnalit%C3%A9s%20principales%20back%20et%20front%20office%20%20%20%0A%0A__%C3%89tape%203__%20%28S2%202019%29%20%3A%20It%C3%A9ration%20retours%20m%C3%A9tier%20et%20continuit%C3%A9%20des%20d%C3%A9veloppements%0A%0ALivrables%20%3A%0A%2A%20Fonctionnalit%C3%A9s%20secondaires%20et%20%C3%A9cran%20de%20suivi%20statistique%20%20%20%0A%0A__%C3%89tape%204__%20%28S1%20et%20S2%202020%29%20%3A%20Industrialisation%20du%20SI%20pour%20une%20utilisation%20grande%20%C3%A9chelle%0A%0A%2A%2AEtape%205%2A%2A%20%28S1%202021%20%C3%A0%20S2%202022%29%20%3A%20D%C3%A9ploiement%20et%20usage%20du%20produit%20dans%20le%20contexte%20recrutement%20%28agents%20et%20candidats%29%0A%0A%2A%2AEtape%206%2A%2A%20%28S1%20et%20S2%202023%29%20%3A%20Organisation%20du%20transfert%20du%20produit%20avec%20la%20DRH-MD%20%28Service%20des%20Ressources%20Humaines%20Civiles%29.%0A%0A%2A%2ALe%20service%20est%20actuellement%20transf%C3%A9r%C3%A9%20et%20p%C3%A9rennis%C3%A9.%2A%2A%0A%0ALivrables%20%3A%20%20%20%0A%2A%20Une%20solution%20utilis%C3%A9e%20%C3%A0%20large%20%C3%A9chelle%20au%20sein%20du%20MinArm%2C%20transf%C3%A9r%C3%A9e%20aux%20%C3%A9quipes%20techniques%20de%20la%20DRH-MD%20au%20sein%20du%20SRHC.%0A%2A%20Une%20solution%20document%C3%A9e%20et%20conforme%20aux%20exigences%20SSI%2C%20RGPD%2C%20loi%20transformation%20publique%2C%20d%E2%80%99archivage%20des%20donn%C3%A9es%2C%20respect%20des%20r%C3%A8gles%20d%E2%80%99accessibilit%C3%A9...%0A%0A%23%23%20R%C3%A9sultat%0AUn%20%5Bsite%20internet%5D%28https%3A%2F%2Fcontractuels.civils.defense.gouv.fr%2F%29%0A%0A%23%23%20en%20chiffres%0AAujourd%E2%80%99hui%20Civils%20de%20la%20D%C3%A9fense%20c%E2%80%99est%20%3A%0A%0A-50%25%20sur%20le%20temps%20de%20recrutement%20%286%2F8%20mois%20%C3%A0%203%20mois%29%0A%0A%2B500%20utilisateurs%20minarm%0A%0A%2B150%20000%20visiteurs%0A%0A%2B10%20000%20candidature%0A%0A400%20candidature%20trait%C3%A9es%20%2F%20mois%0A%0A6%25%20des%20candidats%20sont%20recrut%C3%A9s", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2018-06-01", - "end": "" - }, - { - "name": "construction", - "start": "2020-04-02", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-12-31", - "end": "" - }, - { - "name": "transfer", - "start": "2023-12-31", - "end": "" - }, - { - "name": "alumni", - "start": "2024-04-23", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [ - "Travail / Emploi" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/civilsdeladefense-fabnum-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-apple_mail_16_0", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://sepia.fabnum.fr/", - "category": "fabnumdef", - "betaId": "sepia", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "scanProblem", - "ip": "sepia.fabnum.fr/", + "id": "clientsimulation-thunderbird_91_9", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'sepia.fabnum.fr' available" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { - "id": "scanTime", - "ip": "sepia.fabnum.fr/", + "id": "rating_spec", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://sepia.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (sepia.fabnum.fr)" - } + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "rating_doc", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "sepia", - "type": "startup", - "attributes": { - "name": "SEPIA", - "pitch": "Accélérer les interventions de la police du ciel", - "stats_url": "", - "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%20%0A24h%2F24%20et%207j%2F7%2C%20l%E2%80%99Arm%C3%A9e%20de%20l%E2%80%99air%20assure%20une%20mission%20de%20police%20du%20ciel%20en%20surveillant%20les%2011%20000%20a%C3%A9ronefs%20qui%20transitent%20quotidiennement%20par%20l%E2%80%99espace%20a%C3%A9rien%20fran%C3%A7ais.%20Sa%20mission%20%3A%20d%C3%A9tecter%2C%20identifier%20et%20si%20besoin%20intercepter%20tout%20intrus%2C%20afin%20de%20faire%20respecter%20la%20souverainet%C3%A9%20nationale%20et%20de%20d%C3%A9fendre%20notre%20territoire%20contre%20toute%20menace%20venant%20des%20airs.%0ALes%20avions%20de%20chasse%20fran%C3%A7ais%20sont%20positionn%C3%A9s%20dans%20diff%C3%A9rentes%20bases%20a%C3%A9riennes%20et%20sont%20pr%C3%AAts%20%C3%A0%20d%C3%A9coller%20%C3%A0%20chaque%20instant%20pour%20intervenir.%20Pour%20s%C3%A9lectionner%20quel%20chasseur%20doit%20intervenir%2C%20des%20experts%20%C3%A9valuent%20la%20situation%20en%20fonction%20des%20conditions%20m%C3%A9t%C3%A9orologiques%2C%20g%C3%A9ographiques%20et%20tactiques.%20Mais%20sachant%20qu%E2%80%99un%20avion%20peut%20traverser%20la%20France%20m%C3%A9tropolitaine%20en%2020%20minutes%20%C3%A0%20tr%C3%A8s%20grande%20vitesse%2C%20chaque%20seconde%20compte%20quand%20un%20%C3%A9v%C3%A9nement%20anormal%20est%20d%C3%A9tect%C3%A9.%0A%0A%23%23%20Probl%C3%A9matique%0AL%E2%80%99id%C3%A9e%20derri%C3%A8re%20SEPIA%20est%20de%20fournir%20aux%20experts%20du%20Centre%20national%20des%20op%C3%A9rations%20a%C3%A9riennes%20%28CNOA%29%20de%20Lyon%20Mont%20Verdun%20un%20outil%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision.%20SEPIA%20calcule%20en%20temps%20r%C3%A9el%20les%20diff%C3%A9rents%20sc%C3%A9narios%20d%E2%80%99intervention%20pour%20les%20a%C3%A9ronefs%20identifi%C3%A9s%2C%20en%20fonction%20de%20divers%20param%C3%A8tres%2C%20comme%20la%20m%C3%A9t%C3%A9o.%0ASEPIA%20utilise%20des%20donn%C3%A9es%20open%20source%20provenant%20par%20exemple%20d%E2%80%99OpenStreetMap%20ou%20de%20data.gouv.fr%20afin%20fournir%20des%20informations%20pertinentes%20et%20%C3%A0%20jour%20pour%20acc%C3%A9l%C3%A9rer%20le%20temps%20de%20r%C3%A9action%20de%20la%20police%20du%20ciel.%0A%0A%23%23%20Objectifs%20%20%20%0APour%20la%20s%C3%BBret%C3%A9%20a%C3%A9rienne%20%28CNOA%29%20%3A%0A%2A%20Corr%C3%A9ler%20trajectoire%20et%20point%20d%E2%80%99int%C3%A9r%C3%AAt%2C%0A%2A%20Aides%20%C3%A0%20la%20d%C3%A9cision%20pour%20optimiser%20l%E2%80%99interception%20d%E2%80%99a%C3%A9ronef%2C%0A%2A%20Syst%C3%A8me%20d%E2%80%99alerte%20multicrit%C3%A8re%20dont%20la%20p%C3%A9n%C3%A9tration%20de%20ZIT%20%28Zone%20interdite%20temporaire%29%2C%20le%20survol%20de%20ZIPVA%20%28Zones%20interdites%20%C3%A0%20la%20prise%20de%20vue%20a%C3%A9rienne%29%E2%80%A6%2C%0A%2A%20Module%20de%20visualisation%20et%20d%E2%80%99alerte%20int%C3%A9ressant%20renseignement%20d%E2%80%99int%C3%A9r%C3%AAt-Air.%0A%0APour%20la%20recherche%20et%20sauvetage%20en%20cas%20de%20crash%20%28RCC%29%20%3A%0A%2A%20D%C3%A9finir%20par%20le%20calcul%20le%20point%20d%E2%80%99impact%20d%E2%80%99un%20crash%20futur%2C%0A%2A%20Rejouer%20le%20vol%20des%20a%C3%A9ronefs.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28f%C3%A9vrier%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%202__%20%28mars%202019%29%20Atelier%20d%E2%80%99id%C3%A9ation%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%203__%20%28avril%202019%29%20d%C3%A9but%20des%20tests%20utilisateurs%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%204__%20%28mai%202019%29%20Rejointe%20du%20CDAD%20sur%20le%20projet%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%205__%20%28juin%202019%29%20R%C3%A9alisation%20du%20premier%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%206__%20%28dec%202020%29%20R%C3%A9alisation%20du%20deuxi%C3%A8me%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%207__%20%28janv%202020%29%20Nouvelle%20it%C3%A9ration%20avec%20le%20projet%20ALESIA%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%208__%20%28fev%202020%29%20Rejointe%20de%20l%E2%80%99ESIOC%20et%20de%20la%20DGA-MI%20sur%20le%20projet%20%28Bordeaux%29%20%20%20%0A%0A__%C3%89tape%209__%20%28dec%202020%29%20Mise%20en%20production%20de%20la%20troisi%C3%A8me%20version%20%28PMV%29%20%20%20%0A%0A%23%23%20R%C3%A9sultats%0A%5BUn%20site%5D%28https%3A%2F%2Fsepia.fabnum.fr%29%20utilis%C3%A9%20H24%20au%20sein%20de%20la%20salle%20conduite%20du%20CNOA.%20%20%20%0ASyst%C3%A8me%20d%E2%80%99information%20indispensable%20pour%20une%20optimisation%20de%20la%20mission%20de%20s%C3%BBret%C3%A9%20a%C3%A9rienne.%0A%0A%23%23%20en%20chiffres%0APlus%20de%205000%20a%C3%A9ronefs%20suivis%20en%20continu%20%20%20%20%20%0APlus%20de%20100%20alertes%20de%20concernant%20la%20PPS%20par%20mois%0A%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-01-25", - "end": "" - }, - { - "name": "construction", - "start": "2020-01-25", - "end": "" - }, - { - "name": "transfer", - "start": "2022-09-01", - "end": "" - }, - { - "name": "alumni", - "start": "2024-08-21", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [] + "id": "protocol_support_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://sepia.defense.gouv.fr/", - "category": "fabnumdef", - "betaId": "sepia", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "scanProblem", - "ip": "sepia.defense.gouv.fr/51.15.192.115", + "id": "protocol_support_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "FATAL", - "finding": "Can't connect to '51.15.192.115:443' Make sure a firewall is not between you and your scanning target!" + "severity": "INFO", + "finding": "30" }, { - "id": "scanTime", - "ip": "sepia.defense.gouv.fr/51.15.192.115", + "id": "key_exchange_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://sepia.defense.gouv.fr/": { - "status": 0, - "error": "Navigation timeout of 10000 ms exceeded (https://sepia.defense.gouv.fr/)" - } + "severity": "INFO", + "finding": "90" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "key_exchange_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "27" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "sepia", - "type": "startup", - "attributes": { - "name": "SEPIA", - "pitch": "Accélérer les interventions de la police du ciel", - "stats_url": "", - "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%20%0A24h%2F24%20et%207j%2F7%2C%20l%E2%80%99Arm%C3%A9e%20de%20l%E2%80%99air%20assure%20une%20mission%20de%20police%20du%20ciel%20en%20surveillant%20les%2011%20000%20a%C3%A9ronefs%20qui%20transitent%20quotidiennement%20par%20l%E2%80%99espace%20a%C3%A9rien%20fran%C3%A7ais.%20Sa%20mission%20%3A%20d%C3%A9tecter%2C%20identifier%20et%20si%20besoin%20intercepter%20tout%20intrus%2C%20afin%20de%20faire%20respecter%20la%20souverainet%C3%A9%20nationale%20et%20de%20d%C3%A9fendre%20notre%20territoire%20contre%20toute%20menace%20venant%20des%20airs.%0ALes%20avions%20de%20chasse%20fran%C3%A7ais%20sont%20positionn%C3%A9s%20dans%20diff%C3%A9rentes%20bases%20a%C3%A9riennes%20et%20sont%20pr%C3%AAts%20%C3%A0%20d%C3%A9coller%20%C3%A0%20chaque%20instant%20pour%20intervenir.%20Pour%20s%C3%A9lectionner%20quel%20chasseur%20doit%20intervenir%2C%20des%20experts%20%C3%A9valuent%20la%20situation%20en%20fonction%20des%20conditions%20m%C3%A9t%C3%A9orologiques%2C%20g%C3%A9ographiques%20et%20tactiques.%20Mais%20sachant%20qu%E2%80%99un%20avion%20peut%20traverser%20la%20France%20m%C3%A9tropolitaine%20en%2020%20minutes%20%C3%A0%20tr%C3%A8s%20grande%20vitesse%2C%20chaque%20seconde%20compte%20quand%20un%20%C3%A9v%C3%A9nement%20anormal%20est%20d%C3%A9tect%C3%A9.%0A%0A%23%23%20Probl%C3%A9matique%0AL%E2%80%99id%C3%A9e%20derri%C3%A8re%20SEPIA%20est%20de%20fournir%20aux%20experts%20du%20Centre%20national%20des%20op%C3%A9rations%20a%C3%A9riennes%20%28CNOA%29%20de%20Lyon%20Mont%20Verdun%20un%20outil%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision.%20SEPIA%20calcule%20en%20temps%20r%C3%A9el%20les%20diff%C3%A9rents%20sc%C3%A9narios%20d%E2%80%99intervention%20pour%20les%20a%C3%A9ronefs%20identifi%C3%A9s%2C%20en%20fonction%20de%20divers%20param%C3%A8tres%2C%20comme%20la%20m%C3%A9t%C3%A9o.%0ASEPIA%20utilise%20des%20donn%C3%A9es%20open%20source%20provenant%20par%20exemple%20d%E2%80%99OpenStreetMap%20ou%20de%20data.gouv.fr%20afin%20fournir%20des%20informations%20pertinentes%20et%20%C3%A0%20jour%20pour%20acc%C3%A9l%C3%A9rer%20le%20temps%20de%20r%C3%A9action%20de%20la%20police%20du%20ciel.%0A%0A%23%23%20Objectifs%20%20%20%0APour%20la%20s%C3%BBret%C3%A9%20a%C3%A9rienne%20%28CNOA%29%20%3A%0A%2A%20Corr%C3%A9ler%20trajectoire%20et%20point%20d%E2%80%99int%C3%A9r%C3%AAt%2C%0A%2A%20Aides%20%C3%A0%20la%20d%C3%A9cision%20pour%20optimiser%20l%E2%80%99interception%20d%E2%80%99a%C3%A9ronef%2C%0A%2A%20Syst%C3%A8me%20d%E2%80%99alerte%20multicrit%C3%A8re%20dont%20la%20p%C3%A9n%C3%A9tration%20de%20ZIT%20%28Zone%20interdite%20temporaire%29%2C%20le%20survol%20de%20ZIPVA%20%28Zones%20interdites%20%C3%A0%20la%20prise%20de%20vue%20a%C3%A9rienne%29%E2%80%A6%2C%0A%2A%20Module%20de%20visualisation%20et%20d%E2%80%99alerte%20int%C3%A9ressant%20renseignement%20d%E2%80%99int%C3%A9r%C3%AAt-Air.%0A%0APour%20la%20recherche%20et%20sauvetage%20en%20cas%20de%20crash%20%28RCC%29%20%3A%0A%2A%20D%C3%A9finir%20par%20le%20calcul%20le%20point%20d%E2%80%99impact%20d%E2%80%99un%20crash%20futur%2C%0A%2A%20Rejouer%20le%20vol%20des%20a%C3%A9ronefs.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28f%C3%A9vrier%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%202__%20%28mars%202019%29%20Atelier%20d%E2%80%99id%C3%A9ation%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%203__%20%28avril%202019%29%20d%C3%A9but%20des%20tests%20utilisateurs%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%204__%20%28mai%202019%29%20Rejointe%20du%20CDAD%20sur%20le%20projet%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%205__%20%28juin%202019%29%20R%C3%A9alisation%20du%20premier%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%206__%20%28dec%202020%29%20R%C3%A9alisation%20du%20deuxi%C3%A8me%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%207__%20%28janv%202020%29%20Nouvelle%20it%C3%A9ration%20avec%20le%20projet%20ALESIA%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%208__%20%28fev%202020%29%20Rejointe%20de%20l%E2%80%99ESIOC%20et%20de%20la%20DGA-MI%20sur%20le%20projet%20%28Bordeaux%29%20%20%20%0A%0A__%C3%89tape%209__%20%28dec%202020%29%20Mise%20en%20production%20de%20la%20troisi%C3%A8me%20version%20%28PMV%29%20%20%20%0A%0A%23%23%20R%C3%A9sultats%0A%5BUn%20site%5D%28https%3A%2F%2Fsepia.fabnum.fr%29%20utilis%C3%A9%20H24%20au%20sein%20de%20la%20salle%20conduite%20du%20CNOA.%20%20%20%0ASyst%C3%A8me%20d%E2%80%99information%20indispensable%20pour%20une%20optimisation%20de%20la%20mission%20de%20s%C3%BBret%C3%A9%20a%C3%A9rienne.%0A%0A%23%23%20en%20chiffres%0APlus%20de%205000%20a%C3%A9ronefs%20suivis%20en%20continu%20%20%20%20%20%0APlus%20de%20100%20alertes%20de%20concernant%20la%20PPS%20par%20mois%0A%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-01-25", - "end": "" - }, - { - "name": "construction", - "start": "2020-01-25", - "end": "" - }, - { - "name": "transfer", - "start": "2022-09-01", - "end": "" - }, - { - "name": "alumni", - "start": "2024-08-21", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [] + "id": "cipher_strength_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://talents.ssi.gouv.fr/", - "category": "fabnum", - "http": { - "url": "https://talents.ssi.gouv.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 08:22:03 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 08:22:02 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "2dbb4033-fd12-48b5-bab3-fda69f675931, 2dbb4033-fd12-48b5-bab3-fda69f675931", - "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"2c1bf95b5e5cc56e8f9e019244a84635\"", - "link": "; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=Vf%2FDQVyUHCZ43M8RZ7rewxOtOv2mB2osCjT9ldnCc8ChhqaagUDyEFrOwCXIHagB9GckyMsyGGr9gYmgmg1hi6sU%2BaXGk9V9IrpQJg%2BZXD4%2BEk59whOt2%2FMvpTVcJrIsKIMxaiVK%2B6Xc2CavdBw6O66VBb0dDbTYpGKnrm3l01o7EzQdBdX2gRmutJOi6y1K5f4YnarGd6%2BWJtEcTRIrpwuAutq3XkLReF1J7fo%2FQ0xOVNZtTGdKouCI%2B1a2S1UJZRIODKWIp%2BdSvfX%2Fr5hOEb8pdtZJGsBKsy%2BuupGta%2F%2Fo%2Fw%3D%3D--G0kRcB5%2F0A%2Bkzu9Z--kM1vMf54k2Y0xhdPho2dEQ%3D%3D; path=/; secure; httponly; SameSite=Lax", - "strict-transport-security": "max-age=31556952; preload", - "vary": "Accept", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-runtime": "0.065041", - "x-xss-protection": "0" + { + "id": "cipher_strength_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "36" }, - "scan_id": 57055282, - "score": 75, - "start_time": "Sun, 20 Oct 2024 08:22:01 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_civilsdeladefense_session": { - "domain": "talents.ssi.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://talents.ssi.gouv.fr/", - "redirects": true, - "route": [ - "http://talents.ssi.gouv.fr/", - "https://talents.ssi.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31556952; preload", - "includeSubDomains": false, - "max-age": 31556952, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "d12m", - "url": "https://talents.ssi.gouv.fr/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T20:39:52Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T11:16:03Z", - "next_check_at": "2024-11-24T11:17:03Z", - "created_at": "2024-01-15T13:56:21Z", - "mute_until": null, - "favicon_url": "https://talents.ssi.gouv.fr/assets/favicon-32x32-bb8d4815799252fdfab48b5d8bfd016023a7f90044b3371e4ac3cd4cee350aaf.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T11:15:06Z", - "expires_at": "2025-01-19T13:55:39Z", - "valid": true, - "error": null + { + "id": "final_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "93" }, - "metrics": { - "apdex": 0.96, - "timings": { - "redirect": 0, - "namelookup": 20, - "connection": 143, - "handshake": 147, - "response": 235, - "total": 545 - } + { + "id": "overall_grade", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "E" - }, - "nmap": { - "host": "talents.ssi.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273528,7 +266600,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273536,7 +266608,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273544,7 +266616,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273552,7 +266624,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -273560,7 +266632,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -273568,497 +266640,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "id": "cipher-tls1_2_xc02f", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2024-10-21 13:55" + "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "2025-01-19 13:55" + "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "issue=certigna.fr, issue=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1732446718" + "finding": "1733049735" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -274066,7 +267152,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -274075,7 +267161,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -274084,16 +267170,16 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -274102,7 +267188,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -274110,16 +267196,16 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -274128,7 +267214,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -274137,7 +267223,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -274146,14 +267232,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -274162,7 +267248,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -274171,7 +267257,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -274180,16 +267266,16 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -274198,16 +267284,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -274216,7 +267302,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -274225,7 +267311,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -274234,7 +267320,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -274243,392 +267329,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274636,7 +267715,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274644,7 +267723,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274652,7 +267731,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274660,7 +267739,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -274668,7 +267747,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -274676,497 +267755,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "id": "cipher-tls1_2_xc02f", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2024-10-21 13:55" + "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2025-01-19 13:55" + "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "issue=certigna.fr, issue=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732446776" + "finding": "1733049789" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -275174,7 +268267,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -275183,7 +268276,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -275192,16 +268285,16 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -275210,7 +268303,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -275218,16 +268311,16 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -275236,7 +268329,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -275245,7 +268338,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -275254,14 +268347,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -275270,7 +268363,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -275279,7 +268372,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -275288,16 +268381,16 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -275306,16 +268399,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -275324,7 +268417,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -275333,7 +268426,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -275342,7 +268435,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -275351,392 +268444,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275744,7 +268830,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275752,7 +268838,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275760,7 +268846,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275768,7 +268854,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -275776,7 +268862,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -275784,497 +268870,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "id": "cipher-tls1_2_xc02f", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "2024-10-21 13:55" + "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "2025-01-19 13:55" + "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "issue=certigna.fr, issue=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732446833" + "finding": "1733049844" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -276282,7 +269382,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -276291,7 +269391,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -276300,16 +269400,16 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -276318,7 +269418,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -276326,16 +269426,16 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -276344,7 +269444,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -276353,7 +269453,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -276362,14 +269462,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -276378,7 +269478,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -276387,7 +269487,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -276396,16 +269496,16 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -276414,16 +269514,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -276432,7 +269532,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -276441,7 +269541,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -276450,7 +269550,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -276459,392 +269559,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "www.monstagedetroisieme.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -276852,7 +269945,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -276860,7 +269953,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -276868,7 +269961,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -276876,7 +269969,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -276884,7 +269977,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -276892,497 +269985,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "id": "cipher-tls1_2_xc02f", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "2024-10-21 13:55" + "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "2025-01-19 13:55" + "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "issue=certigna.fr, issue=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732446890" + "finding": "1733049898" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -277390,7 +270497,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -277399,7 +270506,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -277408,16 +270515,16 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -277426,7 +270533,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -277434,16 +270541,16 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -277452,7 +270559,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -277461,7 +270568,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -277470,14 +270577,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -277486,7 +270593,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -277495,7 +270602,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -277504,16 +270611,16 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -277522,16 +270629,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -277540,7 +270647,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -277549,7 +270656,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -277558,7 +270665,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -277567,1683 +270674,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "talents.ssi.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "236" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/operator_logos/893/049/fa-/original/20180613_logo_anssi_m.png" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/image_backgrounds/893/049/fa-/original/20210315_np_anssi_visuel_plateforme_rh_1200x800_v1a.jpg" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/testimony_logos/893/049/fa-/original/Ga%C3%ABlle.PNG" - } - ], - "cookies": [ - { - "name": "_civilsdeladefense_session", - "value": "yzy0TjZ2eDy8PvpoqvaYqAIeuqBhqn9SHqke3FUjw5Om774kaXAnZBIj87u%2ByPxczO0p9ZvKq7VBCsA%2BKuQC8%2B8oHFSQTJi2qyc0HWIeoZp2w6ry0xZjFmOLeKQeHwCAJlOWyMe1ErnO0pOunC5tRc3nEoJTvPxJrfiEqa%2FFuYoEiVz0%2FuxjU4QSuMfYS6MJ1w8CFQOGkV9Y7BwkdqvCZPKpxj9b6z0w2gMvESH5pnsj5G%2BrPcTXQxU4Z2BSw11sojwEb4ynnBNmsDJEgqqx20TZGhf%2Fbmt1X3jqk%2F099eivEg%3D%3D--D7WbRD2BE1V5dLnz--w%2F9e5mvtMRuK7Esht%2BOsSQ%3D%3D", - "domain": "talents.ssi.gouv.fr", - "path": "/", - "expires": -1, - "size": 402, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 11:10:39 GMT", - "etag": "W/\"2a6483faff6543e0c4ceff87c50ea855\"", - "link": "; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=yzy0TjZ2eDy8PvpoqvaYqAIeuqBhqn9SHqke3FUjw5Om774kaXAnZBIj87u%2ByPxczO0p9ZvKq7VBCsA%2BKuQC8%2B8oHFSQTJi2qyc0HWIeoZp2w6ry0xZjFmOLeKQeHwCAJlOWyMe1ErnO0pOunC5tRc3nEoJTvPxJrfiEqa%2FFuYoEiVz0%2FuxjU4QSuMfYS6MJ1w8CFQOGkV9Y7BwkdqvCZPKpxj9b6z0w2gMvESH5pnsj5G%2BrPcTXQxU4Z2BSw11sojwEb4ynnBNmsDJEgqqx20TZGhf%2Fbmt1X3jqk%2F099eivEg%3D%3D--D7WbRD2BE1V5dLnz--w%2F9e5mvtMRuK7Esht%2BOsSQ%3D%3D; path=/; secure; httponly; SameSite=Lax", - "strict-transport-security": "max-age=31556952; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "f8e13afc-e753-4178-89fb-3426298b8d6c\nf8e13afc-e753-4178-89fb-3426298b8d6c", - "x-runtime": "0.045557", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "talents.ssi.gouv.fr", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "oos.cloudgouv-eu-west-1.outscale.com", - "ip": "148.253.96.5", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://talents.ssi.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "algolia", - "name": "Algolia", - "description": "Algolia offers a hosted web search product delivering real-time results.", - "confidence": 100, - "version": null, - "icon": "Algolia.svg", - "website": "https://www.algolia.com", - "cpe": null, - "categories": [ - { - "id": 29, - "slug": "search-engines", - "name": "Search engines" - } - ], - "rootPath": true - }, - { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", - "confidence": 50, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", - "confidence": 50, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "stimulus", - "name": "Stimulus", - "description": "A modest JavaScript framework for the HTML you already have.", - "confidence": 100, - "version": null, - "icon": "Stimulus.svg", - "website": "https://stimulusjs.org/", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "turbo", - "name": "Turbo", - "description": "Turbo is a JavaScript framework for building fast web applications.", - "confidence": 100, - "version": null, - "icon": "Turbo.svg", - "website": "https://turbo.hotwired.dev/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "font-awesome", - "name": "Font Awesome", - "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", - "confidence": 100, - "version": null, - "icon": "Font Awesome.svg", - "website": "https://fontawesome.com/", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://talents.ssi.gouv.fr/", - "finalUrl": "https://talents.ssi.gouv.fr/", - "fetchTime": "2024-11-24T11:10:15.839Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.8 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.83 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.77 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6409, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1959, - "firstMeaningfulPaint": 3460, - "largestContentfulPaint": 4154, - "interactive": 6409, - "speedIndex": 2578, - "totalBlockingTime": 27, - "maxPotentialFID": 92, - "cumulativeLayoutShift": 0.0009195963541666667, - "cumulativeLayoutShiftMainFrame": 0.0009195963541666667, - "totalCumulativeLayoutShift": 0.0009195963541666667, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 369995241, - "observedNavigationStart": 0, - "observedNavigationStartTs": 369995241, - "observedFirstPaint": 877, - "observedFirstPaintTs": 370872562, - "observedFirstContentfulPaint": 877, - "observedFirstContentfulPaintTs": 370872562, - "observedFirstContentfulPaintAllFrames": 877, - "observedFirstContentfulPaintAllFramesTs": 370872562, - "observedFirstMeaningfulPaint": 985, - "observedFirstMeaningfulPaintTs": 370980517, - "observedLargestContentfulPaint": 985, - "observedLargestContentfulPaintTs": 370980517, - "observedLargestContentfulPaintAllFrames": 985, - "observedLargestContentfulPaintAllFramesTs": 370980517, - "observedTraceEnd": 3868, - "observedTraceEndTs": 373863502, - "observedLoad": 1452, - "observedLoadTs": 371447622, - "observedDomContentLoaded": 928, - "observedDomContentLoadedTs": 370923507, - "observedCumulativeLayoutShift": 0.0009195963541666667, - "observedCumulativeLayoutShiftMainFrame": 0.0009195963541666667, - "observedTotalCumulativeLayoutShift": 0.0009195963541666667, - "observedFirstVisualChange": 889, - "observedFirstVisualChangeTs": 370884241, - "observedLastVisualChange": 1289, - "observedLastVisualChangeTs": 371284241, - "observedSpeedIndex": 1111, - "observedSpeedIndexTs": 371105822 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 14, - "numScripts": 1, - "numStylesheets": 1, - "numFonts": 5, - "numTasks": 822, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 101.935, - "throughput": 11271680.087574212, - "maxRtt": 102.259, - "maxServerLatency": 7.1889999999999645, - "totalByteWeight": 1364765, - "totalTaskTime": 146.78499999999997, - "mainDocumentTransferSize": 5879 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 3, - "missingWords": [ - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://talents.ssi.gouv.fr/pages/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://talents.ssi.gouv.fr/pages/politique-de-confidentialite-0c7787af-36a3-4e13-8dbb-233c975ee4de" - } - ], - "betagouv": null, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://talents.ssi.gouv.fr/", - "size": 1397.924, - "nodes": 270, - "requests": 11, - "grade": "B", - "score": 78, - "ges": 1.44, - "water": 2.16, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 11:07:19.120347", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 0.96, - "apdexGrade": "E", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-19T13:55:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.8, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.83, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.77, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://metiis.fabnum.fr/", - "category": "fabnumdef", - "betaId": "metiis", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "scanProblem", - "ip": "metiis.fabnum.fr/", - "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'metiis.fabnum.fr' available" - }, - { - "id": "scanTime", - "ip": "metiis.fabnum.fr/", - "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://metiis.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (metiis.fabnum.fr)" - } - }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-thunderbird_91_9", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "metiis", - "type": "startup", - "attributes": { - "name": "METIIS", - "pitch": "Révéler le potentiel de la réserve", - "stats_url": "", - "link": "https://metiis.fabnum.fr", - "contact": "metiis@fabnum.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0ALe%20service%20num%C3%A9rique%20METIIS%2C%20port%C3%A9%20par%20le%20commandement%20pour%20le%20territoire%20national%2C%20a%20pour%20vocation%20de%20transformer%20le%20potentiel%20de%20la%20r%C3%A9serve%20en%20force%20pour%20l%E2%80%99arm%C3%A9e%20de%20terre.%20L%27arm%C3%A9e%20de%20terre%20emploie%20pr%C3%A8s%20de%2025%20000%20r%C3%A9servistes%2C%20r%C3%A9partis%20au%20sein%20d%27une%20centaine%20d%27unit%C3%A9s%20sur%20tout%20le%20territoire%20national.%20Chaque%20jour%2C%202%20793%20r%C3%A9servistes%20de%20l%27arm%C3%A9e%20de%20terre%20sont%20employ%C3%A9s%2C%20dont%20650%20d%27entre%20eux%20pour%20des%20missions%20de%20s%C3%A9curit%C3%A9.%20Employ%C3%A9s%20en%20moyenne%2042%20jours%20par%20an%2C%20les%20r%C3%A9servistes%20doivent%20concilier%20leur%20vie%20personnelle%20et%20professionnelle%20avec%20leur%20engagement%20militaire.%20La%20disponibilit%C3%A9%20du%20r%C3%A9serviste%20peut%20%C3%AAtre%20de%20ce%20fait%20limit%C3%A9e%20%3A%20l%27organisation%20d%27exercices%20ou%20de%20missions%20op%C3%A9rationnelles%20r%C3%A9unissant%20plusieurs%20r%C3%A9servistes%20rel%C3%A8ve%20parfois%20du%20d%C3%A9fi.%0A%0APar%20ailleurs%2C%20les%20r%C3%A9servistes%2C%20vivier%20repr%C3%A9sentatif%20de%20la%20population%20fran%C3%A7aise%2C%20disposent%20de%20comp%C3%A9tences%20diversifi%C3%A9es%2C%20qui%2C%20lorsqu%27elle%20ne%20sont%20pas%20imm%C3%A9diatement%20li%C3%A9es%20%C3%A0%20leur%20mission%2C%20sont%20parfois%20m%C3%A9connues%20par%20l%27institution%20militaire.%0A%0AL%E2%80%99objectif%20est%20de%20produire%20un%20produit%20minimum%20viable%20%28PMV%29%20pour%20juin%202020.%20%0A%0A%23%23%20Probl%C3%A9matique%0AD%C3%A9velopp%C3%A9%20en%20mode%20agile%2C%20ce%20service%20accessible%20sur%20internet%20a%20pour%20objectif%20de%20maximiser%20l%E2%80%99appariement%20entre%20la%20disponibilit%C3%A9%20des%20r%C3%A9servistes%20et%20les%20besoins%20des%20employeurs.%20L%E2%80%99%C3%A9quipe%20projet%20a%20%C3%A9troitement%20collabor%C3%A9%20dans%20toutes%20les%20phases%20du%20projet%20avec%20les%20r%C3%A9servistes%20de%20la%2027%C3%A8me%20Brigade%20d%E2%80%99Infanterie%20de%20Montagne%20%2827%C3%A8me%20BIM%29%20situ%C3%A9e%20%C3%A0%20Grenoble.%0AVecteur%20d%E2%80%99information%20entre%20les%20r%C3%A9servistes%2C%20souvent%20hors%20des%20murs%20des%20emprises%20de%20l%E2%80%99arm%C3%A9e%20de%20terre%2C%20et%20leurs%20employeurs%2C%20METIIS%20a%20%C3%A9galement%20pour%20objectif%20de%20mieux%20s%C3%A9curiser%20les%20%C3%A9changes%20ayant%20lieu%20sur%20des%20r%C3%A9seaux%20non%20prot%C3%A9g%C3%A9s.%0A%0A%23%23%20Objectifs%0APour%20les%20employeurs%20%28commandement%29%20%3A%0A%2A%20Cr%C3%A9er%20des%20activit%C3%A9s%2C%20%0A%2A%20Visualiser%20les%20disponibilit%C3%A9s%20des%20r%C3%A9servistes%2C%0A%2A%20Suivre%20l%E2%80%99%C3%A9volution%20de%20l%E2%80%99effectif%20disponible%2C%0A%0APour%20les%20employ%C3%A9s%20%28tous%20les%20r%C3%A9servistes%20volontaires%29%20%3A%0A%2A%20Renseigner%20leurs%20disponibilit%C3%A9s%2C%0A%2A%20Visualiser%20les%20activit%C3%A9s%20%C3%A0%20venir%2C%0A%2A%20Visualiser%20le%20d%C3%A9tail%20des%20activit%C3%A9s%2C%0A%2A%20Candidater%20%C3%A0%20des%20activit%C3%A9s%2C%0A%2A%20Suivre%20l%E2%80%99avanc%C3%A9e%20de%20leurs%20inscriptions%20%C3%A0%20des%20activit%C3%A9s%2C%0A%2A%20Renseigner%20leurs%20informations%20personnelles.%0A%0A%0A%23%23%20Chronologie%0A__Etape%201__%20%28d%C3%A9cembre%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Grenoble%29%0A%0A__Etape%202__%20%28janvier%202020%29%20Atelier%20d%E2%80%99id%C3%A9ation%2Fr%C3%A9alisation%20des%20wireframes%20%28Bourges%29%0A%0A__Etape%203__%20%28janvier%202020%29%20R%C3%A9alisation%20des%20tests%20utilisateurs%20%28Grenoble%29%0A%0A__Etape%204__%20%28f%C3%A9vrier%202020%29%20Validation%20du%20p%C3%A9rim%C3%A8tre%2Fr%C3%A9alisation%20du%20premier%20livrable%20%28Paris%2C%20Bourges%29%0A%0A__Etape%205__%20%28mars%2Favril%202020%29%20R%C3%A9alisation%20des%20tests%20utilisateurs%20%28%C3%A0%20distance%29%0A%0A__Etape%206__%20%28juin%202020%29%20Mise%20en%20production%20de%20la%20version%20BETA%20%0A%0A__Etape%207__%20%28juin%202020%29%20Mise%20en%20production%20de%20la%20premi%C3%A8re%20version%20%28PMV%29%0A%0A__Etape%208__%20%28novembre%202020%29%20Extension%20%C3%A0%20de%20nouvelles%20Brigade%20et%20recueil%20des%20nouveaux%20besoins%0A%0ASuite%20%C3%A0%20la%20bonne%20adh%C3%A9sion%20des%20r%C3%A9servistes%20%C3%A0%20l%E2%80%99outil%2C%20l%E2%80%99objectif%20est%20d%C3%A9sormais%20de%20r%C3%A9aliser%20un%20d%C3%A9ploiement%20de%20celui-ci%20%C3%A0%20d%E2%80%99autres%20brigades%20puis%20au%20national%20avec%20l%E2%80%99ajout%20de%20certaines%20fonctionnalit%C3%A9s.%0A%0A%23%23%20R%C3%A9sultat%0AUn%20%5Bsite%20internet%5D%28https%3A%2F%2Fmetiis.fabnum.fr%2Fconnexion%29%0A%0A%23%23%20En%20chiffre%0A2%20brigades%20%3A%2027BIM%20%28juin%202020%29%2C%209BIMa%20%28novembre%202020%29%0A%0A%2B750%20utilisateurs%20actifs%0A60%25%20de%20taux%20d%27adoption%20%28fin%20novembre%202020%29%0A%2B400%20activit%C3%A9s%20cr%C3%A9%C3%A9es%20et%20g%C3%A9r%C3%A9es%0A%0A%0A%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-10-01", - "end": "2019-11-30" - }, - { - "name": "construction", - "start": "2019-11-30", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [] + "id": "rating_spec", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://stargate.igloo.fabnum.fr/", - "category": "fabnumdef", - "betaId": "stargate", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "scanProblem", - "ip": "stargate.igloo.fabnum.fr/", + "id": "rating_doc", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'stargate.igloo.fabnum.fr' available" + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "id": "scanTime", - "ip": "stargate.igloo.fabnum.fr/", + "id": "protocol_support_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://stargate.igloo.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (stargate.igloo.fabnum.fr)" - } + "severity": "INFO", + "finding": "100" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "protocol_support_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "30" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "stargate", - "type": "startup", - "attributes": { - "name": "STARGATE", - "pitch": "Repenser l'accès aux bases de défense", - "stats_url": "", - "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0AL%E2%80%99acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20du%20territoire%20national%2C%20que%20ce%20soit%20pour%20des%20militaires%20ou%20des%20civils%2C%20fait%20l%E2%80%99objet%20d%E2%80%99une%20attention%20particuli%C3%A8re.%20En%20effet%2C%20pour%20des%20raisons%20de%20s%C3%A9curit%C3%A9%2C%20leur%20acc%C3%A8s%20est%20r%C3%A9glement%C3%A9%20et%20les%20personnes%20souhaitant%20y%20entrer%20doivent%20fournir%20un%20certain%20nombre%20d%E2%80%99informations.%20%20%0ALa%20gestion%20des%20acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20r%C3%A9pond%20aujourd%E2%80%99hui%20%C3%A0%20un%20processus%20long%20et%20chronophage%2C%20o%C3%B9%20de%20nombreux%20acteurs%20interviennent%20en%20travaillant%20sur%20des%20syst%C3%A8mes%20d%E2%80%99informations%20diff%C3%A9rents.%0AL%E2%80%99enjeu%20est%20d%E2%80%99am%C3%A9liorer%20l%E2%80%99acc%C3%A8s%20%C3%A0%20un%20site%20prot%C3%A9g%C3%A9%2C%20dont%20les%20visites%20de%20personnes%20ext%C3%A9rieures%20sont%20n%C3%A9cessaires%20%C3%A0%20son%20fonctionnement.%0A%0A%23%23%20Probl%C3%A9matique%0A%0ALe%20projet%20Stargate%20vise%20ainsi%20%C3%A0%20r%C3%A9unir%20dans%20un%20m%C3%AAme%20logiciel%20l%E2%80%99ensemble%20des%20acteurs%20de%20ce%20processus%20afin%20de%20permettre%20une%20homog%C3%A9n%C3%A9isation%20des%20proc%C3%A9dures%20et%20une%20fluidit%C3%A9%20dans%20la%20transmission%20des%20informations.%0ALes%20objectifs%20vis%C3%A9s%20sont%20clairs%20%3A%20gain%20de%20temps%2C%20meilleure%20efficacit%C3%A9%20dans%20les%20traitements%20et%20renforcement%20de%20la%20s%C3%A9curit%C3%A9%20des%20acc%C3%A8s.%0ALa%20base%20navale%20de%20Cherbourg%20est%20la%20base%20pilote%20pour%20ce%20projet%20pour%20une%20mise%20en%20production%20pr%C3%A9vue%20pour%20l%E2%80%99%C3%A9t%C3%A9%202020.%0A%0A%23%23%20Objectifs%20%20%20%0A%2A%20Eviter%20le%20retraitement%20d%E2%80%99informations%0A%2A%20Am%C3%A9liorer%20la%20transmission%20des%20informations%20entre%20les%20acteurs%0A%2A%20Am%C3%A9liorer%20le%20temps%20de%20d%C3%A9livrance%20de%20badge%20d%E2%80%99acc%C3%A8s%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28janvier%202020%29%20D%C3%A9finition%20des%20acteurs.%20Parcours%20utilisateur%20pour%20la%20cr%C3%A9ation%20d%E2%80%99une%20demande%20de%20visite%20et%20circuit%20de%20validation%20associ%C3%A9.%20%C3%89tude%20du%20syst%C3%A8me%20existant%20et%20recherche%20des%20irritants%20associ%C3%A9s.%20%20%20%0A%0A__%C3%89tape%202__%20%28f%C3%A9vrier%202020%29%20%20Prototype%20cr%C3%A9ation%20d%E2%80%99une%20demande%20de%20visite%2C%20test%20utilisateur%2C%20d%C3%A9finition%20de%20la%20vision%20du%20projet%20et%20approfondissement%20des%20besoins%20du%20futur%20syst%C3%A8me.%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20des%20tests%2C%20roadmap%2C%20wireframe%20%20%20%0A%0A__%C3%89tape%203__%20%28ao%C3%BBt%202020%29%20Version%20alpha%20du%20SI.%20%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20test%20utilisateur%20%20%20%0A%0A__%C3%89tape%204__%20%28novembre%202020%29%20Etude%20des%20besoins%20des%20bases%20a%C3%A9riennes%20%28Creil%20%26%20Istres%29%2C%20pr%C3%A9sentation%20du%20SI%20et%20test%20utilisateur.%20%20%20%0ALivrable%20%3A%20Etude%20de%20faisabilit%C3%A9%20pour%20l%E2%80%99ouverture%20du%20SI%20aux%20bases%20a%C3%A9riennes%20%20%20%20%0A%0A__%C3%89tape%205__%20%28d%C3%A9cembre%202020%29%20Test%20utilisateur%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20des%20test%20utilisateurs%20%20%20%20%0A%0A__%C3%89tape%206__%20%28janvier%202021%29%20Livraison%20version%20beta%20du%20SI%20%20%20%20%0A%0A%0A%23%23%20R%C3%A9sultats%0AUne%20interface%20de%20gestion%20pour%20les%20acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20%0A%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2019-10-01", - "end": "2019-11-30" - }, - { - "name": "construction", - "start": "2019-11-30", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [] + "id": "key_exchange_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://chatbot.fabnum.fr/", - "category": "fabnumdef", - "betaId": "usine-chatbots", - "http": { - "url": "https://chatbot.fabnum.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 08:50:28 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "no-cache", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 08:50:27 GMT", - "ETag": "W/\"65d5ce38-abc\"", - "Expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "Last-Modified": "Wed, 21 Feb 2024 10:19:36 GMT", - "Server": "nginx", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-XSS-Protection": "1; mode=block" + { + "id": "key_exchange_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "scan_id": 57055891, - "score": 80, - "start_time": "Sun, 20 Oct 2024 08:50:21 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "default-src": [ - "'self'" - ], - "frame-src": [ - "dev.chatbot.fabnum.fr" - ], - "img-src": [ - "data:", - "*" - ], - "script-src": [ - "'unsafe-inline'", - "dev.chatbot.fabnum.fr", - "'self'" - ], - "script-src-elem": [ - "'unsafe-inline'", - "dev.chatbot.fabnum.fr", - "stats.data.gouv.fr", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": true, - "route": [], - "status_code": null - }, - "pass": true, - "result": "redirection-not-needed-no-http", - "score_description": "Not able to connect via HTTP, so no redirection necessary", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "u9u4", - "url": "https://chatbot.fabnum.fr/", - "alias": null, - "last_status": 200, - "uptime": 99.982, - "down": false, - "down_since": null, - "up_since": "2024-11-23T12:06:51Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T11:46:46Z", - "next_check_at": "2024-11-24T11:47:46Z", - "created_at": "2024-01-15T13:37:42Z", - "mute_until": null, - "favicon_url": "https://chatbot.fabnum.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T11:41:46Z", - "expires_at": "2025-01-08T17:52:38Z", - "valid": true, - "error": null + { + "id": "cipher_strength_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 116, - "connection": 134, - "handshake": 139, - "response": 136, - "total": 526 - } + { + "id": "cipher_strength_score_weighted", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "chatbot.fabnum.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "7.9p1 Debian 10+deb10u4", - "vulnerabilities": [ - { - "cvss": "9.8", - "id": "CVE-2023-38408", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.8", - "id": "CVE-2020-15778", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.8", - "id": "CVE-2019-16905", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.5", - "id": "SSV:92579", - "type": "seebug", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "7.0", - "id": "CVE-2021-41617", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "6.8", - "id": "EDB-ID:46516", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "cvss": "6.8", - "id": "EDB-ID:46193", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "cvss": "6.8", - "id": "CVE-2019-6110", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "6.8", - "id": "CVE-2019-6109", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "6.8", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.8", - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.5", - "id": "CVE-2023-51385", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2023-48795", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2020-14145", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2019-6111", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.8", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "id": "1337DAY-ID-32328", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "id": "1337DAY-ID-32009", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "5.3", - "id": "CVE-2018-20685", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.3", - "id": "CVE-2016-20012", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:151227", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "is_exploit": "true" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https-alt", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "chatbot.fabnum.fr/51.38.43.26", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -279251,7 +271060,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -279259,7 +271068,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -279267,7 +271076,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -279275,7 +271084,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -279283,491 +271092,519 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "id": "cipher-tls1_2_xc02f", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "valid for 86400 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "2024-10-10 17:52" + "finding": "2024-10-14 01:23" }, { "id": "cert_notAfter", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "2025-01-08 17:52" + "finding": "2025-01-12 01:23" }, { "id": "cert_extlifeSpan", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732448781" + "finding": "1733049953" }, { "id": "HSTS_time", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "Content-Security-Policy", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "id": "X-XSS-Protection", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr" + "severity": "INFO", + "finding": "0" }, { - "id": "X-XSS-Protection", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "id": "Referrer-Policy", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -279775,7 +271612,7 @@ }, { "id": "heartbleed", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -279784,7 +271621,7 @@ }, { "id": "CCS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -279793,25 +271630,25 @@ }, { "id": "ticketbleed", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -279819,16 +271656,16 @@ }, { "id": "secure_client_renego", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -279837,7 +271674,7 @@ }, { "id": "BREACH", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -279846,7 +271683,7 @@ }, { "id": "POODLE_SSL", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -279855,14 +271692,14 @@ }, { "id": "fallback_SCSV", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -279871,7 +271708,7 @@ }, { "id": "FREAK", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -279880,7 +271717,7 @@ }, { "id": "DROWN", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -279889,34 +271726,34 @@ }, { "id": "DROWN_hint", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DD0E6A8FCF0F6EAB77550A0D6E2731E5EA29CC4FF37133B29E57310C3C97557B" - }, - { - "id": "LOGJAM-common_primes", - "ip": "chatbot.fabnum.fr/51.38.43.26", - "port": "443", - "severity": "INFO", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A263BCAFBE7E517233BC67148EB927182EA4CD60E7F88CC7DE7B9E26723FB2FE" }, { "id": "LOGJAM", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "not vulnerable, no DH EXPORT ciphers," }, + { + "id": "LOGJAM-common_primes", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, { "id": "BEAST", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -279925,16 +271762,16 @@ }, { "id": "LUCKY13", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -279943,7 +271780,7 @@ }, { "id": "RC4", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -279952,355 +271789,357 @@ }, { "id": "clientsimulation-android_60", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "chatbot.fabnum.fr/51.38.43.26", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "74" + "finding": "494" } ], "thirdparties": { - "trackers": [], - "cookies": [ + "trackers": [ { - "name": "_pk_ses.130.2535", - "value": "1", - "domain": "chatbot.fabnum.fr", - "path": "/", - "expires": 1732450506, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } }, { - "name": "_pk_id.130.2535", - "value": "cb4315fa9c7c1332.1732448707.", - "domain": "chatbot.fabnum.fr", + "type": "unknown", + "url": "https://betagouv-matomo.osc-secnum-fr1.scalingo.io/piwik.js" + }, + { + "type": "unknown", + "url": "https://betagouv-matomo.osc-secnum-fr1.scalingo.io/js/container_pi6b6eL6.js" + } + ], + "cookies": [ + { + "name": "_monstage_session", + "value": "DesGuCkSL0e888n6PHm0KMopce%2BQZKSCBKpj0YAbau%2F9%2Bywr4Ee5RMexh7bRWUVxl%2B2JmLCpfkTefo5YdSOk5NApSPGjjq7wCRerSuUWEsz7p3zsQPWfk1aJOiqXf%2F8dBgy68yuWCrrC2tbJfj5B8RXzJTC4GuSUcMdDSCLw7iJYOlcB%2F0MU1SUx%2B4AdOKkxzXK00Y8omzuMwXxZKqSosHAwX%2BGAgZPcfHD4rPA64RX6UyW7TXr4AMG5Ngzef8RiPj3wD%2FuLtxAVgJHA%2F%2BBzmIqe1oH7w%2F5Grg%3D%3D--KxQOiKnZJQARcp67--WMS7wkItIbGnJwEPFZkMPg%3D%3D", + "domain": "www.monstagedetroisieme.fr", "path": "/", - "expires": 1766403907, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, + "expires": -1, + "size": 385, + "httpOnly": true, + "secure": true, + "session": true, "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", @@ -280308,25 +272147,31 @@ } ], "headers": { - "cache-control": "no-cache", + "cache-control": "max-age=0, private, must-revalidate", + "connection": "keep-alive", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 11:45:06 GMT", - "etag": "W/\"65d5ce38-abc\"", - "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Wed, 21 Feb 2024 10:19:36 GMT", - "server": "nginx", - "strict-transport-security": "max-age=31536000; includeSubDomains", + "content-length": "5979", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 10:37:23 GMT", + "etag": "W/\"0da3b48d9479a1312e694d2d916f69e5\"", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_monstage_session=DesGuCkSL0e888n6PHm0KMopce%2BQZKSCBKpj0YAbau%2F9%2Bywr4Ee5RMexh7bRWUVxl%2B2JmLCpfkTefo5YdSOk5NApSPGjjq7wCRerSuUWEsz7p3zsQPWfk1aJOiqXf%2F8dBgy68yuWCrrC2tbJfj5B8RXzJTC4GuSUcMdDSCLw7iJYOlcB%2F0MU1SUx%2B4AdOKkxzXK00Y8omzuMwXxZKqSosHAwX%2BGAgZPcfHD4rPA64RX6UyW7TXr4AMG5Ngzef8RiPj3wD%2FuLtxAVgJHA%2F%2BBzmIqe1oH7w%2F5Grg%3D%3D--KxQOiKnZJQARcp67--WMS7wkItIbGnJwEPFZkMPg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "sozu-id": "01JE0WQRKAKYRXH3RPRC8BQ0WE", + "strict-transport-security": "max-age=63072000; includeSubDomains", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", + "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", - "x-xss-protection": "1; mode=block" + "x-permitted-cross-domain-policies": "none", + "x-request-id": "643899ad-58db-4ac0-b334-16bdc43828d9", + "x-runtime": "0.008265", + "x-xss-protection": "0", + "link": "; rel=preload; as=style; nopush" }, "endpoints": [ { - "hostname": "chatbot.fabnum.fr", - "ip": "51.38.43.26", + "hostname": "www.monstagedetroisieme.fr", + "ip": "91.208.207.214", "geoip": { "continent": { "code": "EU", @@ -280358,7 +272203,83 @@ } }, "location": { - "accuracy_radius": 200, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.29.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "betagouv-matomo.osc-secnum-fr1.scalingo.io", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -280384,71 +272305,90 @@ }, "wappalyzer": { "urls": { - "https://chatbot.fabnum.fr/": { + "https://www.monstagedetroisieme.fr/": { "status": 200 } }, "technologies": [ { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", "confidence": 100, "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "trix", + "name": "Trix", + "description": "Trix is an open-source project from Basecamp, the creators of Ruby on Rails.", + "confidence": 100, + "version": "2.1.1", + "icon": "trix.png", + "website": "https://trix-editor.org", + "cpe": null, + "categories": [ + { + "id": 24, + "slug": "rich-text-editors", + "name": "Rich text editors" } ], "rootPath": true }, { - "slug": "typescript", - "name": "TypeScript", - "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", + "slug": "leaflet", + "name": "Leaflet", + "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", "confidence": 100, - "version": null, - "icon": "TypeScript.svg", - "website": "https://www.typescriptlang.org", + "version": "1.9.4", + "icon": "Leaflet.png", + "website": "https://leafletjs.com", "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 35, + "slug": "maps", + "name": "Maps" } - ] + ], + "rootPath": true }, { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", "confidence": 100, "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" } - ] + ], + "rootPath": true }, { - "slug": "zone-js", - "name": "Zone.js", - "description": null, + "slug": "stimulus", + "name": "Stimulus", + "description": "A modest JavaScript framework for the HTML you already have.", "confidence": 100, "version": null, - "icon": "Angular.svg", - "website": "https://github.com/angular/angular/tree/master/packages/zone.js", + "icon": "Stimulus.svg", + "website": "https://stimulusjs.org/", "cpe": null, "categories": [ { @@ -280460,14 +272400,14 @@ "rootPath": true }, { - "slug": "angular", - "name": "Angular", - "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, - "version": "15.1.0", - "icon": "Angular.svg", - "website": "https://angular.io", - "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, @@ -280478,24 +272418,19 @@ "rootPath": true }, { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", "confidence": 100, "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true @@ -280519,66 +272454,126 @@ "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "livefyre", + "name": "Livefyre", + "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", + "confidence": 0, + "version": "1.9.4", + "icon": "Livefyre.png", + "website": "https://livefyre.com", + "cpe": null, + "categories": [ + { + "id": 15, + "slug": "comment-systems", + "name": "Comment systems" + } + ], + "rootPath": true + }, + { + "slug": "hammer-js", + "name": "Hammer.js", + "description": null, + "confidence": 100, + "version": "2.0.7", + "icon": "Hammer.js.png", + "website": "https://hammerjs.github.io", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.31.1", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 52, + "slug": "live-chat", + "name": "Live chat" } ], "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, + "slug": "google-workspace", + "name": "Google Workspace", + "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", + "confidence": 100, "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", + "icon": "Google.svg", + "website": "https://workspace.google.com/", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 30, + "slug": "webmail", + "name": "Webmail" + }, + { + "id": 75, + "slug": "email", + "name": "Email" } - ] + ], + "rootPath": true }, { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, "version": null, "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { @@ -280586,7 +272581,8 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ] + ], + "rootPath": true } ] }, @@ -280594,9 +272590,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://chatbot.fabnum.fr/", - "finalUrl": "https://chatbot.fabnum.fr/", - "fetchTime": "2024-11-24T11:44:41.233Z", + "requestedUrl": "https://www.monstagedetroisieme.fr/", + "finalUrl": "https://www.monstagedetroisieme.fr/", + "fetchTime": "2024-12-01T10:36:57.129Z", "runWarnings": [], "categories": { "performance": { @@ -280607,7 +272603,7 @@ "snapshot" ], "id": "performance", - "score": 0.7 + "score": 0.41 }, "accessibility": { "title": "Accessibility", @@ -280618,7 +272614,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.9 + "score": 0.98 }, "best-practices": { "title": "Best Practices", @@ -280628,7 +272624,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.83 + "score": 1 }, "seo": { "title": "SEO", @@ -280639,7 +272635,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 1 }, "pwa": { "title": "PWA", @@ -280649,7 +272645,7 @@ "navigation" ], "id": "pwa", - "score": 1 + "score": 0.2 } }, "audits": { @@ -280659,53 +272655,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3601, + "numericValue": 17799, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1514, - "firstMeaningfulPaint": 3086, - "largestContentfulPaint": 4188, - "interactive": 3601, - "speedIndex": 3316, - "totalBlockingTime": 357, - "maxPotentialFID": 259, - "cumulativeLayoutShift": 0.1985578155517578, - "cumulativeLayoutShiftMainFrame": 0.1985578155517578, - "totalCumulativeLayoutShift": 0.1985578155517578, + "firstContentfulPaint": 6175, + "firstMeaningfulPaint": 6175, + "largestContentfulPaint": 6410, + "interactive": 17799, + "speedIndex": 8289, + "totalBlockingTime": 369, + "maxPotentialFID": 579, + "cumulativeLayoutShift": 0.004132242838541667, + "cumulativeLayoutShiftMainFrame": 0.004132242838541667, + "totalCumulativeLayoutShift": 0.004132242838541667, "observedTimeOrigin": 0, - "observedTimeOriginTs": 388500654, + "observedTimeOriginTs": 438304243, "observedNavigationStart": 0, - "observedNavigationStartTs": 388500654, - "observedFirstPaint": 569, - "observedFirstPaintTs": 389070132, - "observedFirstContentfulPaint": 569, - "observedFirstContentfulPaintTs": 389070132, - "observedFirstContentfulPaintAllFrames": 569, - "observedFirstContentfulPaintAllFramesTs": 389070132, - "observedFirstMeaningfulPaint": 1021, - "observedFirstMeaningfulPaintTs": 389521501, - "observedLargestContentfulPaint": 1120, - "observedLargestContentfulPaintTs": 389620878, - "observedLargestContentfulPaintAllFrames": 1120, - "observedLargestContentfulPaintAllFramesTs": 389620878, - "observedTraceEnd": 3816, - "observedTraceEndTs": 392317016, - "observedLoad": 1192, - "observedLoadTs": 389692697, - "observedDomContentLoaded": 814, - "observedDomContentLoadedTs": 389314955, - "observedCumulativeLayoutShift": 0.1985578155517578, - "observedCumulativeLayoutShiftMainFrame": 0.1985578155517578, - "observedTotalCumulativeLayoutShift": 0.1985578155517578, - "observedFirstVisualChange": 817, - "observedFirstVisualChangeTs": 389317654, - "observedLastVisualChange": 3800, - "observedLastVisualChangeTs": 392300654, - "observedSpeedIndex": 1107, - "observedSpeedIndexTs": 389608082 + "observedNavigationStartTs": 438304243, + "observedFirstPaint": 874, + "observedFirstPaintTs": 439178728, + "observedFirstContentfulPaint": 874, + "observedFirstContentfulPaintTs": 439178728, + "observedFirstContentfulPaintAllFrames": 874, + "observedFirstContentfulPaintAllFramesTs": 439178728, + "observedFirstMeaningfulPaint": 874, + "observedFirstMeaningfulPaintTs": 439178728, + "observedLargestContentfulPaint": 874, + "observedLargestContentfulPaintTs": 439178728, + "observedLargestContentfulPaintAllFrames": 874, + "observedLargestContentfulPaintAllFramesTs": 439178728, + "observedTraceEnd": 4154, + "observedTraceEndTs": 442457977, + "observedLoad": 1279, + "observedLoadTs": 439582826, + "observedDomContentLoaded": 1136, + "observedDomContentLoadedTs": 439440618, + "observedCumulativeLayoutShift": 0.004132242838541667, + "observedCumulativeLayoutShiftMainFrame": 0.004132242838541667, + "observedTotalCumulativeLayoutShift": 0.004132242838541667, + "observedFirstVisualChange": 878, + "observedFirstVisualChangeTs": 439182243, + "observedLastVisualChange": 1494, + "observedLastVisualChangeTs": 439798243, + "observedSpeedIndex": 891, + "observedSpeedIndexTs": 439195265 }, { "lcpInvalidated": false @@ -280723,23 +272719,23 @@ "type": "debugdata", "items": [ { - "numRequests": 29, - "numScripts": 6, + "numRequests": 19, + "numScripts": 4, "numStylesheets": 1, "numFonts": 3, - "numTasks": 995, - "numTasksOver10ms": 6, - "numTasksOver25ms": 2, + "numTasks": 987, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 85.42699999999999, - "throughput": 18847328.17486088, - "maxRtt": 86.316, - "maxServerLatency": 8.373000000000005, - "totalByteWeight": 1036424, - "totalTaskTime": 319.5239999999991, - "mainDocumentTransferSize": 1826 + "rtt": 0, + "throughput": 30460294.382078882, + "maxRtt": 84.47300000000001, + "maxServerLatency": 20.32, + "totalByteWeight": 2964472, + "totalTaskTime": 337.5419999999985, + "mainDocumentTransferSize": 7160 } ] } @@ -280759,7 +272755,7 @@ }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/accessibilite-du-site" + "declarationUrl": "https://www.monstagedetroisieme.fr/accessibilite" }, "declaration-rgpd": [ { @@ -280769,41 +272765,39 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/mentions-legales" + "declarationUrl": "https://www.monstagedetroisieme.fr/mentions-legales" }, { "slug": "pc", "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 3, - "missingWords": [ - "sous-traitant (ou) sous traitant" - ], + "maxScore": 5, + "score": 5, + "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/politique-de-confidentialite" + "declarationUrl": "https://www.monstagedetroisieme.fr/politique-de-confidentialite" } ], "betagouv": { - "id": "usine-chatbots", + "id": "monstage", "type": "startup", "attributes": { - "name": "Usine à chatbots", - "pitch": "Automatiser la conception de chatbots", - "stats_url": "https://chatbot.fabnum.fr//stats", - "link": "https://chatbot.fabnum.fr/", - "repository": "https://github.com/fabnumdef/fabrique-chatbot", - "contact": "fabrique-chatbots@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20projet%20a%20%C3%A9t%C3%A9%20initi%C3%A9%20par%20la%20RH%20Marine%20qui%20souhaitait%20mettre%20%C3%A0%20disposition%20de%20ses%20agents%20un%20chatbot%20qui%20r%C3%A9pondrait%20aux%20questions%20RH.%20Afin%20de%20faire%20b%C3%A9n%C3%A9ficier%20d%E2%80%99autres%20projets%20de%20chatbot%20au%20sein%20du%20minist%C3%A8re%2C%20ce%20projet%20s%E2%80%99est%20transform%C3%A9%20en%20un%20projet%20plus%20global%20d%27usine%20%C3%A0%20chatbots.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AL%27objectif%20de%20l%27Usine%20%C3%A0%20chatbots%20est%20de%20redonner%20l%27autonomie%20aux%20m%C3%A9tiers%20en%20leur%20fournissant%20un%20outil%20complet%20cl%C3%A9%20en%20main%2Centi%C3%A8rement%20personnalisable%20et%20facile%20%C3%A0%20prendre%20en%20main.%20En%204%20%C3%A9tapes%20et%20en%20moins%20de%2048h%20%28sur%20Internet%29%2C%20les%20agents%20peuvent%20se%20cr%C3%A9er%20leur%20propre%20bot%2C%20techniquement%20pr%C3%AAt%20au%20lancement.%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20une%20solution%20cl%C3%A9%20en%20main%2C%20facile%20%C3%A0%20utiliser%20pour%20les%20agents%2C%20sans%20besoin%20de%20connaissance%20technique%0A%2A%20D%C3%A9charger%20les%20agents%20des%20questions-r%C3%A9ponses%20chronophages%20et%20r%C3%A9p%C3%A9titives%20pour%20qu%E2%80%99ils%20puissent%20consacrer%20plus%20de%20temps%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20forte%20valeur%20ajout%C3%A9e%0A%2A%20Pouvoir%20personnaliser%2C%20faire%20vivre%20et%20maintenir%20la%20base%20de%20connaissance%20%0A%2A%20Disposer%20d%E2%80%99une%20vision%20globale%20des%20chatbots%20cr%C3%A9%C3%A9s%20au%20sein%20du%20minist%C3%A8re%0A%0A%0A%23%23%20Chronologie%0A%0A%2A%2A%C3%A9tape%201%2A%2A%20%28f%C3%A9vrier%202020%29%0Acadrage%20du%20projet%2C%20entretiens%20avec%20des%20bots%20manager%3Cbr%3E%0ALivrable%20%3A%20parcours%20de%20cr%C3%A9ation%20de%20chatbot%20et%20de%20l%E2%80%99interface%20de%20gestion%0A%0A%2A%2A%C3%A9tape%202%2A%2A%20%28mars-avril%202020%29%0Ar%C3%A9alisation%20des%20wireframes%3Cbr%3E%0ALivrable%20%3A%20wireframes%0A%0A%2A%2A%C3%A9tape%203%2A%2A%20%28avril%202020%29%0Ad%C3%A9but%20des%20maquettes%0A%0A%2A%2A%C3%A9tape%204%2A%2A%20%28avril-septembre%202020%29%0Ad%C3%A9veloppement%20du%20PMV%0A%0A%2A%2A%C3%A9tape%205%2A%2A%20%28oct%202020-juin%202021%29%0ATests%20utilisateurs%2C%20audit%20accessibilit%C3%A9%2C%20am%C3%A9liorations%2C%20ajouts%20de%20nouvelles%20fonctionnalit%C3%A9s%2C%20d%C3%A9mos%20et%20formations%0A%0A%2A%2A%C3%A9tape%206%2A%2A%20%28juin%202021%29%0Ahomologation%20bot%20marine%20%0A%0A%2A%2A%C3%A9tape%207%2A%2A%20%28juin%202022%29%0Ahomologation%20de%20l%27usine%20%C3%A0%20chatbots%0A%0A%2A%2A%C3%A9tape%208%2A%2A%20%28juin%202022%29%0Aatterrissage%20du%20bot%20marine%20sur%20Intradef%20%28Pr%C3%A9production%29%0A%0A%2A%2A%C3%A9tape%209%2A%2A%20%28Fin%202022%29%0Aouverture%20du%20service%20au%20public%20sur%20Intradef%0A%0A%0A%23%23%20Livrables%0A%0AL%27Usine%20%C3%A0%20chatbots%20est%20compos%C3%A9e%20de%206%20produits%20num%C3%A9riques%20%3A%0A%0A%2A%20Un%20%5Bsite%20vitrine%20%28internet%29%5D%28https%3A%2F%2Fchatbot.fabnum.fr%2F%29%20qui%20pr%C3%A9sente%20le%20produit%0A%2A%20Une%20%5Bdocumentation%5D%28https%3A%2F%2Ffabrique-a-chatbots.gitbook.io%2Ffabrique-a-chatbots%2F%29%0A%2A%20Une%20%5Binterface%20permettant%20de%20cr%C3%A9er%20un%20chatbot%5D%28https%3A%2F%2Fchatbot.fabnum.fr%2Fcreate%29%0A%2A%20Une%20interface%20de%20chatbot%20%28autonome%20ou%20int%C3%A9gr%C3%A9e%29%0A%2A%20Une%20interface%20de%20gestion%20pour%20travailler%20sur%20les%20connaissances%20de%20votre%20chatbot%0A%2A%20Un%20tableau%20de%20bord%20de%20l%27usine%20%C3%A0%20chatbot%0A%0A%23%23%20R%C3%A9sultats%0A%0A3%20chatbots%20r%C3%A9alis%C3%A9s%20avec%20l%27usine%20%C3%A0%20chatbot%20%3A%0A-%20%5BChatbot%20RH%20Marine-%20CIPAL%20Socrate%5D%28https%3A%2F%2Frh-marine.chatbot.fabnum.fr%2Fchatbot%2F%29%0A-%20%5BChatbot%20RH%20civil%20-%20G%C3%A9d%C3%A9on%5D%28https%3A%2F%2Fgedeon.chatbot.fabnum.fr%2Fchatbot%2F%29%0A-%20Chatbot%20interne%20pour%20la%20gestion%20de%20la%20solde%0A%0ASur%20une%20p%C3%A9riode%20d%27un%20an%2C%20le%20chatbot%20de%20la%20RH%20marine%20pr%C3%A9sente%20%3A%20%0A-%20un%20taux%20de%20r%C3%A9ponse%20de%2083%25%0A-%20plus%20de%20500%20sessions%20par%20mois%0A-%20plus%20de%201600%20questions%20pos%C3%A9es%20par%20mois%0A%0A", + "name": "Mon stage de 3e", + "pitch": "Permettre aux élèves de 3e d'accéder à des stages pertinents pour combattre les déterminismes sociaux", + "stats_url": "https://www.monstagedetroisieme.fr/statistiques", + "link": "https://www.monstagedetroisieme.fr/", + "repository": "https://github.com/betagouv/monstage", + "contact": "support@monstagedetroisieme.fr", + "content_url_encoded_markdown": "%23%23%20Qui%20sommes-nous%20%3F%0A%5BMon%20stage%20de%203e%5D%28https%3A%2F%2Fwww.monstagedetroisieme.fr%2F%29%20est%20un%20service%20num%C3%A9rique%20mis%20en%20place%20par%20l%E2%80%99Agence%20nationale%20de%20la%20coh%C3%A9sion%20des%20territoires%2C%20ce%20produit%20est%20copilot%C3%A9%20par%20les%20minist%C3%A8res%20en%20charge%20de%20la%20ville%2C%20de%20l%E2%80%99%C3%A9ducation%20nationale%20et%20de%20la%20fonction%20publique.%20Il%20permet%20aux%20%C3%A9l%C3%A8ves%20de%20troisi%C3%A8me%20des%20coll%C3%A8ges%20du%20r%C3%A9seau%20%C3%A9ducation%20prioritaire%20%28REP%20et%20REP%2B%29%20d%E2%80%99avoir%20acc%C3%A8s%20%C3%A0%20une%20offre%20de%20stages%20de%20qualit%C3%A9.%0A%0AQue%20ce%20soit%20en%20entreprise%2C%20en%20association%2C%20au%20sein%20d%E2%80%99%C3%A9tablissements%20publics%20ou%20de%20collectivit%C3%A9s%20territoriales%2C%20%C3%A9voluer%20au%20contact%20de%20professionnels%20permet%20aux%20%C3%A9l%C3%A8ves%20de%20mieux%20pr%C3%A9ciser%20leur%20projet%20d%E2%80%99orientation%20et%20de%20mieux%20appr%C3%A9hender%20les%20r%C3%A9alit%C3%A9s%20du%20monde%20du%20travail.%0A%0A%23%23%20Pourquoi%20Mon%20stage%20de%20troisi%C3%A8me%20%3F%0A%23%23%23%20Un%20constat%20d%E2%80%99in%C3%A9galit%C3%A9%20sociale%20d%C3%A8s%20le%20coll%C3%A8ge%0AAu%20moins%2054%25%20des%20%C3%A9l%C3%A8ves%20de%20troisi%C3%A8me%20trouvent%20leur%20stage%20gr%C3%A2ce%20%C3%A0%20leur%20entourage.%20Ainsi%2C%20les%20stages%20d%E2%80%99observation%20inspirants%2C%20instructifs%20et%20constructifs%2C%20sont%20souvent%20r%C3%A9serv%C3%A9s%20aux%20%C3%A9l%C3%A8ves%20b%C3%A9n%C3%A9ficiant%20d%E2%80%99un%20r%C3%A9seau%20d%C3%A9velopp%C3%A9%20gr%C3%A2ce%20aux%20bonnes%20connexions%20de%20leur%20entourage.%0A%0AAussi%2C%20pour%20faciliter%20l%E2%80%99acc%C3%A8s%20%C3%A0%20des%20stages%20de%203e%20pertinents%20et%20de%20qualit%C3%A9%20pour%20%C3%A9manciper%20et%20combattre%20les%20d%C3%A9terminismes%20sociaux%2C%20la%20Startup%20d%E2%80%99%C3%89tat%20propose%20une%20plateforme%20logicielle%2C%20dont%20l%E2%80%99objectif%20est%20de%20mettre%20%C3%A0%20disposition%2C%20des%20%C3%A9l%C3%A8ves%20de%20REP%2C%20REP%2B%20et%20QPV%20un%20%C3%A9ventail%20large%20d%E2%80%99offres%20de%20stage%20de%20qualit%C3%A9%2C%20%C3%A9manant%20du%20secteur%20public%20et%20du%20secteur%20priv%C3%A9%2C%20et%20ce%20sur%20toute%20la%20France.%0A%0A%23%23%20Les%20principales%20fonctionnalit%C3%A9s%20de%20la%20plateforme%20%3A%0A-%20Un%20souci%20constant%20d%27ergonomie%20%28d%C3%A9p%C3%B4t%20des%20offres%2C%20recherche%20de%20stages%2C%20suivi%20des%20candidatures%2C%20signature%20des%20conventions%2C%20%E2%80%A6%29%20%3B%0A-%20Une%20mise%20en%20relation%20entre%20l%27offre%20et%20la%20demande%20%28accompagnement%20des%20entreprises%20et%20administrations%2C%20candidatures%20des%20%C3%A9l%C3%A8ves%20fluides%20et%20unifi%C3%A9es%2C%20accompagnement%20des%20%C3%A9l%C3%A8ves%2C%20accompagnement%20%C3%A0%20la%20mobilit%C3%A9%E2%80%A6%29%20%3B%0A-%20Une%20convention%20d%C3%A9mat%C3%A9rialis%C3%A9e%20pour%20les%20professionnels%20et%20les%20%C3%A9tablissements%20scolaires%20avec%20signature%20num%C3%A9rique%20%3B%0A-%20Un%20espace%20d%C3%A9di%C3%A9%20aux%20%C3%A9quipes%20p%C3%A9dagogiques%20pour%20accompagner%20leurs%20%C3%A9l%C3%A8ves%20et%20suivre%20leurs%20candidatures%20%3B%0A-%20Analyses%20de%20donn%C3%A9es%20compl%C3%A8tes%20%C3%A0%20destination%20de%20tous%20les%20usagers%20et%20%C3%A0%20tous%20les%20niveaux%20hi%C3%A9rarchiques%20n%C3%A9cessaires.%0A%0A%23%23%20L%E2%80%99%C3%A9mergence%20d%E2%80%99un%20%C3%A9cosyst%C3%A8me%20pour%20accompagner%20et%20p%C3%A9renniser%20cet%20outil%20num%C3%A9rique%0APour%20que%20cette%20plateforme%20devienne%20un%20outil%20naturellement%20prescrit%20par%20les%20enseignants%20et%20les%20personnels%20encadrants%20des%20coll%C3%A8ges%20et%20donc%20p%C3%A9renne%2C%20il%20est%20n%C3%A9cessaire%20%3A%0A-%20Qu%27elle%20s%27inscrive%20dans%20une%20logique%20de%20parcours%20de%20formation%20d%27avenir%20des%20%C3%A9l%C3%A8ves%2C%20sous%20l%27%C3%A9gide%20de%20l%27%C3%89ducation%20Nationale%20%3B%0A-%20Que%20les%20associations%2C%20sp%C3%A9cialistes%20de%20ces%20sujets%2C%20continuent%20%C3%A0%20y%20%C3%AAtre%20associ%C3%A9es%2C%20gr%C3%A2ce%20%C3%A0%20leur%20travail%20d%27accompagnement%20aupr%C3%A8s%20des%20coll%C3%A8ges%2C%20structures%20d%27accueil%2C%20voire%20parents%20d%27%C3%A9l%C3%A8ves%20%3B%0A-%20Que%20les%20structures%20d%27accueil%2C%20publiques%20et%20priv%C3%A9es%2C%20renforcent%20leur%20capacit%C3%A9%20%C3%A0%20bien%20communiquer%20et%20%C3%A0%20savoir%20bien%20accompagner%20les%20%C3%A9l%C3%A8ves%20sur%20leur%20site%20%3B%0A-%20Que%20les%20personnels%20p%C3%A9dagogiques%20des%20coll%C3%A8ges%20soient%20r%C3%A9guli%C3%A8rement%20inform%C3%A9s%20sur%20la%20diversit%C3%A9%20des%20m%C3%A9tiers%2C%20afin%20de%20mieux%20orienter%20leurs%20%C3%A9l%C3%A8ves%20%3B%0A-%20Que%20les%20processus%2C%20comme%20des%20subventions%2C%20stages%20collectifs%2C%20permettent%20d%27%C3%A9vacuer%20les%20probl%C3%A9matiques%20de%20mobilit%C3%A9.", "events": [], "phases": [ { "name": "investigation", - "start": "2020-02-01", + "start": "2018-12-01", "end": "" }, { "name": "construction", - "start": "2020-05-01", + "start": "2018-12-01", "end": "" }, { @@ -280813,20 +272807,25 @@ }, { "name": "transfer", - "start": "2022-06-01", + "start": "2024-04-30", "end": "" } ], "sponsors": [ - "armees" + "menjs" ], - "thematiques": [] + "thematiques": [ + "Jeunesse", + "Education" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/www-monstagedetroisieme-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "fabnumdef" + "id": "menj" } } } @@ -280835,64 +272834,217 @@ { "width": 1920, "height": 1080, - "url": "https://chatbot.fabnum.fr/", - "size": 2588.716, - "nodes": 317, - "requests": 29, + "url": "https://www.monstagedetroisieme.fr", + "size": 3234.521, + "nodes": 352, + "requests": 25, "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, + "score": 67, + "ges": 1.66, + "water": 2.49, "ecoindex_version": "5.4.2", - "date": "2024-11-24 11:41:42.034808", + "date": "2024-12-01 10:33:58.106998", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": false + "detected": true }, "summary": { - "httpGrade": "B+", + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", - "uptime": 99.982, + "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, + "nmapGrade": "B", + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-08T17:52:00.000Z", + "testsslExpireDate": "2025-01-12T01:23:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.7, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.9, + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.41, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.85, + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 1, - "lighthouse_pwaGrade": "A", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", + "declaration-rgpd-pc": "A", "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://civilsdeladefense.fabnum.fr/", + "repositories": [ + "betagouv/civilsdeladefense" + ], + "category": "fabnumdef", + "betaId": "civils-de-la-defense", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "civilsdeladefense.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'civilsdeladefense.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "civilsdeladefense.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://civilsdeladefense.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (civilsdeladefense.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "civils-de-la-defense", + "type": "startup", + "attributes": { + "name": "Civils de la Défense", + "pitch": "Recruter simplement des agents civils sous contrat", + "stats_url": "https://stats.data.gouv.fr/index.php?module=CoreHome&action=index&idSite=75&period=day&date=yesterday", + "link": "https://contractuels.civils.defense.gouv.fr/", + "repository": "https://github.com/betagouv/civilsdeladefense", + "contact": "drh-md-srhc-civilsdeladefense.charge-qualite.fct@intradef.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A9matique%20%20%0ALe%20minist%C3%A8re%20des%20Arm%C3%A9es%20recrute%20d%C3%A9sormais%20chaque%20ann%C3%A9e%20environ%201%20000%20agents%20civils%20sous%20contrat%20notamment%20sur%20des%20m%C3%A9tiers%20en%20tension%20%28SIC%2C%20infrastructures...%29.%20Satisfaire%20ce%20besoin%20a%20rapidement%20mis%20en%20%C3%A9vidence%20les%20probl%C3%A9matiques%20suivantes%20%3A%20%20%0A%2A%20Une%20forte%20concurrence%20avec%20le%20secteur%20priv%C3%A9%20pour%20le%20recrutement%20des%20profils%20recherch%C3%A9s%20%3B%0A%2A%20Une%20visibilit%C3%A9%20trop%20faible%20de%20l%27offre%20de%20recrutement%20civil%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20%3B%0A%2A%20Un%20processus%20de%20recrutement%20long%20et%20opaque%20pour%20les%20candidats.%0A%0AEn%20cons%C3%A9quence%20de%20ce%20manque%20d%E2%80%99informations%20et%20d%E2%80%99accompagnement%2C%20les%20candidats%20abandonnent%20souvent%20en%20cours%20de%20processus%20de%20recrutement%20au%20profit%20d%E2%80%99autres%20employeurs%20plus%20visibles%20et%20attractifs%20notamment%20dans%20le%20secteur%20priv%C3%A9.%0A%0A%23%23%20Objectifs%20%20%20%20%0ADisposer%20d%27une%20solution%20permettant%20de%20simplifier%20et%20acc%C3%A9l%C3%A9rer%20le%20processus%20de%20recrutement%20aussi%20bien%20pour%20les%20candidats%20que%20pour%20les%20employeurs%20et%20les%20services%20RH%20du%20MinArm.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28S2%202018%29%20%3A%20Hackathon%20%C2%AB%20E%20%E2%80%93%20recrutement%20%C2%BB%20et%201er%20ateliers%0A%0ALivrables%20%3A%20%20%20%0A%2A%20Concat%C3%A9nation%20des%20meilleurs%20projets%20r%C3%A9alis%C3%A9s%20lors%20du%20hackathon%20%20%20%20%20%0A%2A%20R%C3%A9alisation%20User%20journey%20actuelle%20et%20id%C3%A9ale%20%20%20%0A%2A%20Identification%20de%20l%E2%80%99architecture%20de%20la%20confidentialit%C3%A9%20%28r%C3%B4les%20et%20droits%20associ%C3%A9s%29%20%20%20%0A%2A%20R%C3%A9alisation%20Maquette%20cliquable%20%20%20%20%0A%0A__%C3%89tape%202__%20%28S1%202019%29%20%3A%20D%C3%A9but%20des%20d%C3%A9veloppement%0A%0ALivrables%20%3A%20%20%20%20%0A%2A%20Fonctionnalit%C3%A9s%20principales%20back%20et%20front%20office%20%20%20%0A%0A__%C3%89tape%203__%20%28S2%202019%29%20%3A%20It%C3%A9ration%20retours%20m%C3%A9tier%20et%20continuit%C3%A9%20des%20d%C3%A9veloppements%0A%0ALivrables%20%3A%0A%2A%20Fonctionnalit%C3%A9s%20secondaires%20et%20%C3%A9cran%20de%20suivi%20statistique%20%20%20%0A%0A__%C3%89tape%204__%20%28S1%20et%20S2%202020%29%20%3A%20Industrialisation%20du%20SI%20pour%20une%20utilisation%20grande%20%C3%A9chelle%0A%0A%2A%2AEtape%205%2A%2A%20%28S1%202021%20%C3%A0%20S2%202022%29%20%3A%20D%C3%A9ploiement%20et%20usage%20du%20produit%20dans%20le%20contexte%20recrutement%20%28agents%20et%20candidats%29%0A%0A%2A%2AEtape%206%2A%2A%20%28S1%20et%20S2%202023%29%20%3A%20Organisation%20du%20transfert%20du%20produit%20avec%20la%20DRH-MD%20%28Service%20des%20Ressources%20Humaines%20Civiles%29.%0A%0A%2A%2ALe%20service%20est%20actuellement%20transf%C3%A9r%C3%A9%20et%20p%C3%A9rennis%C3%A9.%2A%2A%0A%0ALivrables%20%3A%20%20%20%0A%2A%20Une%20solution%20utilis%C3%A9e%20%C3%A0%20large%20%C3%A9chelle%20au%20sein%20du%20MinArm%2C%20transf%C3%A9r%C3%A9e%20aux%20%C3%A9quipes%20techniques%20de%20la%20DRH-MD%20au%20sein%20du%20SRHC.%0A%2A%20Une%20solution%20document%C3%A9e%20et%20conforme%20aux%20exigences%20SSI%2C%20RGPD%2C%20loi%20transformation%20publique%2C%20d%E2%80%99archivage%20des%20donn%C3%A9es%2C%20respect%20des%20r%C3%A8gles%20d%E2%80%99accessibilit%C3%A9...%0A%0A%23%23%20R%C3%A9sultat%0AUn%20%5Bsite%20internet%5D%28https%3A%2F%2Fcontractuels.civils.defense.gouv.fr%2F%29%0A%0A%23%23%20en%20chiffres%0AAujourd%E2%80%99hui%20Civils%20de%20la%20D%C3%A9fense%20c%E2%80%99est%20%3A%0A%0A-50%25%20sur%20le%20temps%20de%20recrutement%20%286%2F8%20mois%20%C3%A0%203%20mois%29%0A%0A%2B500%20utilisateurs%20minarm%0A%0A%2B150%20000%20visiteurs%0A%0A%2B10%20000%20candidature%0A%0A400%20candidature%20trait%C3%A9es%20%2F%20mois%0A%0A6%25%20des%20candidats%20sont%20recrut%C3%A9s", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2018-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2020-04-02", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-12-31", + "end": "" + }, + { + "name": "transfer", + "start": "2023-12-31", + "end": "" + }, + { + "name": "alumni", + "start": "2024-04-23", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [ + "Travail / Emploi" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/civilsdeladefense-fabnum-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", "dsfrGrade": "F" } }, { "404": null, - "url": "https://cassiopee.igloo.fabnum.fr/", + "url": "https://sepia.fabnum.fr/", "category": "fabnumdef", - "betaId": "cassiopee", + "betaId": "sepia", "http": null, "updownio": null, "nmap": null, @@ -280901,14 +273053,14 @@ "testssl": [ { "id": "scanProblem", - "ip": "cassiopee.igloo.fabnum.fr/", + "ip": "sepia.fabnum.fr/", "port": "443", "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'cassiopee.igloo.fabnum.fr' available" + "finding": "No IPv4/IPv6 address(es) for 'sepia.fabnum.fr' available" }, { "id": "scanTime", - "ip": "cassiopee.igloo.fabnum.fr/", + "ip": "sepia.fabnum.fr/", "port": "443", "severity": "WARN", "finding": "Scan interrupted" @@ -280921,9 +273073,9 @@ }, "wappalyzer": { "urls": { - "https://cassiopee.igloo.fabnum.fr/": { + "https://sepia.fabnum.fr/": { "status": 0, - "error": "Hostname could not be resolved (cassiopee.igloo.fabnum.fr)" + "error": "Hostname could not be resolved (sepia.fabnum.fr)" } }, "technologies": [] @@ -280963,43 +273115,41 @@ } ], "betagouv": { - "id": "cassiopee", + "id": "sepia", "type": "startup", "attributes": { - "name": "Cassiopée", - "pitch": "Optimiser les parcours de formation des officiers souhaitant revenir à la vie civile", + "name": "SEPIA", + "pitch": "Accélérer les interventions de la police du ciel", "stats_url": "", "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AAux%20termes%20de%20leur%20carri%C3%A8re%20militaire%2C%20certains%20officiers%20g%C3%A9n%C3%A9raux%20souhaitent%20retourner%20%C3%A0%20la%20vie%20civile%20et%20y%20poursuivre%20une%20nouvelle%20carri%C3%A8re.%0A%0AAfin%20de%20pr%C3%A9parer%20ces%20derniers%20%C3%A0%20anticiper%20et%20r%C3%A9pondre%20aux%20attentes%20de%20futurs%20employeurs%20civils%2C%20un%20organisme%20interne%20au%20minist%C3%A8re%20des%20Arm%C3%A9es%2C%20la%20MiRVOG%2C%20est%20charg%C3%A9%20de%20les%20accompagner%20sur%20des%20parcours%20de%20formation%20personnalis%C3%A9s.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AChaque%20ann%C3%A9e%2C%20une%20centaine%20d%27officiers%20passent%20par%20la%20MiRVOG%20pour%20leur%20reconversion%20professionnelle%2C%20qui%20peut%20s%27%C3%A9taler%20sur%206%20ou%2018%20mois%20en%20fonction%20des%20projets%20individuels.%0A%0ALa%20communication%20entre%20la%20MiRVOG%20et%20les%20officiers%20g%C3%A9n%C3%A9raux%20se%20fait%20principalement%20par%20des%20moyens%20classiques%2C%20email%20ou%20t%C3%A9l%C3%A9phone%2C%20ce%20qui%20g%C3%A9n%C3%A8re%20plusieurs%20probl%C3%A8mes%20%3A%0A-%20Une%20charge%20de%20travail%20importante%20pour%20planifier%20les%20formations%20et%20y%20inscrire%20individuellement%20les%20officiers%0A-%20Un%20manque%20d%27information%20pour%20les%20officiers%20quant%20aux%20diff%C3%A9rentes%20formations%20programm%C3%A9es%0A-%20Des%20difficult%C3%A9s%20%C3%A0%20remplir%20les%20sessions%20formations%2C%20dues%20%C3%A0%20des%20annulations%20non%20communiqu%C3%A9es%2C%20des%20changements%20de%20planning%2C%20etc.%0A%0ALes%20cons%C3%A9quences%20de%20ces%20diff%C3%A9rents%20probl%C3%A9matiques%20sont%20principalement%20financi%C3%A8res%20%28co%C3%BBt%20des%20formations%20d%C3%BB%20%C3%A0%20un%20taux%20de%20remplissage%20insuffisant%2C%20temps%20pass%C3%A9%20sur%20la%20planification%20et%20la%20gestion%20des%20formations%29.%0A%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20aux%20officiers%20une%20solution%20en%20ligne%20centralisant%20l%27ensemble%20des%20informations%20et%20proc%C3%A9dures%20d%27inscription%20aux%20formations.%0A%2A%20Am%C3%A9liorer%20la%20participation%20et%20le%20taux%20de%20remplissage%20des%20sessions%20de%20formation.%0A%2A%20Optimiser%20les%20co%C3%BBts%20de%20mise%20en%20oeuvre%20des%20formations.%0A%2A%20R%C3%A9duire%20le%20temps%20pass%C3%A9%20sur%20les%20t%C3%A2ches%20de%20planification%20et%20gestion%20des%20formations%20pour%20se%20concentrer%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20haute%20valeur%20ajout%C3%A9e.%0A%2A%20Avoir%20un%20suivi%20statistique%20des%20formations%20et%20de%20leur%20pertinence.%0A%0A%23%23%20R%C3%A9sultats%0A%0AUne%20interface%20de%20gestion%20et%20planification%20des%20formations%20pour%20la%20MiRVOG%0A%0AUne%20interface%20_responsive%20mobile_%20pour%20les%20officiers%20afin%20de%20suivre%20les%20formations%20%C3%A0%20venir%2C%20s%27y%20inscrire%2C%20s%27y%20d%C3%A9sinscrire%20et%20se%20mettre%20sur%20liste%20d%27attente.%0ALes%20officiers%20peuvent%20%C3%A9galement%20voir%20leurs%20formations%20pass%C3%A9es%20et%20faire%20le%20point%20sur%20leur%20progamme%20personnel%20de%20formation.%0A%0AUn%20syst%C3%A8me%20de%20notification%20pour%20gagner%20en%20r%C3%A9activit%C3%A9%20pour%20l%27ensemble%20des%20utilisateurs.%0A%0A%23%23%20Travaux%20en%20cours%0A%0AApr%C3%A8s%20une%20phase%20d%27adaptation%20%28prise%20en%20compte%20du%20DSFR%29%20et%20d%27am%C3%A9lioration%20du%20produit%20conduite%20de%20septembre%202023%20%C3%A0%20mars%202024%2C%20dans%20le%20cadre%20de%20l%27acc%C3%A9l%C3%A9ration%2C%20Cassiop%C3%A9e%20est%20entr%C3%A9e%20en%20phase%20de%20transfert.%0A%0ADes%20travaux%20ont%20lieu%20avec%20la%20DSI%20RH%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20afin%20d%27assurer%20une%20strat%C3%A9gie%20de%20maintien%20en%20condition%20op%C3%A9rationnelle%20compatible%20avec%20la%20s%C3%A9curisation%20de%20l%27usage%20de%20Cassiop%C3%A9e%20dans%20le%20temps%20%28exploitation%2C%20TMA...%29.%0A%0ALe%20maintien%20du%20%22mode%20produit%22%20est%20un%20des%20enjeux%20m%C3%A9thodologiques%20et%20organisationnels%20%C3%A0%20valider%20avec%20les%20%C3%A9quipes%20des%20SI%20RH%20du%20MinArm.%20", + "content_url_encoded_markdown": "%23%23%20Contexte%20%0A24h%2F24%20et%207j%2F7%2C%20l%E2%80%99Arm%C3%A9e%20de%20l%E2%80%99air%20assure%20une%20mission%20de%20police%20du%20ciel%20en%20surveillant%20les%2011%20000%20a%C3%A9ronefs%20qui%20transitent%20quotidiennement%20par%20l%E2%80%99espace%20a%C3%A9rien%20fran%C3%A7ais.%20Sa%20mission%20%3A%20d%C3%A9tecter%2C%20identifier%20et%20si%20besoin%20intercepter%20tout%20intrus%2C%20afin%20de%20faire%20respecter%20la%20souverainet%C3%A9%20nationale%20et%20de%20d%C3%A9fendre%20notre%20territoire%20contre%20toute%20menace%20venant%20des%20airs.%0ALes%20avions%20de%20chasse%20fran%C3%A7ais%20sont%20positionn%C3%A9s%20dans%20diff%C3%A9rentes%20bases%20a%C3%A9riennes%20et%20sont%20pr%C3%AAts%20%C3%A0%20d%C3%A9coller%20%C3%A0%20chaque%20instant%20pour%20intervenir.%20Pour%20s%C3%A9lectionner%20quel%20chasseur%20doit%20intervenir%2C%20des%20experts%20%C3%A9valuent%20la%20situation%20en%20fonction%20des%20conditions%20m%C3%A9t%C3%A9orologiques%2C%20g%C3%A9ographiques%20et%20tactiques.%20Mais%20sachant%20qu%E2%80%99un%20avion%20peut%20traverser%20la%20France%20m%C3%A9tropolitaine%20en%2020%20minutes%20%C3%A0%20tr%C3%A8s%20grande%20vitesse%2C%20chaque%20seconde%20compte%20quand%20un%20%C3%A9v%C3%A9nement%20anormal%20est%20d%C3%A9tect%C3%A9.%0A%0A%23%23%20Probl%C3%A9matique%0AL%E2%80%99id%C3%A9e%20derri%C3%A8re%20SEPIA%20est%20de%20fournir%20aux%20experts%20du%20Centre%20national%20des%20op%C3%A9rations%20a%C3%A9riennes%20%28CNOA%29%20de%20Lyon%20Mont%20Verdun%20un%20outil%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision.%20SEPIA%20calcule%20en%20temps%20r%C3%A9el%20les%20diff%C3%A9rents%20sc%C3%A9narios%20d%E2%80%99intervention%20pour%20les%20a%C3%A9ronefs%20identifi%C3%A9s%2C%20en%20fonction%20de%20divers%20param%C3%A8tres%2C%20comme%20la%20m%C3%A9t%C3%A9o.%0ASEPIA%20utilise%20des%20donn%C3%A9es%20open%20source%20provenant%20par%20exemple%20d%E2%80%99OpenStreetMap%20ou%20de%20data.gouv.fr%20afin%20fournir%20des%20informations%20pertinentes%20et%20%C3%A0%20jour%20pour%20acc%C3%A9l%C3%A9rer%20le%20temps%20de%20r%C3%A9action%20de%20la%20police%20du%20ciel.%0A%0A%23%23%20Objectifs%20%20%20%0APour%20la%20s%C3%BBret%C3%A9%20a%C3%A9rienne%20%28CNOA%29%20%3A%0A%2A%20Corr%C3%A9ler%20trajectoire%20et%20point%20d%E2%80%99int%C3%A9r%C3%AAt%2C%0A%2A%20Aides%20%C3%A0%20la%20d%C3%A9cision%20pour%20optimiser%20l%E2%80%99interception%20d%E2%80%99a%C3%A9ronef%2C%0A%2A%20Syst%C3%A8me%20d%E2%80%99alerte%20multicrit%C3%A8re%20dont%20la%20p%C3%A9n%C3%A9tration%20de%20ZIT%20%28Zone%20interdite%20temporaire%29%2C%20le%20survol%20de%20ZIPVA%20%28Zones%20interdites%20%C3%A0%20la%20prise%20de%20vue%20a%C3%A9rienne%29%E2%80%A6%2C%0A%2A%20Module%20de%20visualisation%20et%20d%E2%80%99alerte%20int%C3%A9ressant%20renseignement%20d%E2%80%99int%C3%A9r%C3%AAt-Air.%0A%0APour%20la%20recherche%20et%20sauvetage%20en%20cas%20de%20crash%20%28RCC%29%20%3A%0A%2A%20D%C3%A9finir%20par%20le%20calcul%20le%20point%20d%E2%80%99impact%20d%E2%80%99un%20crash%20futur%2C%0A%2A%20Rejouer%20le%20vol%20des%20a%C3%A9ronefs.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28f%C3%A9vrier%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%202__%20%28mars%202019%29%20Atelier%20d%E2%80%99id%C3%A9ation%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%203__%20%28avril%202019%29%20d%C3%A9but%20des%20tests%20utilisateurs%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%204__%20%28mai%202019%29%20Rejointe%20du%20CDAD%20sur%20le%20projet%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%205__%20%28juin%202019%29%20R%C3%A9alisation%20du%20premier%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%206__%20%28dec%202020%29%20R%C3%A9alisation%20du%20deuxi%C3%A8me%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%207__%20%28janv%202020%29%20Nouvelle%20it%C3%A9ration%20avec%20le%20projet%20ALESIA%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%208__%20%28fev%202020%29%20Rejointe%20de%20l%E2%80%99ESIOC%20et%20de%20la%20DGA-MI%20sur%20le%20projet%20%28Bordeaux%29%20%20%20%0A%0A__%C3%89tape%209__%20%28dec%202020%29%20Mise%20en%20production%20de%20la%20troisi%C3%A8me%20version%20%28PMV%29%20%20%20%0A%0A%23%23%20R%C3%A9sultats%0A%5BUn%20site%5D%28https%3A%2F%2Fsepia.fabnum.fr%29%20utilis%C3%A9%20H24%20au%20sein%20de%20la%20salle%20conduite%20du%20CNOA.%20%20%20%0ASyst%C3%A8me%20d%E2%80%99information%20indispensable%20pour%20une%20optimisation%20de%20la%20mission%20de%20s%C3%BBret%C3%A9%20a%C3%A9rienne.%0A%0A%23%23%20en%20chiffres%0APlus%20de%205000%20a%C3%A9ronefs%20suivis%20en%20continu%20%20%20%20%20%0APlus%20de%20100%20alertes%20de%20concernant%20la%20PPS%20par%20mois%0A%0A", "events": [], "phases": [ { "name": "investigation", - "start": "2021-03-01", - "end": "2021-05-21" + "start": "2019-01-25", + "end": "" }, { "name": "construction", - "start": "2021-05-23", + "start": "2020-01-25", "end": "" }, { - "name": "acceleration", - "start": "2022-06-06", + "name": "transfer", + "start": "2022-09-01", "end": "" }, { - "name": "transfer", - "start": "2024-03-25", + "name": "alumni", + "start": "2024-08-21", "end": "" } ], "sponsors": [ "armees" ], - "thematiques": [ - "Formation" - ] + "thematiques": [] }, "relationships": { "incubator": { @@ -281031,9 +273181,9 @@ }, { "404": null, - "url": "https://cassiopee.fabnum.fr/", + "url": "https://sepia.defense.gouv.fr/", "category": "fabnumdef", - "betaId": "cassiopee", + "betaId": "sepia", "http": null, "updownio": null, "nmap": null, @@ -281042,14 +273192,14 @@ "testssl": [ { "id": "scanProblem", - "ip": "cassiopee.fabnum.fr/", + "ip": "sepia.defense.gouv.fr/51.15.192.115", "port": "443", "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'cassiopee.fabnum.fr' available" + "finding": "Can't connect to '51.15.192.115:443' Make sure a firewall is not between you and your scanning target!" }, { "id": "scanTime", - "ip": "cassiopee.fabnum.fr/", + "ip": "sepia.defense.gouv.fr/51.15.192.115", "port": "443", "severity": "WARN", "finding": "Scan interrupted" @@ -281062,9 +273212,9 @@ }, "wappalyzer": { "urls": { - "https://cassiopee.fabnum.fr/": { + "https://sepia.defense.gouv.fr/": { "status": 0, - "error": "Hostname could not be resolved (cassiopee.fabnum.fr)" + "error": "Navigation timeout of 10000 ms exceeded (https://sepia.defense.gouv.fr/)" } }, "technologies": [] @@ -281104,43 +273254,41 @@ } ], "betagouv": { - "id": "cassiopee", + "id": "sepia", "type": "startup", "attributes": { - "name": "Cassiopée", - "pitch": "Optimiser les parcours de formation des officiers souhaitant revenir à la vie civile", + "name": "SEPIA", + "pitch": "Accélérer les interventions de la police du ciel", "stats_url": "", "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AAux%20termes%20de%20leur%20carri%C3%A8re%20militaire%2C%20certains%20officiers%20g%C3%A9n%C3%A9raux%20souhaitent%20retourner%20%C3%A0%20la%20vie%20civile%20et%20y%20poursuivre%20une%20nouvelle%20carri%C3%A8re.%0A%0AAfin%20de%20pr%C3%A9parer%20ces%20derniers%20%C3%A0%20anticiper%20et%20r%C3%A9pondre%20aux%20attentes%20de%20futurs%20employeurs%20civils%2C%20un%20organisme%20interne%20au%20minist%C3%A8re%20des%20Arm%C3%A9es%2C%20la%20MiRVOG%2C%20est%20charg%C3%A9%20de%20les%20accompagner%20sur%20des%20parcours%20de%20formation%20personnalis%C3%A9s.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AChaque%20ann%C3%A9e%2C%20une%20centaine%20d%27officiers%20passent%20par%20la%20MiRVOG%20pour%20leur%20reconversion%20professionnelle%2C%20qui%20peut%20s%27%C3%A9taler%20sur%206%20ou%2018%20mois%20en%20fonction%20des%20projets%20individuels.%0A%0ALa%20communication%20entre%20la%20MiRVOG%20et%20les%20officiers%20g%C3%A9n%C3%A9raux%20se%20fait%20principalement%20par%20des%20moyens%20classiques%2C%20email%20ou%20t%C3%A9l%C3%A9phone%2C%20ce%20qui%20g%C3%A9n%C3%A8re%20plusieurs%20probl%C3%A8mes%20%3A%0A-%20Une%20charge%20de%20travail%20importante%20pour%20planifier%20les%20formations%20et%20y%20inscrire%20individuellement%20les%20officiers%0A-%20Un%20manque%20d%27information%20pour%20les%20officiers%20quant%20aux%20diff%C3%A9rentes%20formations%20programm%C3%A9es%0A-%20Des%20difficult%C3%A9s%20%C3%A0%20remplir%20les%20sessions%20formations%2C%20dues%20%C3%A0%20des%20annulations%20non%20communiqu%C3%A9es%2C%20des%20changements%20de%20planning%2C%20etc.%0A%0ALes%20cons%C3%A9quences%20de%20ces%20diff%C3%A9rents%20probl%C3%A9matiques%20sont%20principalement%20financi%C3%A8res%20%28co%C3%BBt%20des%20formations%20d%C3%BB%20%C3%A0%20un%20taux%20de%20remplissage%20insuffisant%2C%20temps%20pass%C3%A9%20sur%20la%20planification%20et%20la%20gestion%20des%20formations%29.%0A%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20aux%20officiers%20une%20solution%20en%20ligne%20centralisant%20l%27ensemble%20des%20informations%20et%20proc%C3%A9dures%20d%27inscription%20aux%20formations.%0A%2A%20Am%C3%A9liorer%20la%20participation%20et%20le%20taux%20de%20remplissage%20des%20sessions%20de%20formation.%0A%2A%20Optimiser%20les%20co%C3%BBts%20de%20mise%20en%20oeuvre%20des%20formations.%0A%2A%20R%C3%A9duire%20le%20temps%20pass%C3%A9%20sur%20les%20t%C3%A2ches%20de%20planification%20et%20gestion%20des%20formations%20pour%20se%20concentrer%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20haute%20valeur%20ajout%C3%A9e.%0A%2A%20Avoir%20un%20suivi%20statistique%20des%20formations%20et%20de%20leur%20pertinence.%0A%0A%23%23%20R%C3%A9sultats%0A%0AUne%20interface%20de%20gestion%20et%20planification%20des%20formations%20pour%20la%20MiRVOG%0A%0AUne%20interface%20_responsive%20mobile_%20pour%20les%20officiers%20afin%20de%20suivre%20les%20formations%20%C3%A0%20venir%2C%20s%27y%20inscrire%2C%20s%27y%20d%C3%A9sinscrire%20et%20se%20mettre%20sur%20liste%20d%27attente.%0ALes%20officiers%20peuvent%20%C3%A9galement%20voir%20leurs%20formations%20pass%C3%A9es%20et%20faire%20le%20point%20sur%20leur%20progamme%20personnel%20de%20formation.%0A%0AUn%20syst%C3%A8me%20de%20notification%20pour%20gagner%20en%20r%C3%A9activit%C3%A9%20pour%20l%27ensemble%20des%20utilisateurs.%0A%0A%23%23%20Travaux%20en%20cours%0A%0AApr%C3%A8s%20une%20phase%20d%27adaptation%20%28prise%20en%20compte%20du%20DSFR%29%20et%20d%27am%C3%A9lioration%20du%20produit%20conduite%20de%20septembre%202023%20%C3%A0%20mars%202024%2C%20dans%20le%20cadre%20de%20l%27acc%C3%A9l%C3%A9ration%2C%20Cassiop%C3%A9e%20est%20entr%C3%A9e%20en%20phase%20de%20transfert.%0A%0ADes%20travaux%20ont%20lieu%20avec%20la%20DSI%20RH%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20afin%20d%27assurer%20une%20strat%C3%A9gie%20de%20maintien%20en%20condition%20op%C3%A9rationnelle%20compatible%20avec%20la%20s%C3%A9curisation%20de%20l%27usage%20de%20Cassiop%C3%A9e%20dans%20le%20temps%20%28exploitation%2C%20TMA...%29.%0A%0ALe%20maintien%20du%20%22mode%20produit%22%20est%20un%20des%20enjeux%20m%C3%A9thodologiques%20et%20organisationnels%20%C3%A0%20valider%20avec%20les%20%C3%A9quipes%20des%20SI%20RH%20du%20MinArm.%20", + "content_url_encoded_markdown": "%23%23%20Contexte%20%0A24h%2F24%20et%207j%2F7%2C%20l%E2%80%99Arm%C3%A9e%20de%20l%E2%80%99air%20assure%20une%20mission%20de%20police%20du%20ciel%20en%20surveillant%20les%2011%20000%20a%C3%A9ronefs%20qui%20transitent%20quotidiennement%20par%20l%E2%80%99espace%20a%C3%A9rien%20fran%C3%A7ais.%20Sa%20mission%20%3A%20d%C3%A9tecter%2C%20identifier%20et%20si%20besoin%20intercepter%20tout%20intrus%2C%20afin%20de%20faire%20respecter%20la%20souverainet%C3%A9%20nationale%20et%20de%20d%C3%A9fendre%20notre%20territoire%20contre%20toute%20menace%20venant%20des%20airs.%0ALes%20avions%20de%20chasse%20fran%C3%A7ais%20sont%20positionn%C3%A9s%20dans%20diff%C3%A9rentes%20bases%20a%C3%A9riennes%20et%20sont%20pr%C3%AAts%20%C3%A0%20d%C3%A9coller%20%C3%A0%20chaque%20instant%20pour%20intervenir.%20Pour%20s%C3%A9lectionner%20quel%20chasseur%20doit%20intervenir%2C%20des%20experts%20%C3%A9valuent%20la%20situation%20en%20fonction%20des%20conditions%20m%C3%A9t%C3%A9orologiques%2C%20g%C3%A9ographiques%20et%20tactiques.%20Mais%20sachant%20qu%E2%80%99un%20avion%20peut%20traverser%20la%20France%20m%C3%A9tropolitaine%20en%2020%20minutes%20%C3%A0%20tr%C3%A8s%20grande%20vitesse%2C%20chaque%20seconde%20compte%20quand%20un%20%C3%A9v%C3%A9nement%20anormal%20est%20d%C3%A9tect%C3%A9.%0A%0A%23%23%20Probl%C3%A9matique%0AL%E2%80%99id%C3%A9e%20derri%C3%A8re%20SEPIA%20est%20de%20fournir%20aux%20experts%20du%20Centre%20national%20des%20op%C3%A9rations%20a%C3%A9riennes%20%28CNOA%29%20de%20Lyon%20Mont%20Verdun%20un%20outil%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision.%20SEPIA%20calcule%20en%20temps%20r%C3%A9el%20les%20diff%C3%A9rents%20sc%C3%A9narios%20d%E2%80%99intervention%20pour%20les%20a%C3%A9ronefs%20identifi%C3%A9s%2C%20en%20fonction%20de%20divers%20param%C3%A8tres%2C%20comme%20la%20m%C3%A9t%C3%A9o.%0ASEPIA%20utilise%20des%20donn%C3%A9es%20open%20source%20provenant%20par%20exemple%20d%E2%80%99OpenStreetMap%20ou%20de%20data.gouv.fr%20afin%20fournir%20des%20informations%20pertinentes%20et%20%C3%A0%20jour%20pour%20acc%C3%A9l%C3%A9rer%20le%20temps%20de%20r%C3%A9action%20de%20la%20police%20du%20ciel.%0A%0A%23%23%20Objectifs%20%20%20%0APour%20la%20s%C3%BBret%C3%A9%20a%C3%A9rienne%20%28CNOA%29%20%3A%0A%2A%20Corr%C3%A9ler%20trajectoire%20et%20point%20d%E2%80%99int%C3%A9r%C3%AAt%2C%0A%2A%20Aides%20%C3%A0%20la%20d%C3%A9cision%20pour%20optimiser%20l%E2%80%99interception%20d%E2%80%99a%C3%A9ronef%2C%0A%2A%20Syst%C3%A8me%20d%E2%80%99alerte%20multicrit%C3%A8re%20dont%20la%20p%C3%A9n%C3%A9tration%20de%20ZIT%20%28Zone%20interdite%20temporaire%29%2C%20le%20survol%20de%20ZIPVA%20%28Zones%20interdites%20%C3%A0%20la%20prise%20de%20vue%20a%C3%A9rienne%29%E2%80%A6%2C%0A%2A%20Module%20de%20visualisation%20et%20d%E2%80%99alerte%20int%C3%A9ressant%20renseignement%20d%E2%80%99int%C3%A9r%C3%AAt-Air.%0A%0APour%20la%20recherche%20et%20sauvetage%20en%20cas%20de%20crash%20%28RCC%29%20%3A%0A%2A%20D%C3%A9finir%20par%20le%20calcul%20le%20point%20d%E2%80%99impact%20d%E2%80%99un%20crash%20futur%2C%0A%2A%20Rejouer%20le%20vol%20des%20a%C3%A9ronefs.%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28f%C3%A9vrier%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%202__%20%28mars%202019%29%20Atelier%20d%E2%80%99id%C3%A9ation%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%203__%20%28avril%202019%29%20d%C3%A9but%20des%20tests%20utilisateurs%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%204__%20%28mai%202019%29%20Rejointe%20du%20CDAD%20sur%20le%20projet%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%205__%20%28juin%202019%29%20R%C3%A9alisation%20du%20premier%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%206__%20%28dec%202020%29%20R%C3%A9alisation%20du%20deuxi%C3%A8me%20livrable%20%28Lyon%29%20%20%20%0A%0A__%C3%89tape%207__%20%28janv%202020%29%20Nouvelle%20it%C3%A9ration%20avec%20le%20projet%20ALESIA%20%28Paris%29%20%20%20%0A%0A__%C3%89tape%208__%20%28fev%202020%29%20Rejointe%20de%20l%E2%80%99ESIOC%20et%20de%20la%20DGA-MI%20sur%20le%20projet%20%28Bordeaux%29%20%20%20%0A%0A__%C3%89tape%209__%20%28dec%202020%29%20Mise%20en%20production%20de%20la%20troisi%C3%A8me%20version%20%28PMV%29%20%20%20%0A%0A%23%23%20R%C3%A9sultats%0A%5BUn%20site%5D%28https%3A%2F%2Fsepia.fabnum.fr%29%20utilis%C3%A9%20H24%20au%20sein%20de%20la%20salle%20conduite%20du%20CNOA.%20%20%20%0ASyst%C3%A8me%20d%E2%80%99information%20indispensable%20pour%20une%20optimisation%20de%20la%20mission%20de%20s%C3%BBret%C3%A9%20a%C3%A9rienne.%0A%0A%23%23%20en%20chiffres%0APlus%20de%205000%20a%C3%A9ronefs%20suivis%20en%20continu%20%20%20%20%20%0APlus%20de%20100%20alertes%20de%20concernant%20la%20PPS%20par%20mois%0A%0A", "events": [], "phases": [ { "name": "investigation", - "start": "2021-03-01", - "end": "2021-05-21" + "start": "2019-01-25", + "end": "" }, { "name": "construction", - "start": "2021-05-23", + "start": "2020-01-25", "end": "" }, { - "name": "acceleration", - "start": "2022-06-06", + "name": "transfer", + "start": "2022-09-01", "end": "" }, { - "name": "transfer", - "start": "2024-03-25", + "name": "alumni", + "start": "2024-08-21", "end": "" } ], "sponsors": [ "armees" ], - "thematiques": [ - "Formation" - ] + "thematiques": [] }, "relationships": { "incubator": { @@ -281172,34 +273320,42 @@ }, { "404": null, - "url": "https://mes-adresses.data.gouv.fr/", - "category": "fab-geocommuns", - "betaId": "ban", + "url": "https://talents.ssi.gouv.fr/", + "category": "fabnum", "http": { - "url": "https://mes-adresses.data.gouv.fr/", + "url": "https://talents.ssi.gouv.fr/", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 09:03:58 GMT", - "grade": "F", + "end_time": "Sun, 20 Oct 2024 08:22:03 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 09:03:57 GMT", - "ETag": "\"8zkrn6ngou10ke\"", + "Date": "Sun, 20 Oct 2024 08:22:02 GMT", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Powered-By": "Next.js", - "X-Request-ID": "f1fc579a-3129-4993-a8e6-5e130635b717" + "X-Request-ID": "2dbb4033-fd12-48b5-bab3-fda69f675931, 2dbb4033-fd12-48b5-bab3-fda69f675931", + "cache-control": "max-age=0, private, must-revalidate", + "etag": "W/\"2c1bf95b5e5cc56e8f9e019244a84635\"", + "link": "; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_civilsdeladefense_session=Vf%2FDQVyUHCZ43M8RZ7rewxOtOv2mB2osCjT9ldnCc8ChhqaagUDyEFrOwCXIHagB9GckyMsyGGr9gYmgmg1hi6sU%2BaXGk9V9IrpQJg%2BZXD4%2BEk59whOt2%2FMvpTVcJrIsKIMxaiVK%2B6Xc2CavdBw6O66VBb0dDbTYpGKnrm3l01o7EzQdBdX2gRmutJOi6y1K5f4YnarGd6%2BWJtEcTRIrpwuAutq3XkLReF1J7fo%2FQ0xOVNZtTGdKouCI%2B1a2S1UJZRIODKWIp%2BdSvfX%2Fr5hOEb8pdtZJGsBKsy%2BuupGta%2F%2Fo%2Fw%3D%3D--G0kRcB5%2F0A%2Bkzu9Z--kM1vMf54k2Y0xhdPho2dEQ%3D%3D; path=/; secure; httponly; SameSite=Lax", + "strict-transport-security": "max-age=31556952; preload", + "vary": "Accept", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-runtime": "0.065041", + "x-xss-protection": "0" }, - "scan_id": 57056150, - "score": 10, - "start_time": "Sun, 20 Oct 2024 09:03:56 GMT", + "scan_id": 57055282, + "score": 75, + "start_time": "Sun, 20 Oct 2024 08:22:01 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { @@ -281221,13 +273377,24 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, - "sameSite": null + "data": { + "_civilsdeladefense_session": { + "domain": "talents.ssi.gouv.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true }, "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -281248,45 +273415,46 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "http://mes-adresses.data.gouv.fr/", - "redirects": false, + "destination": "https://talents.ssi.gouv.fr/", + "redirects": true, "route": [ - "http://mes-adresses.data.gouv.fr/" + "http://talents.ssi.gouv.fr/", + "https://talents.ssi.gouv.fr/" ], "status_code": 200 }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "strict-origin-when-cross-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, + "data": "max-age=31556952; preload", + "includeSubDomains": false, + "max-age": 31556952, + "preload": true, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -281303,46 +273471,46 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "0" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": 0 } } }, "updownio": { - "token": "1evx", - "url": "https://mes-adresses.data.gouv.fr/", + "token": "d12m", + "url": "https://talents.ssi.gouv.fr/", "alias": null, "last_status": 200, - "uptime": 100, + "uptime": 99.995, "down": false, "down_since": null, - "up_since": "2024-11-24T09:10:22Z", + "up_since": "2024-12-01T08:24:52Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -281353,132 +273521,1240 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T12:09:07Z", - "next_check_at": "2024-11-24T12:10:06Z", - "created_at": "2024-01-15T14:02:07Z", + "last_check_at": "2024-12-01T11:24:21Z", + "next_check_at": "2024-12-01T11:25:20Z", + "created_at": "2024-01-15T13:56:21Z", "mute_until": null, - "favicon_url": "https://mes-adresses.data.gouv.fr/favicon.ico", + "favicon_url": "https://talents.ssi.gouv.fr/assets/favicon-32x32-bb8d4815799252fdfab48b5d8bfd016023a7f90044b3371e4ac3cd4cee350aaf.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T12:07:08Z", - "expires_at": "2025-02-08T06:56:47Z", + "tested_at": "2024-12-01T11:16:23Z", + "expires_at": "2025-01-19T13:55:39Z", "valid": true, "error": null }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 230, - "connection": 141, - "handshake": 145, - "response": 145, - "total": 661 - } + "metrics": { + "apdex": 0.98, + "timings": { + "redirect": 0, + "namelookup": 26, + "connection": 131, + "handshake": 136, + "response": 221, + "total": 515 + } + }, + "uptimeGrade": "A", + "apdexGrade": "C" + }, + "nmap": { + "host": "talents.ssi.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-10-21 13:55" + }, + { + "id": "cert_notAfter", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-01-19 13:55" + }, + { + "id": "cert_extlifeSpan", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "issue=certigna.fr, issue=letsencrypt.org" + }, + { + "id": "certificate_transparency", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1733052024" + }, + { + "id": "HSTS_time", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "365 days (=31556952 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" + }, + { + "id": "banner_reverseproxy", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" + }, + { + "id": "LOGJAM", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "talents.ssi.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "mes-adresses.data.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -281486,7 +274762,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -281494,7 +274770,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -281502,7 +274778,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -281510,7 +274786,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -281518,7 +274794,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -281526,441 +274802,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-11-10 06:56" + "finding": "2024-10-21 13:55" }, { "id": "cert_notAfter", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-02-08 06:56" + "finding": "2025-01-19 13:55" }, { "id": "cert_extlifeSpan", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=certigna.fr, issue=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732449959" + "finding": "1733052082" }, { - "id": "HSTS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "id": "HSTS_time", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31556952 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "security_headers", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "id": "cookie_secure", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "talents.ssi.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -281968,7 +275300,7 @@ }, { "id": "heartbleed", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -281977,7 +275309,7 @@ }, { "id": "CCS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -281986,7 +275318,7 @@ }, { "id": "ticketbleed", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -281995,7 +275327,7 @@ }, { "id": "ROBOT", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -282004,7 +275336,7 @@ }, { "id": "secure_renego", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -282012,7 +275344,7 @@ }, { "id": "secure_client_renego", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -282021,7 +275353,7 @@ }, { "id": "CRIME_TLS", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -282030,16 +275362,16 @@ }, { "id": "BREACH", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -282048,14 +275380,14 @@ }, { "id": "fallback_SCSV", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -282064,7 +275396,7 @@ }, { "id": "FREAK", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -282073,7 +275405,7 @@ }, { "id": "DROWN", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -282082,16 +275414,16 @@ }, { "id": "DROWN_hint", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" }, { "id": "LOGJAM", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -282100,7 +275432,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -282109,7 +275441,7 @@ }, { "id": "BEAST", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -282118,7 +275450,7 @@ }, { "id": "LUCKY13", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -282127,7 +275459,7 @@ }, { "id": "winshock", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -282136,7 +275468,7 @@ }, { "id": "RC4", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -282145,399 +275477,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "mes-adresses.data.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282545,7 +275870,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282553,7 +275878,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282561,7 +275886,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282569,7 +275894,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -282577,7 +275902,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -282585,441 +275910,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-11-10 06:56" + "finding": "2024-10-21 13:55" }, { "id": "cert_notAfter", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-02-08 06:56" + "finding": "2025-01-19 13:55" }, { "id": "cert_extlifeSpan", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=certigna.fr, issue=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732450011" + "finding": "1733052141" }, { - "id": "HSTS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "id": "HSTS_time", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31556952 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "security_headers", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "id": "cookie_secure", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "talents.ssi.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -283027,7 +276408,7 @@ }, { "id": "heartbleed", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -283036,7 +276417,7 @@ }, { "id": "CCS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -283045,7 +276426,7 @@ }, { "id": "ticketbleed", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -283054,7 +276435,7 @@ }, { "id": "ROBOT", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -283063,7 +276444,7 @@ }, { "id": "secure_renego", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -283071,7 +276452,7 @@ }, { "id": "secure_client_renego", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -283080,7 +276461,7 @@ }, { "id": "CRIME_TLS", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -283089,16 +276470,16 @@ }, { "id": "BREACH", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -283107,14 +276488,14 @@ }, { "id": "fallback_SCSV", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -283123,7 +276504,7 @@ }, { "id": "FREAK", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -283132,7 +276513,7 @@ }, { "id": "DROWN", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -283141,16 +276522,16 @@ }, { "id": "DROWN_hint", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" }, { "id": "LOGJAM", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -283159,7 +276540,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -283168,7 +276549,7 @@ }, { "id": "BEAST", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -283177,7 +276558,7 @@ }, { "id": "LUCKY13", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -283186,7 +276567,7 @@ }, { "id": "winshock", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -283195,7 +276576,7 @@ }, { "id": "RC4", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -283204,399 +276585,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "mes-adresses.data.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283604,7 +276978,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283612,7 +276986,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283620,7 +276994,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283628,7 +277002,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283636,7 +277010,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283644,441 +277018,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-10 06:56" + "finding": "2024-10-21 13:55" }, { "id": "cert_notAfter", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-08 06:56" + "finding": "2025-01-19 13:55" }, { "id": "cert_extlifeSpan", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=certigna.fr, issue=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732450065" + "finding": "1733052198" }, { - "id": "HSTS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "id": "HSTS_time", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31556952 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "security_headers", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "id": "cookie_secure", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -284086,7 +277516,7 @@ }, { "id": "heartbleed", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -284095,7 +277525,7 @@ }, { "id": "CCS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -284104,7 +277534,7 @@ }, { "id": "ticketbleed", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -284113,7 +277543,7 @@ }, { "id": "ROBOT", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -284122,7 +277552,7 @@ }, { "id": "secure_renego", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -284130,7 +277560,7 @@ }, { "id": "secure_client_renego", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -284139,7 +277569,7 @@ }, { "id": "CRIME_TLS", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -284148,16 +277578,16 @@ }, { "id": "BREACH", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -284166,14 +277596,14 @@ }, { "id": "fallback_SCSV", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -284182,7 +277612,7 @@ }, { "id": "FREAK", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -284191,7 +277621,7 @@ }, { "id": "DROWN", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -284200,16 +277630,16 @@ }, { "id": "DROWN_hint", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C9AC5634173B101B7A243A21E27709D7C68D965694D768F6D90F8F4E2120059A" }, { "id": "LOGJAM", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284218,7 +277648,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284227,7 +277657,7 @@ }, { "id": "BEAST", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -284236,7 +277666,7 @@ }, { "id": "LUCKY13", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -284245,7 +277675,7 @@ }, { "id": "winshock", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -284254,7 +277684,7 @@ }, { "id": "RC4", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -284263,399 +277693,1683 @@ }, { "id": "clientsimulation-android_60", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "id": "key_exchange_score", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "talents.ssi.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "236" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/operator_logos/893/049/fa-/original/20180613_logo_anssi_m.png" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/image_backgrounds/893/049/fa-/original/20210315_np_anssi_visuel_plateforme_rh_1200x800_v1a.jpg" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/erecrutement-anssi-production/organizations/testimony_logos/893/049/fa-/original/Ga%C3%ABlle.PNG" + } + ], + "cookies": [ + { + "name": "_civilsdeladefense_session", + "value": "CmPNev%2FbvHmy0Usob34Ucn29op76lQGIw%2FN2ohnDntexBe4wc6Hkk4d0a9ia8xej1n6cPqN9q%2FMy1uLY3oEBSwvUNZUcH05do%2B6M%2BW0yEVkiQYWgTK9Zwu2AwOBZPkLlnF%2Fl5YvCiruxqPU09b%2F7iCApTRANrqVyyTgIFtA7bSFsJTGDllIL%2Bl7eRGsCHWYMQbAHFtUjVkU9P%2Fi1c8a6wQaTAnDbAdQm6vr4vfY2zSLJa1%2BnUdG9lST1fUwt%2BkTOND1zgNbcyr1ff3G2bMMtct6pQh5%2BI8qDKi772qWM6XYTWA%3D%3D--lrIcMjIzI9waKT8P--YC9CVpHPaj27XdN6%2BWDMmA%3D%3D", + "domain": "talents.ssi.gouv.fr", + "path": "/", + "expires": -1, + "size": 408, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 11:19:08 GMT", + "etag": "W/\"655ebab3c717cc93e693d6efb64a2943\"", + "link": "; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_civilsdeladefense_session=CmPNev%2FbvHmy0Usob34Ucn29op76lQGIw%2FN2ohnDntexBe4wc6Hkk4d0a9ia8xej1n6cPqN9q%2FMy1uLY3oEBSwvUNZUcH05do%2B6M%2BW0yEVkiQYWgTK9Zwu2AwOBZPkLlnF%2Fl5YvCiruxqPU09b%2F7iCApTRANrqVyyTgIFtA7bSFsJTGDllIL%2Bl7eRGsCHWYMQbAHFtUjVkU9P%2Fi1c8a6wQaTAnDbAdQm6vr4vfY2zSLJa1%2BnUdG9lST1fUwt%2BkTOND1zgNbcyr1ff3G2bMMtct6pQh5%2BI8qDKi772qWM6XYTWA%3D%3D--lrIcMjIzI9waKT8P--YC9CVpHPaj27XdN6%2BWDMmA%3D%3D; path=/; secure; httponly; SameSite=Lax", + "strict-transport-security": "max-age=31556952; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "a82160b2-23d5-4237-ab00-c69c064bd5e9\na82160b2-23d5-4237-ab00-c69c064bd5e9", + "x-runtime": "0.106964", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "talents.ssi.gouv.fr", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "oos.cloudgouv-eu-west-1.outscale.com", + "ip": "148.253.96.5", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://talents.ssi.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "algolia", + "name": "Algolia", + "description": "Algolia offers a hosted web search product delivering real-time results.", + "confidence": 100, + "version": null, + "icon": "Algolia.svg", + "website": "https://www.algolia.com", + "cpe": null, + "categories": [ + { + "id": 29, + "slug": "search-engines", + "name": "Search engines" + } + ], + "rootPath": true + }, + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 50, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 50, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "stimulus", + "name": "Stimulus", + "description": "A modest JavaScript framework for the HTML you already have.", + "confidence": 100, + "version": null, + "icon": "Stimulus.svg", + "website": "https://stimulusjs.org/", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", + "confidence": 100, + "version": null, + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "font-awesome", + "name": "Font Awesome", + "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", + "confidence": 100, + "version": null, + "icon": "Font Awesome.svg", + "website": "https://fontawesome.com/", + "cpe": null, + "categories": [ + { + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://talents.ssi.gouv.fr/", + "finalUrl": "https://talents.ssi.gouv.fr/", + "fetchTime": "2024-12-01T11:18:44.808Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.8 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.83 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.77 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 6478, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1954, + "firstMeaningfulPaint": 3455, + "largestContentfulPaint": 4151, + "interactive": 6478, + "speedIndex": 2596, + "totalBlockingTime": 39, + "maxPotentialFID": 96, + "cumulativeLayoutShift": 0.0004052649603949653, + "cumulativeLayoutShiftMainFrame": 0.0004052649603949653, + "totalCumulativeLayoutShift": 0.0004052649603949653, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 329767887, + "observedNavigationStart": 0, + "observedNavigationStartTs": 329767887, + "observedFirstPaint": 866, + "observedFirstPaintTs": 330633507, + "observedFirstContentfulPaint": 866, + "observedFirstContentfulPaintTs": 330633507, + "observedFirstContentfulPaintAllFrames": 866, + "observedFirstContentfulPaintAllFramesTs": 330633507, + "observedFirstMeaningfulPaint": 978, + "observedFirstMeaningfulPaintTs": 330746153, + "observedLargestContentfulPaint": 967, + "observedLargestContentfulPaintTs": 330734814, + "observedLargestContentfulPaintAllFrames": 967, + "observedLargestContentfulPaintAllFramesTs": 330734814, + "observedTraceEnd": 3855, + "observedTraceEndTs": 333622544, + "observedLoad": 1440, + "observedLoadTs": 331207404, + "observedDomContentLoaded": 870, + "observedDomContentLoadedTs": 330638020, + "observedCumulativeLayoutShift": 0.0004052649603949653, + "observedCumulativeLayoutShiftMainFrame": 0.0004052649603949653, + "observedTotalCumulativeLayoutShift": 0.0004052649603949653, + "observedFirstVisualChange": 868, + "observedFirstVisualChangeTs": 330635887, + "observedLastVisualChange": 1602, + "observedLastVisualChangeTs": 331369887, + "observedSpeedIndex": 1126, + "observedSpeedIndexTs": 330893597 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 14, + "numScripts": 1, + "numStylesheets": 1, + "numFonts": 5, + "numTasks": 830, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 102.02, + "throughput": 11527119.37358636, + "maxRtt": 102.14399999999999, + "maxServerLatency": 7.256999999999991, + "totalByteWeight": 1364746, + "totalTaskTime": 157.21999999999923, + "mainDocumentTransferSize": 5832 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 3, + "missingWords": [ + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://talents.ssi.gouv.fr/pages/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://talents.ssi.gouv.fr/pages/politique-de-confidentialite-0c7787af-36a3-4e13-8dbb-233c975ee4de" + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://talents.ssi.gouv.fr/", + "size": 1397.959, + "nodes": 270, + "requests": 11, + "grade": "B", + "score": 78, + "ges": 1.44, + "water": 2.16, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 11:15:42.698450", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 0.98, + "apdexGrade": "C", + "uptime": 99.995, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-19T13:55:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.8, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.83, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.77, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://metiis.fabnum.fr/", + "category": "fabnumdef", + "betaId": "metiis", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "metiis.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'metiis.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "metiis.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://metiis.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (metiis.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "metiis", + "type": "startup", + "attributes": { + "name": "METIIS", + "pitch": "Révéler le potentiel de la réserve", + "stats_url": "", + "link": "https://metiis.fabnum.fr", + "contact": "metiis@fabnum.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0ALe%20service%20num%C3%A9rique%20METIIS%2C%20port%C3%A9%20par%20le%20commandement%20pour%20le%20territoire%20national%2C%20a%20pour%20vocation%20de%20transformer%20le%20potentiel%20de%20la%20r%C3%A9serve%20en%20force%20pour%20l%E2%80%99arm%C3%A9e%20de%20terre.%20L%27arm%C3%A9e%20de%20terre%20emploie%20pr%C3%A8s%20de%2025%20000%20r%C3%A9servistes%2C%20r%C3%A9partis%20au%20sein%20d%27une%20centaine%20d%27unit%C3%A9s%20sur%20tout%20le%20territoire%20national.%20Chaque%20jour%2C%202%20793%20r%C3%A9servistes%20de%20l%27arm%C3%A9e%20de%20terre%20sont%20employ%C3%A9s%2C%20dont%20650%20d%27entre%20eux%20pour%20des%20missions%20de%20s%C3%A9curit%C3%A9.%20Employ%C3%A9s%20en%20moyenne%2042%20jours%20par%20an%2C%20les%20r%C3%A9servistes%20doivent%20concilier%20leur%20vie%20personnelle%20et%20professionnelle%20avec%20leur%20engagement%20militaire.%20La%20disponibilit%C3%A9%20du%20r%C3%A9serviste%20peut%20%C3%AAtre%20de%20ce%20fait%20limit%C3%A9e%20%3A%20l%27organisation%20d%27exercices%20ou%20de%20missions%20op%C3%A9rationnelles%20r%C3%A9unissant%20plusieurs%20r%C3%A9servistes%20rel%C3%A8ve%20parfois%20du%20d%C3%A9fi.%0A%0APar%20ailleurs%2C%20les%20r%C3%A9servistes%2C%20vivier%20repr%C3%A9sentatif%20de%20la%20population%20fran%C3%A7aise%2C%20disposent%20de%20comp%C3%A9tences%20diversifi%C3%A9es%2C%20qui%2C%20lorsqu%27elle%20ne%20sont%20pas%20imm%C3%A9diatement%20li%C3%A9es%20%C3%A0%20leur%20mission%2C%20sont%20parfois%20m%C3%A9connues%20par%20l%27institution%20militaire.%0A%0AL%E2%80%99objectif%20est%20de%20produire%20un%20produit%20minimum%20viable%20%28PMV%29%20pour%20juin%202020.%20%0A%0A%23%23%20Probl%C3%A9matique%0AD%C3%A9velopp%C3%A9%20en%20mode%20agile%2C%20ce%20service%20accessible%20sur%20internet%20a%20pour%20objectif%20de%20maximiser%20l%E2%80%99appariement%20entre%20la%20disponibilit%C3%A9%20des%20r%C3%A9servistes%20et%20les%20besoins%20des%20employeurs.%20L%E2%80%99%C3%A9quipe%20projet%20a%20%C3%A9troitement%20collabor%C3%A9%20dans%20toutes%20les%20phases%20du%20projet%20avec%20les%20r%C3%A9servistes%20de%20la%2027%C3%A8me%20Brigade%20d%E2%80%99Infanterie%20de%20Montagne%20%2827%C3%A8me%20BIM%29%20situ%C3%A9e%20%C3%A0%20Grenoble.%0AVecteur%20d%E2%80%99information%20entre%20les%20r%C3%A9servistes%2C%20souvent%20hors%20des%20murs%20des%20emprises%20de%20l%E2%80%99arm%C3%A9e%20de%20terre%2C%20et%20leurs%20employeurs%2C%20METIIS%20a%20%C3%A9galement%20pour%20objectif%20de%20mieux%20s%C3%A9curiser%20les%20%C3%A9changes%20ayant%20lieu%20sur%20des%20r%C3%A9seaux%20non%20prot%C3%A9g%C3%A9s.%0A%0A%23%23%20Objectifs%0APour%20les%20employeurs%20%28commandement%29%20%3A%0A%2A%20Cr%C3%A9er%20des%20activit%C3%A9s%2C%20%0A%2A%20Visualiser%20les%20disponibilit%C3%A9s%20des%20r%C3%A9servistes%2C%0A%2A%20Suivre%20l%E2%80%99%C3%A9volution%20de%20l%E2%80%99effectif%20disponible%2C%0A%0APour%20les%20employ%C3%A9s%20%28tous%20les%20r%C3%A9servistes%20volontaires%29%20%3A%0A%2A%20Renseigner%20leurs%20disponibilit%C3%A9s%2C%0A%2A%20Visualiser%20les%20activit%C3%A9s%20%C3%A0%20venir%2C%0A%2A%20Visualiser%20le%20d%C3%A9tail%20des%20activit%C3%A9s%2C%0A%2A%20Candidater%20%C3%A0%20des%20activit%C3%A9s%2C%0A%2A%20Suivre%20l%E2%80%99avanc%C3%A9e%20de%20leurs%20inscriptions%20%C3%A0%20des%20activit%C3%A9s%2C%0A%2A%20Renseigner%20leurs%20informations%20personnelles.%0A%0A%0A%23%23%20Chronologie%0A__Etape%201__%20%28d%C3%A9cembre%202019%29%20Recueil%20du%20besoin%2Fatelier%20utilisateur%20%28Grenoble%29%0A%0A__Etape%202__%20%28janvier%202020%29%20Atelier%20d%E2%80%99id%C3%A9ation%2Fr%C3%A9alisation%20des%20wireframes%20%28Bourges%29%0A%0A__Etape%203__%20%28janvier%202020%29%20R%C3%A9alisation%20des%20tests%20utilisateurs%20%28Grenoble%29%0A%0A__Etape%204__%20%28f%C3%A9vrier%202020%29%20Validation%20du%20p%C3%A9rim%C3%A8tre%2Fr%C3%A9alisation%20du%20premier%20livrable%20%28Paris%2C%20Bourges%29%0A%0A__Etape%205__%20%28mars%2Favril%202020%29%20R%C3%A9alisation%20des%20tests%20utilisateurs%20%28%C3%A0%20distance%29%0A%0A__Etape%206__%20%28juin%202020%29%20Mise%20en%20production%20de%20la%20version%20BETA%20%0A%0A__Etape%207__%20%28juin%202020%29%20Mise%20en%20production%20de%20la%20premi%C3%A8re%20version%20%28PMV%29%0A%0A__Etape%208__%20%28novembre%202020%29%20Extension%20%C3%A0%20de%20nouvelles%20Brigade%20et%20recueil%20des%20nouveaux%20besoins%0A%0ASuite%20%C3%A0%20la%20bonne%20adh%C3%A9sion%20des%20r%C3%A9servistes%20%C3%A0%20l%E2%80%99outil%2C%20l%E2%80%99objectif%20est%20d%C3%A9sormais%20de%20r%C3%A9aliser%20un%20d%C3%A9ploiement%20de%20celui-ci%20%C3%A0%20d%E2%80%99autres%20brigades%20puis%20au%20national%20avec%20l%E2%80%99ajout%20de%20certaines%20fonctionnalit%C3%A9s.%0A%0A%23%23%20R%C3%A9sultat%0AUn%20%5Bsite%20internet%5D%28https%3A%2F%2Fmetiis.fabnum.fr%2Fconnexion%29%0A%0A%23%23%20En%20chiffre%0A2%20brigades%20%3A%2027BIM%20%28juin%202020%29%2C%209BIMa%20%28novembre%202020%29%0A%0A%2B750%20utilisateurs%20actifs%0A60%25%20de%20taux%20d%27adoption%20%28fin%20novembre%202020%29%0A%2B400%20activit%C3%A9s%20cr%C3%A9%C3%A9es%20et%20g%C3%A9r%C3%A9es%0A%0A%0A%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2019-10-01", + "end": "2019-11-30" + }, + { + "name": "construction", + "start": "2019-11-30", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [] + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://stargate.igloo.fabnum.fr/", + "category": "fabnumdef", + "betaId": "stargate", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "stargate.igloo.fabnum.fr/", "port": "443", - "severity": "INFO", - "finding": "90" + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'stargate.igloo.fabnum.fr' available" }, { - "id": "key_exchange_score_weighted", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "id": "scanTime", + "ip": "stargate.igloo.fabnum.fr/", "port": "443", - "severity": "INFO", - "finding": "27" + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://stargate.igloo.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (stargate.igloo.fabnum.fr)" + } }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score_weighted", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "stargate", + "type": "startup", + "attributes": { + "name": "STARGATE", + "pitch": "Repenser l'accès aux bases de défense", + "stats_url": "", + "contact": "mathieu.mahr@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0AL%E2%80%99acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20du%20territoire%20national%2C%20que%20ce%20soit%20pour%20des%20militaires%20ou%20des%20civils%2C%20fait%20l%E2%80%99objet%20d%E2%80%99une%20attention%20particuli%C3%A8re.%20En%20effet%2C%20pour%20des%20raisons%20de%20s%C3%A9curit%C3%A9%2C%20leur%20acc%C3%A8s%20est%20r%C3%A9glement%C3%A9%20et%20les%20personnes%20souhaitant%20y%20entrer%20doivent%20fournir%20un%20certain%20nombre%20d%E2%80%99informations.%20%20%0ALa%20gestion%20des%20acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20r%C3%A9pond%20aujourd%E2%80%99hui%20%C3%A0%20un%20processus%20long%20et%20chronophage%2C%20o%C3%B9%20de%20nombreux%20acteurs%20interviennent%20en%20travaillant%20sur%20des%20syst%C3%A8mes%20d%E2%80%99informations%20diff%C3%A9rents.%0AL%E2%80%99enjeu%20est%20d%E2%80%99am%C3%A9liorer%20l%E2%80%99acc%C3%A8s%20%C3%A0%20un%20site%20prot%C3%A9g%C3%A9%2C%20dont%20les%20visites%20de%20personnes%20ext%C3%A9rieures%20sont%20n%C3%A9cessaires%20%C3%A0%20son%20fonctionnement.%0A%0A%23%23%20Probl%C3%A9matique%0A%0ALe%20projet%20Stargate%20vise%20ainsi%20%C3%A0%20r%C3%A9unir%20dans%20un%20m%C3%AAme%20logiciel%20l%E2%80%99ensemble%20des%20acteurs%20de%20ce%20processus%20afin%20de%20permettre%20une%20homog%C3%A9n%C3%A9isation%20des%20proc%C3%A9dures%20et%20une%20fluidit%C3%A9%20dans%20la%20transmission%20des%20informations.%0ALes%20objectifs%20vis%C3%A9s%20sont%20clairs%20%3A%20gain%20de%20temps%2C%20meilleure%20efficacit%C3%A9%20dans%20les%20traitements%20et%20renforcement%20de%20la%20s%C3%A9curit%C3%A9%20des%20acc%C3%A8s.%0ALa%20base%20navale%20de%20Cherbourg%20est%20la%20base%20pilote%20pour%20ce%20projet%20pour%20une%20mise%20en%20production%20pr%C3%A9vue%20pour%20l%E2%80%99%C3%A9t%C3%A9%202020.%0A%0A%23%23%20Objectifs%20%20%20%0A%2A%20Eviter%20le%20retraitement%20d%E2%80%99informations%0A%2A%20Am%C3%A9liorer%20la%20transmission%20des%20informations%20entre%20les%20acteurs%0A%2A%20Am%C3%A9liorer%20le%20temps%20de%20d%C3%A9livrance%20de%20badge%20d%E2%80%99acc%C3%A8s%0A%0A%0A%23%23%20Chronologie%0A__%C3%89tape%201__%20%28janvier%202020%29%20D%C3%A9finition%20des%20acteurs.%20Parcours%20utilisateur%20pour%20la%20cr%C3%A9ation%20d%E2%80%99une%20demande%20de%20visite%20et%20circuit%20de%20validation%20associ%C3%A9.%20%C3%89tude%20du%20syst%C3%A8me%20existant%20et%20recherche%20des%20irritants%20associ%C3%A9s.%20%20%20%0A%0A__%C3%89tape%202__%20%28f%C3%A9vrier%202020%29%20%20Prototype%20cr%C3%A9ation%20d%E2%80%99une%20demande%20de%20visite%2C%20test%20utilisateur%2C%20d%C3%A9finition%20de%20la%20vision%20du%20projet%20et%20approfondissement%20des%20besoins%20du%20futur%20syst%C3%A8me.%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20des%20tests%2C%20roadmap%2C%20wireframe%20%20%20%0A%0A__%C3%89tape%203__%20%28ao%C3%BBt%202020%29%20Version%20alpha%20du%20SI.%20%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20test%20utilisateur%20%20%20%0A%0A__%C3%89tape%204__%20%28novembre%202020%29%20Etude%20des%20besoins%20des%20bases%20a%C3%A9riennes%20%28Creil%20%26%20Istres%29%2C%20pr%C3%A9sentation%20du%20SI%20et%20test%20utilisateur.%20%20%20%0ALivrable%20%3A%20Etude%20de%20faisabilit%C3%A9%20pour%20l%E2%80%99ouverture%20du%20SI%20aux%20bases%20a%C3%A9riennes%20%20%20%20%0A%0A__%C3%89tape%205__%20%28d%C3%A9cembre%202020%29%20Test%20utilisateur%20%20%20%0ALivrable%20%3A%20R%C3%A9sultat%20des%20test%20utilisateurs%20%20%20%20%0A%0A__%C3%89tape%206__%20%28janvier%202021%29%20Livraison%20version%20beta%20du%20SI%20%20%20%20%0A%0A%0A%23%23%20R%C3%A9sultats%0AUne%20interface%20de%20gestion%20pour%20les%20acc%C3%A8s%20aux%20bases%20de%20d%C3%A9fense%20%0A%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2019-10-01", + "end": "2019-11-30" + }, + { + "name": "construction", + "start": "2019-11-30", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [] }, - { - "id": "final_score", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://chatbot.fabnum.fr/", + "category": "fabnumdef", + "betaId": "usine-chatbots", + "http": { + "url": "https://chatbot.fabnum.fr/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 08:50:28 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-cache", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 08:50:27 GMT", + "ETag": "W/\"65d5ce38-abc\"", + "Expires": "Thu, 01 Jan 1970 00:00:01 GMT", + "Last-Modified": "Wed, 21 Feb 2024 10:19:36 GMT", + "Server": "nginx", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-XSS-Protection": "1; mode=block" }, - { - "id": "overall_grade", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57055891, + "score": 80, + "start_time": "Sun, 20 Oct 2024 08:50:21 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "default-src": [ + "'self'" + ], + "frame-src": [ + "dev.chatbot.fabnum.fr" + ], + "img-src": [ + "data:", + "*" + ], + "script-src": [ + "'unsafe-inline'", + "dev.chatbot.fabnum.fr", + "'self'" + ], + "script-src-elem": [ + "'unsafe-inline'", + "dev.chatbot.fabnum.fr", + "stats.data.gouv.fr", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": true, + "route": [], + "status_code": null + }, + "pass": true, + "result": "redirection-not-needed-no-http", + "score_description": "Not able to connect via HTTP, so no redirection necessary", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "u9u4", + "url": "https://chatbot.fabnum.fr/", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T16:53:42Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T11:53:26Z", + "next_check_at": "2024-12-01T11:54:26Z", + "created_at": "2024-01-15T13:37:42Z", + "mute_until": null, + "favicon_url": "https://chatbot.fabnum.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T11:44:29Z", + "expires_at": "2025-01-08T17:52:38Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "mes-adresses.data.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 95, + "connection": 122, + "handshake": 127, + "response": 124, + "total": 469 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "chatbot.fabnum.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "7.9p1 Debian 10+deb10u4", + "vulnerabilities": [ + { + "is_exploit": "false", + "type": "cve", + "cvss": "9.8", + "id": "CVE-2023-38408" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "7.8", + "id": "CVE-2020-15778" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "7.8", + "id": "CVE-2019-16905" + }, + { + "is_exploit": "true", + "type": "seebug", + "cvss": "7.5", + "id": "SSV:92579" + }, + { + "is_exploit": "true", + "type": "packetstorm", + "cvss": "7.5", + "id": "PACKETSTORM:173661" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "is_exploit": "true", + "type": "zdt", + "cvss": "7.5", + "id": "1337DAY-ID-26576" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "7.0", + "id": "CVE-2021-41617" + }, + { + "is_exploit": "true", + "type": "exploitdb", + "cvss": "6.8", + "id": "EDB-ID:46516" + }, + { + "is_exploit": "true", + "type": "exploitdb", + "cvss": "6.8", + "id": "EDB-ID:46193" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "6.8", + "id": "CVE-2019-6110" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "6.8", + "id": "CVE-2019-6109" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" + }, + { + "is_exploit": "true", + "type": "githubexploit", + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "6.5", + "id": "CVE-2023-51385" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "5.9", + "id": "CVE-2023-48795" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "5.9", + "id": "CVE-2020-14145" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "5.9", + "id": "CVE-2019-6111" + }, + { + "is_exploit": "true", + "type": "exploitpack", + "cvss": "5.8", + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19" + }, + { + "is_exploit": "true", + "type": "exploitpack", + "cvss": "5.8", + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97" + }, + { + "is_exploit": "true", + "type": "zdt", + "cvss": "5.8", + "id": "1337DAY-ID-32328" + }, + { + "is_exploit": "true", + "type": "zdt", + "cvss": "5.8", + "id": "1337DAY-ID-32009" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "5.3", + "id": "CVE-2018-20685" + }, + { + "is_exploit": "false", + "type": "cve", + "cvss": "5.3", + "id": "CVE-2016-20012" + }, + { + "is_exploit": "true", + "type": "packetstorm", + "cvss": "0.0", + "id": "PACKETSTORM:151227" + }, + { + "is_exploit": "true", + "type": "packetstorm", + "cvss": "0.0", + "id": "PACKETSTORM:140261" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https-alt", + "id": "8443", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284663,7 +279377,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284671,7 +279385,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284679,7 +279393,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284687,7 +279401,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -284695,449 +279409,491 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "2024-11-10 06:56" + "finding": "2024-10-10 17:52" }, { "id": "cert_notAfter", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", - "finding": "2025-02-08 06:56" + "finding": "2025-01-08 17:52" }, { "id": "cert_extlifeSpan", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "1732450118" + "finding": "1733053959" }, { - "id": "HSTS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "id": "HSTS_time", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "id": "X-Frame-Options", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr" + }, + { + "id": "X-XSS-Protection", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "chatbot.fabnum.fr/51.38.43.26", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -285145,7 +279901,7 @@ }, { "id": "heartbleed", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -285154,7 +279910,7 @@ }, { "id": "CCS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -285163,7 +279919,7 @@ }, { "id": "ticketbleed", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -285172,16 +279928,16 @@ }, { "id": "ROBOT", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -285189,7 +279945,7 @@ }, { "id": "secure_client_renego", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -285198,7 +279954,7 @@ }, { "id": "CRIME_TLS", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -285207,16 +279963,16 @@ }, { "id": "BREACH", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -285225,14 +279981,14 @@ }, { "id": "fallback_SCSV", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -285241,7 +279997,7 @@ }, { "id": "FREAK", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -285250,7 +280006,7 @@ }, { "id": "DROWN", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -285259,34 +280015,34 @@ }, { "id": "DROWN_hint", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DD0E6A8FCF0F6EAB77550A0D6E2731E5EA29CC4FF37133B29E57310C3C97557B" }, { - "id": "LOGJAM", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "id": "LOGJAM-common_primes", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "OK", + "severity": "INFO", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "RFC7919/ffdhe2048" }, { - "id": "LOGJAM-common_primes", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "id": "LOGJAM", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { "id": "BEAST", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -285295,16 +280051,16 @@ }, { "id": "LUCKY13", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -285313,7 +280069,7 @@ }, { "id": "RC4", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -285322,350 +280078,381 @@ }, { "id": "clientsimulation-android_60", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_81", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_90", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "217" + "finding": "92" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "_pk_ses.130.2535", + "value": "1", + "domain": "chatbot.fabnum.fr", + "path": "/", + "expires": 1733055673, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.130.2535", + "value": "e5c5192f4925f664.1733053874.", + "domain": "chatbot.fabnum.fr", + "path": "/", + "expires": 1767009074, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { + "cache-control": "no-cache", "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 12:04:56 GMT", - "etag": "\"gm0dhwbtvj10l5\"", + "content-security-policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 11:51:12 GMT", + "etag": "W/\"65d5ce38-abc\"", + "expires": "Thu, 01 Jan 1970 00:00:01 GMT", + "last-modified": "Wed, 21 Feb 2024 10:19:36 GMT", + "server": "nginx", + "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Accept-Encoding", - "x-powered-by": "Next.js", - "x-request-id": "7b6dba34-3673-41d2-9bb6-4674f6fcf976" + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "mes-adresses.data.gouv.fr", - "ip": "185.21.194.105", + "hostname": "chatbot.fabnum.fr", + "ip": "51.38.43.26", "geoip": { "continent": { "code": "EU", @@ -285697,7 +280484,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 200, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -285723,20 +280510,38 @@ }, "wappalyzer": { "urls": { - "https://mes-adresses.data.gouv.fr/": { + "https://chatbot.fabnum.fr/": { "status": 200 } }, "technologies": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", "confidence": 100, "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "typescript", + "name": "TypeScript", + "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", + "confidence": 100, + "version": null, + "icon": "TypeScript.svg", + "website": "https://www.typescriptlang.org", + "cpe": null, "categories": [ { "id": 27, @@ -285746,51 +280551,77 @@ ] }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "zone-js", + "name": "Zone.js", + "description": null, + "confidence": 100, + "version": null, + "icon": "Angular.svg", + "website": "https://github.com/angular/angular/tree/master/packages/zone.js", + "cpe": null, "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" } - ] + ], + "rootPath": true }, { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", + "slug": "angular", + "name": "Angular", + "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", "confidence": 100, - "version": "13.5.6", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "version": "15.1.0", + "icon": "Angular.svg", + "website": "https://angular.io", + "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ { "id": 22, "slug": "web-servers", "name": "Web servers" }, { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ], "rootPath": true @@ -285814,19 +280645,19 @@ "rootPath": true }, { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, "categories": [ { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true @@ -285835,7 +280666,7 @@ "slug": "webpack", "name": "Webpack", "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, + "confidence": 50, "version": null, "icon": "Webpack.svg", "website": "https://webpack.js.org/", @@ -285848,6 +280679,24 @@ } ] }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, { "slug": "module-federation", "name": "Module Federation", @@ -285871,9 +280720,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://mes-adresses.data.gouv.fr/", - "finalUrl": "https://mes-adresses.data.gouv.fr/", - "fetchTime": "2024-11-24T12:04:31.268Z", + "requestedUrl": "https://chatbot.fabnum.fr/", + "finalUrl": "https://chatbot.fabnum.fr/", + "fetchTime": "2024-12-01T11:50:46.079Z", "runWarnings": [], "categories": { "performance": { @@ -285884,7 +280733,7 @@ "snapshot" ], "id": "performance", - "score": 0.78 + "score": 0.69 }, "accessibility": { "title": "Accessibility", @@ -285895,7 +280744,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.91 + "score": 0.9 }, "best-practices": { "title": "Best Practices", @@ -285905,7 +280754,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.83 }, "seo": { "title": "SEO", @@ -285916,7 +280765,7 @@ "snapshot" ], "id": "seo", - "score": 0.88 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -285926,7 +280775,7 @@ "navigation" ], "id": "pwa", - "score": 0.3 + "score": 1 } }, "audits": { @@ -285936,53 +280785,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4703, + "numericValue": 3580, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 904, - "firstMeaningfulPaint": 904, - "largestContentfulPaint": 1054, - "interactive": 4703, - "speedIndex": 1585, - "totalBlockingTime": 455, - "maxPotentialFID": 288, - "cumulativeLayoutShift": 0.2930975477430556, - "cumulativeLayoutShiftMainFrame": 0.2930975477430556, - "totalCumulativeLayoutShift": 0.2930975477430556, + "firstContentfulPaint": 1518, + "firstMeaningfulPaint": 3134, + "largestContentfulPaint": 4237, + "interactive": 3580, + "speedIndex": 3495, + "totalBlockingTime": 367, + "maxPotentialFID": 256, + "cumulativeLayoutShift": 0.19551295471191404, + "cumulativeLayoutShiftMainFrame": 0.19551295471191404, + "totalCumulativeLayoutShift": 0.19551295471191404, "observedTimeOrigin": 0, - "observedTimeOriginTs": 433337674, + "observedTimeOriginTs": 389267568, "observedNavigationStart": 0, - "observedNavigationStartTs": 433337674, - "observedFirstPaint": 385, - "observedFirstPaintTs": 433722297, - "observedFirstContentfulPaint": 385, - "observedFirstContentfulPaintTs": 433722297, - "observedFirstContentfulPaintAllFrames": 385, - "observedFirstContentfulPaintAllFramesTs": 433722297, - "observedFirstMeaningfulPaint": 385, - "observedFirstMeaningfulPaintTs": 433722297, - "observedLargestContentfulPaint": 385, - "observedLargestContentfulPaintTs": 433722297, - "observedLargestContentfulPaintAllFrames": 385, - "observedLargestContentfulPaintAllFramesTs": 433722297, - "observedTraceEnd": 3707, - "observedTraceEndTs": 437045072, - "observedLoad": 1273, - "observedLoadTs": 434611058, - "observedDomContentLoaded": 652, - "observedDomContentLoadedTs": 433990167, - "observedCumulativeLayoutShift": 0.2930975477430556, - "observedCumulativeLayoutShiftMainFrame": 0.2930975477430556, - "observedTotalCumulativeLayoutShift": 0.2930975477430556, - "observedFirstVisualChange": 394, - "observedFirstVisualChangeTs": 433731674, - "observedLastVisualChange": 961, - "observedLastVisualChangeTs": 434298674, - "observedSpeedIndex": 510, - "observedSpeedIndexTs": 433847479 + "observedNavigationStartTs": 389267568, + "observedFirstPaint": 679, + "observedFirstPaintTs": 389946085, + "observedFirstContentfulPaint": 679, + "observedFirstContentfulPaintTs": 389946085, + "observedFirstContentfulPaintAllFrames": 679, + "observedFirstContentfulPaintAllFramesTs": 389946085, + "observedFirstMeaningfulPaint": 1153, + "observedFirstMeaningfulPaintTs": 390420734, + "observedLargestContentfulPaint": 1270, + "observedLargestContentfulPaintTs": 390538021, + "observedLargestContentfulPaintAllFrames": 1270, + "observedLargestContentfulPaintAllFramesTs": 390538021, + "observedTraceEnd": 4119, + "observedTraceEndTs": 393386394, + "observedLoad": 1346, + "observedLoadTs": 390613984, + "observedDomContentLoaded": 929, + "observedDomContentLoadedTs": 390196109, + "observedCumulativeLayoutShift": 0.19551295471191404, + "observedCumulativeLayoutShiftMainFrame": 0.19551295471191404, + "observedTotalCumulativeLayoutShift": 0.19551295471191404, + "observedFirstVisualChange": 933, + "observedFirstVisualChangeTs": 390200568, + "observedLastVisualChange": 3950, + "observedLastVisualChangeTs": 393217568, + "observedSpeedIndex": 1241, + "observedSpeedIndexTs": 390509046 }, { "lcpInvalidated": false @@ -286000,23 +280849,23 @@ "type": "debugdata", "items": [ { - "numRequests": 37, - "numScripts": 22, + "numRequests": 29, + "numScripts": 6, "numStylesheets": 1, - "numFonts": 0, - "numTasks": 711, - "numTasksOver10ms": 8, - "numTasksOver25ms": 5, - "numTasksOver50ms": 1, + "numFonts": 3, + "numTasks": 987, + "numTasksOver10ms": 6, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.43, - "throughput": 16363654.434248012, - "maxRtt": 87.043, - "maxServerLatency": 4.018999999999991, - "totalByteWeight": 1070183, - "totalTaskTime": 365.3439999999987, - "mainDocumentTransferSize": 9615 + "rtt": 101.243, + "throughput": 15986830.79455855, + "maxRtt": 105.054, + "maxServerLatency": 6.415000000000006, + "totalByteWeight": 1039146, + "totalTaskTime": 318.8009999999981, + "mainDocumentTransferSize": 1826 } ] } @@ -286032,11 +280881,11 @@ "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://mes-adresses.data.gouv.fr/accessibilite" + "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/accessibilite-du-site" }, "declaration-rgpd": [ { @@ -286046,97 +280895,64 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://mes-adresses.data.gouv.fr/mentions-legales" + "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 3, + "missingWords": [ + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://fabrique-a-chatbots.gitbook.io/fabrique-a-chatbots/politique-de-confidentialite" } ], "betagouv": { - "id": "ban", + "id": "usine-chatbots", "type": "startup", "attributes": { - "name": "Base Adresse Nationale", - "pitch": "Référencer l'intégralité des adresses du territoire français", - "stats_url": "https://adresse.data.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#Base-Adresse-Nationale", - "link": "https://adresse.data.gouv.fr", - "repository": "https://github.com/BaseAdresseNationale", - "contact": "adresse@data.gouv.fr", - "content_url_encoded_markdown": "La%20Base%20Adresse%20Nationale%20est%20une%20des%20neuf%20bases%20de%20donn%C3%A9es%20du%20service%20public%20des%20donn%C3%A9es%20de%20r%C3%A9f%C3%A9rence%20et%20a%20pour%20vocation%20de%20r%C3%A9f%C3%A9rencer%20l%27ensemble%20des%20adresses%20du%20territoire%20national.%20Service%20num%C3%A9rique%20d%E2%80%99usage%20partag%C3%A9%20et%20infrastructure%20socle%20sur%20laquelle%20sont%20adoss%C3%A9es%20de%20nombreuses%20politiques%20publiques%2C%20elle%20fait%20partie%20du%20syst%C3%A8me%20d%E2%80%99information%20et%20de%20communication%20de%20l%E2%80%99%C3%89tat.%0A%0AElle%20est%20le%20fruit%20de%20la%20collaboration%20de%C2%A0%3A%0A%0A-%20la%20%5BDINUM%5D%28https%3A%2F%2Fwww.numerique.gouv.fr%2F%29%0A-%20l%27%5BANCT%5D%28https%3A%2F%2Fagence-cohesion-territoires.gouv.fr%2F%29%0A-%20l%27%5BIGN%5D%28http%3A%2F%2Fwww.ign.fr%2F%29%20%3B%0A%0A%0ASa%20construction%20est%20assur%C3%A9e%20gr%C3%A2ce%20%C3%A0%20de%20nombreux%20partenaires%2C%20et%20en%20premier%20lieu%20par%20les%20communes%2C%20seules%20autorit%C3%A9s%20comp%C3%A9tentes%20en%20terme%20d%E2%80%99adressage.%0A%0ALa%20Base%20Adresse%20Nationale%20est%20accessible%20sous%20forme%20de%20fichiers%20et%20d%E2%80%99API.%0A%0APar%20ailleurs%2C%20la%20plateforme%20BAN%20met%20%C3%A0%20disposition%20des%20outils%20compl%C3%A9mentaires%20gratuits%20pour%20faciliter%20la%20mise%20%C3%A0%20jour%20de%20la%20base%20et%20sa%20r%C3%A9utilisation%C2%A0%3A%0A%0A-%20l%27outil%20de%20cr%C3%A9ation%20des%20BAL%20et%20int%C3%A9gration%20%20dans%20la%20BAN%20%3A%20%5BMes-Adresses%5D%28https%3A%2F%2Fmes-adresses.data.gouv.fr%2F%29%0A-%20une%20%5BAPI%20de%20g%C3%A9ocodage%5D%28https%3A%2F%2Fapi.gouv.fr%2Fapi%2Fbase-adresse-nationale.html%29%20qui%20permet%20aussi%20de%20faire%20de%20l%27auto-compl%C3%A9tion%20%3B%20et%0A-%20une%20application%20mobile%20qui%20permet%20%C3%A0%20chacun%20de%20contribuer%20au%20r%C3%A9f%C3%A9rentiel%20_%28%C3%A0%20venir%29_.%0A", - "events": [ - { - "name": "committee", - "date": "2022-02-23", - "comment": "" - }, - { - "name": "committee", - "date": "2022-11-21", - "comment": "" - }, - { - "name": "committee", - "date": "2023-09-21", - "comment": "" - }, - { - "name": "committee", - "date": "2024-04-02", - "comment": "" - }, - { - "name": "committee", - "date": "2024-10-16", - "comment": "" - } - ], + "name": "Usine à chatbots", + "pitch": "Automatiser la conception de chatbots", + "stats_url": "https://chatbot.fabnum.fr//stats", + "link": "https://chatbot.fabnum.fr/", + "repository": "https://github.com/fabnumdef/fabrique-chatbot", + "contact": "fabrique-chatbots@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20projet%20a%20%C3%A9t%C3%A9%20initi%C3%A9%20par%20la%20RH%20Marine%20qui%20souhaitait%20mettre%20%C3%A0%20disposition%20de%20ses%20agents%20un%20chatbot%20qui%20r%C3%A9pondrait%20aux%20questions%20RH.%20Afin%20de%20faire%20b%C3%A9n%C3%A9ficier%20d%E2%80%99autres%20projets%20de%20chatbot%20au%20sein%20du%20minist%C3%A8re%2C%20ce%20projet%20s%E2%80%99est%20transform%C3%A9%20en%20un%20projet%20plus%20global%20d%27usine%20%C3%A0%20chatbots.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AL%27objectif%20de%20l%27Usine%20%C3%A0%20chatbots%20est%20de%20redonner%20l%27autonomie%20aux%20m%C3%A9tiers%20en%20leur%20fournissant%20un%20outil%20complet%20cl%C3%A9%20en%20main%2Centi%C3%A8rement%20personnalisable%20et%20facile%20%C3%A0%20prendre%20en%20main.%20En%204%20%C3%A9tapes%20et%20en%20moins%20de%2048h%20%28sur%20Internet%29%2C%20les%20agents%20peuvent%20se%20cr%C3%A9er%20leur%20propre%20bot%2C%20techniquement%20pr%C3%AAt%20au%20lancement.%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20une%20solution%20cl%C3%A9%20en%20main%2C%20facile%20%C3%A0%20utiliser%20pour%20les%20agents%2C%20sans%20besoin%20de%20connaissance%20technique%0A%2A%20D%C3%A9charger%20les%20agents%20des%20questions-r%C3%A9ponses%20chronophages%20et%20r%C3%A9p%C3%A9titives%20pour%20qu%E2%80%99ils%20puissent%20consacrer%20plus%20de%20temps%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20forte%20valeur%20ajout%C3%A9e%0A%2A%20Pouvoir%20personnaliser%2C%20faire%20vivre%20et%20maintenir%20la%20base%20de%20connaissance%20%0A%2A%20Disposer%20d%E2%80%99une%20vision%20globale%20des%20chatbots%20cr%C3%A9%C3%A9s%20au%20sein%20du%20minist%C3%A8re%0A%0A%0A%23%23%20Chronologie%0A%0A%2A%2A%C3%A9tape%201%2A%2A%20%28f%C3%A9vrier%202020%29%0Acadrage%20du%20projet%2C%20entretiens%20avec%20des%20bots%20manager%3Cbr%3E%0ALivrable%20%3A%20parcours%20de%20cr%C3%A9ation%20de%20chatbot%20et%20de%20l%E2%80%99interface%20de%20gestion%0A%0A%2A%2A%C3%A9tape%202%2A%2A%20%28mars-avril%202020%29%0Ar%C3%A9alisation%20des%20wireframes%3Cbr%3E%0ALivrable%20%3A%20wireframes%0A%0A%2A%2A%C3%A9tape%203%2A%2A%20%28avril%202020%29%0Ad%C3%A9but%20des%20maquettes%0A%0A%2A%2A%C3%A9tape%204%2A%2A%20%28avril-septembre%202020%29%0Ad%C3%A9veloppement%20du%20PMV%0A%0A%2A%2A%C3%A9tape%205%2A%2A%20%28oct%202020-juin%202021%29%0ATests%20utilisateurs%2C%20audit%20accessibilit%C3%A9%2C%20am%C3%A9liorations%2C%20ajouts%20de%20nouvelles%20fonctionnalit%C3%A9s%2C%20d%C3%A9mos%20et%20formations%0A%0A%2A%2A%C3%A9tape%206%2A%2A%20%28juin%202021%29%0Ahomologation%20bot%20marine%20%0A%0A%2A%2A%C3%A9tape%207%2A%2A%20%28juin%202022%29%0Ahomologation%20de%20l%27usine%20%C3%A0%20chatbots%0A%0A%2A%2A%C3%A9tape%208%2A%2A%20%28juin%202022%29%0Aatterrissage%20du%20bot%20marine%20sur%20Intradef%20%28Pr%C3%A9production%29%0A%0A%2A%2A%C3%A9tape%209%2A%2A%20%28Fin%202022%29%0Aouverture%20du%20service%20au%20public%20sur%20Intradef%0A%0A%0A%23%23%20Livrables%0A%0AL%27Usine%20%C3%A0%20chatbots%20est%20compos%C3%A9e%20de%206%20produits%20num%C3%A9riques%20%3A%0A%0A%2A%20Un%20%5Bsite%20vitrine%20%28internet%29%5D%28https%3A%2F%2Fchatbot.fabnum.fr%2F%29%20qui%20pr%C3%A9sente%20le%20produit%0A%2A%20Une%20%5Bdocumentation%5D%28https%3A%2F%2Ffabrique-a-chatbots.gitbook.io%2Ffabrique-a-chatbots%2F%29%0A%2A%20Une%20%5Binterface%20permettant%20de%20cr%C3%A9er%20un%20chatbot%5D%28https%3A%2F%2Fchatbot.fabnum.fr%2Fcreate%29%0A%2A%20Une%20interface%20de%20chatbot%20%28autonome%20ou%20int%C3%A9gr%C3%A9e%29%0A%2A%20Une%20interface%20de%20gestion%20pour%20travailler%20sur%20les%20connaissances%20de%20votre%20chatbot%0A%2A%20Un%20tableau%20de%20bord%20de%20l%27usine%20%C3%A0%20chatbot%0A%0A%23%23%20R%C3%A9sultats%0A%0A3%20chatbots%20r%C3%A9alis%C3%A9s%20avec%20l%27usine%20%C3%A0%20chatbot%20%3A%0A-%20%5BChatbot%20RH%20Marine-%20CIPAL%20Socrate%5D%28https%3A%2F%2Frh-marine.chatbot.fabnum.fr%2Fchatbot%2F%29%0A-%20%5BChatbot%20RH%20civil%20-%20G%C3%A9d%C3%A9on%5D%28https%3A%2F%2Fgedeon.chatbot.fabnum.fr%2Fchatbot%2F%29%0A-%20Chatbot%20interne%20pour%20la%20gestion%20de%20la%20solde%0A%0ASur%20une%20p%C3%A9riode%20d%27un%20an%2C%20le%20chatbot%20de%20la%20RH%20marine%20pr%C3%A9sente%20%3A%20%0A-%20un%20taux%20de%20r%C3%A9ponse%20de%2083%25%0A-%20plus%20de%20500%20sessions%20par%20mois%0A-%20plus%20de%201600%20questions%20pos%C3%A9es%20par%20mois%0A%0A", + "events": [], "phases": [ { "name": "investigation", - "start": "2014-06-01", + "start": "2020-02-01", "end": "" }, { "name": "construction", - "start": "2014-06-01", + "start": "2020-05-01", "end": "" }, { "name": "acceleration", - "start": "2018-01-01", + "start": "2021-01-01", "end": "" }, { "name": "transfer", - "start": "2021-05-05", - "end": "" - }, - { - "name": "success", - "start": "2023-06-30", + "start": "2022-06-01", "end": "" } ], "sponsors": [ - "anct", - "dinum", - "ign" + "armees" ], - "thematiques": [], - "dashlord_url": "https://dashlord.incubateur.net/url/adresse-data-gouv-fr/", - "accessibility_status": "non conforme" + "thematiques": [] }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "fab-geocommuns" + "id": "fabnumdef" } } } @@ -286145,16 +280961,16 @@ { "width": 1920, "height": 1080, - "url": "https://mes-adresses.data.gouv.fr/", - "size": 1170.478, - "nodes": 108, - "requests": 34, - "grade": "B", - "score": 80, - "ges": 1.4, - "water": 2.1, + "url": "https://chatbot.fabnum.fr/", + "size": 2588.716, + "nodes": 317, + "requests": 29, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, "ecoindex_version": "5.4.2", - "date": "2024-11-24 12:01:31.372107", + "date": "2024-12-01 11:47:45.933771", "page_type": null } ], @@ -286163,74 +280979,353 @@ "detected": false }, "summary": { - "httpGrade": "F", + "httpGrade": "B+", "apdex": 1, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-08T06:56:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, + "testsslExpireDate": "2025-01-08T17:52:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.78, + "lighthouse_performance": 0.69, "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.91, + "lighthouse_accessibility": 0.9, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.88, + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", + "lighthouse_pwa": 1, + "lighthouse_pwaGrade": "A", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", + "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://cassiopee.igloo.fabnum.fr/", + "category": "fabnumdef", + "betaId": "cassiopee", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "cassiopee.igloo.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'cassiopee.igloo.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "cassiopee.igloo.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://cassiopee.igloo.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (cassiopee.igloo.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "cassiopee", + "type": "startup", + "attributes": { + "name": "Cassiopée", + "pitch": "Optimiser les parcours de formation des officiers souhaitant revenir à la vie civile", + "stats_url": "", + "contact": "mathieu.mahr@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AAux%20termes%20de%20leur%20carri%C3%A8re%20militaire%2C%20certains%20officiers%20g%C3%A9n%C3%A9raux%20souhaitent%20retourner%20%C3%A0%20la%20vie%20civile%20et%20y%20poursuivre%20une%20nouvelle%20carri%C3%A8re.%0A%0AAfin%20de%20pr%C3%A9parer%20ces%20derniers%20%C3%A0%20anticiper%20et%20r%C3%A9pondre%20aux%20attentes%20de%20futurs%20employeurs%20civils%2C%20un%20organisme%20interne%20au%20minist%C3%A8re%20des%20Arm%C3%A9es%2C%20la%20MiRVOG%2C%20est%20charg%C3%A9%20de%20les%20accompagner%20sur%20des%20parcours%20de%20formation%20personnalis%C3%A9s.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AChaque%20ann%C3%A9e%2C%20une%20centaine%20d%27officiers%20passent%20par%20la%20MiRVOG%20pour%20leur%20reconversion%20professionnelle%2C%20qui%20peut%20s%27%C3%A9taler%20sur%206%20ou%2018%20mois%20en%20fonction%20des%20projets%20individuels.%0A%0ALa%20communication%20entre%20la%20MiRVOG%20et%20les%20officiers%20g%C3%A9n%C3%A9raux%20se%20fait%20principalement%20par%20des%20moyens%20classiques%2C%20email%20ou%20t%C3%A9l%C3%A9phone%2C%20ce%20qui%20g%C3%A9n%C3%A8re%20plusieurs%20probl%C3%A8mes%20%3A%0A-%20Une%20charge%20de%20travail%20importante%20pour%20planifier%20les%20formations%20et%20y%20inscrire%20individuellement%20les%20officiers%0A-%20Un%20manque%20d%27information%20pour%20les%20officiers%20quant%20aux%20diff%C3%A9rentes%20formations%20programm%C3%A9es%0A-%20Des%20difficult%C3%A9s%20%C3%A0%20remplir%20les%20sessions%20formations%2C%20dues%20%C3%A0%20des%20annulations%20non%20communiqu%C3%A9es%2C%20des%20changements%20de%20planning%2C%20etc.%0A%0ALes%20cons%C3%A9quences%20de%20ces%20diff%C3%A9rents%20probl%C3%A9matiques%20sont%20principalement%20financi%C3%A8res%20%28co%C3%BBt%20des%20formations%20d%C3%BB%20%C3%A0%20un%20taux%20de%20remplissage%20insuffisant%2C%20temps%20pass%C3%A9%20sur%20la%20planification%20et%20la%20gestion%20des%20formations%29.%0A%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20aux%20officiers%20une%20solution%20en%20ligne%20centralisant%20l%27ensemble%20des%20informations%20et%20proc%C3%A9dures%20d%27inscription%20aux%20formations.%0A%2A%20Am%C3%A9liorer%20la%20participation%20et%20le%20taux%20de%20remplissage%20des%20sessions%20de%20formation.%0A%2A%20Optimiser%20les%20co%C3%BBts%20de%20mise%20en%20oeuvre%20des%20formations.%0A%2A%20R%C3%A9duire%20le%20temps%20pass%C3%A9%20sur%20les%20t%C3%A2ches%20de%20planification%20et%20gestion%20des%20formations%20pour%20se%20concentrer%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20haute%20valeur%20ajout%C3%A9e.%0A%2A%20Avoir%20un%20suivi%20statistique%20des%20formations%20et%20de%20leur%20pertinence.%0A%0A%23%23%20R%C3%A9sultats%0A%0AUne%20interface%20de%20gestion%20et%20planification%20des%20formations%20pour%20la%20MiRVOG%0A%0AUne%20interface%20_responsive%20mobile_%20pour%20les%20officiers%20afin%20de%20suivre%20les%20formations%20%C3%A0%20venir%2C%20s%27y%20inscrire%2C%20s%27y%20d%C3%A9sinscrire%20et%20se%20mettre%20sur%20liste%20d%27attente.%0ALes%20officiers%20peuvent%20%C3%A9galement%20voir%20leurs%20formations%20pass%C3%A9es%20et%20faire%20le%20point%20sur%20leur%20progamme%20personnel%20de%20formation.%0A%0AUn%20syst%C3%A8me%20de%20notification%20pour%20gagner%20en%20r%C3%A9activit%C3%A9%20pour%20l%27ensemble%20des%20utilisateurs.%0A%0A%23%23%20Travaux%20en%20cours%0A%0AApr%C3%A8s%20une%20phase%20d%27adaptation%20%28prise%20en%20compte%20du%20DSFR%29%20et%20d%27am%C3%A9lioration%20du%20produit%20conduite%20de%20septembre%202023%20%C3%A0%20mars%202024%2C%20dans%20le%20cadre%20de%20l%27acc%C3%A9l%C3%A9ration%2C%20Cassiop%C3%A9e%20est%20entr%C3%A9e%20en%20phase%20de%20transfert.%0A%0ADes%20travaux%20ont%20lieu%20avec%20la%20DSI%20RH%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20afin%20d%27assurer%20une%20strat%C3%A9gie%20de%20maintien%20en%20condition%20op%C3%A9rationnelle%20compatible%20avec%20la%20s%C3%A9curisation%20de%20l%27usage%20de%20Cassiop%C3%A9e%20dans%20le%20temps%20%28exploitation%2C%20TMA...%29.%0A%0ALe%20maintien%20du%20%22mode%20produit%22%20est%20un%20des%20enjeux%20m%C3%A9thodologiques%20et%20organisationnels%20%C3%A0%20valider%20avec%20les%20%C3%A9quipes%20des%20SI%20RH%20du%20MinArm.%20", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-03-01", + "end": "2021-05-21" + }, + { + "name": "construction", + "start": "2021-05-23", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-06-06", + "end": "" + }, + { + "name": "transfer", + "start": "2024-03-25", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [ + "Formation" + ] + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", "dsfrGrade": "F" } }, { "404": null, - "url": "https://adresse.data.gouv.fr/", + "url": "https://cassiopee.fabnum.fr/", + "category": "fabnumdef", + "betaId": "cassiopee", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "cassiopee.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'cassiopee.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "cassiopee.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://cassiopee.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (cassiopee.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "cassiopee", + "type": "startup", + "attributes": { + "name": "Cassiopée", + "pitch": "Optimiser les parcours de formation des officiers souhaitant revenir à la vie civile", + "stats_url": "", + "contact": "mathieu.mahr@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AAux%20termes%20de%20leur%20carri%C3%A8re%20militaire%2C%20certains%20officiers%20g%C3%A9n%C3%A9raux%20souhaitent%20retourner%20%C3%A0%20la%20vie%20civile%20et%20y%20poursuivre%20une%20nouvelle%20carri%C3%A8re.%0A%0AAfin%20de%20pr%C3%A9parer%20ces%20derniers%20%C3%A0%20anticiper%20et%20r%C3%A9pondre%20aux%20attentes%20de%20futurs%20employeurs%20civils%2C%20un%20organisme%20interne%20au%20minist%C3%A8re%20des%20Arm%C3%A9es%2C%20la%20MiRVOG%2C%20est%20charg%C3%A9%20de%20les%20accompagner%20sur%20des%20parcours%20de%20formation%20personnalis%C3%A9s.%0A%0A%23%23%20Probl%C3%A9matique%0A%0AChaque%20ann%C3%A9e%2C%20une%20centaine%20d%27officiers%20passent%20par%20la%20MiRVOG%20pour%20leur%20reconversion%20professionnelle%2C%20qui%20peut%20s%27%C3%A9taler%20sur%206%20ou%2018%20mois%20en%20fonction%20des%20projets%20individuels.%0A%0ALa%20communication%20entre%20la%20MiRVOG%20et%20les%20officiers%20g%C3%A9n%C3%A9raux%20se%20fait%20principalement%20par%20des%20moyens%20classiques%2C%20email%20ou%20t%C3%A9l%C3%A9phone%2C%20ce%20qui%20g%C3%A9n%C3%A8re%20plusieurs%20probl%C3%A8mes%20%3A%0A-%20Une%20charge%20de%20travail%20importante%20pour%20planifier%20les%20formations%20et%20y%20inscrire%20individuellement%20les%20officiers%0A-%20Un%20manque%20d%27information%20pour%20les%20officiers%20quant%20aux%20diff%C3%A9rentes%20formations%20programm%C3%A9es%0A-%20Des%20difficult%C3%A9s%20%C3%A0%20remplir%20les%20sessions%20formations%2C%20dues%20%C3%A0%20des%20annulations%20non%20communiqu%C3%A9es%2C%20des%20changements%20de%20planning%2C%20etc.%0A%0ALes%20cons%C3%A9quences%20de%20ces%20diff%C3%A9rents%20probl%C3%A9matiques%20sont%20principalement%20financi%C3%A8res%20%28co%C3%BBt%20des%20formations%20d%C3%BB%20%C3%A0%20un%20taux%20de%20remplissage%20insuffisant%2C%20temps%20pass%C3%A9%20sur%20la%20planification%20et%20la%20gestion%20des%20formations%29.%0A%0A%0A%23%23%20Objectifs%0A%0A%2A%20Offrir%20aux%20officiers%20une%20solution%20en%20ligne%20centralisant%20l%27ensemble%20des%20informations%20et%20proc%C3%A9dures%20d%27inscription%20aux%20formations.%0A%2A%20Am%C3%A9liorer%20la%20participation%20et%20le%20taux%20de%20remplissage%20des%20sessions%20de%20formation.%0A%2A%20Optimiser%20les%20co%C3%BBts%20de%20mise%20en%20oeuvre%20des%20formations.%0A%2A%20R%C3%A9duire%20le%20temps%20pass%C3%A9%20sur%20les%20t%C3%A2ches%20de%20planification%20et%20gestion%20des%20formations%20pour%20se%20concentrer%20sur%20des%20t%C3%A2ches%20%C3%A0%20plus%20haute%20valeur%20ajout%C3%A9e.%0A%2A%20Avoir%20un%20suivi%20statistique%20des%20formations%20et%20de%20leur%20pertinence.%0A%0A%23%23%20R%C3%A9sultats%0A%0AUne%20interface%20de%20gestion%20et%20planification%20des%20formations%20pour%20la%20MiRVOG%0A%0AUne%20interface%20_responsive%20mobile_%20pour%20les%20officiers%20afin%20de%20suivre%20les%20formations%20%C3%A0%20venir%2C%20s%27y%20inscrire%2C%20s%27y%20d%C3%A9sinscrire%20et%20se%20mettre%20sur%20liste%20d%27attente.%0ALes%20officiers%20peuvent%20%C3%A9galement%20voir%20leurs%20formations%20pass%C3%A9es%20et%20faire%20le%20point%20sur%20leur%20progamme%20personnel%20de%20formation.%0A%0AUn%20syst%C3%A8me%20de%20notification%20pour%20gagner%20en%20r%C3%A9activit%C3%A9%20pour%20l%27ensemble%20des%20utilisateurs.%0A%0A%23%23%20Travaux%20en%20cours%0A%0AApr%C3%A8s%20une%20phase%20d%27adaptation%20%28prise%20en%20compte%20du%20DSFR%29%20et%20d%27am%C3%A9lioration%20du%20produit%20conduite%20de%20septembre%202023%20%C3%A0%20mars%202024%2C%20dans%20le%20cadre%20de%20l%27acc%C3%A9l%C3%A9ration%2C%20Cassiop%C3%A9e%20est%20entr%C3%A9e%20en%20phase%20de%20transfert.%0A%0ADes%20travaux%20ont%20lieu%20avec%20la%20DSI%20RH%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20afin%20d%27assurer%20une%20strat%C3%A9gie%20de%20maintien%20en%20condition%20op%C3%A9rationnelle%20compatible%20avec%20la%20s%C3%A9curisation%20de%20l%27usage%20de%20Cassiop%C3%A9e%20dans%20le%20temps%20%28exploitation%2C%20TMA...%29.%0A%0ALe%20maintien%20du%20%22mode%20produit%22%20est%20un%20des%20enjeux%20m%C3%A9thodologiques%20et%20organisationnels%20%C3%A0%20valider%20avec%20les%20%C3%A9quipes%20des%20SI%20RH%20du%20MinArm.%20", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-03-01", + "end": "2021-05-21" + }, + { + "name": "construction", + "start": "2021-05-23", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-06-06", + "end": "" + }, + { + "name": "transfer", + "start": "2024-03-25", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [ + "Formation" + ] + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://mes-adresses.data.gouv.fr/", "category": "fab-geocommuns", "betaId": "ban", "http": { - "url": "https://adresse.data.gouv.fr/", + "url": "https://mes-adresses.data.gouv.fr/", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 01:01:41 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 09:03:58 GMT", + "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "s-maxage=300, stale-while-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 01:01:39 GMT", - "ETag": "\"3ytpb7j9fz1da3\"", - "Server": "nginx/1.24.0", - "Strict-Transport-Security": "max-age=15768000", + "Date": "Sun, 20 Oct 2024 09:03:57 GMT", + "ETag": "\"8zkrn6ngou10ke\"", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "x-nextjs-cache": "HIT" + "X-Request-ID": "f1fc579a-3129-4993-a8e6-5e130635b717" }, - "scan_id": 57046317, - "score": 50, - "start_time": "Sun, 20 Oct 2024 01:01:38 GMT", + "scan_id": 57056150, + "score": 10, + "start_time": "Sun, 20 Oct 2024 09:03:56 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, + "tests_failed": 5, + "tests_passed": 5, "tests_quantity": 10, "details": { "content-security-policy": { @@ -286279,18 +281374,17 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://adresse.data.gouv.fr/", - "redirects": true, + "destination": "http://mes-adresses.data.gouv.fr/", + "redirects": false, "route": [ - "http://adresse.data.gouv.fr/", - "https://adresse.data.gouv.fr/" + "http://mes-adresses.data.gouv.fr/" ], "status_code": 200 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -286309,16 +281403,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15768000", + "data": null, "includeSubDomains": false, - "max-age": 15768000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -286367,14 +281461,14 @@ } }, "updownio": { - "token": "40sv", - "url": "https://adresse.data.gouv.fr/", + "token": "1evx", + "url": "https://mes-adresses.data.gouv.fr/", "alias": null, "last_status": 200, - "uptime": 99.98, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-23T01:36:42Z", + "up_since": "2024-11-30T14:30:19Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -286385,416 +281479,132 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T12:19:18Z", - "next_check_at": "2024-11-24T12:20:17Z", - "created_at": "2024-01-15T14:01:08Z", + "last_check_at": "2024-12-01T12:30:53Z", + "next_check_at": "2024-12-01T12:31:53Z", + "created_at": "2024-01-15T14:02:07Z", "mute_until": null, - "favicon_url": "https://adresse.data.gouv.fr/_next/static/media/favicon.8c087985.ico", + "favicon_url": "https://mes-adresses.data.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T12:18:21Z", - "expires_at": "2025-01-15T01:39:18Z", + "tested_at": "2024-12-01T12:26:55Z", + "expires_at": "2025-02-08T06:56:47Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.989, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 332, - "connection": 156, - "handshake": 158, - "response": 356, - "total": 1003 + "namelookup": 231, + "connection": 125, + "handshake": 130, + "response": 131, + "total": 617 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" }, "nmap": { - "host": "adresse.data.gouv.fr", + "host": "mes-adresses.data.gouv.fr", "protocol": "tcp", - "closed_ports": "997", + "closed_ports": "998", "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "7.6p1 Ubuntu 4ubuntu0.7", - "vulnerabilities": [ - { - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "cvss": "10.0", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "cvss": "10.0", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "CVE-2023-38408", - "cvss": "9.8", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "cvss": "9.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "cvss": "9.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "cvss": "9.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "cvss": "9.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "cvss": "9.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "CVE-2020-15778", - "cvss": "7.8", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "SSV:92579", - "cvss": "7.5", - "type": "seebug", - "is_exploit": "true" - }, - { - "id": "PACKETSTORM:173661", - "cvss": "7.5", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "cvss": "7.5", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "1337DAY-ID-26576", - "cvss": "7.5", - "type": "zdt", - "is_exploit": "true" - }, - { - "id": "CVE-2021-41617", - "cvss": "7.0", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "EDB-ID:46516", - "cvss": "6.8", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "id": "EDB-ID:46193", - "cvss": "6.8", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "id": "CVE-2019-6110", - "cvss": "6.8", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2019-6109", - "cvss": "6.8", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "cvss": "6.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "cvss": "6.8", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "id": "CVE-2023-51385", - "cvss": "6.5", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2023-48795", - "cvss": "5.9", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2020-14145", - "cvss": "5.9", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2019-6111", - "cvss": "5.9", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "cvss": "5.8", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "cvss": "5.8", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "id": "1337DAY-ID-32328", - "cvss": "5.8", - "type": "zdt", - "is_exploit": "true" - }, - { - "id": "1337DAY-ID-32009", - "cvss": "5.8", - "type": "zdt", - "is_exploit": "true" - }, - { - "id": "PACKETSTORM:181223", - "cvss": "5.3", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", - "cvss": "5.3", - "type": "metasploit", - "is_exploit": "true" - }, - { - "id": "EDB-ID:45939", - "cvss": "5.3", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "id": "EDB-ID:45233", - "cvss": "5.3", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "id": "CVE-2018-20685", - "cvss": "5.3", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2018-15919", - "cvss": "5.3", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2018-15473", - "cvss": "5.3", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "CVE-2016-20012", - "cvss": "5.3", - "type": "cve", - "is_exploit": "false" - }, - { - "id": "SSH_ENUM", - "cvss": "5.0", - "type": "canvas", - "is_exploit": "true" - }, - { - "id": "PACKETSTORM:150621", - "cvss": "5.0", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", - "cvss": "5.0", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", - "cvss": "5.0", - "type": "exploitpack", - "is_exploit": "true" - }, - { - "id": "1337DAY-ID-31730", - "cvss": "5.0", - "type": "zdt", - "is_exploit": "true" - }, - { - "id": "PACKETSTORM:151227", - "cvss": "0.0", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "id": "PACKETSTORM:140261", - "cvss": "0.0", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "id": "EDB-ID:45210", - "cvss": "0.0", - "type": "exploitdb", - "is_exploit": "true" - }, - { - "id": "1337DAY-ID-30937", - "cvss": "0.0", - "type": "zdt", - "is_exploit": "true" - } - ] - } - }, { "service": { "name": "http", - "product": "nginx", "id": "80", - "version": "1.24.0", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", + "name": "https", "id": "443", - "version": "1.24.0", "vulnerabilities": [] } } ], - "grade": "F" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286802,7 +281612,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286810,7 +281620,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286818,7 +281628,7 @@ }, { "id": "cipherlist_LOW", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286826,7 +281636,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -286834,7 +281644,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -286842,476 +281652,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc02c", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02b", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "id": "cipherorder_TLSv1_2", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "68 >= 30 days" }, { "id": "cert_notBefore", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-17 01:39" + "finding": "2024-11-10 06:56" }, { "id": "cert_notAfter", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-01-15 01:39" + "finding": "2025-02-08 06:56" }, { "id": "cert_extlifeSpan", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://e5.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "E5 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "E5 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "1732450757" - }, - { - "id": "HSTS_time", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "OK", - "finding": "182 days (=15768000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733056043" }, { - "id": "HSTS_preload", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "id": "HSTS", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "nginx/1.24.0" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "Cache-Control", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "id": "security_headers", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "s-maxage=300, stale-while-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -287319,7 +282094,7 @@ }, { "id": "heartbleed", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -287328,7 +282103,7 @@ }, { "id": "CCS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -287337,16 +282112,16 @@ }, { "id": "ticketbleed", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -287355,7 +282130,7 @@ }, { "id": "secure_renego", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -287363,7 +282138,7 @@ }, { "id": "secure_client_renego", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -287372,7 +282147,7 @@ }, { "id": "CRIME_TLS", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -287381,7 +282156,7 @@ }, { "id": "BREACH", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -287390,7 +282165,7 @@ }, { "id": "POODLE_SSL", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -287399,14 +282174,14 @@ }, { "id": "fallback_SCSV", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -287415,7 +282190,7 @@ }, { "id": "FREAK", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -287424,7 +282199,7 @@ }, { "id": "DROWN", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -287433,16 +282208,16 @@ }, { "id": "DROWN_hint", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" }, { "id": "LOGJAM", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -287451,16 +282226,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -287469,7 +282244,7 @@ }, { "id": "LUCKY13", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -287478,7 +282253,7 @@ }, { "id": "winshock", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -287487,7 +282262,7 @@ }, { "id": "RC4", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -287496,1687 +282271,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "key_exchange_score_weighted", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "cipher_strength_score", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "INFO", - "finding": "96" - }, - { - "id": "overall_grade", - "ip": "adresse.data.gouv.fr/146.59.188.210", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "adresse.data.gouv.fr/146.59.188.210", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "59" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://8d772127.sibforms.com/serve/MUIEALrUjwg3nxBK1Ebb_ndriJHjVhfoNqqr55eXe4id-Y3eYMbnHY6fabW8qNi5S55CjKgwWuwYbpWbQamoes1zxUi4vYJGeXwkygSrYFFz0Yg644JK8Bb2VY1Q23vp4b22CmKNIWbjSccP3x1RTOsdV3EjJkWc_o-mXUxWg9Hjx8gbmzkyUeSgKAinMeoI33kqpDssnQxeeorN" - }, - { - "type": "unknown", - "url": "https://sibforms.com/forms/end-form/build/sib-styles.css" - }, - { - "type": "unknown", - "url": "https://8d772127.sibforms.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js" - }, - { - "type": "unknown", - "url": "https://sibforms.com/forms/end-form/build/main.js" - }, - { - "type": "unknown", - "url": "https://sibforms.com/forms/end-form/elastic-apm-rum.umd.min.js" - }, - { - "type": "brevo", - "url": "https://assets.brevo.com/font/Roboto/Latin/normal/normal/7529907e9eaf8ebb5220c5f9850e3811.woff2", - "details": { - "id": "brevo", - "message": "Ensure your TOS notify the Brevo usage" - } - }, - { - "type": "brevo", - "url": "https://assets.brevo.com/font/Roboto/Latin/normal/normal/7529907e9eaf8ebb5220c5f9850e3811.woff2", - "details": { - "id": "brevo", - "message": "Ensure your TOS notify the Brevo usage" - } - }, - { - "type": "unknown", - "url": "https://596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io/intake/v2/rum/events" - }, - { - "type": "unknown", - "url": "https://596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io/intake/v2/rum/events" - } - ], - "cookies": [ - { - "name": "_pk_ses.13.592e", - "value": "1", - "domain": "adresse.data.gouv.fr", - "path": "/", - "expires": 1732452492, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.13.592e", - "value": "0cd5ed4a45b2e0fe.1732450692.", - "domain": "adresse.data.gouv.fr", - "path": "/", - "expires": 1766405892, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "s-maxage=300, stale-while-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 12:18:10 GMT", - "etag": "\"zda6d3lgi41den\"", - "server": "nginx/1.24.0", - "strict-transport-security": "max-age=15768000", - "vary": "Accept-Encoding", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "adresse.data.gouv.fr", - "ip": "146.59.188.210", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "8d772127.sibforms.com", - "ip": "104.16.249.109", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "sibforms.com", - "ip": "104.16.249.109", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "assets.brevo.com", - "ip": "172.64.150.216", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io", - "ip": "63.33.254.192", - "geoip": { - "city": { - "geoname_id": 2964574, - "names": { - "de": "Dublin", - "en": "Dublin", - "es": "Dublín", - "fr": "Dublin", - "ja": "ダブリン", - "pt-BR": "Dublin", - "ru": "Дублин", - "zh-CN": "都柏林" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2963597, - "is_in_european_union": true, - "iso_code": "IE", - "names": { - "de": "Irland", - "en": "Ireland", - "es": "Irlanda", - "fr": "Irlande", - "ja": "アイルランド", - "pt-BR": "Irlanda", - "ru": "Ирландия", - "zh-CN": "爱尔兰" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 53.3379, - "longitude": -6.2591, - "time_zone": "Europe/Dublin" - }, - "postal": { - "code": "D02" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 7521314, - "iso_code": "L", - "names": { - "en": "Leinster", - "fr": "Leinster", - "ja": "レンスター", - "ru": "Ленстер" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://adresse.data.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.24.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "13.1.5", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "requestedUrl": "https://adresse.data.gouv.fr/", - "finalUrl": "https://adresse.data.gouv.fr/", - "fetchTime": "2024-11-24T12:17:46.215Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.74 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.89 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 7661, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2588, - "firstMeaningfulPaint": 4315, - "largestContentfulPaint": 3938, - "interactive": 7661, - "speedIndex": 2588, - "totalBlockingTime": 230, - "maxPotentialFID": 300, - "cumulativeLayoutShift": 0.008210851033528645, - "cumulativeLayoutShiftMainFrame": 0.008210851033528645, - "totalCumulativeLayoutShift": 0.008210851033528645, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 539295389, - "observedNavigationStart": 0, - "observedNavigationStartTs": 539295389, - "observedFirstPaint": 694, - "observedFirstPaintTs": 539988983, - "observedFirstContentfulPaint": 694, - "observedFirstContentfulPaintTs": 539988983, - "observedFirstContentfulPaintAllFrames": 694, - "observedFirstContentfulPaintAllFramesTs": 539988983, - "observedFirstMeaningfulPaint": 920, - "observedFirstMeaningfulPaintTs": 540215195, - "observedLargestContentfulPaint": 694, - "observedLargestContentfulPaintTs": 539988983, - "observedLargestContentfulPaintAllFrames": 694, - "observedLargestContentfulPaintAllFramesTs": 539988983, - "observedTraceEnd": 3698, - "observedTraceEndTs": 542993693, - "observedLoad": 1281, - "observedLoadTs": 540576336, - "observedDomContentLoaded": 788, - "observedDomContentLoadedTs": 540082928, - "observedCumulativeLayoutShift": 0.008210851033528645, - "observedCumulativeLayoutShiftMainFrame": 0.008210851033528645, - "observedTotalCumulativeLayoutShift": 0.008210851033528645, - "observedFirstVisualChange": 699, - "observedFirstVisualChangeTs": 539994389, - "observedLastVisualChange": 1732, - "observedLastVisualChangeTs": 541027389, - "observedSpeedIndex": 773, - "observedSpeedIndexTs": 540068563 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 69, - "numScripts": 30, - "numStylesheets": 2, - "numFonts": 6, - "numTasks": 1509, - "numTasksOver10ms": 11, - "numTasksOver25ms": 4, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0.983, - "throughput": 14339948.80951641, - "maxRtt": 100.905, - "maxServerLatency": 18.474999999999998, - "totalByteWeight": 930729, - "totalTaskTime": 457.62299999999857, - "mainDocumentTransferSize": 12928 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://adresse.data.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-libressl_283", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://adresse.data.gouv.fr/cgu" + "id": "clientsimulation-openssl_102e", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "ban", - "type": "startup", - "attributes": { - "name": "Base Adresse Nationale", - "pitch": "Référencer l'intégralité des adresses du territoire français", - "stats_url": "https://adresse.data.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#Base-Adresse-Nationale", - "link": "https://adresse.data.gouv.fr", - "repository": "https://github.com/BaseAdresseNationale", - "contact": "adresse@data.gouv.fr", - "content_url_encoded_markdown": "La%20Base%20Adresse%20Nationale%20est%20une%20des%20neuf%20bases%20de%20donn%C3%A9es%20du%20service%20public%20des%20donn%C3%A9es%20de%20r%C3%A9f%C3%A9rence%20et%20a%20pour%20vocation%20de%20r%C3%A9f%C3%A9rencer%20l%27ensemble%20des%20adresses%20du%20territoire%20national.%20Service%20num%C3%A9rique%20d%E2%80%99usage%20partag%C3%A9%20et%20infrastructure%20socle%20sur%20laquelle%20sont%20adoss%C3%A9es%20de%20nombreuses%20politiques%20publiques%2C%20elle%20fait%20partie%20du%20syst%C3%A8me%20d%E2%80%99information%20et%20de%20communication%20de%20l%E2%80%99%C3%89tat.%0A%0AElle%20est%20le%20fruit%20de%20la%20collaboration%20de%C2%A0%3A%0A%0A-%20la%20%5BDINUM%5D%28https%3A%2F%2Fwww.numerique.gouv.fr%2F%29%0A-%20l%27%5BANCT%5D%28https%3A%2F%2Fagence-cohesion-territoires.gouv.fr%2F%29%0A-%20l%27%5BIGN%5D%28http%3A%2F%2Fwww.ign.fr%2F%29%20%3B%0A%0A%0ASa%20construction%20est%20assur%C3%A9e%20gr%C3%A2ce%20%C3%A0%20de%20nombreux%20partenaires%2C%20et%20en%20premier%20lieu%20par%20les%20communes%2C%20seules%20autorit%C3%A9s%20comp%C3%A9tentes%20en%20terme%20d%E2%80%99adressage.%0A%0ALa%20Base%20Adresse%20Nationale%20est%20accessible%20sous%20forme%20de%20fichiers%20et%20d%E2%80%99API.%0A%0APar%20ailleurs%2C%20la%20plateforme%20BAN%20met%20%C3%A0%20disposition%20des%20outils%20compl%C3%A9mentaires%20gratuits%20pour%20faciliter%20la%20mise%20%C3%A0%20jour%20de%20la%20base%20et%20sa%20r%C3%A9utilisation%C2%A0%3A%0A%0A-%20l%27outil%20de%20cr%C3%A9ation%20des%20BAL%20et%20int%C3%A9gration%20%20dans%20la%20BAN%20%3A%20%5BMes-Adresses%5D%28https%3A%2F%2Fmes-adresses.data.gouv.fr%2F%29%0A-%20une%20%5BAPI%20de%20g%C3%A9ocodage%5D%28https%3A%2F%2Fapi.gouv.fr%2Fapi%2Fbase-adresse-nationale.html%29%20qui%20permet%20aussi%20de%20faire%20de%20l%27auto-compl%C3%A9tion%20%3B%20et%0A-%20une%20application%20mobile%20qui%20permet%20%C3%A0%20chacun%20de%20contribuer%20au%20r%C3%A9f%C3%A9rentiel%20_%28%C3%A0%20venir%29_.%0A", - "events": [ - { - "name": "committee", - "date": "2022-02-23", - "comment": "" - }, - { - "name": "committee", - "date": "2022-11-21", - "comment": "" - }, - { - "name": "committee", - "date": "2023-09-21", - "comment": "" - }, - { - "name": "committee", - "date": "2024-04-02", - "comment": "" - }, - { - "name": "committee", - "date": "2024-10-16", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2014-06-01", - "end": "" - }, - { - "name": "construction", - "start": "2014-06-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2018-01-01", - "end": "" - }, - { - "name": "transfer", - "start": "2021-05-05", - "end": "" - }, - { - "name": "success", - "start": "2023-06-30", - "end": "" - } - ], - "sponsors": [ - "anct", - "dinum", - "ign" - ], - "thematiques": [], - "dashlord_url": "https://dashlord.incubateur.net/url/adresse-data-gouv-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-openssl_110l", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fab-geocommuns" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://adresse.data.gouv.fr/", - "size": 1727.334, - "nodes": 499, - "requests": 90, - "grade": "D", - "score": 51, - "ges": 1.98, - "water": 2.97, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 12:14:36.601230", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "C", - "apdex": 0.989, - "apdexGrade": "B", - "uptime": 99.98, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-15T01:39:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 9, - "lighthouse_performance": 0.74, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.89, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "D", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://my.fabnum.fr/", - "category": "fabnum", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ + "id": "clientsimulation-openssl_111d", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "id": "scanProblem", - "ip": "my.fabnum.fr/", + "id": "clientsimulation-openssl_303", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'my.fabnum.fr' available" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanTime", - "ip": "my.fabnum.fr/", + "id": "clientsimulation-apple_mail_16_0", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://my.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (my.fabnum.fr)" - } + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-thunderbird_91_9", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://octopus.igloo.fabnum.fr/", - "category": "fabnumdef", - "betaId": "octopus", - "http": null, - "updownio": null, - "nmap": null, - "dependabot": null, - "codescan": null, - "testssl": [ + "id": "rating_spec", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, { - "id": "scanProblem", - "ip": "octopus.igloo.fabnum.fr/", + "id": "rating_doc", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'octopus.igloo.fabnum.fr' available" + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "id": "scanTime", - "ip": "octopus.igloo.fabnum.fr/", + "id": "protocol_support_score", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://octopus.igloo.fabnum.fr/": { - "status": 0, - "error": "Hostname could not be resolved (octopus.igloo.fabnum.fr)" - } + "severity": "INFO", + "finding": "100" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "protocol_support_score_weighted", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "octopus", - "type": "startup", - "attributes": { - "name": "Octopus", - "pitch": "Optimiser la préparation des missions de transport et soutien logistique (armée de l'Air et de l'Espace)", - "stats_url": "", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", - "contact": "mathieu.mahr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AIniti%C3%A9%20par%20une%20escadre%20de%20transport%20a%C3%A9rien%2C%20le%20projet%20doit%20r%C3%A9pondre%20aux%20enjeux%20de%20coordination%20et%20pr%C3%A9paration%20des%20missions%20a%C3%A9riennes%20de%20transport%20et%20soutien%20logistique.%0A%0ALes%20outils%20utilis%C3%A9s%20constitu%C3%A9s%20de%20gros%20fichiers%20Excel%20dot%C3%A9s%20de%20macros%20ont%20atteint%20des%20limites%20d%27exploitation%20qui%20p%C3%A9nalisent%20l%27activit%C3%A9.%0A%0A%23%23%20%2A%2AProbl%C3%A9matique%2A%2A%0A%0ALes%20personnels%20de%20l%27escadre%20veulent%20travailler%20plus%20efficacement%20avec%20un%20outil%20partag%C3%A9%20et%20collaboratif.%20Le%20nombre%20d%27acteurs%20croissant%20et%20l%27arriv%C3%A9e%20de%20nouveaux%20avions%20entra%C3%AEnent%20m%C3%A9caniquement%20un%20besoin%20de%20traitement%20plus%20important.%0A%0A%23%23%20%2A%2AObjectifs%2A%2A%0A%0A-%20Centraliser%20et%20partager%20les%20informations%20dans%20un%20outil%20de%20planification%20p%C3%A9renne%0A-%20Am%C3%A9liorer%20la%20transmission%20des%20informations%20entre%20les%20acteurs%0A-%20Am%C3%A9liorer%20le%20temps%20de%20traitement%20d%27une%20mission%0A%0A%23%23%20%2A%2AChronologie%2A%2A%0A%0A%2A%2A%C3%A9tape%201%2A%2A%C2%A0%28d%C3%A9but%20mars%202021%29%20cadrage%20du%20projet%2C%20entretiens%20avec%20les%20op%C3%A9rateurs%20des%20diff%C3%A9rents%20services%2C%20%20parcours%20d%27utilisation%20des%20outils%20actuels%0A%0A%2A%2A%C3%A9tape%202%2A%2A%C2%A0%28mars%202021%29%20r%C3%A9alisation%20des%20wireframes%20%0A%0A%2A%2A%C3%A9tape%203%2A%2A%C2%A0%28avril%202021%29%20test%20des%20wireframes%20aupr%C3%A8s%20des%20utilisateurs%0A%0A%2A%2A%C3%A9tape%204%2A%2A%C2%A0%28mai%202021%29%20pr%C3%A9sentation%20des%20travaux%20%0A%0A%2A%2A%C3%A9tape%205%2A%2A%C2%A0%28juin%202021%29%20d%C3%A9but%20du%20d%C3%A9veloppement%20de%20l%27outil%20socle%20calendrier%0A%0A%2A%2A%C3%A9tape%206%20%3A%2A%2A%20%28mi-septembre%202021%29%20d%C3%A9veloppement%20de%20l%27outil%20Octopus%0A%0A%2A%2A%C3%A9tape%207%20%3A%2A%2A%20%28mai%202022%29%20livraison%20du%20PMV%20%0A%0A%2A%2A%C3%A9tape%208%20%3A%2A%2A%20%28juillet%202022%29%20it%C3%A9ration%202%20-%20retours%20utilisateurs%20et%20nouvelles%20fonctionnalit%C3%A9s%0A%0A%2A%2A%C3%A9tape%209%20%3A%2A%2A%20%28depuis%20janvier%202023%29%20travail%20avec%20la%20DSI%20sur%20le%20devenir%20du%20produit%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-03-20", - "end": "2021-06-01" - }, - { - "name": "construction", - "start": "2021-06-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2023-01-30", - "end": "" - } - ], - "sponsors": [ - "armees" - ], - "thematiques": [] + "id": "key_exchange_score", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fabnumdef" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "A", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://inclusion.beta.gouv.fr/", - "tags": [ - "itou" - ], - "category": "gip-inclusion", - "betaId": "itou", - "http": { - "url": "https://inclusion.beta.gouv.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 09:24:28 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 09:24:26 GMT", - "Referrer-Policy": "same-origin", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "401e8c13-c90e-4172-aece-55c79d50b306", - "strict-transport-security": "max-age=31536000" + { + "id": "key_exchange_score_weighted", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "scan_id": 57056593, - "score": 75, - "start_time": "Sun, 20 Oct 2024 09:24:25 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://inclusion.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://inclusion.beta.gouv.fr/", - "https://inclusion.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-implemented-and-all-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", - "score_modifier": 5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "wdc1", - "url": "https://inclusion.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-21T11:21:25Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T12:01:57Z", - "next_check_at": "2024-11-24T13:01:46Z", - "created_at": "2021-04-22T21:34:01Z", - "mute_until": "forever", - "favicon_url": "https://inclusion.beta.gouv.fr/static/images/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T09:02:47Z", - "expires_at": "2025-01-12T07:23:37Z", - "valid": true, - "error": null + { + "id": "cipher_strength_score", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" }, - "metrics": { - "apdex": 0.962, - "timings": { - "redirect": 0, - "namelookup": 236, - "connection": 138, - "handshake": 145, - "response": 297, - "total": 817 - } + { + "id": "cipher_strength_score_weighted", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mes-adresses.data.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "D" - }, - "nmap": { - "host": "inclusion.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -289184,7 +282671,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -289192,7 +282679,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -289200,7 +282687,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -289208,7 +282695,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -289216,7 +282703,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -289224,469 +282711,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "68 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:23" + "finding": "2024-11-10 06:56" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:23" + "finding": "2025-02-08 06:56" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732452162" - }, - { - "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733056096" }, { - "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -289694,7 +283153,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -289703,7 +283162,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -289712,7 +283171,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -289721,7 +283180,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -289730,7 +283189,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -289738,7 +283197,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -289747,7 +283206,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -289756,16 +283215,16 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -289774,14 +283233,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -289790,7 +283249,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -289799,7 +283258,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -289808,16 +283267,16 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -289826,7 +283285,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -289835,7 +283294,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -289844,7 +283303,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -289853,7 +283312,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -289862,7 +283321,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -289871,392 +283330,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mes-adresses.data.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -290264,7 +283730,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -290272,7 +283738,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -290280,7 +283746,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -290288,7 +283754,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -290296,7 +283762,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -290304,469 +283770,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "68 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:23" + "finding": "2024-11-10 06:56" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:23" + "finding": "2025-02-08 06:56" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1732452265" - }, - { - "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733056149" }, { - "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "id": "HSTS", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "id": "security_headers", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -290774,7 +284212,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -290783,7 +284221,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -290792,7 +284230,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -290801,7 +284239,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -290810,7 +284248,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -290818,7 +284256,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -290827,7 +284265,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -290836,16 +284274,16 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -290854,14 +284292,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -290870,7 +284308,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -290879,7 +284317,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -290888,16 +284326,16 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -290906,7 +284344,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -290915,7 +284353,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -290924,7 +284362,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -290933,7 +284371,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -290942,7 +284380,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -290951,392 +284389,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mes-adresses.data.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -291344,7 +284789,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -291352,7 +284797,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -291360,7 +284805,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -291368,7 +284813,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -291376,7 +284821,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -291384,469 +284829,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "68 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:23" + "finding": "2024-11-10 06:56" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:23" + "finding": "2025-02-08 06:56" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1732452366" - }, - { - "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733056203" }, { - "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "id": "HSTS", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "id": "security_headers", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -291854,7 +285271,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -291863,7 +285280,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -291872,7 +285289,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -291881,7 +285298,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -291890,7 +285307,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -291898,7 +285315,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -291907,7 +285324,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -291916,16 +285333,16 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -291934,14 +285351,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -291950,7 +285367,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -291959,7 +285376,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -291968,16 +285385,16 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E5328F9AA43034270AE8B26263017CA4C976EEB987F1F27F91C102AE24EFEE05" }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -291986,7 +285403,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -291995,7 +285412,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -292004,7 +285421,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -292013,7 +285430,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -292022,7 +285439,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -292031,392 +285448,1479 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { - "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" + "id": "cipher_strength_score_weighted", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "mes-adresses.data.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "217" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 12:26:24 GMT", + "etag": "\"gm0dhwbtvj10l5\"", + "vary": "Accept-Encoding", + "x-powered-by": "Next.js", + "x-request-id": "ae8e2ff2-8335-4b1c-81eb-e456090e7d4d" + }, + "endpoints": [ + { + "hostname": "mes-adresses.data.gouv.fr", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mes-adresses.data.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.5.6", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mes-adresses.data.gouv.fr/", + "finalUrl": "https://mes-adresses.data.gouv.fr/", + "fetchTime": "2024-12-01T12:25:59.941Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.65 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.91 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.88 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 5154, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 913, + "firstMeaningfulPaint": 913, + "largestContentfulPaint": 983, + "interactive": 5154, + "speedIndex": 2055, + "totalBlockingTime": 1181, + "maxPotentialFID": 525, + "cumulativeLayoutShift": 0.2930975477430556, + "cumulativeLayoutShiftMainFrame": 0.2930975477430556, + "totalCumulativeLayoutShift": 0.2930975477430556, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 1321197311, + "observedNavigationStart": 0, + "observedNavigationStartTs": 1321197311, + "observedFirstPaint": 579, + "observedFirstPaintTs": 1321776223, + "observedFirstContentfulPaint": 579, + "observedFirstContentfulPaintTs": 1321776223, + "observedFirstContentfulPaintAllFrames": 579, + "observedFirstContentfulPaintAllFramesTs": 1321776223, + "observedFirstMeaningfulPaint": 579, + "observedFirstMeaningfulPaintTs": 1321776223, + "observedLargestContentfulPaint": 579, + "observedLargestContentfulPaintTs": 1321776223, + "observedLargestContentfulPaintAllFrames": 579, + "observedLargestContentfulPaintAllFramesTs": 1321776223, + "observedTraceEnd": 3893, + "observedTraceEndTs": 1325090310, + "observedLoad": 1455, + "observedLoadTs": 1322652096, + "observedDomContentLoaded": 799, + "observedDomContentLoadedTs": 1321995878, + "observedCumulativeLayoutShift": 0.2930975477430556, + "observedCumulativeLayoutShiftMainFrame": 0.2930975477430556, + "observedTotalCumulativeLayoutShift": 0.2930975477430556, + "observedFirstVisualChange": 583, + "observedFirstVisualChangeTs": 1321780311, + "observedLastVisualChange": 1133, + "observedLastVisualChangeTs": 1322330311, + "observedSpeedIndex": 694, + "observedSpeedIndexTs": 1321891789 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 37, + "numScripts": 22, + "numStylesheets": 1, + "numFonts": 0, + "numTasks": 692, + "numTasksOver10ms": 11, + "numTasksOver25ms": 8, + "numTasksOver50ms": 4, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 82.92, + "throughput": 14090847.448700413, + "maxRtt": 87.493, + "maxServerLatency": 4.790999999999997, + "totalByteWeight": 1070221, + "totalTaskTime": 646.2929999999988, + "mainDocumentTransferSize": 9615 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://mes-adresses.data.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mes-adresses.data.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "ban", + "type": "startup", + "attributes": { + "name": "Base Adresse Nationale", + "pitch": "Référencer l'intégralité des adresses du territoire français", + "stats_url": "https://adresse.data.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#Base-Adresse-Nationale", + "link": "https://adresse.data.gouv.fr", + "repository": "https://github.com/BaseAdresseNationale", + "contact": "adresse@data.gouv.fr", + "content_url_encoded_markdown": "La%20Base%20Adresse%20Nationale%20est%20une%20des%20neuf%20bases%20de%20donn%C3%A9es%20du%20service%20public%20des%20donn%C3%A9es%20de%20r%C3%A9f%C3%A9rence%20et%20a%20pour%20vocation%20de%20r%C3%A9f%C3%A9rencer%20l%27ensemble%20des%20adresses%20du%20territoire%20national.%20Service%20num%C3%A9rique%20d%E2%80%99usage%20partag%C3%A9%20et%20infrastructure%20socle%20sur%20laquelle%20sont%20adoss%C3%A9es%20de%20nombreuses%20politiques%20publiques%2C%20elle%20fait%20partie%20du%20syst%C3%A8me%20d%E2%80%99information%20et%20de%20communication%20de%20l%E2%80%99%C3%89tat.%0A%0AElle%20est%20le%20fruit%20de%20la%20collaboration%20de%C2%A0%3A%0A%0A-%20la%20%5BDINUM%5D%28https%3A%2F%2Fwww.numerique.gouv.fr%2F%29%0A-%20l%27%5BANCT%5D%28https%3A%2F%2Fagence-cohesion-territoires.gouv.fr%2F%29%0A-%20l%27%5BIGN%5D%28http%3A%2F%2Fwww.ign.fr%2F%29%20%3B%0A%0A%0ASa%20construction%20est%20assur%C3%A9e%20gr%C3%A2ce%20%C3%A0%20de%20nombreux%20partenaires%2C%20et%20en%20premier%20lieu%20par%20les%20communes%2C%20seules%20autorit%C3%A9s%20comp%C3%A9tentes%20en%20terme%20d%E2%80%99adressage.%0A%0ALa%20Base%20Adresse%20Nationale%20est%20accessible%20sous%20forme%20de%20fichiers%20et%20d%E2%80%99API.%0A%0APar%20ailleurs%2C%20la%20plateforme%20BAN%20met%20%C3%A0%20disposition%20des%20outils%20compl%C3%A9mentaires%20gratuits%20pour%20faciliter%20la%20mise%20%C3%A0%20jour%20de%20la%20base%20et%20sa%20r%C3%A9utilisation%C2%A0%3A%0A%0A-%20l%27outil%20de%20cr%C3%A9ation%20des%20BAL%20et%20int%C3%A9gration%20%20dans%20la%20BAN%20%3A%20%5BMes-Adresses%5D%28https%3A%2F%2Fmes-adresses.data.gouv.fr%2F%29%0A-%20une%20%5BAPI%20de%20g%C3%A9ocodage%5D%28https%3A%2F%2Fapi.gouv.fr%2Fapi%2Fbase-adresse-nationale.html%29%20qui%20permet%20aussi%20de%20faire%20de%20l%27auto-compl%C3%A9tion%20%3B%20et%0A-%20une%20application%20mobile%20qui%20permet%20%C3%A0%20chacun%20de%20contribuer%20au%20r%C3%A9f%C3%A9rentiel%20_%28%C3%A0%20venir%29_.%0A", + "events": [ + { + "name": "committee", + "date": "2022-02-23", + "comment": "" + }, + { + "name": "committee", + "date": "2022-11-21", + "comment": "" + }, + { + "name": "committee", + "date": "2023-09-21", + "comment": "" + }, + { + "name": "committee", + "date": "2024-04-02", + "comment": "" + }, + { + "name": "committee", + "date": "2024-10-16", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2014-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2014-06-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2018-01-01", + "end": "" + }, + { + "name": "transfer", + "start": "2021-05-05", + "end": "" + }, + { + "name": "success", + "start": "2023-06-30", + "end": "" + } + ], + "sponsors": [ + "anct", + "dinum", + "ign" + ], + "thematiques": [], + "dashlord_url": "https://dashlord.incubateur.net/url/adresse-data-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fab-geocommuns" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mes-adresses.data.gouv.fr/", + "size": 1170.675, + "nodes": 108, + "requests": 34, + "grade": "B", + "score": 80, + "ges": 1.4, + "water": 2.1, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 12:22:53.696700", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "F", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-08T06:56:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.91, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.88, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://adresse.data.gouv.fr/", + "category": "fab-geocommuns", + "betaId": "ban", + "http": { + "url": "https://adresse.data.gouv.fr/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 01:01:41 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=300, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 01:01:39 GMT", + "ETag": "\"3ytpb7j9fz1da3\"", + "Server": "nginx/1.24.0", + "Strict-Transport-Security": "max-age=15768000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Powered-By": "Next.js", + "x-nextjs-cache": "HIT" }, - { - "id": "final_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57046317, + "score": 50, + "start_time": "Sun, 20 Oct 2024 01:01:38 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://adresse.data.gouv.fr/", + "redirects": true, + "route": [ + "http://adresse.data.gouv.fr/", + "https://adresse.data.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15768000", + "includeSubDomains": false, + "max-age": 15768000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "40sv", + "url": "https://adresse.data.gouv.fr/", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T11:04:49Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T12:25:11Z", + "next_check_at": "2024-12-01T12:26:10Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://adresse.data.gouv.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T12:16:14Z", + "expires_at": "2025-01-15T01:39:18Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 465, + "connection": 118, + "handshake": 138, + "response": 124, + "total": 845 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "adresse.data.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "7.6p1 Ubuntu 4ubuntu0.7", + "vulnerabilities": [ + { + "cvss": "10.0", + "is_exploit": "true", + "type": "githubexploit", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" + }, + { + "cvss": "10.0", + "is_exploit": "true", + "type": "githubexploit", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" + }, + { + "cvss": "9.8", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2023-38408" + }, + { + "cvss": "9.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "cvss": "9.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "cvss": "9.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "cvss": "9.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "cvss": "9.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "cvss": "7.8", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2020-15778" + }, + { + "cvss": "7.5", + "is_exploit": "true", + "type": "seebug", + "id": "SSV:92579" + }, + { + "cvss": "7.5", + "is_exploit": "true", + "type": "packetstorm", + "id": "PACKETSTORM:173661" + }, + { + "cvss": "7.5", + "is_exploit": "true", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "cvss": "7.5", + "is_exploit": "true", + "type": "zdt", + "id": "1337DAY-ID-26576" + }, + { + "cvss": "7.0", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2021-41617" + }, + { + "cvss": "6.8", + "is_exploit": "true", + "type": "exploitdb", + "id": "EDB-ID:46516" + }, + { + "cvss": "6.8", + "is_exploit": "true", + "type": "exploitdb", + "id": "EDB-ID:46193" + }, + { + "cvss": "6.8", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2019-6110" + }, + { + "cvss": "6.8", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2019-6109" + }, + { + "cvss": "6.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" + }, + { + "cvss": "6.8", + "is_exploit": "true", + "type": "githubexploit", + "id": "10213DBE-F683-58BB-B6D3-353173626207" + }, + { + "cvss": "6.5", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2023-51385" + }, + { + "cvss": "5.9", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2023-48795" + }, + { + "cvss": "5.9", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2020-14145" + }, + { + "cvss": "5.9", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2019-6111" + }, + { + "cvss": "5.8", + "is_exploit": "true", + "type": "exploitpack", + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19" + }, + { + "cvss": "5.8", + "is_exploit": "true", + "type": "exploitpack", + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97" + }, + { + "cvss": "5.8", + "is_exploit": "true", + "type": "zdt", + "id": "1337DAY-ID-32328" + }, + { + "cvss": "5.8", + "is_exploit": "true", + "type": "zdt", + "id": "1337DAY-ID-32009" + }, + { + "cvss": "5.3", + "is_exploit": "true", + "type": "packetstorm", + "id": "PACKETSTORM:181223" + }, + { + "cvss": "5.3", + "is_exploit": "true", + "type": "metasploit", + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-" + }, + { + "cvss": "5.3", + "is_exploit": "true", + "type": "exploitdb", + "id": "EDB-ID:45939" + }, + { + "cvss": "5.3", + "is_exploit": "true", + "type": "exploitdb", + "id": "EDB-ID:45233" + }, + { + "cvss": "5.3", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2018-20685" + }, + { + "cvss": "5.3", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2018-15919" + }, + { + "cvss": "5.3", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2018-15473" + }, + { + "cvss": "5.3", + "is_exploit": "false", + "type": "cve", + "id": "CVE-2016-20012" + }, + { + "cvss": "5.0", + "is_exploit": "true", + "type": "canvas", + "id": "SSH_ENUM" + }, + { + "cvss": "5.0", + "is_exploit": "true", + "type": "packetstorm", + "id": "PACKETSTORM:150621" + }, + { + "cvss": "5.0", + "is_exploit": "true", + "type": "exploitpack", + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0" + }, + { + "cvss": "5.0", + "is_exploit": "true", + "type": "exploitpack", + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283" + }, + { + "cvss": "5.0", + "is_exploit": "true", + "type": "zdt", + "id": "1337DAY-ID-31730" + }, + { + "cvss": "0.0", + "is_exploit": "true", + "type": "packetstorm", + "id": "PACKETSTORM:151227" + }, + { + "cvss": "0.0", + "is_exploit": "true", + "type": "packetstorm", + "id": "PACKETSTORM:140261" + }, + { + "cvss": "0.0", + "is_exploit": "true", + "type": "exploitdb", + "id": "EDB-ID:45210" + }, + { + "cvss": "0.0", + "is_exploit": "true", + "type": "zdt", + "id": "1337DAY-ID-30937" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.24.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.24.0", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -292424,7 +286928,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -292432,7 +286936,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -292440,7 +286944,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -292448,7 +286952,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -292456,7 +286960,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -292464,469 +286968,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc02c", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "id": "cipher-tls1_2_xc02b", + "ip": "adresse.data.gouv.fr/146.59.188.210", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:23" + "finding": "2024-10-17 01:39" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:23" + "finding": "2025-01-15 01:39" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://e5.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "adresse.data.gouv.fr/146.59.188.210", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "E5 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "E5 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "1732452470" + "finding": "1733055892" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "182 days (=15768000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.24.0" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "id": "Cache-Control", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -292934,7 +287445,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -292943,7 +287454,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -292952,16 +287463,16 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -292970,7 +287481,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -292978,7 +287489,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -292987,7 +287498,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -292996,16 +287507,16 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -293014,14 +287525,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -293030,7 +287541,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -293039,7 +287550,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -293048,16 +287559,16 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -293066,16 +287577,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -293084,7 +287595,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -293093,7 +287604,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -293102,7 +287613,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -293111,337 +287622,382 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "96" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "415" + "finding": "55" } ], "thirdparties": { - "trackers": [], + "trackers": [ + { + "type": "unknown", + "url": "https://8d772127.sibforms.com/serve/MUIEALrUjwg3nxBK1Ebb_ndriJHjVhfoNqqr55eXe4id-Y3eYMbnHY6fabW8qNi5S55CjKgwWuwYbpWbQamoes1zxUi4vYJGeXwkygSrYFFz0Yg644JK8Bb2VY1Q23vp4b22CmKNIWbjSccP3x1RTOsdV3EjJkWc_o-mXUxWg9Hjx8gbmzkyUeSgKAinMeoI33kqpDssnQxeeorN" + }, + { + "type": "unknown", + "url": "https://sibforms.com/forms/end-form/build/sib-styles.css" + }, + { + "type": "unknown", + "url": "https://8d772127.sibforms.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js" + }, + { + "type": "unknown", + "url": "https://sibforms.com/forms/end-form/build/main.js" + }, + { + "type": "unknown", + "url": "https://sibforms.com/forms/end-form/elastic-apm-rum.umd.min.js" + }, + { + "type": "brevo", + "url": "https://assets.brevo.com/font/Roboto/Latin/normal/normal/7529907e9eaf8ebb5220c5f9850e3811.woff2", + "details": { + "id": "brevo", + "message": "Ensure your TOS notify the Brevo usage" + } + }, + { + "type": "brevo", + "url": "https://assets.brevo.com/font/Roboto/Latin/normal/normal/7529907e9eaf8ebb5220c5f9850e3811.woff2", + "details": { + "id": "brevo", + "message": "Ensure your TOS notify the Brevo usage" + } + }, + { + "type": "unknown", + "url": "https://596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io/intake/v2/rum/events" + }, + { + "type": "unknown", + "url": "https://596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io/intake/v2/rum/events" + } + ], "cookies": [ { - "name": "_pk_ses.212.85a9", + "name": "_pk_ses.13.592e", "value": "1", - "domain": "inclusion.beta.gouv.fr", + "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1732453850, - "size": 17, + "expires": 1733057630, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -293451,12 +288007,12 @@ "sourcePort": 443 }, { - "name": "_pk_id.212.85a9", - "value": "611aafce41f5d5eb.1732452051.", - "domain": "inclusion.beta.gouv.fr", + "name": "_pk_id.13.592e", + "value": "d6f9a44b8b0459f4.1733055831.", + "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1766407251, - "size": 43, + "expires": 1767011031, + "size": 42, "httpOnly": false, "secure": false, "session": false, @@ -293467,20 +288023,21 @@ } ], "headers": { + "cache-control": "s-maxage=300, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 12:40:48 GMT", - "referrer-policy": "same-origin", - "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "152d5b91-f2c4-46cb-b253-81f6ba1547a7" + "date": "Sun, 01 Dec 2024 12:23:49 GMT", + "etag": "\"2tpwrdnu41d6c\"", + "server": "nginx/1.24.0", + "strict-transport-security": "max-age=15768000", + "vary": "Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js" }, "endpoints": [ { - "hostname": "inclusion.beta.gouv.fr", - "ip": "80.247.13.145", + "hostname": "adresse.data.gouv.fr", + "ip": "146.59.188.210", "geoip": { "continent": { "code": "EU", @@ -293533,82 +288090,245 @@ } } } + }, + { + "hostname": "8d772127.sibforms.com", + "ip": "104.16.248.109", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "sibforms.com", + "ip": "104.16.249.109", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "assets.brevo.com", + "ip": "172.64.150.216", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io", + "ip": "34.253.3.7", + "geoip": { + "city": { + "geoname_id": 2964574, + "names": { + "de": "Dublin", + "en": "Dublin", + "es": "Dublín", + "fr": "Dublin", + "ja": "ダブリン", + "pt-BR": "Dublin", + "ru": "Дублин", + "zh-CN": "都柏林" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2963597, + "is_in_european_union": true, + "iso_code": "IE", + "names": { + "de": "Irland", + "en": "Ireland", + "es": "Irlanda", + "fr": "Irlande", + "ja": "アイルランド", + "pt-BR": "Irlanda", + "ru": "Ирландия", + "zh-CN": "爱尔兰" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 53.3379, + "longitude": -6.2591, + "time_zone": "Europe/Dublin" + }, + "postal": { + "code": "D02" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 7521314, + "iso_code": "L", + "names": { + "en": "Leinster", + "fr": "Leinster", + "ja": "レンスター", + "ru": "Ленстер" + } + } + ] + } } ] }, "wappalyzer": { "urls": { - "https://inclusion.beta.gouv.fr/": { + "https://adresse.data.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" } - ], - "rootPath": true + ] }, { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" } ] }, { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "version": "1.24.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } - ] + ], + "rootPath": true }, { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, + "version": "13.1.5", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } ], "rootPath": true @@ -293632,86 +288352,79 @@ "rootPath": true }, { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 73, - "slug": "surveys", - "name": "Surveys" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "zendesk", - "name": "Zendesk", - "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", "confidence": 100, "version": null, - "icon": "Zendesk.svg", - "website": "https://zendesk.com", + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", "cpe": null, "categories": [ { - "id": 4, - "slug": "documentation", - "name": "Documentation" - }, - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" }, { - "id": 52, - "slug": "live-chat", - "name": "Live chat" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ], - "rootPath": true + ] }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ], - "rootPath": true + ] } ] }, @@ -293719,9 +288432,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://inclusion.beta.gouv.fr/", - "finalUrl": "https://inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T12:40:21.466Z", + "requestedUrl": "https://adresse.data.gouv.fr/", + "finalUrl": "https://adresse.data.gouv.fr/", + "fetchTime": "2024-12-01T12:23:24.908Z", "runWarnings": [], "categories": { "performance": { @@ -293732,7 +288445,7 @@ "snapshot" ], "id": "performance", - "score": 0.87 + "score": 0.8 }, "accessibility": { "title": "Accessibility", @@ -293764,7 +288477,7 @@ "snapshot" ], "id": "seo", - "score": 1 + "score": 0.89 }, "pwa": { "title": "PWA", @@ -293784,53 +288497,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1505, + "numericValue": 7082, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1505, - "firstMeaningfulPaint": 1505, - "largestContentfulPaint": 3982, - "interactive": 1505, - "speedIndex": 2540, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0031964518229166666, - "cumulativeLayoutShiftMainFrame": 0.0031964518229166666, - "totalCumulativeLayoutShift": 0.0031964518229166666, + "firstContentfulPaint": 2367, + "firstMeaningfulPaint": 4319, + "largestContentfulPaint": 3717, + "interactive": 7082, + "speedIndex": 3052, + "totalBlockingTime": 93, + "maxPotentialFID": 226, + "cumulativeLayoutShift": 0.011099000718858507, + "cumulativeLayoutShiftMainFrame": 0.011099000718858507, + "totalCumulativeLayoutShift": 0.011099000718858507, "observedTimeOrigin": 0, - "observedTimeOriginTs": 429767979, + "observedTimeOriginTs": 355277876, "observedNavigationStart": 0, - "observedNavigationStartTs": 429767979, - "observedFirstPaint": 1153, - "observedFirstPaintTs": 430920792, - "observedFirstContentfulPaint": 1153, - "observedFirstContentfulPaintTs": 430920792, - "observedFirstContentfulPaintAllFrames": 1153, - "observedFirstContentfulPaintAllFramesTs": 430920792, - "observedFirstMeaningfulPaint": 1153, - "observedFirstMeaningfulPaintTs": 430920792, - "observedLargestContentfulPaint": 1618, - "observedLargestContentfulPaintTs": 431386394, - "observedLargestContentfulPaintAllFrames": 1618, - "observedLargestContentfulPaintAllFramesTs": 431386394, - "observedTraceEnd": 4877, - "observedTraceEndTs": 434645197, - "observedLoad": 2258, - "observedLoadTs": 432025594, - "observedDomContentLoaded": 599, - "observedDomContentLoadedTs": 430366557, - "observedCumulativeLayoutShift": 0.0031964518229166666, - "observedCumulativeLayoutShiftMainFrame": 0.0031964518229166666, - "observedTotalCumulativeLayoutShift": 0.0031964518229166666, - "observedFirstVisualChange": 1164, - "observedFirstVisualChangeTs": 430931979, - "observedLastVisualChange": 1781, - "observedLastVisualChangeTs": 431548979, - "observedSpeedIndex": 1294, - "observedSpeedIndexTs": 431062090 + "observedNavigationStartTs": 355277876, + "observedFirstPaint": 653, + "observedFirstPaintTs": 355930746, + "observedFirstContentfulPaint": 653, + "observedFirstContentfulPaintTs": 355930746, + "observedFirstContentfulPaintAllFrames": 653, + "observedFirstContentfulPaintAllFramesTs": 355930746, + "observedFirstMeaningfulPaint": 878, + "observedFirstMeaningfulPaintTs": 356155629, + "observedLargestContentfulPaint": 653, + "observedLargestContentfulPaintTs": 355930746, + "observedLargestContentfulPaintAllFrames": 653, + "observedLargestContentfulPaintAllFramesTs": 355930746, + "observedTraceEnd": 3512, + "observedTraceEndTs": 358790014, + "observedLoad": 1104, + "observedLoadTs": 356381906, + "observedDomContentLoaded": 701, + "observedDomContentLoadedTs": 355978472, + "observedCumulativeLayoutShift": 0.011099000718858507, + "observedCumulativeLayoutShiftMainFrame": 0.011099000718858507, + "observedTotalCumulativeLayoutShift": 0.011099000718858507, + "observedFirstVisualChange": 657, + "observedFirstVisualChangeTs": 355934876, + "observedLastVisualChange": 1691, + "observedLastVisualChangeTs": 356968876, + "observedSpeedIndex": 750, + "observedSpeedIndexTs": 356027592 }, { "lcpInvalidated": false @@ -293848,23 +288561,23 @@ "type": "debugdata", "items": [ { - "numRequests": 59, - "numScripts": 3, - "numStylesheets": 4, - "numFonts": 4, - "numTasks": 22, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 151.188, - "throughput": 8577108.333278587, - "maxRtt": 152.519, - "maxServerLatency": 6.062000000000012, - "totalByteWeight": 1337317, - "totalTaskTime": 4273.228, - "mainDocumentTransferSize": 8985 + "numRequests": 77, + "numScripts": 34, + "numStylesheets": 2, + "numFonts": 6, + "numTasks": 1552, + "numTasksOver10ms": 9, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 67.26700000000001, + "throughput": 14523749.745671196, + "maxRtt": 83.799, + "maxServerLatency": 6.998999999999981, + "totalByteWeight": 945812, + "totalTaskTime": 396.3359999999975, + "mainDocumentTransferSize": 12742 } ] } @@ -293874,17 +288587,17 @@ ], "screenshot": true, "stats": { - "grade": "F" + "grade": "A" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { - "grade": "F" + "grade": "A" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://inclusion.beta.gouv.fr/accessibilite/" + "declarationUrl": "https://adresse.data.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -293894,33 +288607,115 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://inclusion.beta.gouv.fr/mentions_legales/" + "declarationUrl": "https://adresse.data.gouv.fr/cgu" }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://inclusion.beta.gouv.fr/politique-de-confidentialite/" + "missingTrackers": [] } ], - "betagouv": null, + "betagouv": { + "id": "ban", + "type": "startup", + "attributes": { + "name": "Base Adresse Nationale", + "pitch": "Référencer l'intégralité des adresses du territoire français", + "stats_url": "https://adresse.data.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#Base-Adresse-Nationale", + "link": "https://adresse.data.gouv.fr", + "repository": "https://github.com/BaseAdresseNationale", + "contact": "adresse@data.gouv.fr", + "content_url_encoded_markdown": "La%20Base%20Adresse%20Nationale%20est%20une%20des%20neuf%20bases%20de%20donn%C3%A9es%20du%20service%20public%20des%20donn%C3%A9es%20de%20r%C3%A9f%C3%A9rence%20et%20a%20pour%20vocation%20de%20r%C3%A9f%C3%A9rencer%20l%27ensemble%20des%20adresses%20du%20territoire%20national.%20Service%20num%C3%A9rique%20d%E2%80%99usage%20partag%C3%A9%20et%20infrastructure%20socle%20sur%20laquelle%20sont%20adoss%C3%A9es%20de%20nombreuses%20politiques%20publiques%2C%20elle%20fait%20partie%20du%20syst%C3%A8me%20d%E2%80%99information%20et%20de%20communication%20de%20l%E2%80%99%C3%89tat.%0A%0AElle%20est%20le%20fruit%20de%20la%20collaboration%20de%C2%A0%3A%0A%0A-%20la%20%5BDINUM%5D%28https%3A%2F%2Fwww.numerique.gouv.fr%2F%29%0A-%20l%27%5BANCT%5D%28https%3A%2F%2Fagence-cohesion-territoires.gouv.fr%2F%29%0A-%20l%27%5BIGN%5D%28http%3A%2F%2Fwww.ign.fr%2F%29%20%3B%0A%0A%0ASa%20construction%20est%20assur%C3%A9e%20gr%C3%A2ce%20%C3%A0%20de%20nombreux%20partenaires%2C%20et%20en%20premier%20lieu%20par%20les%20communes%2C%20seules%20autorit%C3%A9s%20comp%C3%A9tentes%20en%20terme%20d%E2%80%99adressage.%0A%0ALa%20Base%20Adresse%20Nationale%20est%20accessible%20sous%20forme%20de%20fichiers%20et%20d%E2%80%99API.%0A%0APar%20ailleurs%2C%20la%20plateforme%20BAN%20met%20%C3%A0%20disposition%20des%20outils%20compl%C3%A9mentaires%20gratuits%20pour%20faciliter%20la%20mise%20%C3%A0%20jour%20de%20la%20base%20et%20sa%20r%C3%A9utilisation%C2%A0%3A%0A%0A-%20l%27outil%20de%20cr%C3%A9ation%20des%20BAL%20et%20int%C3%A9gration%20%20dans%20la%20BAN%20%3A%20%5BMes-Adresses%5D%28https%3A%2F%2Fmes-adresses.data.gouv.fr%2F%29%0A-%20une%20%5BAPI%20de%20g%C3%A9ocodage%5D%28https%3A%2F%2Fapi.gouv.fr%2Fapi%2Fbase-adresse-nationale.html%29%20qui%20permet%20aussi%20de%20faire%20de%20l%27auto-compl%C3%A9tion%20%3B%20et%0A-%20une%20application%20mobile%20qui%20permet%20%C3%A0%20chacun%20de%20contribuer%20au%20r%C3%A9f%C3%A9rentiel%20_%28%C3%A0%20venir%29_.%0A", + "events": [ + { + "name": "committee", + "date": "2022-02-23", + "comment": "" + }, + { + "name": "committee", + "date": "2022-11-21", + "comment": "" + }, + { + "name": "committee", + "date": "2023-09-21", + "comment": "" + }, + { + "name": "committee", + "date": "2024-04-02", + "comment": "" + }, + { + "name": "committee", + "date": "2024-10-16", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2014-06-01", + "end": "" + }, + { + "name": "construction", + "start": "2014-06-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2018-01-01", + "end": "" + }, + { + "name": "transfer", + "start": "2021-05-05", + "end": "" + }, + { + "name": "success", + "start": "2023-06-30", + "end": "" + } + ], + "sponsors": [ + "anct", + "dinum", + "ign" + ], + "thematiques": [], + "dashlord_url": "https://dashlord.incubateur.net/url/adresse-data-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fab-geocommuns" + } + } + } + }, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://inclusion.beta.gouv.fr/", - "size": 1482.31, - "nodes": 422, - "requests": 56, - "grade": "C", - "score": 62, - "ges": 1.76, - "water": 2.64, + "url": "https://adresse.data.gouv.fr/", + "size": 1726.31, + "nodes": 500, + "requests": 90, + "grade": "D", + "score": 50, + "ges": 2, + "water": 3, "ecoindex_version": "5.4.2", - "date": "2024-11-24 12:37:13.486652", + "date": "2024-12-01 12:20:26.519006", "page_type": null } ], @@ -293929,160 +288724,320 @@ "detected": true }, "summary": { - "httpGrade": "B", - "apdex": 0.962, - "apdexGrade": "D", + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T07:23:00.000Z", + "testsslExpireDate": "2025-01-15T01:39:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.87, - "lighthouse_performanceGrade": "A", + "trackersGrade": "C", + "trackersCount": 9, + "lighthouse_performance": 0.8, + "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, + "lighthouse_seo": 0.89, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "D", "dsfrGrade": "A" } }, { "404": null, - "url": "https://dora.inclusion.beta.gouv.fr", - "title": "Frontend DORA", - "category": "gip-inclusion", - "repositories": [ - "betagouv/dora-front" + "url": "https://my.fabnum.fr/", + "category": "fabnum", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "my.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'my.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "my.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://my.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (my.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://octopus.igloo.fabnum.fr/", + "category": "fabnumdef", + "betaId": "octopus", + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "scanProblem", + "ip": "octopus.igloo.fabnum.fr/", + "port": "443", + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'octopus.igloo.fabnum.fr' available" + }, + { + "id": "scanTime", + "ip": "octopus.igloo.fabnum.fr/", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://octopus.igloo.fabnum.fr/": { + "status": 0, + "error": "Hostname could not be resolved (octopus.igloo.fabnum.fr)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } ], + "betagouv": { + "id": "octopus", + "type": "startup", + "attributes": { + "name": "Octopus", + "pitch": "Optimiser la préparation des missions de transport et soutien logistique (armée de l'Air et de l'Espace)", + "stats_url": "", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view", + "contact": "mathieu.mahr@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AIniti%C3%A9%20par%20une%20escadre%20de%20transport%20a%C3%A9rien%2C%20le%20projet%20doit%20r%C3%A9pondre%20aux%20enjeux%20de%20coordination%20et%20pr%C3%A9paration%20des%20missions%20a%C3%A9riennes%20de%20transport%20et%20soutien%20logistique.%0A%0ALes%20outils%20utilis%C3%A9s%20constitu%C3%A9s%20de%20gros%20fichiers%20Excel%20dot%C3%A9s%20de%20macros%20ont%20atteint%20des%20limites%20d%27exploitation%20qui%20p%C3%A9nalisent%20l%27activit%C3%A9.%0A%0A%23%23%20%2A%2AProbl%C3%A9matique%2A%2A%0A%0ALes%20personnels%20de%20l%27escadre%20veulent%20travailler%20plus%20efficacement%20avec%20un%20outil%20partag%C3%A9%20et%20collaboratif.%20Le%20nombre%20d%27acteurs%20croissant%20et%20l%27arriv%C3%A9e%20de%20nouveaux%20avions%20entra%C3%AEnent%20m%C3%A9caniquement%20un%20besoin%20de%20traitement%20plus%20important.%0A%0A%23%23%20%2A%2AObjectifs%2A%2A%0A%0A-%20Centraliser%20et%20partager%20les%20informations%20dans%20un%20outil%20de%20planification%20p%C3%A9renne%0A-%20Am%C3%A9liorer%20la%20transmission%20des%20informations%20entre%20les%20acteurs%0A-%20Am%C3%A9liorer%20le%20temps%20de%20traitement%20d%27une%20mission%0A%0A%23%23%20%2A%2AChronologie%2A%2A%0A%0A%2A%2A%C3%A9tape%201%2A%2A%C2%A0%28d%C3%A9but%20mars%202021%29%20cadrage%20du%20projet%2C%20entretiens%20avec%20les%20op%C3%A9rateurs%20des%20diff%C3%A9rents%20services%2C%20%20parcours%20d%27utilisation%20des%20outils%20actuels%0A%0A%2A%2A%C3%A9tape%202%2A%2A%C2%A0%28mars%202021%29%20r%C3%A9alisation%20des%20wireframes%20%0A%0A%2A%2A%C3%A9tape%203%2A%2A%C2%A0%28avril%202021%29%20test%20des%20wireframes%20aupr%C3%A8s%20des%20utilisateurs%0A%0A%2A%2A%C3%A9tape%204%2A%2A%C2%A0%28mai%202021%29%20pr%C3%A9sentation%20des%20travaux%20%0A%0A%2A%2A%C3%A9tape%205%2A%2A%C2%A0%28juin%202021%29%20d%C3%A9but%20du%20d%C3%A9veloppement%20de%20l%27outil%20socle%20calendrier%0A%0A%2A%2A%C3%A9tape%206%20%3A%2A%2A%20%28mi-septembre%202021%29%20d%C3%A9veloppement%20de%20l%27outil%20Octopus%0A%0A%2A%2A%C3%A9tape%207%20%3A%2A%2A%20%28mai%202022%29%20livraison%20du%20PMV%20%0A%0A%2A%2A%C3%A9tape%208%20%3A%2A%2A%20%28juillet%202022%29%20it%C3%A9ration%202%20-%20retours%20utilisateurs%20et%20nouvelles%20fonctionnalit%C3%A9s%0A%0A%2A%2A%C3%A9tape%209%20%3A%2A%2A%20%28depuis%20janvier%202023%29%20travail%20avec%20la%20DSI%20sur%20le%20devenir%20du%20produit%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-03-20", + "end": "2021-06-01" + }, + { + "name": "construction", + "start": "2021-06-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2023-01-30", + "end": "" + } + ], + "sponsors": [ + "armees" + ], + "thematiques": [] + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fabnumdef" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "A", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://inclusion.beta.gouv.fr/", "tags": [ - "dora", - "production" + "itou" ], - "betaId": "dora", + "category": "gip-inclusion", + "betaId": "itou", "http": { - "url": "https://dora.inclusion.beta.gouv.fr", + "url": "https://inclusion.beta.gouv.fr/", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 09:33:50 GMT", - "grade": "A+", + "end_time": "Sun, 20 Oct 2024 09:24:28 GMT", + "grade": "B", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 09:33:49 GMT", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 09:24:26 GMT", + "Referrer-Policy": "same-origin", "Transfer-Encoding": "chunked", - "X-Request-ID": "833462d7-2eeb-4f81-95d0-6fb9e5d3b95c", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-gkrZZuHYeB2AcaPxSNZuVQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"izoor5\"", - "link": "<./_app/immutable/assets/0.DEXQWU5i.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.BdRwC6TB.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.D7-uZUmf.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.HT6512dc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/7.CglxIoW9.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.CdvcxgZa.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.DZEZAue9.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/checkbox-mark.DACHIcp0.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.CMHsyTJo.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.B68zeBIO.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/entry.D_15D4sv.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.DNPEFUrV.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.DhDIamiK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.D5GtiVV7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.Usxb29Pr.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hub.CrdfF0FK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/semanticAttributes.DqbTfIcl.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.bBwFgXVC.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.clUpgfYq.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.DFI58iNZ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.CLrgXARF.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.DFVUzsZo.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/logger.cGyGtsYQ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.DHjRCb12.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.UUgnI7W6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.BGclvP-I.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.D2AMmCto.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.DA5fwXfK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.D7dweD8_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.zwMgl_XK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.BVN30RPz.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.CDMR-x84.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.D543LKCp.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.K8AEBf-w.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.DTtimXts.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.CK7oWnzq.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.C-OdZ-LS.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.BlmdlPG_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.NmWiYbYf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.D9_NXRFe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.Bfd1HJYs.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.BsooxkM_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.BwakGR9w.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/basic-input-field.CDz9wF0T.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.CW8188kI.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.CfblBtBd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.JFxGoMfg.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.CXB8r1ds.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.BqI-txlf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.CAQnHZxW.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.BpP6I4Cx.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.D77TaaUZ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.D97iLoBa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.CmbWfLQQ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.BHzDJ35M.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.Bvi0T49R.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/checkbox-mark.iZw8qr6O.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.BKgfUG5H.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.U5-ThG5g.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.BZCbdaIj.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.BT53ZbMV.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.BxL9W93a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.PK3O9Gmt.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.YIOJqy4f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/orientation-video.BjoBdvVs.js>; rel=\"modulepreload\"; nopush", - "referrer-policy": "strict-origin", - "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-sveltekit-page": "true", - "x-xss-protection": "1; mode=block" + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "401e8c13-c90e-4172-aece-55c79d50b306", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57056780, - "score": 105, - "start_time": "Sun, 20 Oct 2024 09:33:48 GMT", + "scan_id": 57056593, + "score": 75, + "start_time": "Sun, 20 Oct 2024 09:24:25 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "base-uri": [ - "'self'" - ], - "child-src": [ - "https://metabase.dora.inclusion.beta.gouv.fr", - "https://tube.numerique.gouv.fr", - "https://tally.so", - "https://aide.dora.inclusion.beta.gouv.fr/" - ], - "connect-src": [ - "https://sentry.gip-inclusion.cloud-ed.fr", - "https://openmaptiles.geo.data.gouv.fr/", - "https://*.sentry.gip-inclusion.org", - "https://api.dora.inclusion.beta.gouv.fr", - "https://sentry.gip-inclusion.org", - "https://*.sentry.gip-inclusion.cloud-ed.fr", - "https://api.collectivite.fr", - "data:", - "https://openmaptiles.github.io/osm-bright-gl-style/", - "'self'", - "https://api-adresse.data.gouv.fr/", - "https://matomo.inclusion.beta.gouv.fr" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "'self'" - ], - "img-src": [ - "data:", - "'self'" - ], - "script-src": [ - "'nonce-gkrzzuhyeb2acapxsnzuvq=='", - "'strict-dynamic'" - ], - "style-src": [ - "'unsafe-inline'", - "https://tally.so/widgets/embed.js", - "'self'" - ], - "worker-src": [ - "blob:", - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": true, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -294115,11 +289070,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://dora.inclusion.beta.gouv.fr/", + "destination": "https://inclusion.beta.gouv.fr/", "redirects": true, "route": [ - "http://dora.inclusion.beta.gouv.fr/", - "https://dora.inclusion.beta.gouv.fr/" + "http://inclusion.beta.gouv.fr/", + "https://inclusion.beta.gouv.fr/" ], "status_code": 200 }, @@ -294132,7 +289087,7 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin", + "data": "same-origin", "http": true, "meta": false }, @@ -294163,9 +289118,9 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "result": "sri-implemented-and-all-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", + "score_modifier": 5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -294193,72 +289148,65 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "ondt", - "url": "https://dora.inclusion.beta.gouv.fr", - "alias": "", + "token": "wdc1", + "url": "https://inclusion.beta.gouv.fr", + "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-22T02:00:03Z", + "up_since": "2024-11-21T11:21:25Z", "error": null, - "period": 60, + "period": 3600, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, - "disabled_locations": [ - "lan", - "mia", - "bhs", - "hel", - "sin", - "tok", - "syd" - ], + "published": false, + "disabled_locations": [], "recipients": [ + "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T13:00:08Z", - "next_check_at": "2024-11-24T13:01:08Z", - "created_at": "2024-03-19T16:10:06Z", - "mute_until": null, - "favicon_url": "https://dora.inclusion.beta.gouv.fr/favicon.v2.ico", + "last_check_at": "2024-12-01T12:13:33Z", + "next_check_at": "2024-12-01T13:13:30Z", + "created_at": "2021-04-22T21:34:01Z", + "mute_until": "forever", + "favicon_url": "https://inclusion.beta.gouv.fr/static/images/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T12:52:11Z", - "expires_at": "2024-12-25T11:58:39Z", + "tested_at": "2024-12-01T10:14:20Z", + "expires_at": "2025-01-12T07:23:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.983, + "apdex": 0.962, "timings": { - "redirect": 0, - "namelookup": 27, - "connection": 10, - "handshake": 14, - "response": 244, - "total": 296 + "redirect": 514, + "namelookup": 109, + "connection": 106, + "handshake": 110, + "response": 250, + "total": 1089 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "D" }, "nmap": { - "host": "dora.inclusion.beta.gouv.fr", + "host": "inclusion.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -294284,77 +289232,77 @@ "testssl": [ { "id": "service", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294362,7 +289310,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294370,7 +289318,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294378,7 +289326,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294386,7 +289334,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294394,7 +289342,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294402,483 +289350,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-09-26 11:58" + "finding": "2024-10-14 07:23" }, { "id": "cert_notAfter", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-12-25 11:58" + "finding": "2025-01-12 07:23" }, { "id": "cert_extlifeSpan", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732452796" + "finding": "1733057874" }, { "id": "HSTS_time", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-I8WvnSgEdcVKVC8p+NNECQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" - }, - { - "id": "X-XSS-Protection", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "strict-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -294886,7 +289806,7 @@ }, { "id": "heartbleed", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -294895,7 +289815,7 @@ }, { "id": "CCS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -294904,7 +289824,7 @@ }, { "id": "ticketbleed", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -294913,7 +289833,7 @@ }, { "id": "ROBOT", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -294922,7 +289842,7 @@ }, { "id": "secure_renego", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -294930,7 +289850,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -294939,7 +289859,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -294948,16 +289868,16 @@ }, { "id": "BREACH", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -294966,14 +289886,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -294982,7 +289902,7 @@ }, { "id": "FREAK", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -294991,7 +289911,7 @@ }, { "id": "DROWN", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -295000,16 +289920,16 @@ }, { "id": "DROWN_hint", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95D4267B2B8C1EB5A156A2EF0BE57C9F33D1371D0595EB49B594F02FD6C4FF16" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" }, { "id": "LOGJAM", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -295018,7 +289938,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -295027,7 +289947,7 @@ }, { "id": "BEAST", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -295036,7 +289956,7 @@ }, { "id": "LUCKY13", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -295045,7 +289965,7 @@ }, { "id": "winshock", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -295054,7 +289974,7 @@ }, { "id": "RC4", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -295063,392 +289983,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295456,7 +290376,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295464,7 +290384,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295472,7 +290392,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295480,7 +290400,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295488,7 +290408,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295496,483 +290416,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-09-26 11:58" + "finding": "2024-10-14 07:23" }, { "id": "cert_notAfter", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-12-25 11:58" + "finding": "2025-01-12 07:23" }, { "id": "cert_extlifeSpan", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732452899" + "finding": "1733057966" }, { "id": "HSTS_time", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-FkfZH8sNG7EBdw6poKXtJw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" - }, - { - "id": "X-XSS-Protection", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "id": "security_headers", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "strict-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -295980,7 +290872,7 @@ }, { "id": "heartbleed", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -295989,7 +290881,7 @@ }, { "id": "CCS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -295998,7 +290890,7 @@ }, { "id": "ticketbleed", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -296007,7 +290899,7 @@ }, { "id": "ROBOT", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -296016,7 +290908,7 @@ }, { "id": "secure_renego", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -296024,7 +290916,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -296033,7 +290925,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -296042,16 +290934,16 @@ }, { "id": "BREACH", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -296060,14 +290952,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -296076,7 +290968,7 @@ }, { "id": "FREAK", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -296085,7 +290977,7 @@ }, { "id": "DROWN", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -296094,16 +290986,16 @@ }, { "id": "DROWN_hint", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95D4267B2B8C1EB5A156A2EF0BE57C9F33D1371D0595EB49B594F02FD6C4FF16" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C401766F0D4DEF9A28A66236A0E27EEF7A60CE99A5783CE98E659F7281F961D8" }, { "id": "LOGJAM", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296112,7 +291004,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296121,7 +291013,7 @@ }, { "id": "BEAST", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -296130,7 +291022,7 @@ }, { "id": "LUCKY13", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -296139,7 +291031,7 @@ }, { "id": "winshock", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -296148,7 +291040,7 @@ }, { "id": "RC4", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -296157,392 +291049,1147 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, - { - "id": "final_score", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + { + "id": "final_score", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "188" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "_pk_ses.212.3bdb", + "value": "1", + "domain": "inclusion.gouv.fr", + "path": "/", + "expires": 1733059563, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.212.3bdb", + "value": "b536ee70cf310ae0.1733057763.", + "domain": "inclusion.gouv.fr", + "path": "/", + "expires": 1767012963, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 12:56:01 GMT", + "referrer-policy": "same-origin", + "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "3c661330-19bf-4804-a7eb-5deca8fb643f" + }, + "endpoints": [ + { + "hostname": "inclusion.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://inclusion.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://inclusion.beta.gouv.fr/ (https://inclusion.beta.gouv.fr/)" + } + }, + "technologies": [ + { + "slug": "zendesk", + "name": "Zendesk", + "description": "Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities.", + "confidence": 100, + "version": null, + "icon": "Zendesk.svg", + "website": "https://zendesk.com", + "cpe": null, + "categories": [ + { + "id": 4, + "slug": "documentation", + "name": "Documentation" + }, + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + }, + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://inclusion.beta.gouv.fr/", + "finalUrl": "https://inclusion.gouv.fr/", + "fetchTime": "2024-12-01T12:55:32.524Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://inclusion.beta.gouv.fr/) was redirected to https://inclusion.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.8 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 2301, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2301, + "firstMeaningfulPaint": 2301, + "largestContentfulPaint": 4626, + "interactive": 2301, + "speedIndex": 3387, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.0035367838541666666, + "cumulativeLayoutShiftMainFrame": 0.0035367838541666666, + "totalCumulativeLayoutShift": 0.0035367838541666666, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 463930232, + "observedNavigationStart": 0, + "observedNavigationStartTs": 463930232, + "observedFirstPaint": 1398, + "observedFirstPaintTs": 465328200, + "observedFirstContentfulPaint": 1398, + "observedFirstContentfulPaintTs": 465328200, + "observedFirstContentfulPaintAllFrames": 1398, + "observedFirstContentfulPaintAllFramesTs": 465328200, + "observedFirstMeaningfulPaint": 1398, + "observedFirstMeaningfulPaintTs": 465328200, + "observedLargestContentfulPaint": 1815, + "observedLargestContentfulPaintTs": 465744941, + "observedLargestContentfulPaintAllFrames": 1815, + "observedLargestContentfulPaintAllFramesTs": 465744941, + "observedTraceEnd": 5264, + "observedTraceEndTs": 469194716, + "observedLoad": 2687, + "observedLoadTs": 466616854, + "observedDomContentLoaded": 1394, + "observedDomContentLoadedTs": 465323965, + "observedCumulativeLayoutShift": 0.0035367838541666666, + "observedCumulativeLayoutShiftMainFrame": 0.0035367838541666666, + "observedTotalCumulativeLayoutShift": 0.0035367838541666666, + "observedFirstVisualChange": 1401, + "observedFirstVisualChangeTs": 465331232, + "observedLastVisualChange": 2567, + "observedLastVisualChangeTs": 466497232, + "observedSpeedIndex": 1529, + "observedSpeedIndexTs": 465459714 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 60, + "numScripts": 3, + "numStylesheets": 4, + "numFonts": 4, + "numTasks": 42, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 130.426, + "throughput": 9509459.453452785, + "maxRtt": 137.03700000000003, + "maxServerLatency": 12.562000000000012, + "totalByteWeight": 1337484, + "totalTaskTime": 8.677000000000003, + "mainDocumentTransferSize": 8990 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://inclusion.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://inclusion.beta.gouv.fr/mentions_legales/" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://inclusion.beta.gouv.fr/politique-de-confidentialite/" + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://inclusion.beta.gouv.fr/", + "size": 1481.313, + "nodes": 422, + "requests": 56, + "grade": "C", + "score": 62, + "ges": 1.76, + "water": 2.64, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 12:52:30.054320", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 0.962, + "apdexGrade": "D", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-12T07:23:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.8, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://dora.inclusion.beta.gouv.fr", + "title": "Frontend DORA", + "category": "gip-inclusion", + "repositories": [ + "betagouv/dora-front" + ], + "tags": [ + "dora", + "production" + ], + "betaId": "dora", + "http": { + "url": "https://dora.inclusion.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 09:33:50 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 09:33:49 GMT", + "Transfer-Encoding": "chunked", + "X-Request-ID": "833462d7-2eeb-4f81-95d0-6fb9e5d3b95c", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-gkrZZuHYeB2AcaPxSNZuVQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"izoor5\"", + "link": "<./_app/immutable/assets/0.DEXQWU5i.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.BdRwC6TB.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.D7-uZUmf.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.HT6512dc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/7.CglxIoW9.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.CdvcxgZa.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.DZEZAue9.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/checkbox-mark.DACHIcp0.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.CMHsyTJo.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.B68zeBIO.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/entry.D_15D4sv.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.DNPEFUrV.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.DhDIamiK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.D5GtiVV7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.Usxb29Pr.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hub.CrdfF0FK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/semanticAttributes.DqbTfIcl.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.bBwFgXVC.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.clUpgfYq.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.DFI58iNZ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.CLrgXARF.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.DFVUzsZo.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/logger.cGyGtsYQ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.DHjRCb12.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.UUgnI7W6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.BGclvP-I.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.D2AMmCto.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.DA5fwXfK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.D7dweD8_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.zwMgl_XK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.BVN30RPz.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.CDMR-x84.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.D543LKCp.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.K8AEBf-w.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.DTtimXts.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.CK7oWnzq.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.C-OdZ-LS.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.BlmdlPG_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.NmWiYbYf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.D9_NXRFe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.Bfd1HJYs.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.BsooxkM_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.BwakGR9w.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/basic-input-field.CDz9wF0T.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.CW8188kI.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.CfblBtBd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.JFxGoMfg.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.CXB8r1ds.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.BqI-txlf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.CAQnHZxW.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.BpP6I4Cx.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.D77TaaUZ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.D97iLoBa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.CmbWfLQQ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.BHzDJ35M.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.Bvi0T49R.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/checkbox-mark.iZw8qr6O.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.BKgfUG5H.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.U5-ThG5g.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.BZCbdaIj.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.BT53ZbMV.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.BxL9W93a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.PK3O9Gmt.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.YIOJqy4f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/orientation-video.BjoBdvVs.js>; rel=\"modulepreload\"; nopush", + "referrer-policy": "strict-origin", + "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-sveltekit-page": "true", + "x-xss-protection": "1; mode=block" + }, + "scan_id": 57056780, + "score": 105, + "start_time": "Sun, 20 Oct 2024 09:33:48 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "child-src": [ + "https://metabase.dora.inclusion.beta.gouv.fr", + "https://tube.numerique.gouv.fr", + "https://tally.so", + "https://aide.dora.inclusion.beta.gouv.fr/" + ], + "connect-src": [ + "https://sentry.gip-inclusion.cloud-ed.fr", + "https://openmaptiles.geo.data.gouv.fr/", + "https://*.sentry.gip-inclusion.org", + "https://api.dora.inclusion.beta.gouv.fr", + "https://sentry.gip-inclusion.org", + "https://*.sentry.gip-inclusion.cloud-ed.fr", + "https://api.collectivite.fr", + "data:", + "https://openmaptiles.github.io/osm-bright-gl-style/", + "'self'", + "https://api-adresse.data.gouv.fr/", + "https://matomo.inclusion.beta.gouv.fr" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "'self'" + ], + "img-src": [ + "data:", + "'self'" + ], + "script-src": [ + "'nonce-gkrzzuhyeb2acapxsnzuvq=='", + "'strict-dynamic'" + ], + "style-src": [ + "'unsafe-inline'", + "https://tally.so/widgets/embed.js", + "'self'" + ], + "worker-src": [ + "blob:", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": true, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": true, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://dora.inclusion.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://dora.inclusion.beta.gouv.fr/", + "https://dora.inclusion.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "ondt", + "url": "https://dora.inclusion.beta.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T13:45:51Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [ + "lan", + "mia", + "bhs", + "hel", + "sin", + "tok", + "syd" + ], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T13:04:10Z", + "next_check_at": "2024-12-01T13:05:10Z", + "created_at": "2024-03-19T16:10:06Z", + "mute_until": null, + "favicon_url": "https://dora.inclusion.beta.gouv.fr/favicon.v2.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T13:01:11Z", + "expires_at": "2025-02-23T12:04:50Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.992, + "timings": { + "redirect": 0, + "namelookup": 28, + "connection": 10, + "handshake": 15, + "response": 264, + "total": 317 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "dora.inclusion.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296550,7 +292197,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296558,7 +292205,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296566,7 +292213,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296574,7 +292221,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -296582,7 +292229,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -296590,483 +292237,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-09-26 11:58" + "finding": "2024-11-25 12:04" }, { "id": "cert_notAfter", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-12-25 11:58" + "finding": "2025-02-23 12:04" }, { "id": "cert_extlifeSpan", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732453004" + "finding": "1733058141" }, { "id": "HSTS_time", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-hwUp1pAE9CDqPcxLdJFBWg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-MAPe+Plj9gg9ZKhLRGk3kg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -297074,7 +292721,7 @@ }, { "id": "heartbleed", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -297083,7 +292730,7 @@ }, { "id": "CCS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -297092,7 +292739,7 @@ }, { "id": "ticketbleed", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -297101,7 +292748,7 @@ }, { "id": "ROBOT", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -297110,7 +292757,7 @@ }, { "id": "secure_renego", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -297118,7 +292765,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -297127,7 +292774,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -297136,7 +292783,7 @@ }, { "id": "BREACH", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -297145,7 +292792,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -297154,14 +292801,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -297170,7 +292817,7 @@ }, { "id": "FREAK", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -297179,7 +292826,7 @@ }, { "id": "DROWN", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -297188,16 +292835,16 @@ }, { "id": "DROWN_hint", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95D4267B2B8C1EB5A156A2EF0BE57C9F33D1371D0595EB49B594F02FD6C4FF16" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=37FDF4000C144C15B800A10FC734457B3591BF0C555A02FE71866AB5628F0DEE" }, { "id": "LOGJAM", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -297206,7 +292853,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -297215,7 +292862,7 @@ }, { "id": "BEAST", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -297224,7 +292871,7 @@ }, { "id": "LUCKY13", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -297233,7 +292880,7 @@ }, { "id": "winshock", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -297242,7 +292889,7 @@ }, { "id": "RC4", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -297251,392 +292898,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297644,7 +293291,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297652,7 +293299,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297660,7 +293307,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297668,7 +293315,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297676,7 +293323,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297684,483 +293331,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-09-26 11:58" + "finding": "2024-11-25 12:04" }, { "id": "cert_notAfter", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-12-25 11:58" + "finding": "2025-02-23 12:04" }, { "id": "cert_extlifeSpan", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732453107" + "finding": "1733058195" }, { "id": "HSTS_time", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-HrzA5TJWSS7TLGo1S1uEOw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-BxnnnshZgSTLNuHJSr0lKQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -298168,7 +293815,7 @@ }, { "id": "heartbleed", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -298177,7 +293824,7 @@ }, { "id": "CCS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -298186,7 +293833,7 @@ }, { "id": "ticketbleed", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -298195,7 +293842,7 @@ }, { "id": "ROBOT", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -298204,7 +293851,7 @@ }, { "id": "secure_renego", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -298212,7 +293859,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -298221,7 +293868,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -298230,7 +293877,7 @@ }, { "id": "BREACH", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -298239,7 +293886,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -298248,14 +293895,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -298264,7 +293911,7 @@ }, { "id": "FREAK", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -298273,7 +293920,7 @@ }, { "id": "DROWN", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -298282,16 +293929,16 @@ }, { "id": "DROWN_hint", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=95D4267B2B8C1EB5A156A2EF0BE57C9F33D1371D0595EB49B594F02FD6C4FF16" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=37FDF4000C144C15B800A10FC734457B3591BF0C555A02FE71866AB5628F0DEE" }, { "id": "LOGJAM", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298300,7 +293947,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298309,7 +293956,7 @@ }, { "id": "BEAST", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -298318,7 +293965,7 @@ }, { "id": "LUCKY13", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -298327,7 +293974,7 @@ }, { "id": "winshock", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -298336,7 +293983,7 @@ }, { "id": "RC4", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -298345,336 +293992,336 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "418" + "finding": "112" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://tally.so/widgets/embed.js" + "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F8.38.0" }, { "type": "unknown", - "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F8.38.0" + "url": "https://tally.so/widgets/embed.js" } ], "cookies": [ @@ -298683,7 +294330,7 @@ "value": "1", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1732454477, + "expires": 1733059868, "size": 17, "httpOnly": false, "secure": false, @@ -298695,10 +294342,10 @@ }, { "name": "_pk_id.211.396b", - "value": "3d33e2fe7f370ccf.1732452678.", + "value": "01625c37a3d67f37.1733058068.", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1766407878, + "expires": 1767013268, "size": 43, "httpOnly": false, "secure": false, @@ -298711,16 +294358,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-ALIzY6ToYh7QSW7Nw0XFAQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://tally.so https://tube.numerique.gouv.fr; default-src 'none'; worker-src 'self' blob:; connect-src 'self' data: https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr https://api.collectivite.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://tally.so/widgets/embed.js 'nonce-1XFXYeiHLb1I/cwu/vhnRQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 12:51:16 GMT", - "etag": "W/\"nkq877\"", + "date": "Sun, 01 Dec 2024 13:01:07 GMT", + "etag": "W/\"1d4l6yi\"", "link": "<./_app/immutable/assets/0.DwqYuhcN.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.B1KLmZNY.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.DEKSqiUW.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.B2jzAQRH.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/7.MM32KtdU.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.C2OkZ3mA.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.C1VdLQY7.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/checkbox-mark.DJD-Zly3.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.Cregs9uX.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.CKxJ9bfp.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/entry.tTUHt9hJ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.CaD3L8nD.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.xyfMEcsM.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_sentry-release-injection-file.BoqK4rWC.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.BSCPitCv.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.BjYouImP.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/trace.B4If1Snc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.C1jTbCDM.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.Bn-7qOGw.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.BrHtL1rd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.-ZWURyjv.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.DgLpkh8H.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/logger.Dy6aWxrK.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.C1ZpuyZL.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.zApEV3dR.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.BUcmRbZk.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.CWEJduQM.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.URgpB13_.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.DCFMHONF.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.DPVOvy2d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.DiK0CnaS.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.B1AJwYVp.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.DsNBq__n.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.K3Q-Wfqe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.S2uwjQSX.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.DBCoLfG8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.U3RuS5e9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.Q4hsAgPa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.BlyvEEQN.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.CZhK5_TH.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.B7ViMOUo.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.BUW5fKSj.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.DYvIKBkN.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/basic-input-field.RSHzgI1q.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.DYfQmqN4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.2VqMv_ma.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.DkUU6flC.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.D6KkZQ1s.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.Dne1vms9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.ByJKbIxN.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.DFoJuH78.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.Cjg4DnLb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.BsSXOApa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.Qz80xYh8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.CF2q78-y.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.DakWFFM2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/checkbox-mark.8d5W82Rq.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.P6bzr_4l.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.BpPeloHz.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.B74xDb9O.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.Dkn-XLki.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.BctP5evJ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.C2I_bvsQ.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.BOU7FaAA.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/orientation-video.DxqJYdsD.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "7662de55-10ee-4a37-a3b8-b7bf302a792c", + "x-request-id": "9859bd80-1380-41d8-99c7-adbdbe9c5f75", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, @@ -298781,26 +294428,6 @@ } } }, - { - "hostname": "tally.so", - "ip": "172.67.175.26", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, { "hostname": "sentry.gip-inclusion.org", "ip": "154.41.70.31", @@ -298897,6 +294524,26 @@ } ] } + }, + { + "hostname": "tally.so", + "ip": "104.21.72.50", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } } ] }, @@ -299093,7 +294740,7 @@ { "requestedUrl": "https://dora.inclusion.beta.gouv.fr/", "finalUrl": "https://dora.inclusion.beta.gouv.fr/", - "fetchTime": "2024-11-24T12:50:51.068Z", + "fetchTime": "2024-12-01T13:00:42.723Z", "runWarnings": [], "categories": { "performance": { @@ -299104,7 +294751,7 @@ "snapshot" ], "id": "performance", - "score": 0.87 + "score": 0.94 }, "accessibility": { "title": "Accessibility", @@ -299125,7 +294772,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.83 + "score": 0.92 }, "seo": { "title": "SEO", @@ -299156,53 +294803,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5477, + "numericValue": 5138, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2416, - "firstMeaningfulPaint": 2416, - "largestContentfulPaint": 2416, - "interactive": 5477, - "speedIndex": 3671, - "totalBlockingTime": 194, - "maxPotentialFID": 179, + "firstContentfulPaint": 1707, + "firstMeaningfulPaint": 1707, + "largestContentfulPaint": 1707, + "interactive": 5138, + "speedIndex": 2874, + "totalBlockingTime": 170, + "maxPotentialFID": 166, "cumulativeLayoutShift": 0.015631020439995657, "cumulativeLayoutShiftMainFrame": 0.015631020439995657, "totalCumulativeLayoutShift": 0.015631020439995657, "observedTimeOrigin": 0, - "observedTimeOriginTs": 570810736, + "observedTimeOriginTs": 407019011, "observedNavigationStart": 0, - "observedNavigationStartTs": 570810736, - "observedFirstPaint": 1085, - "observedFirstPaintTs": 571895357, - "observedFirstContentfulPaint": 1085, - "observedFirstContentfulPaintTs": 571895357, - "observedFirstContentfulPaintAllFrames": 1085, - "observedFirstContentfulPaintAllFramesTs": 571895357, - "observedFirstMeaningfulPaint": 1085, - "observedFirstMeaningfulPaintTs": 571895357, - "observedLargestContentfulPaint": 1085, - "observedLargestContentfulPaintTs": 571895357, - "observedLargestContentfulPaintAllFrames": 1085, - "observedLargestContentfulPaintAllFramesTs": 571895357, - "observedTraceEnd": 4839, - "observedTraceEndTs": 575650115, - "observedLoad": 2230, - "observedLoadTs": 573040328, - "observedDomContentLoaded": 1077, - "observedDomContentLoadedTs": 571888175, + "observedNavigationStartTs": 407019011, + "observedFirstPaint": 786, + "observedFirstPaintTs": 407804565, + "observedFirstContentfulPaint": 786, + "observedFirstContentfulPaintTs": 407804565, + "observedFirstContentfulPaintAllFrames": 786, + "observedFirstContentfulPaintAllFramesTs": 407804565, + "observedFirstMeaningfulPaint": 786, + "observedFirstMeaningfulPaintTs": 407804565, + "observedLargestContentfulPaint": 786, + "observedLargestContentfulPaintTs": 407804565, + "observedLargestContentfulPaintAllFrames": 786, + "observedLargestContentfulPaintAllFramesTs": 407804565, + "observedTraceEnd": 4046, + "observedTraceEndTs": 411065324, + "observedLoad": 1215, + "observedLoadTs": 408233685, + "observedDomContentLoaded": 778, + "observedDomContentLoadedTs": 407797120, "observedCumulativeLayoutShift": 0.015631020439995657, "observedCumulativeLayoutShiftMainFrame": 0.015631020439995657, "observedTotalCumulativeLayoutShift": 0.015631020439995657, - "observedFirstVisualChange": 1083, - "observedFirstVisualChangeTs": 571893736, - "observedLastVisualChange": 2183, - "observedLastVisualChangeTs": 572993736, - "observedSpeedIndex": 1128, - "observedSpeedIndexTs": 571938955 + "observedFirstVisualChange": 798, + "observedFirstVisualChangeTs": 407817011, + "observedLastVisualChange": 1414, + "observedLastVisualChangeTs": 408433011, + "observedSpeedIndex": 826, + "observedSpeedIndexTs": 407845186 }, { "lcpInvalidated": false @@ -299224,19 +294871,19 @@ "numScripts": 60, "numStylesheets": 9, "numFonts": 2, - "numTasks": 1347, + "numTasks": 1337, "numTasksOver10ms": 6, - "numTasksOver25ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.098, - "throughput": 6722883.941262743, - "maxRtt": 155.68, - "maxServerLatency": 281.67999999999995, - "totalByteWeight": 547073, - "totalTaskTime": 262.28399999999846, - "mainDocumentTransferSize": 19593 + "rtt": 1.086, + "throughput": 15447388.17361776, + "maxRtt": 101.993, + "maxServerLatency": 172.60399999999998, + "totalByteWeight": 537656, + "totalTaskTime": 257.0409999999982, + "mainDocumentTransferSize": 22112 } ] } @@ -299334,7 +294981,7 @@ "width": 1920, "height": 1080, "url": "https://dora.inclusion.beta.gouv.fr", - "size": 679.593, + "size": 690.138, "nodes": 443, "requests": 88, "grade": "C", @@ -299342,7 +294989,7 @@ "ges": 1.84, "water": 2.76, "ecoindex_version": "5.4.2", - "date": "2024-11-24 12:47:49.531045", + "date": "2024-12-01 12:57:35.562687", "page_type": "website" } ], @@ -299352,26 +294999,26 @@ }, "summary": { "httpGrade": "A+", - "apdex": 0.983, - "apdexGrade": "B", + "apdex": 0.992, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-25T11:58:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-23T12:04:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.87, + "lighthouse_performance": 0.94, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.98, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, @@ -299564,10 +295211,10 @@ "url": "https://eva.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.967, + "uptime": 99.965, "down": false, "down_since": null, - "up_since": "2024-11-24T06:39:29Z", + "up_since": "2024-11-27T06:14:20Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -299579,8 +295226,8 @@ "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T12:58:23Z", - "next_check_at": "2024-11-24T13:03:21Z", + "last_check_at": "2024-12-01T13:12:34Z", + "next_check_at": "2024-12-01T13:17:31Z", "created_at": "2021-04-22T19:59:30Z", "mute_until": null, "favicon_url": "https://eva.beta.gouv.fr/wp-content/uploads/fbrfg/favicon.ico", @@ -299588,20 +295235,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T12:28:31Z", + "tested_at": "2024-12-01T12:52:41Z", "expires_at": "2025-01-09T07:01:42Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.688, + "apdex": 0.778, "timings": { "redirect": 0, - "namelookup": 144, - "connection": 122, - "handshake": 126, - "response": 743, - "total": 1135 + "namelookup": 177, + "connection": 144, + "handshake": 149, + "response": 532, + "total": 1002 } }, "uptimeGrade": "A", @@ -299980,7 +295627,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -300134,14 +295781,14 @@ "ip": "eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "1732453281" + "finding": "1733058784" }, { "id": "HSTS", @@ -300697,7 +296344,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "57" } ], "thirdparties": { @@ -300808,7 +296455,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-widgetapi.vflset/www-widgetapi.js", + "url": "https://www.youtube.com/s/player/b46bb280/www-widgetapi.vflset/www-widgetapi.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300824,7 +296471,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-player.css", + "url": "https://www.youtube.com/s/player/b46bb280/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300832,7 +296479,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300840,7 +296487,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/www-embed-player.vflset/www-embed-player.js", + "url": "https://www.youtube.com/s/player/b46bb280/www-embed-player.vflset/www-embed-player.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300848,7 +296495,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300920,7 +296567,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/89dfc5b3/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/b46bb280/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -300928,7 +296575,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/B7USFwsz_nMovXHWu4UwQRY0Qlt3iq-mQpCYnZ8jj34.js", + "url": "https://www.google.com/js/th/qYKp54bxMdgPywYfc-yhqguRPCT31YTVhLYxMebccTE.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -300960,7 +296607,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -300992,7 +296639,7 @@ }, { "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -301016,7 +296663,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/generate_204?G-Fynw", + "url": "https://www.youtube.com/generate_204?0hHJ3A", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -301045,7 +296692,7 @@ "value": "1", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1732455028, + "expires": 1733060532, "size": 17, "httpOnly": false, "secure": false, @@ -301057,10 +296704,10 @@ }, { "name": "_pk_id.100.5821", - "value": "1ea1725c7eef4bff.1732453229.", + "value": "8b2e206efcac0360.1733058732.", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1766408429, + "expires": 1767013932, "size": 43, "httpOnly": false, "secure": false, @@ -301074,7 +296721,7 @@ "headers": { "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 13:00:27 GMT", + "date": "Sun, 01 Dec 2024 13:12:11 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "Apache", "vary": "Accept-Encoding", @@ -301139,7 +296786,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.179.95", + "ip": "172.253.63.95", "geoip": { "continent": { "code": "NA", @@ -301279,7 +296926,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.115.94", + "ip": "142.251.167.94", "geoip": { "continent": { "code": "NA", @@ -301420,7 +297067,7 @@ }, { "hostname": "www.youtube.com", - "ip": "64.233.180.93", + "ip": "142.251.167.93", "geoip": { "continent": { "code": "NA", @@ -301474,7 +297121,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "172.253.115.156", + "ip": "142.251.167.155", "geoip": { "continent": { "code": "NA", @@ -301528,7 +297175,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "142.251.16.149", + "ip": "142.251.16.148", "geoip": { "continent": { "code": "NA", @@ -301582,7 +297229,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "142.251.167.95", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -301636,7 +297283,7 @@ }, { "hostname": "www.google.com", - "ip": "172.253.115.103", + "ip": "142.251.163.105", "geoip": { "continent": { "code": "NA", @@ -301744,7 +297391,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "142.251.179.132", + "ip": "142.251.163.132", "geoip": { "continent": { "code": "NA", @@ -301797,8 +297444,8 @@ } }, { - "hostname": "www.gstatic.com", - "ip": "64.233.180.94", + "hostname": "play.google.com", + "ip": "142.251.167.139", "geoip": { "continent": { "code": "NA", @@ -301851,8 +297498,8 @@ } }, { - "hostname": "play.google.com", - "ip": "142.251.16.102", + "hostname": "www.gstatic.com", + "ip": "172.253.63.94", "geoip": { "continent": { "code": "NA", @@ -302011,7 +297658,7 @@ "name": "Elementor", "description": "Elementor is a website builder platform for professionals on WordPress.", "confidence": 100, - "version": "3.25.9", + "version": "3.25.10", "icon": "Elementor.svg", "website": "https://elementor.com", "cpe": null, @@ -302292,7 +297939,7 @@ { "requestedUrl": "https://eva.beta.gouv.fr/", "finalUrl": "https://eva.beta.gouv.fr/", - "fetchTime": "2024-11-24T13:00:01.437Z", + "fetchTime": "2024-12-01T13:11:45.909Z", "runWarnings": [], "categories": { "performance": { @@ -302303,7 +297950,7 @@ "snapshot" ], "id": "performance", - "score": 0.78 + "score": 0.75 }, "accessibility": { "title": "Accessibility", @@ -302355,53 +298002,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4661, + "numericValue": 5910, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2200, - "firstMeaningfulPaint": 3554, - "largestContentfulPaint": 4830, - "interactive": 4661, - "speedIndex": 2370, - "totalBlockingTime": 13, - "maxPotentialFID": 71, + "firstContentfulPaint": 2182, + "firstMeaningfulPaint": 3677, + "largestContentfulPaint": 5048, + "interactive": 5910, + "speedIndex": 2789, + "totalBlockingTime": 37, + "maxPotentialFID": 100, "cumulativeLayoutShift": 0.003851605733235677, "cumulativeLayoutShiftMainFrame": 0.003851605733235677, "totalCumulativeLayoutShift": 0.003851605733235677, "observedTimeOrigin": 0, - "observedTimeOriginTs": 422529630, + "observedTimeOriginTs": 406292211, "observedNavigationStart": 0, - "observedNavigationStartTs": 422529630, - "observedFirstPaint": 764, - "observedFirstPaintTs": 423293686, - "observedFirstContentfulPaint": 764, - "observedFirstContentfulPaintTs": 423293686, - "observedFirstContentfulPaintAllFrames": 764, - "observedFirstContentfulPaintAllFramesTs": 423293686, - "observedFirstMeaningfulPaint": 804, - "observedFirstMeaningfulPaintTs": 423333955, - "observedLargestContentfulPaint": 912, - "observedLargestContentfulPaintTs": 423441913, - "observedLargestContentfulPaintAllFrames": 912, - "observedLargestContentfulPaintAllFramesTs": 423441913, - "observedTraceEnd": 4205, - "observedTraceEndTs": 426734610, - "observedLoad": 1144, - "observedLoadTs": 423673387, - "observedDomContentLoaded": 931, - "observedDomContentLoadedTs": 423460915, + "observedNavigationStartTs": 406292211, + "observedFirstPaint": 712, + "observedFirstPaintTs": 407004081, + "observedFirstContentfulPaint": 712, + "observedFirstContentfulPaintTs": 407004081, + "observedFirstContentfulPaintAllFrames": 712, + "observedFirstContentfulPaintAllFramesTs": 407004081, + "observedFirstMeaningfulPaint": 742, + "observedFirstMeaningfulPaintTs": 407034671, + "observedLargestContentfulPaint": 854, + "observedLargestContentfulPaintTs": 407145940, + "observedLargestContentfulPaintAllFrames": 854, + "observedLargestContentfulPaintAllFramesTs": 407145940, + "observedTraceEnd": 4178, + "observedTraceEndTs": 410470104, + "observedLoad": 1172, + "observedLoadTs": 407463861, + "observedDomContentLoaded": 873, + "observedDomContentLoadedTs": 407165085, "observedCumulativeLayoutShift": 0.003851605733235677, "observedCumulativeLayoutShiftMainFrame": 0.003851605733235677, "observedTotalCumulativeLayoutShift": 0.003851605733235677, - "observedFirstVisualChange": 786, - "observedFirstVisualChangeTs": 423315630, - "observedLastVisualChange": 853, - "observedLastVisualChangeTs": 423382630, - "observedSpeedIndex": 850, - "observedSpeedIndexTs": 423379564 + "observedFirstVisualChange": 708, + "observedFirstVisualChangeTs": 407000211, + "observedLastVisualChange": 858, + "observedLastVisualChangeTs": 407150211, + "observedSpeedIndex": 805, + "observedSpeedIndexTs": 407097549 }, { "lcpInvalidated": false @@ -302423,19 +298070,19 @@ "numScripts": 32, "numStylesheets": 23, "numFonts": 7, - "numTasks": 1096, - "numTasksOver10ms": 6, - "numTasksOver25ms": 1, + "numTasks": 1068, + "numTasksOver10ms": 8, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 25671692.324804444, - "maxRtt": 85.979, - "maxServerLatency": 189.55900000000003, - "totalByteWeight": 1615042, - "totalTaskTime": 271.62599999999924, - "mainDocumentTransferSize": 24467 + "throughput": 22595063.139995605, + "maxRtt": 85.123, + "maxServerLatency": 106.27799999999999, + "totalByteWeight": 1615522, + "totalTaskTime": 276.7399999999993, + "mainDocumentTransferSize": 24468 } ] } @@ -302537,7 +298184,7 @@ "width": 1920, "height": 1080, "url": "https://eva.beta.gouv.fr", - "size": 924.161, + "size": 924.133, "nodes": 475, "requests": 65, "grade": "C", @@ -302545,7 +298192,7 @@ "ges": 1.8, "water": 2.7, "ecoindex_version": "5.4.2", - "date": "2024-11-24 12:57:02.724470", + "date": "2024-12-01 13:08:44.393877", "page_type": "website" } ], @@ -302555,9 +298202,9 @@ }, "summary": { "httpGrade": "D-", - "apdex": 0.688, + "apdex": 0.778, "apdexGrade": "F", - "uptime": 99.967, + "uptime": 99.965, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -302569,7 +298216,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 42, - "lighthouse_performance": 0.78, + "lighthouse_performance": 0.75, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", @@ -302774,10 +298421,10 @@ "url": "https://disinfo.quaidorsay.fr", "alias": null, "last_status": 200, - "uptime": 99.991, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T03:39:47Z", + "up_since": "2024-11-29T12:52:52Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -302788,8 +298435,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T13:12:12Z", - "next_check_at": "2024-11-24T13:13:12Z", + "last_check_at": "2024-12-01T13:16:36Z", + "next_check_at": "2024-12-01T13:17:36Z", "created_at": "2024-01-15T14:01:08Z", "mute_until": null, "favicon_url": "https://disinfo.quaidorsay.fr/favicon.ico", @@ -302797,24 +298444,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T13:03:16Z", + "tested_at": "2024-12-01T13:14:37Z", "expires_at": "2025-01-19T04:11:41Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.993, + "apdex": 0.988, "timings": { "redirect": 0, - "namelookup": 215, - "connection": 138, - "handshake": 146, - "response": 174, - "total": 673 + "namelookup": 173, + "connection": 180, + "handshake": 130, + "response": 185, + "total": 669 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "B" }, "nmap": { "host": "disinfo.quaidorsay.fr", @@ -302830,105 +298477,105 @@ "vulnerabilities": [ { "is_exploit": "false", - "type": "cve", "cvss": "9.8", - "id": "CVE-2023-38408" + "id": "CVE-2023-38408", + "type": "cve" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "seebug", "cvss": "7.5", - "id": "SSV:92579" + "id": "SSV:92579", + "type": "seebug" }, { "is_exploit": "true", - "type": "packetstorm", "cvss": "7.5", - "id": "PACKETSTORM:173661" + "id": "PACKETSTORM:173661", + "type": "packetstorm" }, { "is_exploit": "true", - "type": "githubexploit", "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "type": "githubexploit" }, { "is_exploit": "true", - "type": "zdt", "cvss": "7.5", - "id": "1337DAY-ID-26576" + "id": "1337DAY-ID-26576", + "type": "zdt" }, { "is_exploit": "false", - "type": "cve", "cvss": "7.1", - "id": "CVE-2021-28041" + "id": "CVE-2021-28041", + "type": "cve" }, { "is_exploit": "false", - "type": "cve", "cvss": "7.0", - "id": "CVE-2021-41617" + "id": "CVE-2021-41617", + "type": "cve" }, { "is_exploit": "false", - "type": "cve", "cvss": "6.5", - "id": "CVE-2023-51385" + "id": "CVE-2023-51385", + "type": "cve" }, { "is_exploit": "false", - "type": "cve", "cvss": "5.9", - "id": "CVE-2023-48795" + "id": "CVE-2023-48795", + "type": "cve" }, { "is_exploit": "false", - "type": "cve", "cvss": "5.9", - "id": "CVE-2020-14145" + "id": "CVE-2020-14145", + "type": "cve" }, { "is_exploit": "false", - "type": "cve", "cvss": "5.3", - "id": "CVE-2016-20012" + "id": "CVE-2016-20012", + "type": "cve" }, { "is_exploit": "true", - "type": "packetstorm", "cvss": "0.0", - "id": "PACKETSTORM:140261" + "id": "PACKETSTORM:140261", + "type": "packetstorm" } ] } @@ -303312,7 +298959,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "OK", - "finding": "55 >= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", @@ -303466,21 +299113,21 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "+131 seconds from localtime" + "finding": "+22 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "1732453928" + "finding": "1733058984" }, { "id": "HTTP_headerAge", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "131 seconds" + "finding": "22 seconds" }, { "id": "HSTS_time", @@ -303550,7 +299197,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "cache-lcy-eglc8600032-LCY" + "finding": "cache-lcy-eglc8600077-LCY" }, { "id": "Cache-Control", @@ -304064,7 +299711,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "57" } ], "thirdparties": { @@ -304075,7 +299722,7 @@ "value": "1", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1732455667, + "expires": 1733060724, "size": 16, "httpOnly": false, "secure": false, @@ -304087,10 +299734,10 @@ }, { "name": "_pk_id.89.7763", - "value": "ed555f7309c4e5b6.1732453868.", + "value": "3da85ee47fe25100.1733058925.", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1766409068, + "expires": 1767014125, "size": 42, "httpOnly": false, "secure": false, @@ -304109,9 +299756,9 @@ "content-encoding": "gzip", "content-length": "24565", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 13:11:07 GMT", + "date": "Sun, 01 Dec 2024 13:15:24 GMT", "etag": "W/\"64faf83f-10d49\"", - "expires": "Sun, 24 Nov 2024 13:17:38 GMT", + "expires": "Sun, 01 Dec 2024 13:21:57 GMT", "last-modified": "Fri, 08 Sep 2023 10:32:31 GMT", "permissions-policy": "interest-cohort=()", "server": "nginx/1.18.0", @@ -304120,11 +299767,11 @@ "via": "1.1 varnish", "x-cache": "HIT", "x-cache-hits": "0", - "x-fastly-request-id": "21477789bacc689d370f9dac0f4cb55237f37267", - "x-github-request-id": "6881:1E33A6:E740B2:EBA9F4:6743251A", + "x-fastly-request-id": "442e29e5f8f9843d71ee19cf04582cb783c8bc56", + "x-github-request-id": "0D63:37A794:324909F:332F46B:674C609D", "x-proxy-cache": "MISS", - "x-served-by": "cache-lcy-eglc8600048-LCY", - "x-timer": "S1732453867.137547,VS0,VE86" + "x-served-by": "cache-lcy-eglc8600026-LCY", + "x-timer": "S1733058924.060608,VS0,VE88" }, "endpoints": [ { @@ -304326,7 +299973,7 @@ { "requestedUrl": "https://disinfo.quaidorsay.fr/", "finalUrl": "https://disinfo.quaidorsay.fr/fr", - "fetchTime": "2024-11-24T13:10:42.051Z", + "fetchTime": "2024-12-01T13:14:59.647Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://disinfo.quaidorsay.fr/) was redirected to https://disinfo.quaidorsay.fr/fr. Try testing the second URL directly." ], @@ -304391,53 +300038,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1865, + "numericValue": 2059, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1365, - "firstMeaningfulPaint": 1665, - "largestContentfulPaint": 1665, - "interactive": 1865, - "speedIndex": 1402, - "totalBlockingTime": 12, - "maxPotentialFID": 75, + "firstContentfulPaint": 1363, + "firstMeaningfulPaint": 1663, + "largestContentfulPaint": 1663, + "interactive": 2059, + "speedIndex": 1392, + "totalBlockingTime": 32, + "maxPotentialFID": 114, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 377328257, + "observedTimeOriginTs": 475202204, "observedNavigationStart": 0, - "observedNavigationStartTs": 377328257, - "observedFirstPaint": 477, - "observedFirstPaintTs": 377805045, - "observedFirstContentfulPaint": 477, - "observedFirstContentfulPaintTs": 377805045, - "observedFirstContentfulPaintAllFrames": 477, - "observedFirstContentfulPaintAllFramesTs": 377805045, - "observedFirstMeaningfulPaint": 576, - "observedFirstMeaningfulPaintTs": 377904740, - "observedLargestContentfulPaint": 576, - "observedLargestContentfulPaintTs": 377904740, - "observedLargestContentfulPaintAllFrames": 576, - "observedLargestContentfulPaintAllFramesTs": 377904740, - "observedTraceEnd": 3229, - "observedTraceEndTs": 380557360, + "observedNavigationStartTs": 475202204, + "observedFirstPaint": 465, + "observedFirstPaintTs": 475667388, + "observedFirstContentfulPaint": 465, + "observedFirstContentfulPaintTs": 475667388, + "observedFirstContentfulPaintAllFrames": 465, + "observedFirstContentfulPaintAllFramesTs": 475667388, + "observedFirstMeaningfulPaint": 582, + "observedFirstMeaningfulPaintTs": 475783992, + "observedLargestContentfulPaint": 565, + "observedLargestContentfulPaintTs": 475767255, + "observedLargestContentfulPaintAllFrames": 565, + "observedLargestContentfulPaintAllFramesTs": 475767255, + "observedTraceEnd": 3228, + "observedTraceEndTs": 478430249, "observedLoad": 827, - "observedLoadTs": 378155411, - "observedDomContentLoaded": 448, - "observedDomContentLoadedTs": 377775940, + "observedLoadTs": 476029247, + "observedDomContentLoaded": 437, + "observedDomContentLoadedTs": 475639413, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 489, - "observedFirstVisualChangeTs": 377817257, - "observedLastVisualChange": 589, - "observedLastVisualChangeTs": 377917257, - "observedSpeedIndex": 546, - "observedSpeedIndexTs": 377874218 + "observedFirstVisualChange": 478, + "observedFirstVisualChangeTs": 475680204, + "observedLastVisualChange": 595, + "observedLastVisualChangeTs": 475797204, + "observedSpeedIndex": 540, + "observedSpeedIndexTs": 475742303 }, { "lcpInvalidated": false @@ -304459,19 +300106,19 @@ "numScripts": 1, "numStylesheets": 2, "numFonts": 2, - "numTasks": 288, + "numTasks": 301, "numTasksOver10ms": 2, - "numTasksOver25ms": 0, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.032, - "throughput": 9113347.373147741, - "maxRtt": 86.116, - "maxServerLatency": 15.066000000000003, - "totalByteWeight": 385678, - "totalTaskTime": 76.97900000000006, - "mainDocumentTransferSize": 1845 + "rtt": 79.50200000000001, + "throughput": 9220804.604915997, + "maxRtt": 86.298, + "maxServerLatency": 12.715999999999994, + "totalByteWeight": 385659, + "totalTaskTime": 87.886, + "mainDocumentTransferSize": 1844 } ] } @@ -304562,7 +300209,7 @@ "width": 1920, "height": 1080, "url": "https://disinfo.quaidorsay.fr", - "size": 566.02, + "size": 565.983, "nodes": 154, "requests": 14, "grade": "A", @@ -304570,7 +300217,7 @@ "ges": 1.28, "water": 1.92, "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:07:45.369993", + "date": "2024-12-01 13:12:04.376658", "page_type": null } ], @@ -304580,9 +300227,9 @@ }, "summary": { "httpGrade": "C", - "apdex": 0.993, - "apdexGrade": "A", - "uptime": 99.991, + "apdex": 0.988, + "apdexGrade": "B", + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "E", "nmapOpenPortsCount": 4, @@ -304812,8 +300459,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T13:15:16Z", - "next_check_at": "2024-11-24T13:20:13Z", + "last_check_at": "2024-12-01T13:26:16Z", + "next_check_at": "2024-12-01T13:31:14Z", "created_at": "2022-06-28T12:50:59Z", "mute_until": null, "favicon_url": null, @@ -304821,7 +300468,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T13:15:16Z", + "tested_at": "2024-12-01T12:51:28Z", "expires_at": "2025-02-12T02:14:52Z", "valid": true, "error": null @@ -304830,11 +300477,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 184, - "connection": 1, + "namelookup": 179, + "connection": 2, "handshake": 10, - "response": 122, - "total": 316 + "response": 113, + "total": 304 } }, "uptimeGrade": "A", @@ -304869,77 +300516,77 @@ "testssl": [ { "id": "service", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -304947,7 +300594,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -304955,7 +300602,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -304963,7 +300610,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -304971,7 +300618,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -304979,7 +300626,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -304987,469 +300634,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "valid for 86400 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2024-11-14 02:14" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "2025-02-12 02:14" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "+1 seconds from localtime" + "finding": "+14 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "1732454129" + "finding": "1733059579" }, { "id": "HTTP_headerAge", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "1 seconds" + "finding": "14 seconds" }, { "id": "HSTS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "cache-sjc10042-SJC" + "finding": "cache-iad-kcgs7200118-IAD" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -305457,7 +301104,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -305466,7 +301113,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -305475,7 +301122,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -305484,7 +301131,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -305493,7 +301140,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -305501,7 +301148,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -305510,7 +301157,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -305519,7 +301166,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -305528,7 +301175,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -305537,14 +301184,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -305553,7 +301200,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -305562,7 +301209,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -305571,7 +301218,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -305580,7 +301227,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -305589,7 +301236,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -305598,7 +301245,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -305607,7 +301254,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -305616,7 +301263,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -305625,7 +301272,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -305634,399 +301281,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "opentermsarchive.org/185.199.111.153", + "ip": "opentermsarchive.org/185.199.110.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -306034,7 +301681,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -306042,7 +301689,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -306050,7 +301697,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -306058,7 +301705,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -306066,7 +301713,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -306074,469 +301721,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "valid for 86400 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2024-11-14 02:14" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "2025-02-12 02:14" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "+68 seconds from localtime" + "finding": "+70 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "1732454184" + "finding": "1733059636" }, { "id": "HTTP_headerAge", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "68 seconds" + "finding": "70 seconds" }, { "id": "HSTS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "cache-pao-kpao1770057-PAO" + "finding": "cache-iad-kcgs7200148-IAD" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -306544,7 +302191,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -306553,7 +302200,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -306562,7 +302209,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -306571,7 +302218,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -306580,7 +302227,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -306588,7 +302235,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -306597,7 +302244,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -306606,7 +302253,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -306615,7 +302262,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -306624,14 +302271,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -306640,7 +302287,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -306649,7 +302296,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -306658,7 +302305,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -306667,7 +302314,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -306676,7 +302323,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -306685,7 +302332,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -306694,7 +302341,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -306703,7 +302350,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -306712,7 +302359,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -306721,399 +302368,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "opentermsarchive.org/185.199.108.153", + "ip": "opentermsarchive.org/185.199.111.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -307121,7 +302768,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -307129,7 +302776,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -307137,7 +302784,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -307145,7 +302792,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -307153,7 +302800,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -307161,477 +302808,477 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "valid for 86400 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2024-11-14 02:14" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "2025-02-12 02:14" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "+124 seconds from localtime" + "finding": "+126 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "1732454240" + "finding": "1733059692" }, { "id": "HTTP_headerAge", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "124 seconds" + "finding": "126 seconds" }, { "id": "HSTS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "cache-pao-kpao1770033-PAO" + "finding": "cache-iad-kcgs7200052-IAD" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 2" + "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 1" }, { "id": "heartbleed", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -307640,7 +303287,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -307649,7 +303296,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -307658,7 +303305,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -307667,7 +303314,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -307675,7 +303322,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -307684,7 +303331,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -307693,7 +303340,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -307702,7 +303349,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -307711,14 +303358,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -307727,7 +303374,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -307736,7 +303383,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -307745,7 +303392,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -307754,7 +303401,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -307763,7 +303410,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -307772,7 +303419,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -307781,7 +303428,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -307790,7 +303437,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -307799,7 +303446,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -307808,399 +303455,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "opentermsarchive.org/185.199.109.153", + "ip": "opentermsarchive.org/185.199.108.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -308208,7 +303855,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -308216,7 +303863,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -308224,7 +303871,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -308232,7 +303879,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -308240,7 +303887,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -308248,469 +303895,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "valid for 86400 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2024-11-14 02:14" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "2025-02-12 02:14" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "+179 seconds from localtime" + "finding": "+182 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "1732454295" + "finding": "1733059748" }, { "id": "HTTP_headerAge", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "179 seconds" + "finding": "182 seconds" }, { "id": "HSTS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "cache-pao-kpao1770055-PAO" + "finding": "cache-iad-kcgs7200176-IAD" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -308718,7 +304365,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -308727,7 +304374,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -308736,7 +304383,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -308745,7 +304392,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -308754,7 +304401,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -308762,7 +304409,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -308771,7 +304418,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -308780,7 +304427,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -308789,7 +304436,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -308798,14 +304445,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -308814,7 +304461,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -308823,7 +304470,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -308832,7 +304479,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -308841,7 +304488,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -308850,7 +304497,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -308859,7 +304506,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -308868,7 +304515,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -308877,7 +304524,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -308886,7 +304533,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -308895,332 +304542,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "opentermsarchive.org/185.199.110.153", + "ip": "opentermsarchive.org/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "225" + "finding": "228" } ], "thirdparties": { @@ -309231,7 +304878,7 @@ "value": "1", "domain": "opentermsarchive.org", "path": "/", - "expires": 1732455866, + "expires": 1733061318, "size": 17, "httpOnly": false, "secure": false, @@ -309243,10 +304890,10 @@ }, { "name": "_pk_id.179.cd52", - "value": "b9cbf59940d1385a.1732454066.", + "value": "e71dd413f9b11757.1733059519.", "domain": "opentermsarchive.org", "path": "/", - "expires": 1766409266, + "expires": 1767014719, "size": 43, "httpOnly": false, "secure": false, @@ -309260,31 +304907,44 @@ "headers": { "accept-ranges": "bytes", "access-control-allow-origin": "*", - "age": "12", + "age": "0", "cache-control": "max-age=600", "content-encoding": "gzip", - "content-length": "9342", + "content-length": "9344", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 13:14:25 GMT", - "etag": "W/\"673df648-a0be\"", - "expires": "Sun, 24 Nov 2024 13:20:52 GMT", - "last-modified": "Wed, 20 Nov 2024 14:46:32 GMT", + "date": "Sun, 01 Dec 2024 13:25:18 GMT", + "etag": "W/\"6747dbea-a0be\"", + "expires": "Sun, 01 Dec 2024 13:31:46 GMT", + "last-modified": "Thu, 28 Nov 2024 02:56:42 GMT", "server": "GitHub.com", "vary": "Accept-Encoding", "via": "1.1 varnish", "x-cache": "HIT", - "x-cache-hits": "1", - "x-fastly-request-id": "2b6f5e0a9811469f9be818a7322ee3976e655587", - "x-github-request-id": "0F48:9776A:A0CD9D:A5614A:674325DC", + "x-cache-hits": "0", + "x-fastly-request-id": "e7ae7388d73bf432a6a530826c8a43c7ed586341", + "x-github-request-id": "6D94:243A9E:3CE3D6E:42AF277:674C62EA", "x-proxy-cache": "MISS", - "x-served-by": "cache-pao-kpao1770051-PAO", - "x-timer": "S1732454065.431267,VS0,VE1" + "x-served-by": "cache-iad-kcgs7200030-IAD", + "x-timer": "S1733059518.173189,VS0,VE9" }, "endpoints": [ { "hostname": "opentermsarchive.org", - "ip": "185.199.111.153", + "ip": "185.199.109.153", "geoip": { + "city": { + "geoname_id": 5391959, + "names": { + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -309314,11 +304974,15 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 34.0544, - "longitude": -118.244, + "accuracy_radius": 20, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, "time_zone": "America/Los_Angeles" }, + "postal": { + "code": "94107" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -309445,7 +305109,7 @@ { "requestedUrl": "https://opentermsarchive.org/", "finalUrl": "https://opentermsarchive.org/fr/", - "fetchTime": "2024-11-24T13:14:01.812Z", + "fetchTime": "2024-12-01T13:24:54.572Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://opentermsarchive.org/) was redirected to https://opentermsarchive.org/fr/. Try testing the second URL directly." ], @@ -309510,53 +305174,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3259, + "numericValue": 3826, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2403, - "firstMeaningfulPaint": 2403, - "largestContentfulPaint": 2553, - "interactive": 3259, - "speedIndex": 2403, - "totalBlockingTime": 4, - "maxPotentialFID": 58, + "firstContentfulPaint": 2406, + "firstMeaningfulPaint": 2406, + "largestContentfulPaint": 2556, + "interactive": 3826, + "speedIndex": 2406, + "totalBlockingTime": 32, + "maxPotentialFID": 114, "cumulativeLayoutShift": 0.00007116317749023438, "cumulativeLayoutShiftMainFrame": 0.00007116317749023438, "totalCumulativeLayoutShift": 0.00007116317749023438, "observedTimeOrigin": 0, - "observedTimeOriginTs": 580917433, + "observedTimeOriginTs": 387200130, "observedNavigationStart": 0, - "observedNavigationStartTs": 580917433, - "observedFirstPaint": 76, - "observedFirstPaintTs": 580993349, - "observedFirstContentfulPaint": 76, - "observedFirstContentfulPaintTs": 580993349, - "observedFirstContentfulPaintAllFrames": 76, - "observedFirstContentfulPaintAllFramesTs": 580993349, - "observedFirstMeaningfulPaint": 76, - "observedFirstMeaningfulPaintTs": 580993349, - "observedLargestContentfulPaint": 76, - "observedLargestContentfulPaintTs": 580993349, - "observedLargestContentfulPaintAllFrames": 76, - "observedLargestContentfulPaintAllFramesTs": 580993349, - "observedTraceEnd": 3115, - "observedTraceEndTs": 584032794, - "observedLoad": 715, - "observedLoadTs": 581632553, - "observedDomContentLoaded": 83, - "observedDomContentLoadedTs": 581000636, + "observedNavigationStartTs": 387200130, + "observedFirstPaint": 83, + "observedFirstPaintTs": 387283008, + "observedFirstContentfulPaint": 83, + "observedFirstContentfulPaintTs": 387283008, + "observedFirstContentfulPaintAllFrames": 83, + "observedFirstContentfulPaintAllFramesTs": 387283008, + "observedFirstMeaningfulPaint": 83, + "observedFirstMeaningfulPaintTs": 387283008, + "observedLargestContentfulPaint": 83, + "observedLargestContentfulPaintTs": 387283008, + "observedLargestContentfulPaintAllFrames": 83, + "observedLargestContentfulPaintAllFramesTs": 387283008, + "observedTraceEnd": 2799, + "observedTraceEndTs": 389998864, + "observedLoad": 477, + "observedLoadTs": 387676903, + "observedDomContentLoaded": 99, + "observedDomContentLoadedTs": 387299006, "observedCumulativeLayoutShift": 0.00007116317749023438, "observedCumulativeLayoutShiftMainFrame": 0.00007116317749023438, "observedTotalCumulativeLayoutShift": 0.00007116317749023438, - "observedFirstVisualChange": 75, - "observedFirstVisualChangeTs": 580992433, - "observedLastVisualChange": 109, - "observedLastVisualChangeTs": 581026433, - "observedSpeedIndex": 83, - "observedSpeedIndexTs": 581000426 + "observedFirstVisualChange": 84, + "observedFirstVisualChangeTs": 387284130, + "observedLastVisualChange": 667, + "observedLastVisualChangeTs": 387867130, + "observedSpeedIndex": 97, + "observedSpeedIndexTs": 387296674 }, { "lcpInvalidated": false @@ -309578,19 +305242,19 @@ "numScripts": 5, "numStylesheets": 1, "numFonts": 3, - "numTasks": 443, - "numTasksOver10ms": 4, - "numTasksOver25ms": 1, + "numTasks": 436, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0.9770000000000003, - "throughput": 26744631.271138385, - "maxRtt": 151.623, - "maxServerLatency": 3.444, - "totalByteWeight": 585333, - "totalTaskTime": 130.60000000000005, - "mainDocumentTransferSize": 3406 + "rtt": 1.6869999999999994, + "throughput": 43457157.70717049, + "maxRtt": 84.431, + "maxServerLatency": 5.529999999999999, + "totalByteWeight": 585281, + "totalTaskTime": 145.33099999999976, + "mainDocumentTransferSize": 3395 } ] } @@ -309687,7 +305351,7 @@ "width": 1920, "height": 1080, "url": "https://opentermsarchive.org", - "size": 807.545, + "size": 807.589, "nodes": 587, "requests": 33, "grade": "C", @@ -309695,7 +305359,7 @@ "ges": 1.72, "water": 2.58, "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:10:59.470449", + "date": "2024-12-01 13:21:52.939328", "page_type": "website" } ], @@ -309911,273 +305575,273 @@ "vulnerabilities": [ { "type": "githubexploit", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", "is_exploit": "true", - "cvss": "10.0" + "cvss": "10.0", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" }, { "type": "githubexploit", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", "is_exploit": "true", - "cvss": "10.0" + "cvss": "10.0", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" }, { "type": "cve", - "id": "CVE-2023-38408", "is_exploit": "false", - "cvss": "9.8" + "cvss": "9.8", + "id": "CVE-2023-38408" }, { "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", "is_exploit": "true", - "cvss": "9.8" + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" }, { "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", "is_exploit": "true", - "cvss": "9.8" + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" }, { "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", "is_exploit": "true", - "cvss": "9.8" + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" }, { "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", "is_exploit": "true", - "cvss": "9.8" + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" }, { "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", "is_exploit": "true", - "cvss": "9.8" + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" }, { "type": "cve", - "id": "CVE-2020-15778", "is_exploit": "false", - "cvss": "7.8" + "cvss": "7.8", + "id": "CVE-2020-15778" }, { "type": "seebug", - "id": "SSV:92579", "is_exploit": "true", - "cvss": "7.5" + "cvss": "7.5", + "id": "SSV:92579" }, { "type": "packetstorm", - "id": "PACKETSTORM:173661", "is_exploit": "true", - "cvss": "7.5" + "cvss": "7.5", + "id": "PACKETSTORM:173661" }, { "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", "is_exploit": "true", - "cvss": "7.5" + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" }, { "type": "zdt", - "id": "1337DAY-ID-26576", "is_exploit": "true", - "cvss": "7.5" + "cvss": "7.5", + "id": "1337DAY-ID-26576" }, { "type": "cve", - "id": "CVE-2021-41617", "is_exploit": "false", - "cvss": "7.0" + "cvss": "7.0", + "id": "CVE-2021-41617" }, { "type": "exploitdb", - "id": "EDB-ID:46516", "is_exploit": "true", - "cvss": "6.8" + "cvss": "6.8", + "id": "EDB-ID:46516" }, { "type": "exploitdb", - "id": "EDB-ID:46193", "is_exploit": "true", - "cvss": "6.8" + "cvss": "6.8", + "id": "EDB-ID:46193" }, { "type": "cve", - "id": "CVE-2019-6110", "is_exploit": "false", - "cvss": "6.8" + "cvss": "6.8", + "id": "CVE-2019-6110" }, { "type": "cve", - "id": "CVE-2019-6109", "is_exploit": "false", - "cvss": "6.8" + "cvss": "6.8", + "id": "CVE-2019-6109" }, { "type": "githubexploit", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "is_exploit": "true", - "cvss": "6.8" + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" }, { "type": "githubexploit", - "id": "10213DBE-F683-58BB-B6D3-353173626207", "is_exploit": "true", - "cvss": "6.8" + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207" }, { "type": "cve", - "id": "CVE-2023-51385", "is_exploit": "false", - "cvss": "6.5" + "cvss": "6.5", + "id": "CVE-2023-51385" }, { "type": "cve", - "id": "CVE-2023-48795", "is_exploit": "false", - "cvss": "5.9" + "cvss": "5.9", + "id": "CVE-2023-48795" }, { "type": "cve", - "id": "CVE-2020-14145", "is_exploit": "false", - "cvss": "5.9" + "cvss": "5.9", + "id": "CVE-2020-14145" }, { "type": "cve", - "id": "CVE-2019-6111", "is_exploit": "false", - "cvss": "5.9" + "cvss": "5.9", + "id": "CVE-2019-6111" }, { "type": "exploitpack", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", "is_exploit": "true", - "cvss": "5.8" + "cvss": "5.8", + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19" }, { "type": "exploitpack", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", "is_exploit": "true", - "cvss": "5.8" + "cvss": "5.8", + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97" }, { "type": "zdt", - "id": "1337DAY-ID-32328", "is_exploit": "true", - "cvss": "5.8" + "cvss": "5.8", + "id": "1337DAY-ID-32328" }, { "type": "zdt", - "id": "1337DAY-ID-32009", "is_exploit": "true", - "cvss": "5.8" + "cvss": "5.8", + "id": "1337DAY-ID-32009" }, { "type": "packetstorm", - "id": "PACKETSTORM:181223", "is_exploit": "true", - "cvss": "5.3" + "cvss": "5.3", + "id": "PACKETSTORM:181223" }, { "type": "metasploit", - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", "is_exploit": "true", - "cvss": "5.3" + "cvss": "5.3", + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-" }, { "type": "exploitdb", - "id": "EDB-ID:45939", "is_exploit": "true", - "cvss": "5.3" + "cvss": "5.3", + "id": "EDB-ID:45939" }, { "type": "exploitdb", - "id": "EDB-ID:45233", "is_exploit": "true", - "cvss": "5.3" + "cvss": "5.3", + "id": "EDB-ID:45233" }, { "type": "cve", - "id": "CVE-2018-20685", "is_exploit": "false", - "cvss": "5.3" + "cvss": "5.3", + "id": "CVE-2018-20685" }, { "type": "cve", - "id": "CVE-2018-15919", "is_exploit": "false", - "cvss": "5.3" + "cvss": "5.3", + "id": "CVE-2018-15919" }, { "type": "cve", - "id": "CVE-2018-15473", "is_exploit": "false", - "cvss": "5.3" + "cvss": "5.3", + "id": "CVE-2018-15473" }, { "type": "cve", - "id": "CVE-2016-20012", "is_exploit": "false", - "cvss": "5.3" + "cvss": "5.3", + "id": "CVE-2016-20012" }, { "type": "canvas", - "id": "SSH_ENUM", "is_exploit": "true", - "cvss": "5.0" + "cvss": "5.0", + "id": "SSH_ENUM" }, { "type": "packetstorm", - "id": "PACKETSTORM:150621", "is_exploit": "true", - "cvss": "5.0" + "cvss": "5.0", + "id": "PACKETSTORM:150621" }, { "type": "exploitpack", - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", "is_exploit": "true", - "cvss": "5.0" + "cvss": "5.0", + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0" }, { "type": "exploitpack", - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", "is_exploit": "true", - "cvss": "5.0" + "cvss": "5.0", + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283" }, { "type": "zdt", - "id": "1337DAY-ID-31730", "is_exploit": "true", - "cvss": "5.0" + "cvss": "5.0", + "id": "1337DAY-ID-31730" }, { "type": "packetstorm", - "id": "PACKETSTORM:151227", "is_exploit": "true", - "cvss": "0.0" + "cvss": "0.0", + "id": "PACKETSTORM:151227" }, { "type": "packetstorm", - "id": "PACKETSTORM:140261", "is_exploit": "true", - "cvss": "0.0" + "cvss": "0.0", + "id": "PACKETSTORM:140261" }, { "type": "exploitdb", - "id": "EDB-ID:45210", "is_exploit": "true", - "cvss": "0.0" + "cvss": "0.0", + "id": "EDB-ID:45210" }, { "type": "zdt", - "id": "1337DAY-ID-30937", "is_exploit": "true", - "cvss": "0.0" + "cvss": "0.0", + "id": "1337DAY-ID-30937" } ] } @@ -310742,7 +306406,7 @@ "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "INFO", - "finding": "1732455160" + "finding": "1733060228" }, { "id": "HSTS", @@ -311345,7 +307009,7 @@ "connection": "keep-alive", "content-length": "3378", "content-type": "text/html", - "date": "Sun, 24 Nov 2024 13:31:31 GMT", + "date": "Sun, 01 Dec 2024 13:36:00 GMT", "etag": "\"61434f21-d32\"", "server": "nginx/1.24.0" }, @@ -311912,8 +307576,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T12:51:54Z", - "next_check_at": "2024-11-24T13:51:51Z", + "last_check_at": "2024-12-01T13:00:18Z", + "next_check_at": "2024-12-01T14:00:07Z", "created_at": "2021-11-20T13:58:53Z", "mute_until": null, "favicon_url": "https://mon-suivi-justice.beta.gouv.fr/assets/favicon-b0c7f42c4e9b955b21576059969a22c5f377cc6b15ebbb04d1470ee65f114f54.ico", @@ -311921,7 +307585,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T06:53:31Z", + "tested_at": "2024-12-01T08:01:49Z", "expires_at": "2025-02-11T09:56:28Z", "valid": true, "error": null @@ -311929,12 +307593,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 967, - "namelookup": 156, - "connection": 178, - "handshake": 181, - "response": 181, - "total": 1663 + "redirect": 698, + "namelookup": 151, + "connection": 144, + "handshake": 147, + "response": 146, + "total": 1285 } }, "uptimeGrade": "A", @@ -311967,77 +307631,77 @@ "testssl": [ { "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312045,7 +307709,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312053,7 +307717,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312061,7 +307725,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312069,7 +307733,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -312077,7 +307741,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -312085,441 +307749,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-11-13 09:56" }, { "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-02-11 09:56" }, { "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732455154" + "finding": "1733060584" }, { "id": "HSTS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -312527,7 +308191,7 @@ }, { "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -312536,7 +308200,7 @@ }, { "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -312545,7 +308209,7 @@ }, { "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -312554,7 +308218,7 @@ }, { "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -312563,7 +308227,7 @@ }, { "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -312571,7 +308235,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -312580,7 +308244,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -312589,7 +308253,7 @@ }, { "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -312598,7 +308262,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -312607,14 +308271,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -312623,7 +308287,7 @@ }, { "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -312632,7 +308296,7 @@ }, { "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312641,7 +308305,7 @@ }, { "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312650,7 +308314,7 @@ }, { "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312659,7 +308323,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312668,7 +308332,7 @@ }, { "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -312677,7 +308341,7 @@ }, { "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -312686,7 +308350,7 @@ }, { "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -312695,7 +308359,7 @@ }, { "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -312704,399 +308368,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", + "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313104,7 +308768,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313112,7 +308776,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313120,7 +308784,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313128,7 +308792,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313136,7 +308800,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313144,441 +308808,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-11-13 09:56" }, { "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-02-11 09:56" }, { "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732455203" + "finding": "1733060647" }, { "id": "HSTS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -313586,7 +309250,7 @@ }, { "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -313595,7 +309259,7 @@ }, { "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -313604,7 +309268,7 @@ }, { "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -313613,7 +309277,7 @@ }, { "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -313622,7 +309286,7 @@ }, { "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -313630,7 +309294,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -313639,7 +309303,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -313648,7 +309312,7 @@ }, { "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -313657,7 +309321,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -313666,14 +309330,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -313682,7 +309346,7 @@ }, { "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -313691,7 +309355,7 @@ }, { "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313700,7 +309364,7 @@ }, { "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313709,7 +309373,7 @@ }, { "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313718,7 +309382,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313727,7 +309391,7 @@ }, { "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -313736,7 +309400,7 @@ }, { "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -313745,7 +309409,7 @@ }, { "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -313754,7 +309418,7 @@ }, { "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -313763,322 +309427,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mon-suivi-justice.beta.gouv.fr/5.104.101.30", + "ip": "mon-suivi-justice.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -314430,7 +310094,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "78 >= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", @@ -314591,7 +310255,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732455253" + "finding": "1733060702" }, { "id": "HSTS", @@ -315349,7 +311013,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -315489,7 +311153,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "78 >= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", @@ -315650,7 +311314,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732455303" + "finding": "1733060757" }, { "id": "HSTS", @@ -316206,7 +311870,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "202" + "finding": "239" } ], "thirdparties": { @@ -316285,7 +311949,7 @@ }, { "type": "unknown", - "url": "https://jmvi.justice.fr/hsH245.js?2" + "url": "https://jmvi.justice.fr/qjQ306.js?2" }, { "type": "unknown", @@ -316297,7 +311961,7 @@ }, { "type": "unknown", - "url": "https://www.justice.fr/sites/default/files/alerte_enlevement/xml/alerte_enlevement.parsed.xml?1732455075767" + "url": "https://www.justice.fr/sites/default/files/alerte_enlevement/xml/alerte_enlevement.parsed.xml?1733060495134" }, { "type": "unknown", @@ -316345,19 +312009,19 @@ }, { "type": "unknown", - "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Bold.woff2" + "url": "https://www.justice.fr/fiche/ajax" }, { "type": "unknown", - "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Medium.woff2" + "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Bold.woff2" }, { "type": "unknown", - "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Regular_Italic.woff2" + "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Medium.woff2" }, { "type": "unknown", - "url": "https://www.justice.fr/fiche/ajax" + "url": "https://www.justice.fr/sites/all/themes/portalis_theme/dsfr/fonts/Marianne-Regular_Italic.woff2" }, { "type": "unknown", @@ -316371,7 +312035,7 @@ "cookies": [ { "name": "TS01ffdb6c", - "value": "01a6efdeadc267a15ba70608a19057649f218bf59cc5dd7dab474046413dc905d899abc70c539751696fec8d54a3c4ab588d4bc117b50f77e0b9ae0bbf14f996b1cc736158", + "value": "01a6efdeadba9b8a3d43e640d02b4fef973e0329b7586a78a58109df65211383a0a2251be341a8b2ecbe2657d206f24401898b6974d70ec4cc68444040a4db28b6d527849f", "domain": ".www.justice.fr", "path": "/", "expires": -1, @@ -316385,11 +312049,11 @@ }, { "name": "BIGipServer34MTuypDk3zboBHeznTQiA", - "value": "!beBx8LdbxEVzUueMzNyTWKnbNzyeSqi/P6TPbYGqMoLGowQoE+8+1rx15Wt2FYka3+Y0jnJmPKUokA==", + "value": "!NwYfrXlWWuZL0CmMzNyTWKnbNzyeSh5M6CZmVIFTWtyikU0BAqnQbfVebjC3WBaV7YBWtC56UlU5", "domain": "www.justice.fr", "path": "/", "expires": -1, - "size": 114, + "size": 110, "httpOnly": true, "secure": false, "session": true, @@ -316404,26 +312068,26 @@ "connection": "Keep-Alive", "content-encoding": "gzip", "content-language": "fr", - "content-length": "13215", + "content-length": "13216", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 04:49:07 GMT", - "etag": "\"1732423747-1\"", + "date": "Sun, 01 Dec 2024 04:28:20 GMT", + "etag": "\"1733027300-1\"", "expires": "Sun, 19 Nov 1978 05:00:00 GMT", "keep-alive": "timeout=5, max=100", - "last-modified": "Sun, 24 Nov 2024 04:49:07 GMT", + "last-modified": "Sun, 01 Dec 2024 04:28:20 GMT", "link": "; rel=\"canonical\",; rel=\"shortlink\"", - "set-cookie": "BIGipServer34MTuypDk3zboBHeznTQiA=!beBx8LdbxEVzUueMzNyTWKnbNzyeSqi/P6TPbYGqMoLGowQoE+8+1rx15Wt2FYka3+Y0jnJmPKUokA==; path=/; Httponly\nTS01ffdb6c=01a6efdeadc267a15ba70608a19057649f218bf59cc5dd7dab474046413dc905d899abc70c539751696fec8d54a3c4ab588d4bc117b50f77e0b9ae0bbf14f996b1cc736158; Path=/; Domain=.www.justice.fr;", + "set-cookie": "BIGipServer34MTuypDk3zboBHeznTQiA=!NwYfrXlWWuZL0CmMzNyTWKnbNzyeSh5M6CZmVIFTWtyikU0BAqnQbfVebjC3WBaV7YBWtC56UlU5; path=/; Httponly\nTS01ffdb6c=01a6efdeadba9b8a3d43e640d02b4fef973e0329b7586a78a58109df65211383a0a2251be341a8b2ecbe2657d206f24401898b6974d70ec4cc68444040a4db28b6d527849f; Path=/; Domain=.www.justice.fr;", "vary": "Accept-Encoding", "x-cache": "HIT", "x-content-type-options": "nosniff", - "x-drupal-cache-timestamp": "1732198797", + "x-drupal-cache-timestamp": "1732898643", "x-frame-options": "SAMEORIGIN", "x-ua-device": "DESKTOP" }, "endpoints": [ { "hostname": "mon-suivi-justice.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { "continent": { "code": "EU", @@ -316672,7 +312336,7 @@ { "requestedUrl": "https://mon-suivi-justice.beta.gouv.fr/", "finalUrl": "https://www.justice.fr/mon-suivi-justice", - "fetchTime": "2024-11-24T13:30:48.635Z", + "fetchTime": "2024-12-01T13:41:05.490Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mon-suivi-justice.beta.gouv.fr/) was redirected to https://www.justice.fr/mon-suivi-justice. Try testing the second URL directly." ], @@ -316685,7 +312349,7 @@ "snapshot" ], "id": "performance", - "score": 0.39 + "score": 0.38 }, "accessibility": { "title": "Accessibility", @@ -316737,53 +312401,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11584, + "numericValue": 14369, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8349, - "firstMeaningfulPaint": 8349, - "largestContentfulPaint": 9442, - "interactive": 11584, - "speedIndex": 10145, - "totalBlockingTime": 58, - "maxPotentialFID": 66, - "cumulativeLayoutShift": 0.3016261781056722, - "cumulativeLayoutShiftMainFrame": 0.3016261781056722, - "totalCumulativeLayoutShift": 0.3016261781056722, + "firstContentfulPaint": 9023, + "firstMeaningfulPaint": 9023, + "largestContentfulPaint": 9552, + "interactive": 14369, + "speedIndex": 13575, + "totalBlockingTime": 36, + "maxPotentialFID": 60, + "cumulativeLayoutShift": 0.26549414316813147, + "cumulativeLayoutShiftMainFrame": 0.26549414316813147, + "totalCumulativeLayoutShift": 0.26549414316813147, "observedTimeOrigin": 0, - "observedTimeOriginTs": 423220340, + "observedTimeOriginTs": 381075308, "observedNavigationStart": 0, - "observedNavigationStartTs": 423220340, - "observedFirstPaint": 1801, - "observedFirstPaintTs": 425021284, - "observedFirstContentfulPaint": 1801, - "observedFirstContentfulPaintTs": 425021284, - "observedFirstContentfulPaintAllFrames": 1801, - "observedFirstContentfulPaintAllFramesTs": 425021284, - "observedFirstMeaningfulPaint": 1801, - "observedFirstMeaningfulPaintTs": 425021284, - "observedLargestContentfulPaint": 1801, - "observedLargestContentfulPaintTs": 425021284, - "observedLargestContentfulPaintAllFrames": 1801, - "observedLargestContentfulPaintAllFramesTs": 425021284, - "observedTraceEnd": 4734, - "observedTraceEndTs": 427953997, - "observedLoad": 2067, - "observedLoadTs": 425287808, - "observedDomContentLoaded": 1824, - "observedDomContentLoadedTs": 425044303, - "observedCumulativeLayoutShift": 0.3016261781056722, - "observedCumulativeLayoutShiftMainFrame": 0.3016261781056722, - "observedTotalCumulativeLayoutShift": 0.3016261781056722, - "observedFirstVisualChange": 1812, - "observedFirstVisualChangeTs": 425032340, - "observedLastVisualChange": 2429, - "observedLastVisualChangeTs": 425649340, - "observedSpeedIndex": 2190, - "observedSpeedIndexTs": 425410483 + "observedNavigationStartTs": 381075308, + "observedFirstPaint": 2414, + "observedFirstPaintTs": 383488906, + "observedFirstContentfulPaint": 2414, + "observedFirstContentfulPaintTs": 383488906, + "observedFirstContentfulPaintAllFrames": 2414, + "observedFirstContentfulPaintAllFramesTs": 383488906, + "observedFirstMeaningfulPaint": 2414, + "observedFirstMeaningfulPaintTs": 383488906, + "observedLargestContentfulPaint": 2414, + "observedLargestContentfulPaintTs": 383488906, + "observedLargestContentfulPaintAllFrames": 2414, + "observedLargestContentfulPaintAllFramesTs": 383488906, + "observedTraceEnd": 5932, + "observedTraceEndTs": 387007105, + "observedLoad": 3201, + "observedLoadTs": 384276075, + "observedDomContentLoaded": 2747, + "observedDomContentLoadedTs": 383822193, + "observedCumulativeLayoutShift": 0.26549414316813147, + "observedCumulativeLayoutShiftMainFrame": 0.26549414316813147, + "observedTotalCumulativeLayoutShift": 0.26549414316813147, + "observedFirstVisualChange": 2426, + "observedFirstVisualChangeTs": 383501308, + "observedLastVisualChange": 3509, + "observedLastVisualChangeTs": 384584308, + "observedSpeedIndex": 3211, + "observedSpeedIndexTs": 384286461 }, { "lcpInvalidated": false @@ -316805,19 +312469,19 @@ "numScripts": 8, "numStylesheets": 7, "numFonts": 4, - "numTasks": 1366, - "numTasksOver10ms": 5, + "numTasks": 1455, + "numTasksOver10ms": 8, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 73.039, - "throughput": 13493929.307996381, - "maxRtt": 93.568, - "maxServerLatency": 22.31700000000002, - "totalByteWeight": 1455083, - "totalTaskTime": 285.50199999999825, - "mainDocumentTransferSize": 14234 + "rtt": 58.74799999999999, + "throughput": 7618812.47741798, + "maxRtt": 113.434, + "maxServerLatency": 119.28500000000005, + "totalByteWeight": 1455079, + "totalTaskTime": 341.79999999999836, + "mainDocumentTransferSize": 14230 } ] } @@ -316873,7 +312537,7 @@ "width": 1920, "height": 1080, "url": "https://mon-suivi-justice.beta.gouv.fr", - "size": 1944.932, + "size": 1948.448, "nodes": 951, "requests": 40, "grade": "D", @@ -316881,7 +312545,7 @@ "ges": 2.06, "water": 3.09, "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:27:42.950229", + "date": "2024-12-01 13:37:58.151839", "page_type": null } ], @@ -316905,7 +312569,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 39, - "lighthouse_performance": 0.39, + "lighthouse_performance": 0.38, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -317131,10 +312795,10 @@ "url": "https://ellesfontlaculture.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.969, + "uptime": 99.984, "down": false, "down_since": null, - "up_since": "2024-11-24T08:14:38Z", + "up_since": "2024-12-01T12:00:07Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -317145,8 +312809,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T13:47:17Z", - "next_check_at": "2024-11-24T13:48:17Z", + "last_check_at": "2024-12-01T13:53:44Z", + "next_check_at": "2024-12-01T13:54:44Z", "created_at": "2024-01-15T14:02:08Z", "mute_until": null, "favicon_url": "https://ellesfontla.culture.gouv.fr/assets/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", @@ -317154,20 +312818,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T13:39:19Z", + "tested_at": "2024-12-01T13:52:45Z", "expires_at": "2025-02-01T07:40:32Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.877, + "apdex": 0.904, "timings": { - "redirect": 610, - "namelookup": 151, + "redirect": 552, + "namelookup": 161, "connection": 2, - "handshake": 10, - "response": 452, - "total": 1225 + "handshake": 11, + "response": 387, + "total": 1113 } }, "uptimeGrade": "A", @@ -317400,7 +313064,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -317547,7 +313211,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -317701,14 +313365,14 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "1732456020" + "finding": "1733061146" }, { "id": "HSTS", @@ -318264,7 +313928,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "57" + "finding": "99" } ], "thirdparties": { @@ -318324,6 +313988,14 @@ { "type": "unknown", "url": "https://res.cloudinary.com/ellesfontlaculture/image/upload/v1/production/6qox3vx0uqwwvhcdqbhug8dlbu53.jpg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/ellesfontlaculture/image/upload/v1/production/70h5sd4j4ucr042ron1bw9qj9xez.jpg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/ellesfontlaculture/image/upload/v1/production/4urxczsx0tav36dvfyllaqv05hwc.jpg" } ], "cookies": [ @@ -318332,7 +314004,7 @@ "value": "1", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1732457743, + "expires": 1733062834, "size": 17, "httpOnly": false, "secure": false, @@ -318344,10 +314016,10 @@ }, { "name": "_pk_id.187.1dd6", - "value": "62d39d8e854bec0b.1732455944.", + "value": "11d5a60589e58913.1733061035.", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1766411144, + "expires": 1767016235, "size": 43, "httpOnly": false, "secure": false, @@ -318359,11 +314031,11 @@ }, { "name": "_ellesfontlaphoto_session", - "value": "GcPVBy0txNeZvMgwREt1ZwD1K2wzWLtXASodQft6D6U21NlPuU7BGcQmr%2BAGY5dST2gf49C3LMh8WSSKOO9crXifF9rcLVF7Kn%2BaS6OtQj1Ee11IH8tLjXCcb6noD7IsKWiEYWLiDr0eAnLike8ivRy6aFatD3fSaAI%2Fj6Fg8LfSkXzlJ6ZuNOP1oOhA%2Fsb%2FXRWZNSjzx3R4C%2FnmCzLPDHO3dnv9A7UKQn5JPz0f1bCtTKnFC5o%2FUCSF7SH5bioe%2BfroJZrq%2F5QJlToUe8SD89x8bqolMpVurTDCQwnOhGjKGp7vRcPDxPatHddQUi7hvOvVVwpB%2BpyG6uxw%2BPrG9R2jxCzEYxbQo%2FNvsv%2FdmTEkRsFEeSexIp%2B9%2FdBARajybjbd1OPjh1UGm30dBaoIZlQZK4wtijoF5I3Zs01NXD64RlCgSfqhZJSroepHSx%2FD%2FN9ups%2BZZkM58BY4CIti%2F%2BWtd5eT3MZuTnaMFmmXGbTTwpRnEIBUnVWRj%2F8bqrUtaw%3D%3D--ikOmIFU33mtPk8j5--3O2UoIziosB6gy4NenSC0A%3D%3D", + "value": "IxtR8WnZgZzCismS1xh352FtV4uWAXI0WnAv13PrCACXvuSehWbEQ7%2FhamxpG2VZS8wOqaTmqpGOpj2%2Bj6Mzl%2BHN1cqEpleg8%2BuuWlxTUhH1uycR0%2BR3qQ1z92Hzop7W27kyVqqzrO7%2Fsdi81FGe8doycekP6C1VxHmI6B7n9NSJ6%2FsRF5j2UNMtwqvp%2FVsU90MmUxp7hgU%2FX33waX0Hh5H6qd0067qHifgrZLut2HVLF10e1ek79YOIAX%2FOHbG8KZA1P2P6Ceyfaa3deP0p7g4BSw54YHg69l0RI9rTPIeXCk1JRGNX6FcDGijK3FmbOwwAE71UNASxhk7S%2BfrZh%2FONEyQhIdohsfScfQGn9YWcT6A6bEP8DZCkOEjBOXulVeOjoi8W81sDkbB4XPL1I0XNCZXnVZVw192XDRiNeVDZZgPEpSZg%2FdvTTIAN8uHmqQanzBV9cicvzsPpUstDVnTgHZjsx8fy0jE482zclX%2Bm5rF1IeaYbPEro41%2F9Lzy8w%3D%3D--81Zl96lmgEWwrdbP--Gmv%2FRIqL2%2FuRCLBhUf9zWQ%3D%3D", "domain": "ellesfontla.culture.gouv.fr", "path": "/", "expires": -1, - "size": 635, + "size": 627, "httpOnly": true, "secure": true, "session": true, @@ -318377,13 +314049,13 @@ "accept-ranges": "bytes", "cache-control": "max-age=0, private, must-revalidate", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 13:45:43 GMT", - "etag": "W/\"9992884ba6986f933d83e91082f23504\"", + "date": "Sun, 01 Dec 2024 13:50:34 GMT", + "etag": "W/\"ebf5c922fd51128a0c5605dfc9a7008f\"", "link": "; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_ellesfontlaphoto_session=M5tu9B6wOIIatG0zM8%2B44tQtRMCy4lWm9BmlOF1zxUATon9URPJW%2Bu5Nr4LktY8txhYi10IUAa4OJx6qRIM0PWPMdckROHU0VTgJB4VsVd%2FjSnrdzq7jr%2BPlYC%2BtSTJPzYDcfrDMroXneSN6UrPNxbrvP5DA%2Bj%2Fuc%2BbebAka5D29eOOOFygDFDpvLcFYnhZ5EKH8fDbOl%2Fci8mH39DiXlgkX0%2Fy%2FOJI8FQGQMGnwkUMYbWV7dHf7RSntUOnjeCkTv4LQyo03stu4euedobK%2BGWS1luBopw9myw8PxGVq1vQVpSju124qkUX88BImYWYkNToJtlmr9u%2B%2B8JT33QVSmKeacMv1WFwJIragV%2FVcanmAly8WsufpNPS4gQdSzq%2BvQGpOJr4n%2BMUQXvk06bufRXW6Ji%2FdbEhEo9yvwjEdwb0XhFK5NTV9u3BGewKMGRVMHMVsKFuFKGCLmqFyDiUy7XR9XN5zqDfw4e07cls87H2tJ8QTI0dppSH8OwnRlZ4CHg%3D%3D--b%2FknmgVqB0JYrBmb--Ci7Q%2F298bsv2EtX67Dvd5Q%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_ellesfontlaphoto_session=%2B%2BE0o%2BHih5nhmF6SuhrYoAcc4X1126LKuvCsL%2ByoHB4uhGIOLgZTH%2F%2BIKR6wQonCxRPXTepsbNrxu3a9CKk9u2Km8qwm%2BhsHZPBB6NBCsD0G5u77gMbQQZdFDRXJ6rLAyMdp0brDJRm1XcbwApfMXlGWgumDbpLysJE0nNUm9STAMz7pM8nuPB5%2BYipiP21hjqJLAiV%2BYta0ivmIaUPwZnZP6Y6I8Mo8yx1CI79zRRrnhQ0zwf7TqOYTdVZte%2FiqJTDyawFFWYzKUOCqOhbWTeXLS3mRG6gPfByIjCkNNHmM5xcN3GMsoHgOUl%2FnQzgcFM6NS9Zz2pkiHCkVPTj%2F0OG8sMic7HT5yJXbbSqjmaC9vYotX5wRBvBCy3FxOIlZr5KWXVN0d6RLAyaZ1o2aFbMy14ytXGwcAahBojWUELKZlJyEmgEJt2VFikcLsx1FpNEKqXqAppSuAYXavNhKRJBJeDBZYorFZpC0d00GWABe3pbGgWHIiaMmcJxXh4dWYg%3D%3D--pP5wkoA7zo9YkkNN--oBla7CsfIdkn5VjB8uuzVQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31557600", - "traceresponse": "00-180aeb804aea8580765a659779b065c2-f49793a645381067-01", + "traceresponse": "00-180d11d3fd3804a5dd19f36c13127e8e-4f6d85c75e5a1358-01", "via": "1.1 varnish, 1.1 varnish", "x-cache": "MISS, MISS", "x-cache-hits": "0, 0", @@ -318396,9 +314068,9 @@ "x-platform-cluster": "tl34jw4qs4bu2-master-7rqtwti", "x-platform-processor": "gwzrtyfmq5bg3qickflrztm5jm", "x-platform-router": "nthylk4d6puxch5isukqy3sywa", - "x-request-id": "22f00aaf-bcd0-4756-aba7-ee832c0dbc21", - "x-runtime": "0.157142", - "x-served-by": "cache-par-lfpg1960028-PAR, cache-chi-kigq8000137-CHI", + "x-request-id": "45f1e8d5-2f17-4639-a65b-ee67ea44a0d4", + "x-runtime": "0.235254", + "x-served-by": "cache-par-lfpg1960047-PAR, cache-pao-kpao1770055-PAO", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -318460,7 +314132,7 @@ }, { "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.25.14", + "ip": "104.17.24.14", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -318480,7 +314152,7 @@ }, { "hostname": "res.cloudinary.com", - "ip": "104.17.202.1", + "ip": "104.17.201.1", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -318534,7 +314206,7 @@ { "requestedUrl": "https://ellesfontlaculture.beta.gouv.fr/", "finalUrl": "https://ellesfontla.culture.gouv.fr/", - "fetchTime": "2024-11-24T13:45:11.533Z", + "fetchTime": "2024-12-01T13:50:01.741Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://ellesfontlaculture.beta.gouv.fr/) was redirected to https://ellesfontla.culture.gouv.fr/. Try testing the second URL directly." ], @@ -318547,7 +314219,7 @@ "snapshot" ], "id": "performance", - "score": 0.47 + "score": 0.44 }, "accessibility": { "title": "Accessibility", @@ -318599,53 +314271,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12725, + "numericValue": 12936, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5308, - "firstMeaningfulPaint": 5876, - "largestContentfulPaint": 16728, - "interactive": 12725, - "speedIndex": 15224, - "totalBlockingTime": 101, - "maxPotentialFID": 200, - "cumulativeLayoutShift": 0.018687410990397134, - "cumulativeLayoutShiftMainFrame": 0.018687410990397134, - "totalCumulativeLayoutShift": 0.018687410990397134, + "firstContentfulPaint": 3665, + "firstMeaningfulPaint": 3665, + "largestContentfulPaint": 17192, + "interactive": 12936, + "speedIndex": 12024, + "totalBlockingTime": 269, + "maxPotentialFID": 286, + "cumulativeLayoutShift": 0.014085561964246962, + "cumulativeLayoutShiftMainFrame": 0.014085561964246962, + "totalCumulativeLayoutShift": 0.014085561964246962, "observedTimeOrigin": 0, - "observedTimeOriginTs": 372746819, + "observedTimeOriginTs": 359768329, "observedNavigationStart": 0, - "observedNavigationStartTs": 372746819, - "observedFirstPaint": 1034, - "observedFirstPaintTs": 373780849, - "observedFirstContentfulPaint": 1034, - "observedFirstContentfulPaintTs": 373780849, - "observedFirstContentfulPaintAllFrames": 1034, - "observedFirstContentfulPaintAllFramesTs": 373780849, - "observedFirstMeaningfulPaint": 1052, - "observedFirstMeaningfulPaintTs": 373799204, - "observedLargestContentfulPaint": 1052, - "observedLargestContentfulPaintTs": 373799204, - "observedLargestContentfulPaintAllFrames": 1052, - "observedLargestContentfulPaintAllFramesTs": 373799204, - "observedTraceEnd": 3802, - "observedTraceEndTs": 376549118, - "observedLoad": 1486, - "observedLoadTs": 374232467, - "observedDomContentLoaded": 983, - "observedDomContentLoadedTs": 373730287, - "observedCumulativeLayoutShift": 0.018687410990397134, - "observedCumulativeLayoutShiftMainFrame": 0.018687410990397134, - "observedTotalCumulativeLayoutShift": 0.018687410990397134, - "observedFirstVisualChange": 1038, - "observedFirstVisualChangeTs": 373784819, - "observedLastVisualChange": 1671, - "observedLastVisualChangeTs": 374417819, - "observedSpeedIndex": 1446, - "observedSpeedIndexTs": 374193032 + "observedNavigationStartTs": 359768329, + "observedFirstPaint": 1239, + "observedFirstPaintTs": 361007581, + "observedFirstContentfulPaint": 1239, + "observedFirstContentfulPaintTs": 361007581, + "observedFirstContentfulPaintAllFrames": 1239, + "observedFirstContentfulPaintAllFramesTs": 361007581, + "observedFirstMeaningfulPaint": 1239, + "observedFirstMeaningfulPaintTs": 361007581, + "observedLargestContentfulPaint": 1546, + "observedLargestContentfulPaintTs": 361314734, + "observedLargestContentfulPaintAllFrames": 1546, + "observedLargestContentfulPaintAllFramesTs": 361314734, + "observedTraceEnd": 4361, + "observedTraceEndTs": 364129106, + "observedLoad": 1907, + "observedLoadTs": 361675642, + "observedDomContentLoaded": 1516, + "observedDomContentLoadedTs": 361284338, + "observedCumulativeLayoutShift": 0.014085561964246962, + "observedCumulativeLayoutShiftMainFrame": 0.014085561964246962, + "observedTotalCumulativeLayoutShift": 0.014085561964246962, + "observedFirstVisualChange": 1250, + "observedFirstVisualChangeTs": 361018329, + "observedLastVisualChange": 2383, + "observedLastVisualChangeTs": 362151329, + "observedSpeedIndex": 2069, + "observedSpeedIndexTs": 361837526 }, { "lcpInvalidated": false @@ -318663,23 +314335,23 @@ "type": "debugdata", "items": [ { - "numRequests": 76, + "numRequests": 79, "numScripts": 6, "numStylesheets": 2, "numFonts": 5, - "numTasks": 1804, - "numTasksOver10ms": 8, + "numTasks": 1798, + "numTasksOver10ms": 9, "numTasksOver25ms": 4, - "numTasksOver50ms": 1, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 387144156.26769906, - "maxRtt": 104.082, - "maxServerLatency": 146.89999999999998, - "totalByteWeight": 15571805, - "totalTaskTime": 371.7319999999954, - "mainDocumentTransferSize": 65515 + "throughput": 493833837.13153195, + "maxRtt": 155.023, + "maxServerLatency": 192.23500000000004, + "totalByteWeight": 15666200, + "totalTaskTime": 506.84799999999524, + "mainDocumentTransferSize": 65110 } ] } @@ -318775,15 +314447,15 @@ "width": 1920, "height": 1080, "url": "https://ellesfontlaculture.beta.gouv.fr", - "size": 16009.199, - "nodes": 857, - "requests": 72, + "size": 16103.538, + "nodes": 854, + "requests": 73, "grade": "E", "score": 36, "ges": 2.28, "water": 3.42, "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:42:13.423125", + "date": "2024-12-01 13:47:03.789473", "page_type": "website" } ], @@ -318793,9 +314465,9 @@ }, "summary": { "httpGrade": "B-", - "apdex": 0.877, + "apdex": 0.904, "apdexGrade": "F", - "uptime": 99.969, + "uptime": 99.984, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -318806,8 +314478,8 @@ "cookiesGrade": "C", "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 13, - "lighthouse_performance": 0.47, + "trackersCount": 15, + "lighthouse_performance": 0.44, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.7, "lighthouse_accessibilityGrade": "B", @@ -319071,7 +314743,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T12:42:53Z", + "up_since": "2024-11-30T16:06:09Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -319082,8 +314754,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T13:55:47Z", - "next_check_at": "2024-11-24T13:56:47Z", + "last_check_at": "2024-12-01T14:06:11Z", + "next_check_at": "2024-12-01T14:07:11Z", "created_at": "2024-01-15T14:02:08Z", "mute_until": null, "favicon_url": null, @@ -319091,20 +314763,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T13:47:48Z", + "tested_at": "2024-12-01T13:58:13Z", "expires_at": "2025-05-02T21:59:59Z", "valid": false, "error": "error code 20: unable to get local issuer certificate" }, "metrics": { - "apdex": 0.998, + "apdex": 1, "timings": { - "redirect": 718, - "namelookup": 23, + "redirect": 665, + "namelookup": 0, "connection": 0, "handshake": 0, - "response": 150, - "total": 890 + "response": 139, + "total": 804 } }, "uptimeGrade": "A", @@ -319482,7 +315154,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "159 >= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", @@ -319601,7 +315273,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732456189" + "finding": "1733061610" }, { "id": "HSTS_time", @@ -319664,7 +315336,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "script-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; default-src 'self'; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'" + "finding": "img-src 'self' data:; font-src 'self' data:; default-src 'self'; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; script-src 'self'; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/" }, { "id": "Permissions-Policy", @@ -320189,77 +315861,77 @@ }, { "id": "service", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320267,7 +315939,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320275,7 +315947,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320283,7 +315955,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320291,7 +315963,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -320299,7 +315971,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -320307,434 +315979,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-05-02 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-05-02 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732456283" + "finding": "1733061704" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "script-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; default-src 'self'; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'" + "finding": "img-src 'self' data:; font-src 'self' data:; default-src 'self'; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; script-src 'self'; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -320742,7 +316414,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -320751,7 +316423,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -320760,7 +316432,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -320769,7 +316441,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -320778,7 +316450,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -320786,7 +316458,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -320795,7 +316467,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -320804,7 +316476,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -320813,7 +316485,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -320822,14 +316494,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -320838,7 +316510,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -320847,7 +316519,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -320856,7 +316528,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -320865,7 +316537,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -320874,7 +316546,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -320883,7 +316555,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -320892,7 +316564,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -320901,7 +316573,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -320910,7 +316582,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -320919,322 +316591,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" @@ -321586,7 +317258,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "159 >= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", @@ -321705,7 +317377,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732456378" + "finding": "1733061799" }, { "id": "HSTS_time", @@ -321768,7 +317440,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "script-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; default-src 'self'; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'" + "finding": "img-src 'self' data:; font-src 'self' data:; default-src 'self'; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; script-src 'self'; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/" }, { "id": "Permissions-Policy", @@ -322293,77 +317965,77 @@ }, { "id": "service", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322371,7 +318043,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322379,7 +318051,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322387,7 +318059,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322395,7 +318067,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -322403,7 +318075,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -322411,434 +318083,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-05-02 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-05-02 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732456475" + "finding": "1733061893" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "script-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; default-src 'self'; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'" + "finding": "img-src 'self' data:; font-src 'self' data:; default-src 'self'; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; script-src 'self'; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -322846,7 +318518,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -322855,7 +318527,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -322864,7 +318536,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -322873,7 +318545,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -322882,7 +318554,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -322890,7 +318562,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -322899,7 +318571,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -322908,7 +318580,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -322917,7 +318589,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -322926,14 +318598,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -322942,7 +318614,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -322951,7 +318623,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -322960,7 +318632,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -322969,7 +318641,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -322978,7 +318650,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -322987,7 +318659,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -322996,7 +318668,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -323005,7 +318677,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -323014,7 +318686,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -323023,332 +318695,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "386" + "finding": "382" } ], "thirdparties": { @@ -323356,10 +319028,10 @@ "cookies": [ { "name": "csrftoken", - "value": "U6PYsYAYDN4Yl5IJugpn2UtLgyi3oGui", + "value": "FY26WyRJcsS7aAkGwtKDSzeyUt01iy6G", "domain": "moana.beta.gouv.fr", "path": "/", - "expires": 1763905707.150073, + "expires": 1764511128.712339, "size": 41, "httpOnly": false, "secure": true, @@ -323372,23 +319044,23 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "script-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; default-src 'self'; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'", + "content-security-policy": "img-src 'self' data:; font-src 'self' data:; default-src 'self'; frame-src 'self' https://stats.moana.andv.gouv.fr/ https://grist.numerique.gouv.fr/; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk='; form-action 'self' https://sentry.incubateur.net https://api.iconify.design/; base-uri 'self'; connect-src 'self' https://sentry.incubateur.net https://api.iconify.design/; script-src 'self'; object-src 'self' https://sentry.incubateur.net https://api.iconify.design/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 13:48:27 GMT", + "date": "Sun, 01 Dec 2024 13:58:48 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=U6PYsYAYDN4Yl5IJugpn2UtLgyi3oGui; expires=Sun, 23 Nov 2025 13:48:27 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=FY26WyRJcsS7aAkGwtKDSzeyUt01iy6G; expires=Sun, 30 Nov 2025 13:58:48 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "9b09a521-8b6b-48aa-8234-d673aaae422e" + "x-request-id": "5bbe2c3c-d353-4b63-a517-add379d2c84d" }, "endpoints": [ { "hostname": "moana.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -323536,7 +319208,7 @@ { "requestedUrl": "https://moana.beta.gouv.fr/", "finalUrl": "https://moana.beta.gouv.fr/login/?next=/", - "fetchTime": "2024-11-24T13:47:59.891Z", + "fetchTime": "2024-12-01T13:58:22.631Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://moana.beta.gouv.fr/) was redirected to https://moana.beta.gouv.fr/login/?next=/. Try testing the second URL directly." ], @@ -323549,7 +319221,7 @@ "snapshot" ], "id": "performance", - "score": 0.97 + "score": 0.98 }, "accessibility": { "title": "Accessibility", @@ -323601,53 +319273,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1654, + "numericValue": 1661, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1654, - "firstMeaningfulPaint": 1654, - "largestContentfulPaint": 1879, - "interactive": 1654, - "speedIndex": 4195, + "firstContentfulPaint": 1661, + "firstMeaningfulPaint": 1661, + "largestContentfulPaint": 1886, + "interactive": 1661, + "speedIndex": 3099, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0027972530788845486, "cumulativeLayoutShiftMainFrame": 0.0027972530788845486, "totalCumulativeLayoutShift": 0.0027972530788845486, "observedTimeOrigin": 0, - "observedTimeOriginTs": 521764484, + "observedTimeOriginTs": 466087287, "observedNavigationStart": 0, - "observedNavigationStartTs": 521764484, - "observedFirstPaint": 2369, - "observedFirstPaintTs": 524133114, - "observedFirstContentfulPaint": 2369, - "observedFirstContentfulPaintTs": 524133114, - "observedFirstContentfulPaintAllFrames": 2369, - "observedFirstContentfulPaintAllFramesTs": 524133114, - "observedFirstMeaningfulPaint": 2369, - "observedFirstMeaningfulPaintTs": 524133114, - "observedLargestContentfulPaint": 2369, - "observedLargestContentfulPaintTs": 524133114, - "observedLargestContentfulPaintAllFrames": 2369, - "observedLargestContentfulPaintAllFramesTs": 524133114, - "observedTraceEnd": 5259, - "observedTraceEndTs": 527023290, - "observedLoad": 2641, - "observedLoadTs": 524405883, - "observedDomContentLoaded": 2385, - "observedDomContentLoadedTs": 524149736, + "observedNavigationStartTs": 466087287, + "observedFirstPaint": 1591, + "observedFirstPaintTs": 467678076, + "observedFirstContentfulPaint": 1591, + "observedFirstContentfulPaintTs": 467678076, + "observedFirstContentfulPaintAllFrames": 1591, + "observedFirstContentfulPaintAllFramesTs": 467678076, + "observedFirstMeaningfulPaint": 1591, + "observedFirstMeaningfulPaintTs": 467678076, + "observedLargestContentfulPaint": 1591, + "observedLargestContentfulPaintTs": 467678076, + "observedLargestContentfulPaintAllFrames": 1591, + "observedLargestContentfulPaintAllFramesTs": 467678076, + "observedTraceEnd": 4480, + "observedTraceEndTs": 470567262, + "observedLoad": 1867, + "observedLoadTs": 467954182, + "observedDomContentLoaded": 1595, + "observedDomContentLoadedTs": 467682316, "observedCumulativeLayoutShift": 0.0027972530788845486, "observedCumulativeLayoutShiftMainFrame": 0.0027972530788845486, "observedTotalCumulativeLayoutShift": 0.0027972530788845486, - "observedFirstVisualChange": 2381, - "observedFirstVisualChangeTs": 524145484, - "observedLastVisualChange": 2981, - "observedLastVisualChangeTs": 524745484, - "observedSpeedIndex": 2407, - "observedSpeedIndexTs": 524171366 + "observedFirstVisualChange": 1594, + "observedFirstVisualChangeTs": 467681287, + "observedLastVisualChange": 2210, + "observedLastVisualChangeTs": 468297287, + "observedSpeedIndex": 1621, + "observedSpeedIndexTs": 467708624 }, { "lcpInvalidated": false @@ -323675,13 +319347,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 145.183, - "throughput": 5864767.440845791, - "maxRtt": 145.183, - "maxServerLatency": 4.4480000000000075, - "totalByteWeight": 421865, - "totalTaskTime": 3.401999999999997, - "mainDocumentTransferSize": 3705 + "rtt": 145.20999999999998, + "throughput": 7449542.910571257, + "maxRtt": 145.20999999999998, + "maxServerLatency": 10.962000000000018, + "totalByteWeight": 422178, + "totalTaskTime": 3.273999999999999, + "mainDocumentTransferSize": 3710 } ] } @@ -323782,7 +319454,7 @@ "width": 1920, "height": 1080, "url": "https://moana.beta.gouv.fr", - "size": 433.365, + "size": 433.29, "nodes": 86, "requests": 17, "grade": "A", @@ -323790,7 +319462,7 @@ "ges": 1.24, "water": 1.86, "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:44:37.750833", + "date": "2024-12-01 13:55:23.536393", "page_type": null } ], @@ -323800,7 +319472,7 @@ }, "summary": { "httpGrade": "C+", - "apdex": 0.998, + "apdex": 1, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", @@ -323814,7 +319486,7 @@ "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.97, + "lighthouse_performance": 0.98, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", @@ -324106,7 +319778,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-21T07:36:27Z", + "up_since": "2024-11-30T03:01:31Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -324117,8 +319789,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:04:42Z", - "next_check_at": "2024-11-24T14:05:42Z", + "last_check_at": "2024-12-01T14:08:36Z", + "next_check_at": "2024-12-01T14:09:36Z", "created_at": "2024-01-15T14:02:08Z", "mute_until": null, "favicon_url": "https://collectif-objets.beta.gouv.fr/dsfr/favicon/favicon.ico", @@ -324126,7 +319798,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T13:56:46Z", + "tested_at": "2024-12-01T14:00:38Z", "expires_at": "2025-01-03T14:09:38Z", "valid": true, "error": null @@ -324135,11 +319807,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 312, - "connection": 133, - "handshake": 137, - "response": 148, - "total": 730 + "namelookup": 305, + "connection": 145, + "handshake": 149, + "response": 160, + "total": 759 } }, "uptimeGrade": "A", @@ -324170,1121 +319842,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2024-10-05 14:09" - }, - { - "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2025-01-03 14:09" - }, - { - "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732456840" - }, - { - "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-tJHcP2fKY7U04jP06KnIew=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" - }, - { - "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" - }, - { - "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" - }, - { - "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FE2DBB7DE036E95F12945F717680E66822C93BA2B7FCF971DD2F77A40EC85161" - }, - { - "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "service", "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", @@ -325632,7 +320189,7 @@ "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -325793,7 +320350,7 @@ "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732456903" + "finding": "1733062020" }, { "id": "HSTS_time", @@ -325877,7 +320434,7 @@ "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-ESzHep9t3Z1C3joJgov11Q=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-F3wH9SNnkHsn/sYknPDQww=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" }, { "id": "X-XSS-Protection", @@ -326600,14 +321157,14 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -326747,7 +321304,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -326908,7 +321465,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732456961" + "finding": "1733062074" }, { "id": "HSTS_time", @@ -326992,7 +321549,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-QHi7YIWWn6aeH9DkLYu29w=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-5k9qSQKJuOWr+E8GFOcyPQ=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" }, { "id": "X-XSS-Protection", @@ -327501,93 +322058,963 @@ "severity": "INFO", "finding": "24" }, - { - "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + { + "id": "final_score", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "111" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "_collectif_objets_session", + "value": "t6225xcGTOYbGqNf%2BOfGlp3VppoAefVXiJqwRlVtXquej4XM5Td8J5rqyz%2BRLUWIGHtGS1V%2FJEznWn14Ief5JeEFGtzy2x90fIaTQyqXDL5iuQXpNWzfLw9L5gGqiff6pAuuYajYeBm0BM93acfVQUy%2BRptj92Vk%2BTavb4i%2BaO3rEXha0yhDxKKnD0XlHFfOcV7rYNnegUyybqpv%2FvSS0EKwLE5PjlhE09n6dDitdEN8G6nvfIRrcpWylWs7Ed4ELwykSv7WK0Xn72GO9FvHK6CEzMD%2FgZUeQh81JMZbixjG--BWeXnChBC0ImV9Mb--dR3E8%2B3YBHeB8MbqCmnS%2BQ%3D%3D", + "domain": "collectif-objets.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 393, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-mdA1zlTzmcNTSn23Z3PJNA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 14:05:45 GMT", + "etag": "W/\"15fa8ae428b80acb19af4bc66622d8d3\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_collectif_objets_session=t6225xcGTOYbGqNf%2BOfGlp3VppoAefVXiJqwRlVtXquej4XM5Td8J5rqyz%2BRLUWIGHtGS1V%2FJEznWn14Ief5JeEFGtzy2x90fIaTQyqXDL5iuQXpNWzfLw9L5gGqiff6pAuuYajYeBm0BM93acfVQUy%2BRptj92Vk%2BTavb4i%2BaO3rEXha0yhDxKKnD0XlHFfOcV7rYNnegUyybqpv%2FvSS0EKwLE5PjlhE09n6dDitdEN8G6nvfIRrcpWylWs7Ed4ELwykSv7WK0Xn72GO9FvHK6CEzMD%2FgZUeQh81JMZbixjG--BWeXnChBC0ImV9Mb--dR3E8%2B3YBHeB8MbqCmnS%2BQ%3D%3D; path=/; secure; httponly; samesite=lax", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "a416ad8e-7937-4687-8b0e-5ac5aeeae85b\na416ad8e-7937-4687-8b0e-5ac5aeeae85b", + "x-runtime": "0.011808", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "collectif-objets.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://collectif-objets.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 50, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 50, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "amazon-web-services", + "name": "Amazon Web Services", + "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", + "confidence": 100, + "version": null, + "icon": "Amazon Web Services.svg", + "website": "https://aws.amazon.com/", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + } + ] + }, + { + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", + "confidence": 100, + "version": null, + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "amazon-s3", + "name": "Amazon S3", + "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", + "confidence": 100, + "version": null, + "icon": "Amazon S3.svg", + "website": "https://aws.amazon.com/s3/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://collectif-objets.beta.gouv.fr/", + "finalUrl": "https://collectif-objets.beta.gouv.fr/", + "fetchTime": "2024-12-01T14:05:19.319Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.71 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 3050, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3050, + "firstMeaningfulPaint": 3050, + "largestContentfulPaint": 4400, + "interactive": 3050, + "speedIndex": 3425, + "totalBlockingTime": 0, + "maxPotentialFID": 28, + "cumulativeLayoutShift": 0.22199376678466798, + "cumulativeLayoutShiftMainFrame": 0.22199376678466798, + "totalCumulativeLayoutShift": 0.22199376678466798, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 439816519, + "observedNavigationStart": 0, + "observedNavigationStartTs": 439816519, + "observedFirstPaint": 728, + "observedFirstPaintTs": 440544812, + "observedFirstContentfulPaint": 728, + "observedFirstContentfulPaintTs": 440544812, + "observedFirstContentfulPaintAllFrames": 728, + "observedFirstContentfulPaintAllFramesTs": 440544812, + "observedFirstMeaningfulPaint": 728, + "observedFirstMeaningfulPaintTs": 440544812, + "observedLargestContentfulPaint": 728, + "observedLargestContentfulPaintTs": 440544812, + "observedLargestContentfulPaintAllFrames": 728, + "observedLargestContentfulPaintAllFramesTs": 440544812, + "observedTraceEnd": 3778, + "observedTraceEndTs": 443594533, + "observedLoad": 1282, + "observedLoadTs": 441098128, + "observedDomContentLoaded": 758, + "observedDomContentLoadedTs": 440574050, + "observedCumulativeLayoutShift": 0.22199376678466798, + "observedCumulativeLayoutShiftMainFrame": 0.22199376678466798, + "observedTotalCumulativeLayoutShift": 0.22199376678466798, + "observedFirstVisualChange": 732, + "observedFirstVisualChangeTs": 440548519, + "observedLastVisualChange": 1349, + "observedLastVisualChangeTs": 441165519, + "observedSpeedIndex": 745, + "observedSpeedIndexTs": 440561544 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 87, + "numScripts": 17, + "numStylesheets": 8, + "numFonts": 5, + "numTasks": 1880, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 81.351, + "throughput": 17346120.949137915, + "maxRtt": 87.807, + "maxServerLatency": 49.94, + "totalByteWeight": 1872891, + "totalTaskTime": 265.83099999999564, + "mainDocumentTransferSize": 10108 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://collectif-objets.beta.gouv.fr/declaration_accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://collectif-objets.beta.gouv.fr/mentions_legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 3, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://collectif-objets.beta.gouv.fr/confidentialite" + } + ], + "betagouv": { + "id": "collectif_objets", + "type": "startup", + "attributes": { + "name": "Collectif Objets", + "pitch": "Recenser les objets monuments historiques pour mieux les protéger", + "stats_url": "https://collectif-objets.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#-Minist%C3%A8re-de-la-culture-atelier-num%C3%A9rique", + "link": "https://collectif-objets.beta.gouv.fr/", + "repository": "https://github.com/betagouv/collectif-objets", + "contact": "collectifobjets@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Recenser%20les%20objets%20qui%20font%20notre%20patrimoine%20pour%20le%20prot%C3%A9ger%0A%0ADes%20tapisseries%20de%20la%20cath%C3%A9drale%20de%20Langres%20aux%20statues%20de%20Vierge%20%C3%A0%20l%E2%80%99Enfant%20dans%20nos%20%C3%A9glises%20de%20campagne%2C%20plus%20de%C2%A0280%20000%20objets%20prot%C3%A9g%C3%A9s%20au%20titre%20des%20monuments%20historiques%20sont%20diss%C3%A9min%C3%A9s%20%C3%A0%20travers%20la%20France.%20Environ%20trois%20communes%20sur%20quatre%20abritent%20des%20objets%20prot%C3%A9g%C3%A9s%20au%20titre%20des%20monuments%20historiques%C2%A0%28inscrits%20ou%20class%C3%A9s%29.%0A%0AL%27%C3%89tat%20se%20doit%20de%20les%20r%C3%A9coler%20-%20c%27est-%C3%A0-dire%20en%20v%C3%A9rifier%20la%20pr%C3%A9sence%20et%20en%20contr%C3%B4ler%20l%27%C3%A9tat%20de%20conservation%20-%20tous%20les%205%20ans%C2%A0afin%20d%E2%80%99en%20assurer%20la%20p%C3%A9rennit%C3%A9%2C%20comme%20l%27indique%20le%20code%20du%20patrimoine.%0A%0AMalheureusement%2C%20par%20manque%20de%20temps%20et%20de%20moyens%2C%C2%A0moins%20de%205%25%20des%20objets%20%C3%A0%20r%C3%A9coler%20chaque%20ann%C3%A9e%20le%20sont%20effectivement.%20Cette%20absence%20de%20suivi%20g%C3%A9n%C3%A8re%20une%20lente%20d%C3%A9perdition%20de%20ce%20patrimoine%20%3A%20les%20objets%20sont%20menac%C3%A9s%20par%20l%E2%80%99oubli%2C%20d%C3%A9rob%C3%A9s%E2%80%A6%0A%0A%3E%20%E2%80%9C%2ALe%20r%C3%A9colement%2C%20c%E2%80%99est%20la%20base%20de%20notre%20travail%20en%20ce%20qui%20concerne%20les%20objets%20%5C%5B%E2%80%A6%5D.%20Ce%20n%E2%80%99est%20pas%20une%20fin%20en%20soi%2C%20mais%20c%E2%80%99est%20ce%20qui%20nous%20permet%20d%E2%80%99engager%20le%20dialogue%20avec%20un%20propri%C3%A9taire%2C%20d%E2%80%99identifier%20des%20objets%20%C3%A0%20prot%C3%A9ger%2C%20de%20proposer%20des%20projets%20de%20s%C3%A9curisation%2C%20d%E2%80%99entretien%2C%20de%20restauration%E2%80%A6%2A%E2%80%9D%20Romuald%20Goudeseune%2C%20Conservateur%20des%20monuments%20historiques%0A%0AUn%20rapport%20d%27information%20s%C3%A9natorial%20de%20juillet%202022%20%28n%C2%B0765%29%20pr%C3%A9conise%20justement%20la%20mise%20en%20place%20d%27actions%20pour%20mettre%20un%20terme%20%C3%A0%20la%20d%C3%A9gradation%20du%20patrimoine%20mobilier%20religieux%20fran%C3%A7ais%20-%20qui%20constitue%20la%20grande%20majorit%C3%A9%20du%20patrimoine%20mobilier%20prot%C3%A9g%C3%A9%20-%20notamment%20%3A%20%C2%AB%20Lancer%20une%20op%C3%A9ration%20nationale%20d%E2%80%99inventaire%20du%20patrimoine%20religieux%20permettant%20de%20disposer%20d%E2%80%99une%20cartographie%20pr%C3%A9cise%20de%20ce%20patrimoine%20sur%20l%E2%80%99ensemble%20du%20territoire%20%C3%A0%20l%E2%80%99horizon%202030%20%C2%BB%20ou%20encore%20%C2%AB%C2%A0Doter%20les%20conservateurs%20des%20antiquit%C3%A9s%20et%20objets%20d%E2%80%99art%20d%E2%80%99une%20base%20de%20donn%C3%A9es%20%28...%29%20permettant%20une%20documentation%2C%20y%20compris%20visuelle%2C%20de%20l%E2%80%99ensemble%20du%20patrimoine%20mobilier%20prot%C3%A9g%C3%A9%20%C2%BB.%20%0A%0A%23%23%20%2A%2AFaciliter%20le%20dialogue%20entre%20les%20communes%20propri%C3%A9taires%20et%20les%20conservateurs%2A%2A%0A%0ACollectif%20Objets%20r%C3%A9pond%20%C3%A0%20ce%20d%C3%A9fi%20en%20donnant%20aux%20communes%20les%20moyens%20de%20s%E2%80%99investir%20dans%20la%20protection%20de%20leur%20patrimoine%20en%20%3A%0A%0A%2A%20%2A%2ALeur%20permettant%20de%20%28re%29d%C3%A9couvrir%20leurs%20objets%20monuments%20historiques%2A%2A%C2%A0-%20bien%20souvent%2C%20les%20communes%20ne%20savent%20pas%20qu%E2%80%99elles%20abritent%20des%20objets%20prot%C3%A9g%C3%A9s%20et%20qu%27elles%20en%20sont%20responsables%20%21%0A%2A%20%2A%2ALes%20mettant%20en%20relation%20avec%20les%20conservatrices%20et%20conservateurs%2A%2A%C2%A0de%20leur%20d%C3%A9partement%20pour%20qu%E2%80%99elles%20identifient%20leur%20interlocuteur%20sur%20ces%20questions%20et%20soient%20accompagn%C3%A9es%20dans%20leurs%20d%C3%A9marches%20de%20pr%C3%A9servation%20et%20de%20valorisation%20du%20patrimoine.%0A%0AConcr%C3%A8tement%2C%20les%20communes%20sont%20invit%C3%A9es%20%C3%A0%20recenser%20leurs%20objets%20prot%C3%A9g%C3%A9s%20sur%20la%20plateforme%20num%C3%A9rique%20Collectif%20Objets.%20C%E2%80%99est-%C3%A0-dire%20v%C3%A9rifier%20leur%20pr%C3%A9sence%2C%20constater%20leur%20%C3%A9tat%20%28%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20questionnaire%29%20et%20les%20photographier.%0A%0APartant%20de%20ces%20informations%2C%20les%20conservateurs%20peuvent%20alors%20prendre%20contact%20avec%20les%20communes%20pour%20les%20guider%20dans%20la%20protection%20et%20la%20mise%20en%20valeur%20de%20leur%20patrimoine%20si%20n%C3%A9cessaire.%0A%0A%2A%2AEn%20assurant%20la%20collecte%20r%C3%A9guli%C3%A8re%20et%20centralis%C3%A9e%20des%20donn%C3%A9es%2C%20Collectif%20Objets%20permet%20aux%20conservateurs%20d%E2%80%99avoir%20une%20vision%20globale%20du%20parc%20mobilier%20et%20de%20prioriser%20leurs%20actions.%2A%2A%0A%0A%23%23%20%2A%2AD%C3%A9j%C3%A0%20plus%20de%2021%20000%20objets%20recens%C3%A9s%20dans%20plus%20de%202%20600%20communes%20%21%2A%2A%0A%0ADepuis%20le%20lancement%20de%20Collectif%20Objets%20fin%202021%2C%2028%20d%C3%A9partements%20ont%20d%C3%A9j%C3%A0%20particip%C3%A9%20%C3%A0%20nos%20campagnes%20de%20recensement%20-%20avec%20des%20taux%20de%20r%C3%A9ponses%20parfois%20sup%C3%A9rieurs%20%C3%A0%2050%25%20-%20d%C3%A9montrant%20un%20fort%20engouement%20des%20communes%20%21%0A%0AEn%202023%2C%20%2A%2ACollectif%20Objets%20entame%20son%20d%C3%A9ploiement%20national%2A%2A%C2%A0avec%20l%E2%80%99objectif%20de%20r%C3%A9coler%20les%20280%20000%20objets%20prot%C3%A9g%C3%A9s%20d%E2%80%99ici%20%C3%A0%202027%20%28%5Blien%20vers%20notre%20page%20statistiques%5D%28https%3A%2F%2Fcollectif-objets.beta.gouv.fr%2Fstats%29%29.%0A%0A%3E%20%E2%86%92%20Si%20vous%20%C3%AAtes%20%C3%AAtes%20int%C3%A9ress%C3%A9.e%20par%20notre%20d%C3%A9marche%20et%20souhaitez%20y%20prendre%20part%2C%20vous%20pouvez%20nous%20%C3%A9crire%20%C3%A0%20%3A%20%5Bcollectifobjets%40beta.gouv.fr%5D%28mailto%3Acollectifobjets%40beta.gouv.fr%29", + "events": [], + "phases": [ + { + "name": "construction", + "start": "2020-04-01", + "end": "2022-09-28" + }, + { + "name": "acceleration", + "start": "2022-09-28", + "end": "" + } + ], + "sponsors": [ + "mc" + ], + "thematiques": [ + "Patrimoine" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "culture" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://collectif-objets.beta.gouv.fr", + "size": 1106.419, + "nodes": 317, + "requests": 59, + "grade": "C", + "score": 68, + "ges": 1.64, + "water": 2.46, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 14:02:07.682141", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-03T14:09:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.71, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://rdv-insertion.fr", + "category": "startup", + "repositories": [ + "betagouv/rdv-insertion" + ], + "betaId": "data.insertion", + "http": { + "url": "https://rdv-insertion.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 10:19:00 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 10:18:59 GMT", + "Transfer-Encoding": "chunked", + "X-Request-ID": "60e0fb1d-06f1-4b52-8f79-98ff90a5b736, 60e0fb1d-06f1-4b52-8f79-98ff90a5b736", + "cache-control": "max-age=0, private, must-revalidate", + "content-security-policy": "default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data: rdv-insertion-medias-production.s3.fr-par.scw.cloud; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; frame-src 'self' flo.uri.sh *.maze.co; object-src 'none'; script-src 'self' https: 'unsafe-inline'; style-src 'self' https: 'unsafe-inline'; connect-src 'self' https://www.rdv-solidarites.fr sentry.incubateur.net matomo.inclusion.beta.gouv.fr https://connect.inclusion.beta.gouv.fr/auth *.maze.co; worker-src 'self' blob:", + "etag": "W/\"40191cae61d6b263f97e42c0fa60f5ac\"", + "link": "; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_rdv_insertion_session=alA3hu%2BgSO3QoYNGm4J%2FpB7WHf792My5cXDbROr9xw5qXvZgZVqn35PiavKUecb57XwN0CsJRhXWuQxZTbPH4QLKUcTMG3rhdzpW%2F2DEVOVOKaBb6RHB3ZJP6yapQwzuF1SXyQR1ZWkWpM2XiQcKVDwIlwedHANNT2AfYzoImfZG3fxK8t0FxPtKe7p6mVmjkTyIGuiCOv9YLqw%2F6MPKcUpoNoNPw6tK%2BR4y7XuOp9HRdDTdQ9auxeRIQQbaIfY2NHnSELJbKSRzGCCPDrePHdH1ENpjPEt0lKNPtUH%2B--vHjIg9CmM8Wu04H1--%2FgTbWjH2ZLuoM54P3r6LyQ%3D%3D; path=/; secure; httponly; SameSite=Lax", + "strict-transport-security": "max-age=63072000; includeSubDomains", + "vary": "Accept, Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-runtime": "0.012217", + "x-xss-protection": "0" + }, + "scan_id": 57058829, + "score": 75, + "start_time": "Sun, 20 Oct 2024 10:18:57 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "sentry.incubateur.net", + "*.maze.co", + "https://connect.inclusion.beta.gouv.fr/auth", + "'self'", + "matomo.inclusion.beta.gouv.fr", + "https://www.rdv-solidarites.fr" + ], + "default-src": [ + "https:", + "'self'" + ], + "font-src": [ + "data:", + "https:", + "'self'" + ], + "frame-src": [ + "flo.uri.sh", + "*.maze.co", + "'self'" + ], + "img-src": [ + "rdv-insertion-medias-production.s3.fr-par.scw.cloud", + "data:", + "https:", + "'self'" + ], + "media-src": [ + "rdv-insertion-medias-production.s3.fr-par.scw.cloud", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'unsafe-inline'", + "https:", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "https:", + "'self'" + ], + "worker-src": [ + "blob:", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_rdv_insertion_session": { + "domain": "www.rdv-insertion.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.rdv-insertion.fr/", + "redirects": true, + "route": [ + "http://rdv-insertion.fr/", + "https://www.rdv-insertion.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains", + "includeSubDomains": true, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "hhsn", + "url": "https://rdv-insertion.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T11:16:30Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T14:22:53Z", + "next_check_at": "2024-12-01T14:23:53Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://www.rdv-insertion.fr/assets/logos/rdvi-favicon-e4521365c8c188ca2cd15975b947e4bcffca5a97616e83dc06bbea224a0d54a1.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T14:14:00Z", + "expires_at": "2025-02-11T10:29:38Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 514, + "namelookup": 12, + "connection": 123, + "handshake": 128, + "response": 143, + "total": 920 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "rdv-insertion.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -327595,7 +323022,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -327603,7 +323030,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -327611,7 +323038,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -327619,7 +323046,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -327627,7 +323054,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -327635,504 +323062,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-05 14:09" + "finding": "2024-11-13 10:29" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-03 14:09" + "finding": "2025-02-11 10:29" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732457021" + "finding": "1733062764" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-drxul1ZKkDYFWhmJqtnjIw=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/" - }, - { - "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "id": "security_headers", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -328140,7 +323518,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -328149,7 +323527,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -328158,7 +323536,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -328167,7 +323545,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -328176,7 +323554,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -328184,7 +323562,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -328193,7 +323571,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -328202,16 +323580,16 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -328220,14 +323598,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -328236,7 +323614,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -328245,7 +323623,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -328254,16 +323632,16 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=FE2DBB7DE036E95F12945F717680E66822C93BA2B7FCF971DD2F77A40EC85161" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=64DE6A2E78DE0FDE1A90F042FAEB9C765DD22F155316DA8514501C9BDA0090F8" }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -328272,7 +323650,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -328281,7 +323659,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -328290,7 +323668,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -328299,7 +323677,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -328308,7 +323686,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -328317,1262 +323695,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "rdv-insertion.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "243" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_collectif_objets_session", - "value": "qqWzaAh8t5jFnEQayCuOPAMsZ5w0PQOozI0v5blSxux4to3%2Fv%2BVLen0t3Mv%2BJF6gCQFFAE00Tayr%2F7rxenvCmwuyav5CBtolQxE8u1bLBv2sctu%2B0lgOOqjBjDHUs%2F%2BdrH3YFfoSXInZmy8e0LX1lNZNmOFUSP3o5WJHJwkTJfts55M2mga1uNqUXSM1PAlUEch%2BQxiiPZjCCd8ML7DbsOaTt5JrMwL4YPngXuLSC58WJW0cEnlNywZzzbfhyXCj6%2FKepljGknFf6Ow2tKx2cMaQMPr6Xc%2BuuOHcgT7TCZmU--S5cylY2wY29qW9Ew--SpMmVQHLeL1Z5SWEEfsa4g%3D%3D", - "domain": "collectif-objets.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 393, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-security-policy": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-jqCc/OtkC+ZH8NL2/OyqBw=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://pop-perf-assets.s3.gra.io.cloud.ovh.net/ https://collectif-objets.beta.gouv.fr/ https://stats.beta.gouv.fr; connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'self'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https:; frame-src 'self' https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/ https://tube.numerique.gouv.fr/", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 13:59:20 GMT", - "etag": "W/\"91f29b8f7360ae8b53f74b121b9980bc\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_collectif_objets_session=qqWzaAh8t5jFnEQayCuOPAMsZ5w0PQOozI0v5blSxux4to3%2Fv%2BVLen0t3Mv%2BJF6gCQFFAE00Tayr%2F7rxenvCmwuyav5CBtolQxE8u1bLBv2sctu%2B0lgOOqjBjDHUs%2F%2BdrH3YFfoSXInZmy8e0LX1lNZNmOFUSP3o5WJHJwkTJfts55M2mga1uNqUXSM1PAlUEch%2BQxiiPZjCCd8ML7DbsOaTt5JrMwL4YPngXuLSC58WJW0cEnlNywZzzbfhyXCj6%2FKepljGknFf6Ow2tKx2cMaQMPr6Xc%2BuuOHcgT7TCZmU--S5cylY2wY29qW9Ew--SpMmVQHLeL1Z5SWEEfsa4g%3D%3D; path=/; secure; httponly; samesite=lax", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "f9b7c2e1-8c12-4961-8e47-6b77fff864a3\nf9b7c2e1-8c12-4961-8e47-6b77fff864a3", - "x-runtime": "0.008873", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://collectif-objets.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", - "confidence": 50, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", - "confidence": 50, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "amazon-web-services", - "name": "Amazon Web Services", - "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", - "confidence": 100, - "version": null, - "icon": "Amazon Web Services.svg", - "website": "https://aws.amazon.com/", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - } - ] - }, - { - "slug": "turbo", - "name": "Turbo", - "description": "Turbo is a JavaScript framework for building fast web applications.", - "confidence": 100, - "version": null, - "icon": "Turbo.svg", - "website": "https://turbo.hotwired.dev/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "amazon-s3", - "name": "Amazon S3", - "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", - "confidence": 100, - "version": null, - "icon": "Amazon S3.svg", - "website": "https://aws.amazon.com/s3/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://collectif-objets.beta.gouv.fr/", - "finalUrl": "https://collectif-objets.beta.gouv.fr/", - "fetchTime": "2024-11-24T13:58:54.255Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.77 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4689, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3157, - "firstMeaningfulPaint": 3157, - "largestContentfulPaint": 3312, - "interactive": 4689, - "speedIndex": 3349, - "totalBlockingTime": 8, - "maxPotentialFID": 66, - "cumulativeLayoutShift": 0.22199376678466798, - "cumulativeLayoutShiftMainFrame": 0.22199376678466798, - "totalCumulativeLayoutShift": 0.22199376678466798, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 424082473, - "observedNavigationStart": 0, - "observedNavigationStartTs": 424082473, - "observedFirstPaint": 817, - "observedFirstPaintTs": 424899356, - "observedFirstContentfulPaint": 817, - "observedFirstContentfulPaintTs": 424899356, - "observedFirstContentfulPaintAllFrames": 817, - "observedFirstContentfulPaintAllFramesTs": 424899356, - "observedFirstMeaningfulPaint": 817, - "observedFirstMeaningfulPaintTs": 424899356, - "observedLargestContentfulPaint": 817, - "observedLargestContentfulPaintTs": 424899356, - "observedLargestContentfulPaintAllFrames": 817, - "observedLargestContentfulPaintAllFramesTs": 424899356, - "observedTraceEnd": 4119, - "observedTraceEndTs": 428201052, - "observedLoad": 1398, - "observedLoadTs": 425480602, - "observedDomContentLoaded": 824, - "observedDomContentLoadedTs": 424906076, - "observedCumulativeLayoutShift": 0.22199376678466798, - "observedCumulativeLayoutShiftMainFrame": 0.22199376678466798, - "observedTotalCumulativeLayoutShift": 0.22199376678466798, - "observedFirstVisualChange": 817, - "observedFirstVisualChangeTs": 424899473, - "observedLastVisualChange": 1633, - "observedLastVisualChangeTs": 425715473, - "observedSpeedIndex": 839, - "observedSpeedIndexTs": 424921336 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 87, - "numScripts": 17, - "numStylesheets": 8, - "numFonts": 5, - "numTasks": 1925, - "numTasksOver10ms": 5, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 99.01, - "throughput": 14882514.255016387, - "maxRtt": 108.229, - "maxServerLatency": 80.08, - "totalByteWeight": 1692446, - "totalTaskTime": 257.1369999999957, - "mainDocumentTransferSize": 10062 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://collectif-objets.beta.gouv.fr/declaration_accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://collectif-objets.beta.gouv.fr/mentions_legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 3, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://collectif-objets.beta.gouv.fr/confidentialite" - } - ], - "betagouv": { - "id": "collectif_objets", - "type": "startup", - "attributes": { - "name": "Collectif Objets", - "pitch": "Recenser les objets monuments historiques pour mieux les protéger", - "stats_url": "https://collectif-objets.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow#-Minist%C3%A8re-de-la-culture-atelier-num%C3%A9rique", - "link": "https://collectif-objets.beta.gouv.fr/", - "repository": "https://github.com/betagouv/collectif-objets", - "contact": "collectifobjets@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Recenser%20les%20objets%20qui%20font%20notre%20patrimoine%20pour%20le%20prot%C3%A9ger%0A%0ADes%20tapisseries%20de%20la%20cath%C3%A9drale%20de%20Langres%20aux%20statues%20de%20Vierge%20%C3%A0%20l%E2%80%99Enfant%20dans%20nos%20%C3%A9glises%20de%20campagne%2C%20plus%20de%C2%A0280%20000%20objets%20prot%C3%A9g%C3%A9s%20au%20titre%20des%20monuments%20historiques%20sont%20diss%C3%A9min%C3%A9s%20%C3%A0%20travers%20la%20France.%20Environ%20trois%20communes%20sur%20quatre%20abritent%20des%20objets%20prot%C3%A9g%C3%A9s%20au%20titre%20des%20monuments%20historiques%C2%A0%28inscrits%20ou%20class%C3%A9s%29.%0A%0AL%27%C3%89tat%20se%20doit%20de%20les%20r%C3%A9coler%20-%20c%27est-%C3%A0-dire%20en%20v%C3%A9rifier%20la%20pr%C3%A9sence%20et%20en%20contr%C3%B4ler%20l%27%C3%A9tat%20de%20conservation%20-%20tous%20les%205%20ans%C2%A0afin%20d%E2%80%99en%20assurer%20la%20p%C3%A9rennit%C3%A9%2C%20comme%20l%27indique%20le%20code%20du%20patrimoine.%0A%0AMalheureusement%2C%20par%20manque%20de%20temps%20et%20de%20moyens%2C%C2%A0moins%20de%205%25%20des%20objets%20%C3%A0%20r%C3%A9coler%20chaque%20ann%C3%A9e%20le%20sont%20effectivement.%20Cette%20absence%20de%20suivi%20g%C3%A9n%C3%A8re%20une%20lente%20d%C3%A9perdition%20de%20ce%20patrimoine%20%3A%20les%20objets%20sont%20menac%C3%A9s%20par%20l%E2%80%99oubli%2C%20d%C3%A9rob%C3%A9s%E2%80%A6%0A%0A%3E%20%E2%80%9C%2ALe%20r%C3%A9colement%2C%20c%E2%80%99est%20la%20base%20de%20notre%20travail%20en%20ce%20qui%20concerne%20les%20objets%20%5C%5B%E2%80%A6%5D.%20Ce%20n%E2%80%99est%20pas%20une%20fin%20en%20soi%2C%20mais%20c%E2%80%99est%20ce%20qui%20nous%20permet%20d%E2%80%99engager%20le%20dialogue%20avec%20un%20propri%C3%A9taire%2C%20d%E2%80%99identifier%20des%20objets%20%C3%A0%20prot%C3%A9ger%2C%20de%20proposer%20des%20projets%20de%20s%C3%A9curisation%2C%20d%E2%80%99entretien%2C%20de%20restauration%E2%80%A6%2A%E2%80%9D%20Romuald%20Goudeseune%2C%20Conservateur%20des%20monuments%20historiques%0A%0AUn%20rapport%20d%27information%20s%C3%A9natorial%20de%20juillet%202022%20%28n%C2%B0765%29%20pr%C3%A9conise%20justement%20la%20mise%20en%20place%20d%27actions%20pour%20mettre%20un%20terme%20%C3%A0%20la%20d%C3%A9gradation%20du%20patrimoine%20mobilier%20religieux%20fran%C3%A7ais%20-%20qui%20constitue%20la%20grande%20majorit%C3%A9%20du%20patrimoine%20mobilier%20prot%C3%A9g%C3%A9%20-%20notamment%20%3A%20%C2%AB%20Lancer%20une%20op%C3%A9ration%20nationale%20d%E2%80%99inventaire%20du%20patrimoine%20religieux%20permettant%20de%20disposer%20d%E2%80%99une%20cartographie%20pr%C3%A9cise%20de%20ce%20patrimoine%20sur%20l%E2%80%99ensemble%20du%20territoire%20%C3%A0%20l%E2%80%99horizon%202030%20%C2%BB%20ou%20encore%20%C2%AB%C2%A0Doter%20les%20conservateurs%20des%20antiquit%C3%A9s%20et%20objets%20d%E2%80%99art%20d%E2%80%99une%20base%20de%20donn%C3%A9es%20%28...%29%20permettant%20une%20documentation%2C%20y%20compris%20visuelle%2C%20de%20l%E2%80%99ensemble%20du%20patrimoine%20mobilier%20prot%C3%A9g%C3%A9%20%C2%BB.%20%0A%0A%23%23%20%2A%2AFaciliter%20le%20dialogue%20entre%20les%20communes%20propri%C3%A9taires%20et%20les%20conservateurs%2A%2A%0A%0ACollectif%20Objets%20r%C3%A9pond%20%C3%A0%20ce%20d%C3%A9fi%20en%20donnant%20aux%20communes%20les%20moyens%20de%20s%E2%80%99investir%20dans%20la%20protection%20de%20leur%20patrimoine%20en%20%3A%0A%0A%2A%20%2A%2ALeur%20permettant%20de%20%28re%29d%C3%A9couvrir%20leurs%20objets%20monuments%20historiques%2A%2A%C2%A0-%20bien%20souvent%2C%20les%20communes%20ne%20savent%20pas%20qu%E2%80%99elles%20abritent%20des%20objets%20prot%C3%A9g%C3%A9s%20et%20qu%27elles%20en%20sont%20responsables%20%21%0A%2A%20%2A%2ALes%20mettant%20en%20relation%20avec%20les%20conservatrices%20et%20conservateurs%2A%2A%C2%A0de%20leur%20d%C3%A9partement%20pour%20qu%E2%80%99elles%20identifient%20leur%20interlocuteur%20sur%20ces%20questions%20et%20soient%20accompagn%C3%A9es%20dans%20leurs%20d%C3%A9marches%20de%20pr%C3%A9servation%20et%20de%20valorisation%20du%20patrimoine.%0A%0AConcr%C3%A8tement%2C%20les%20communes%20sont%20invit%C3%A9es%20%C3%A0%20recenser%20leurs%20objets%20prot%C3%A9g%C3%A9s%20sur%20la%20plateforme%20num%C3%A9rique%20Collectif%20Objets.%20C%E2%80%99est-%C3%A0-dire%20v%C3%A9rifier%20leur%20pr%C3%A9sence%2C%20constater%20leur%20%C3%A9tat%20%28%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20questionnaire%29%20et%20les%20photographier.%0A%0APartant%20de%20ces%20informations%2C%20les%20conservateurs%20peuvent%20alors%20prendre%20contact%20avec%20les%20communes%20pour%20les%20guider%20dans%20la%20protection%20et%20la%20mise%20en%20valeur%20de%20leur%20patrimoine%20si%20n%C3%A9cessaire.%0A%0A%2A%2AEn%20assurant%20la%20collecte%20r%C3%A9guli%C3%A8re%20et%20centralis%C3%A9e%20des%20donn%C3%A9es%2C%20Collectif%20Objets%20permet%20aux%20conservateurs%20d%E2%80%99avoir%20une%20vision%20globale%20du%20parc%20mobilier%20et%20de%20prioriser%20leurs%20actions.%2A%2A%0A%0A%23%23%20%2A%2AD%C3%A9j%C3%A0%20plus%20de%2021%20000%20objets%20recens%C3%A9s%20dans%20plus%20de%202%20600%20communes%20%21%2A%2A%0A%0ADepuis%20le%20lancement%20de%20Collectif%20Objets%20fin%202021%2C%2028%20d%C3%A9partements%20ont%20d%C3%A9j%C3%A0%20particip%C3%A9%20%C3%A0%20nos%20campagnes%20de%20recensement%20-%20avec%20des%20taux%20de%20r%C3%A9ponses%20parfois%20sup%C3%A9rieurs%20%C3%A0%2050%25%20-%20d%C3%A9montrant%20un%20fort%20engouement%20des%20communes%20%21%0A%0AEn%202023%2C%20%2A%2ACollectif%20Objets%20entame%20son%20d%C3%A9ploiement%20national%2A%2A%C2%A0avec%20l%E2%80%99objectif%20de%20r%C3%A9coler%20les%20280%20000%20objets%20prot%C3%A9g%C3%A9s%20d%E2%80%99ici%20%C3%A0%202027%20%28%5Blien%20vers%20notre%20page%20statistiques%5D%28https%3A%2F%2Fcollectif-objets.beta.gouv.fr%2Fstats%29%29.%0A%0A%3E%20%E2%86%92%20Si%20vous%20%C3%AAtes%20%C3%AAtes%20int%C3%A9ress%C3%A9.e%20par%20notre%20d%C3%A9marche%20et%20souhaitez%20y%20prendre%20part%2C%20vous%20pouvez%20nous%20%C3%A9crire%20%C3%A0%20%3A%20%5Bcollectifobjets%40beta.gouv.fr%5D%28mailto%3Acollectifobjets%40beta.gouv.fr%29", - "events": [], - "phases": [ - { - "name": "construction", - "start": "2020-04-01", - "end": "2022-09-28" - }, - { - "name": "acceleration", - "start": "2022-09-28", - "end": "" - } - ], - "sponsors": [ - "mc" - ], - "thematiques": [ - "Patrimoine" - ], - "accessibility_status": "non conforme" + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "culture" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://collectif-objets.beta.gouv.fr", - "size": 1106.592, - "nodes": 317, - "requests": 59, - "grade": "C", - "score": 68, - "ges": 1.64, - "water": 2.46, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 13:55:46.689032", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-03T14:09:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.77, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://rdv-insertion.fr", - "category": "startup", - "repositories": [ - "betagouv/rdv-insertion" - ], - "betaId": "data.insertion", - "http": { - "url": "https://rdv-insertion.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 10:19:00 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 10:18:59 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "60e0fb1d-06f1-4b52-8f79-98ff90a5b736, 60e0fb1d-06f1-4b52-8f79-98ff90a5b736", - "cache-control": "max-age=0, private, must-revalidate", - "content-security-policy": "default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data: rdv-insertion-medias-production.s3.fr-par.scw.cloud; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; frame-src 'self' flo.uri.sh *.maze.co; object-src 'none'; script-src 'self' https: 'unsafe-inline'; style-src 'self' https: 'unsafe-inline'; connect-src 'self' https://www.rdv-solidarites.fr sentry.incubateur.net matomo.inclusion.beta.gouv.fr https://connect.inclusion.beta.gouv.fr/auth *.maze.co; worker-src 'self' blob:", - "etag": "W/\"40191cae61d6b263f97e42c0fa60f5ac\"", - "link": "; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_rdv_insertion_session=alA3hu%2BgSO3QoYNGm4J%2FpB7WHf792My5cXDbROr9xw5qXvZgZVqn35PiavKUecb57XwN0CsJRhXWuQxZTbPH4QLKUcTMG3rhdzpW%2F2DEVOVOKaBb6RHB3ZJP6yapQwzuF1SXyQR1ZWkWpM2XiQcKVDwIlwedHANNT2AfYzoImfZG3fxK8t0FxPtKe7p6mVmjkTyIGuiCOv9YLqw%2F6MPKcUpoNoNPw6tK%2BR4y7XuOp9HRdDTdQ9auxeRIQQbaIfY2NHnSELJbKSRzGCCPDrePHdH1ENpjPEt0lKNPtUH%2B--vHjIg9CmM8Wu04H1--%2FgTbWjH2ZLuoM54P3r6LyQ%3D%3D; path=/; secure; httponly; SameSite=Lax", - "strict-transport-security": "max-age=63072000; includeSubDomains", - "vary": "Accept, Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-runtime": "0.012217", - "x-xss-protection": "0" + "id": "protocol_support_score", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "scan_id": 57058829, - "score": 75, - "start_time": "Sun, 20 Oct 2024 10:18:57 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "sentry.incubateur.net", - "*.maze.co", - "https://connect.inclusion.beta.gouv.fr/auth", - "'self'", - "matomo.inclusion.beta.gouv.fr", - "https://www.rdv-solidarites.fr" - ], - "default-src": [ - "https:", - "'self'" - ], - "font-src": [ - "data:", - "https:", - "'self'" - ], - "frame-src": [ - "flo.uri.sh", - "*.maze.co", - "'self'" - ], - "img-src": [ - "rdv-insertion-medias-production.s3.fr-par.scw.cloud", - "data:", - "https:", - "'self'" - ], - "media-src": [ - "rdv-insertion-medias-production.s3.fr-par.scw.cloud", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "https:", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "https:", - "'self'" - ], - "worker-src": [ - "blob:", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_rdv_insertion_session": { - "domain": "www.rdv-insertion.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.rdv-insertion.fr/", - "redirects": true, - "route": [ - "http://rdv-insertion.fr/", - "https://www.rdv-insertion.fr/" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains", - "includeSubDomains": true, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "hhsn", - "url": "https://rdv-insertion.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T05:29:23Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T14:11:33Z", - "next_check_at": "2024-11-24T14:12:33Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://www.rdv-insertion.fr/assets/logos/rdvi-favicon-e4521365c8c188ca2cd15975b947e4bcffca5a97616e83dc06bbea224a0d54a1.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:09:34Z", - "expires_at": "2025-02-11T10:29:38Z", - "valid": true, - "error": null + { + "id": "protocol_support_score_weighted", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 547, - "namelookup": 10, - "connection": 133, - "handshake": 138, - "response": 152, - "total": 979 - } + { + "id": "key_exchange_score", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "rdv-insertion.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "rdv-insertion.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329580,7 +324088,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329588,7 +324096,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329596,7 +324104,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329604,7 +324112,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -329612,7 +324120,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -329620,455 +324128,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-11-13 10:29" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-02-11 10:29" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732457315" + "finding": "1733062815" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -330076,7 +324584,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -330085,7 +324593,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -330094,7 +324602,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -330103,7 +324611,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -330112,7 +324620,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -330120,7 +324628,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -330129,7 +324637,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -330138,7 +324646,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -330147,7 +324655,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -330156,14 +324664,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -330172,7 +324680,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -330181,7 +324689,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -330190,7 +324698,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -330199,7 +324707,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -330208,7 +324716,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -330217,7 +324725,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -330226,7 +324734,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -330235,7 +324743,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -330244,7 +324752,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -330253,392 +324761,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330646,7 +325154,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330654,7 +325162,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330662,7 +325170,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330670,7 +325178,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -330678,7 +325186,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -330686,455 +325194,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-11-13 10:29" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-02-11 10:29" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732457364" + "finding": "1733062865" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -331142,7 +325650,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -331151,7 +325659,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -331160,7 +325668,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -331169,7 +325677,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -331178,7 +325686,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -331186,7 +325694,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -331195,7 +325703,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -331204,7 +325712,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -331213,7 +325721,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -331222,14 +325730,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -331238,7 +325746,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -331247,7 +325755,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -331256,7 +325764,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -331265,7 +325773,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -331274,7 +325782,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -331283,7 +325791,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -331292,7 +325800,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -331301,7 +325809,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -331310,7 +325818,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -331319,315 +325827,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/80.247.13.145", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -331839,7 +326347,7 @@ "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -331979,7 +326487,7 @@ "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "78 >= 30 days" + "finding": "71 >= 30 days" }, { "id": "cert_notBefore", @@ -332140,7 +326648,7 @@ "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732457418" + "finding": "1733062915" }, { "id": "HSTS_time", @@ -332657,120 +327165,1283 @@ "finding": "30" }, { - "id": "key_exchange_score", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "rdv-insertion.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "205" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/application-3f69f3a370db2b50f01fa9e63225029dace33a370dd8d18e624acfe689a5bded.css" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/application-816f2fc17ffcaeb3b025596e6929e48edf452b840f399610b168055a4dfe160f.js" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/logos/republique-francaise-logo-2179bc78c3289e4912428d4f57c6cd5796c106f9f970d1963f7bf11c40cd8365.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/logos/rdv-insertion-b0de78984979817ca3b2bc6eb31a28f4e8b3359c832699ebd2a71f6ce5bebd04.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/illustrations/welcome-illustration-baf38ec09a3a5677d223209a87e6a00cdb19836df6478111a89012bf64d97255.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/illustrations/computer-f81b1e7aef5d739744ccaa53ff2eebf113bed68d21d69fa26a84920f49424a41.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/illustrations/letter-7d8ec0af261ed1a61b540d8c46b0a5658aac48b16a409deec73c36d43d99d151.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/illustrations/calendar-9bd1772fd25dcc445f2aeb0ef5edb91b51717b77c1559e47862e5fac0ad30fa9.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/illustrations/choice-93d0c221bdd2d23f5ecb2db5f72f0f26a0d4798eb46703de5f55a6e223f37597.svg" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/logos/plateforme-inclusion-96507139fe1c78cb2a802f67a0d8c94c40d9e7f40045af9f8ff0ba11af3b7e94.svg" + }, + { + "type": "unknown", + "url": "https://rdv-insertion-medias-production.s3.fr-par.scw.cloud/assets/rdv_insertion_landing.mp4" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/39773b4116df4d369604a4cda39e187c9f243567eeef435d023e3f951746615a-b8ed83e61389045e5dbf05657d999ae0e181403dc48d2c4d3c85411bdc731eff.woff" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/cc630e22a9f1cfeebbac88cd9a26c2d7f927c8a3362c040d9d2a1175aad5cdfb-83a474984c057714a14b63d492f71cff9af7577c05bd8a3373aa71ebcaaed32d.woff" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/39773b4116df4d369604a4cda39e187c9f243567eeef435d023e3f951746615a-b8ed83e61389045e5dbf05657d999ae0e181403dc48d2c4d3c85411bdc731eff.woff" + }, + { + "type": "unknown", + "url": "https://www.rdv-insertion.fr/assets/cc630e22a9f1cfeebbac88cd9a26c2d7f927c8a3362c040d9d2a1175aad5cdfb-83a474984c057714a14b63d492f71cff9af7577c05bd8a3373aa71ebcaaed32d.woff" + } + ], + "cookies": [ + { + "name": "_rdv_insertion_session", + "value": "taERvmy0wUDxfrRG1XF8w8ZeZw3soQBm4XI0tWtZKGo4EjHLI1ln1lVpgCvvaz2vozpCWmpP%2FIiVerLT7gBO9tHRJ1xm0O4eu2GwlPdZybItdvHHttgPxdE1XzkukYv5nyju0a3MZl%2FVnmNLZ3uEl5EI3KqNAk1qB0s3ISZSdYs6VFMb%2FnRlbRy5erdbiuynpWLCTPWuvQAhnKMaYzDXog9VRpACMunYb%2FVKH7%2Fjz1TOWNUM4LVSeGubuU66ySRB2icnBKVdrED%2BX12LszGEGdezhBhJi6OHIe50S9%2FA--4QkHBZaKnfTprFZe--z13YhdD3Xtnp6ocwxptPIg%3D%3D", + "domain": "www.rdv-insertion.fr", + "path": "/", + "expires": -1, + "size": 380, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data: rdv-insertion-medias-production.s3.fr-par.scw.cloud; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; frame-src 'self' flo.uri.sh *.maze.co; object-src 'none'; script-src 'self' https: 'unsafe-inline'; style-src 'self' https: 'unsafe-inline'; connect-src 'self' https://www.rdv-solidarites.fr sentry.incubateur.net matomo.inclusion.beta.gouv.fr https://connect.inclusion.beta.gouv.fr/auth *.maze.co; worker-src 'self' blob:", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 14:18:09 GMT", + "etag": "W/\"aa0c1d3ad8ef619fbaa0164826be5490\"", + "link": "; rel=preload; as=style; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_rdv_insertion_session=taERvmy0wUDxfrRG1XF8w8ZeZw3soQBm4XI0tWtZKGo4EjHLI1ln1lVpgCvvaz2vozpCWmpP%2FIiVerLT7gBO9tHRJ1xm0O4eu2GwlPdZybItdvHHttgPxdE1XzkukYv5nyju0a3MZl%2FVnmNLZ3uEl5EI3KqNAk1qB0s3ISZSdYs6VFMb%2FnRlbRy5erdbiuynpWLCTPWuvQAhnKMaYzDXog9VRpACMunYb%2FVKH7%2Fjz1TOWNUM4LVSeGubuU66ySRB2icnBKVdrED%2BX12LszGEGdezhBhJi6OHIe50S9%2FA--4QkHBZaKnfTprFZe--z13YhdD3Xtnp6ocwxptPIg%3D%3D; path=/; secure; httponly; SameSite=Lax", + "strict-transport-security": "max-age=63072000; includeSubDomains", + "vary": "Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "8c46b414-53ae-462c-9bd3-176eb91a837a\n8c46b414-53ae-462c-9bd3-176eb91a837a", + "x-runtime": "0.012944", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "rdv-insertion.fr", + "ip": "148.253.96.193", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "www.rdv-insertion.fr", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "rdv-insertion-medias-production.s3.fr-par.scw.cloud", + "ip": "51.159.62.18", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://rdv-insertion.fr/": { + "status": 301 + }, + "https://www.rdv-insertion.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 100, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 100, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", + "confidence": 100, + "version": null, + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "confidence": 100, + "version": null, + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, + "categories": [ + { + "id": 73, + "slug": "surveys", + "name": "Surveys" + } + ], + "rootPath": true + }, + { + "slug": "calendly", + "name": "Calendly", + "description": "Calendly is an app for scheduling appointments, meetings, and events.", + "confidence": 100, + "version": null, + "icon": "Calendly.svg", + "website": "https://calendly.com/", + "cpe": null, + "categories": [ + { + "id": 72, + "slug": "appointment-scheduling", + "name": "Appointment scheduling" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://rdv-insertion.fr/", + "finalUrl": "https://www.rdv-insertion.fr/", + "fetchTime": "2024-12-01T14:17:43.786Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://rdv-insertion.fr/) was redirected to https://www.rdv-insertion.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.7 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.89 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 6474, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2145, + "firstMeaningfulPaint": 2595, + "largestContentfulPaint": 5483, + "interactive": 6474, + "speedIndex": 2375, + "totalBlockingTime": 223, + "maxPotentialFID": 187, + "cumulativeLayoutShift": 0.035808581034342445, + "cumulativeLayoutShiftMainFrame": 0.035808581034342445, + "totalCumulativeLayoutShift": 0.035808581034342445, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 335884231, + "observedNavigationStart": 0, + "observedNavigationStartTs": 335884231, + "observedFirstPaint": 764, + "observedFirstPaintTs": 336648034, + "observedFirstContentfulPaint": 764, + "observedFirstContentfulPaintTs": 336648034, + "observedFirstContentfulPaintAllFrames": 764, + "observedFirstContentfulPaintAllFramesTs": 336648034, + "observedFirstMeaningfulPaint": 995, + "observedFirstMeaningfulPaintTs": 336879713, + "observedLargestContentfulPaint": 995, + "observedLargestContentfulPaintTs": 336879713, + "observedLargestContentfulPaintAllFrames": 995, + "observedLargestContentfulPaintAllFramesTs": 336879713, + "observedTraceEnd": 3581, + "observedTraceEndTs": 339465352, + "observedLoad": 1181, + "observedLoadTs": 337065626, + "observedDomContentLoaded": 1035, + "observedDomContentLoadedTs": 336919132, + "observedCumulativeLayoutShift": 0.035808581034342445, + "observedCumulativeLayoutShiftMainFrame": 0.035808581034342445, + "observedTotalCumulativeLayoutShift": 0.035808581034342445, + "observedFirstVisualChange": 768, + "observedFirstVisualChangeTs": 336652231, + "observedLastVisualChange": 1002, + "observedLastVisualChangeTs": 336886231, + "observedSpeedIndex": 879, + "observedSpeedIndexTs": 336763196 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 25, + "numScripts": 3, + "numStylesheets": 1, + "numFonts": 2, + "numTasks": 806, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 81.61000000000001, + "throughput": 14856740.90782484, + "maxRtt": 85.708, + "maxServerLatency": 164.26, + "totalByteWeight": 943505, + "totalTaskTime": 260.488999999999, + "mainDocumentTransferSize": 4969 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://rdv-insertion.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://rdv-insertion.fr/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" - }, + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://rdv-insertion.fr/politique-de-confidentialite" + } + ], + "betagouv": null, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://rdv-insertion.fr", + "size": 862.963, + "nodes": 124, + "requests": 18, + "grade": "A", + "score": 84, + "ges": 1.32, + "water": 1.98, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 14:14:38.672090", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-11T10:29:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "F", + "trackersCount": 16, + "lighthouse_performance": 0.7, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.89, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://territoiresentransitions.fr", + "category": "ademe", + "betaId": "territoires-en-transitions", + "tags": [ + "homepage", + "production", + "ADEME" + ], + "repositories": [ + "betagouv/territoires-en-transitions" + ], + "http": { + "url": "https://territoiresentransitions.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 10:33:00 GMT", + "grade": "A", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "CF-RAY": "8d5858cb1849c51d-SEA", + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 10:32:57 GMT", + "Server": "cloudflare", + "Transfer-Encoding": "chunked", + "alt-svc": "h3=\":443\"; ma=86400", + "cf-cache-status": "DYNAMIC", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-YTRlMDcwZmEtNGMxZS00YTZiLTg5ODAtOWUwZDFiYmE1YzVj' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-envoy-upstream-service-time": "290", + "x-koyeb-backend": "par", + "x-koyeb-glb": "sfo", + "x-powered-by": "Next.js" }, - { - "id": "final_score", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57059196, + "score": 95, + "start_time": "Sun, 20 Oct 2024 10:32:55 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "block-all-mixed-content": [ + "'none'" + ], + "connect-src": [ + "https://rlarzronkgoyvtdkltqy.supabase.co", + "client.crisp.chat", + "https://phenomenal-trust-ee3da2c906.strapiapp.com", + "wss://stream.relay.crisp.chat", + "*.axept.io", + "ws://0.0.0.0:3000", + "wss://client.relay.crisp.chat", + "'self'", + "*.posthog.com", + "https://px.ads.linkedin.com" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "client.crisp.chat", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'none'" + ], + "frame-src": [ + "www.dailymotion.com", + "dailymotion.com", + "youtube.com", + "www.youtube.com", + "*.adform.net" + ], + "img-src": [ + "ytimg.com", + "https://image.crisp.chat", + "blob:", + "https://axeptio.imgix.net", + "'self'", + "https://favicons.axept.io", + "server.adform.net", + "https://px4.ads.linkedin.com", + "px.ads.linkedin.com", + "data:", + "https://phenomenal-trust-ee3da2c906.media.strapiapp.com", + "https://client.crisp.chat" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "client.crisp.chat", + "'nonce-ytrlmdcwzmetngmxzs00ytziltg5odatowuwzdfiyme1yzvj'", + "'strict-dynamic'" + ], + "style-src": [ + "client.crisp.chat", + "'unsafe-inline'", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": true, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.territoiresentransitions.fr/", + "redirects": true, + "route": [ + "http://territoiresentransitions.fr/", + "https://www.territoiresentransitions.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "uv1j", + "url": "https://territoiresentransitions.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T01:01:39Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T14:23:46Z", + "next_check_at": "2024-12-01T14:24:46Z", + "created_at": "2024-09-15T01:37:03Z", + "mute_until": null, + "favicon_url": "https://www.territoiresentransitions.fr/favicon-16x16.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T14:19:46Z", + "expires_at": "2024-12-31T23:59:59Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "rdv-insertion.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.767, + "timings": { + "redirect": 83, + "namelookup": 50, + "connection": 6, + "handshake": 15, + "response": 567, + "total": 720 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "territoiresentransitions.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332778,7 +328449,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332786,7 +328457,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332794,7 +328465,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332802,7 +328473,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -332810,463 +328481,484 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (30)" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "2024-11-13 10:29" + "finding": "2024-02-16 00:00" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "OK", - "finding": "2025-02-11 10:29" + "severity": "MEDIUM", + "finding": "2024-12-31 23:59" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" + "severity": "MEDIUM", + "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732457469" - }, - { - "id": "HSTS_time", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733062913" }, { - "id": "HSTS_preload", - "ip": "rdv-insertion.fr/80.247.12.255", + "id": "HSTS", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "rdv-insertion.fr/80.247.12.255", + "id": "Cache-Control", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -333274,7 +328966,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -333283,7 +328975,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -333292,7 +328984,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -333301,7 +328993,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -333310,7 +329002,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -333318,7 +329010,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -333327,7 +329019,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -333336,7 +329028,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -333345,7 +329037,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -333354,14 +329046,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -333370,7 +329062,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -333379,7 +329071,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -333388,16 +329080,16 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=64DE6A2E78DE0FDE1A90F042FAEB9C765DD22F155316DA8514501C9BDA0090F8" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -333406,34 +329098,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST_CBC_TLS1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" }, { "id": "BEAST", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -333442,7 +329143,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -333451,1482 +329152,340 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/80.247.12.255", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "rdv-insertion.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "208" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/application-3f69f3a370db2b50f01fa9e63225029dace33a370dd8d18e624acfe689a5bded.css" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/application-d4a035d418651ba52bbb17a6139441dc4dd3d58a61054d3e2bc6645e18816bea.js" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/logos/republique-francaise-logo-2179bc78c3289e4912428d4f57c6cd5796c106f9f970d1963f7bf11c40cd8365.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/logos/rdv-insertion-b0de78984979817ca3b2bc6eb31a28f4e8b3359c832699ebd2a71f6ce5bebd04.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/illustrations/welcome-illustration-baf38ec09a3a5677d223209a87e6a00cdb19836df6478111a89012bf64d97255.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/illustrations/computer-f81b1e7aef5d739744ccaa53ff2eebf113bed68d21d69fa26a84920f49424a41.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/illustrations/letter-7d8ec0af261ed1a61b540d8c46b0a5658aac48b16a409deec73c36d43d99d151.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/illustrations/calendar-9bd1772fd25dcc445f2aeb0ef5edb91b51717b77c1559e47862e5fac0ad30fa9.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/illustrations/choice-93d0c221bdd2d23f5ecb2db5f72f0f26a0d4798eb46703de5f55a6e223f37597.svg" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/logos/plateforme-inclusion-96507139fe1c78cb2a802f67a0d8c94c40d9e7f40045af9f8ff0ba11af3b7e94.svg" - }, - { - "type": "unknown", - "url": "https://rdv-insertion-medias-production.s3.fr-par.scw.cloud/assets/rdv_insertion_landing.mp4" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/39773b4116df4d369604a4cda39e187c9f243567eeef435d023e3f951746615a-b8ed83e61389045e5dbf05657d999ae0e181403dc48d2c4d3c85411bdc731eff.woff" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/cc630e22a9f1cfeebbac88cd9a26c2d7f927c8a3362c040d9d2a1175aad5cdfb-83a474984c057714a14b63d492f71cff9af7577c05bd8a3373aa71ebcaaed32d.woff" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/39773b4116df4d369604a4cda39e187c9f243567eeef435d023e3f951746615a-b8ed83e61389045e5dbf05657d999ae0e181403dc48d2c4d3c85411bdc731eff.woff" - }, - { - "type": "unknown", - "url": "https://www.rdv-insertion.fr/assets/cc630e22a9f1cfeebbac88cd9a26c2d7f927c8a3362c040d9d2a1175aad5cdfb-83a474984c057714a14b63d492f71cff9af7577c05bd8a3373aa71ebcaaed32d.woff" - } - ], - "cookies": [ - { - "name": "_rdv_insertion_session", - "value": "hd5zcK0atig7%2Bppewc9klqtfTBjToJuh28NtId2hq81hvsC2%2BHVkgBiLqmqVFsRFNZmuItJXS5gAfQBdZ6KmRlGydOcKkgQUOYPzP3dTgTyogd7dyAbKUXPX%2FnW%2BP9Mo9rrphIy0CHpLXboCG8HyCW2RzsAeUffUswctsDXuEaQE2kT33zQX%2Fk%2B4IMZUIlaLFa26Icc%2BD8D5XXc6B%2F2WqvlOX3Z59QsFiOMHjCEMOQoMc%2BYUntWgOMTNeQ2m%2BnhxOZk4k2ApSHbt8O%2FZTPIghm96IUB7m%2FQUbP2EGEAd--j6ZFeuFfUyxQrj6n--6G9h7S7nkSTH7x06pYpOow%3D%3D", - "domain": "www.rdv-insertion.fr", - "path": "/", - "expires": -1, - "size": 390, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data: rdv-insertion-medias-production.s3.fr-par.scw.cloud; media-src 'self' rdv-insertion-medias-production.s3.fr-par.scw.cloud; frame-src 'self' flo.uri.sh *.maze.co; object-src 'none'; script-src 'self' https: 'unsafe-inline'; style-src 'self' https: 'unsafe-inline'; connect-src 'self' https://www.rdv-solidarites.fr sentry.incubateur.net matomo.inclusion.beta.gouv.fr https://connect.inclusion.beta.gouv.fr/auth *.maze.co; worker-src 'self' blob:", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:07:20 GMT", - "etag": "W/\"a96963c46824129f8f1fd517ca809d79\"", - "link": "; rel=preload; as=style; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_rdv_insertion_session=hd5zcK0atig7%2Bppewc9klqtfTBjToJuh28NtId2hq81hvsC2%2BHVkgBiLqmqVFsRFNZmuItJXS5gAfQBdZ6KmRlGydOcKkgQUOYPzP3dTgTyogd7dyAbKUXPX%2FnW%2BP9Mo9rrphIy0CHpLXboCG8HyCW2RzsAeUffUswctsDXuEaQE2kT33zQX%2Fk%2B4IMZUIlaLFa26Icc%2BD8D5XXc6B%2F2WqvlOX3Z59QsFiOMHjCEMOQoMc%2BYUntWgOMTNeQ2m%2BnhxOZk4k2ApSHbt8O%2FZTPIghm96IUB7m%2FQUbP2EGEAd--j6ZFeuFfUyxQrj6n--6G9h7S7nkSTH7x06pYpOow%3D%3D; path=/; secure; httponly; SameSite=Lax", - "strict-transport-security": "max-age=63072000; includeSubDomains", - "vary": "Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "32a9439f-501d-497c-b5c2-673af4c992cd\n32a9439f-501d-497c-b5c2-673af4c992cd", - "x-runtime": "0.016449", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "rdv-insertion.fr", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "www.rdv-insertion.fr", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "rdv-insertion-medias-production.s3.fr-par.scw.cloud", - "ip": "51.159.62.19", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://rdv-insertion.fr/": { - "status": 301 - }, - "https://www.rdv-insertion.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", - "confidence": 100, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", - "confidence": 100, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "turbo", - "name": "Turbo", - "description": "Turbo is a JavaScript framework for building fast web applications.", - "confidence": 100, - "version": null, - "icon": "Turbo.svg", - "website": "https://turbo.hotwired.dev/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", - "confidence": 100, - "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", - "cpe": null, - "categories": [ - { - "id": 73, - "slug": "surveys", - "name": "Surveys" - } - ], - "rootPath": true - }, - { - "slug": "calendly", - "name": "Calendly", - "description": "Calendly is an app for scheduling appointments, meetings, and events.", - "confidence": 100, - "version": null, - "icon": "Calendly.svg", - "website": "https://calendly.com/", - "cpe": null, - "categories": [ - { - "id": 72, - "slug": "appointment-scheduling", - "name": "Appointment scheduling" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://rdv-insertion.fr/", - "finalUrl": "https://www.rdv-insertion.fr/", - "fetchTime": "2024-11-24T14:06:55.596Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://rdv-insertion.fr/) was redirected to https://www.rdv-insertion.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.62 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.89 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6603, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2096, - "firstMeaningfulPaint": 2546, - "largestContentfulPaint": 5641, - "interactive": 6603, - "speedIndex": 2371, - "totalBlockingTime": 440, - "maxPotentialFID": 394, - "cumulativeLayoutShift": 0.028312987009684244, - "cumulativeLayoutShiftMainFrame": 0.028312987009684244, - "totalCumulativeLayoutShift": 0.028312987009684244, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 448614886, - "observedNavigationStart": 0, - "observedNavigationStartTs": 448614886, - "observedFirstPaint": 788, - "observedFirstPaintTs": 449402509, - "observedFirstContentfulPaint": 788, - "observedFirstContentfulPaintTs": 449402509, - "observedFirstContentfulPaintAllFrames": 788, - "observedFirstContentfulPaintAllFramesTs": 449402509, - "observedFirstMeaningfulPaint": 1004, - "observedFirstMeaningfulPaintTs": 449618560, - "observedLargestContentfulPaint": 1004, - "observedLargestContentfulPaintTs": 449618560, - "observedLargestContentfulPaintAllFrames": 1004, - "observedLargestContentfulPaintAllFramesTs": 449618560, - "observedTraceEnd": 3788, - "observedTraceEndTs": 452402850, - "observedLoad": 1388, - "observedLoadTs": 450003187, - "observedDomContentLoaded": 1095, - "observedDomContentLoadedTs": 449710299, - "observedCumulativeLayoutShift": 0.028312987009684244, - "observedCumulativeLayoutShiftMainFrame": 0.028312987009684244, - "observedTotalCumulativeLayoutShift": 0.028312987009684244, - "observedFirstVisualChange": 800, - "observedFirstVisualChangeTs": 449414886, - "observedLastVisualChange": 1017, - "observedLastVisualChangeTs": 449631886, - "observedSpeedIndex": 899, - "observedSpeedIndexTs": 449513519 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 25, - "numScripts": 3, - "numStylesheets": 1, - "numFonts": 2, - "numTasks": 835, - "numTasksOver10ms": 6, - "numTasksOver25ms": 4, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 82.66000000000001, - "throughput": 18177115.54681147, - "maxRtt": 86.28699999999999, - "maxServerLatency": 262.36600000000004, - "totalByteWeight": 976291, - "totalTaskTime": 356.14899999999875, - "mainDocumentTransferSize": 4989 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://rdv-insertion.fr/accessibilite" - }, - "declaration-rgpd": [ + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "60" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://rdv-insertion.fr/mentions-legales" + "id": "cipher_strength_score_weighted", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "24" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://rdv-insertion.fr/politique-de-confidentialite" - } - ], - "betagouv": null, - "ecoindex": [ + "id": "final_score", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "82" + }, { - "width": 1920, - "height": 1080, - "url": "https://rdv-insertion.fr", - "size": 863.14, - "nodes": 124, - "requests": 18, - "grade": "A", - "score": 84, - "ges": 1.32, - "water": 1.98, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:03:49.277455", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-11T10:29:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "F", - "trackersCount": 16, - "lighthouse_performance": 0.62, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.89, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "A", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://territoiresentransitions.fr", - "category": "ademe", - "betaId": "territoires-en-transitions", - "tags": [ - "homepage", - "production", - "ADEME" - ], - "repositories": [ - "betagouv/territoires-en-transitions" - ], - "http": { - "url": "https://territoiresentransitions.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 10:33:00 GMT", - "grade": "A", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "CF-RAY": "8d5858cb1849c51d-SEA", - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 10:32:57 GMT", - "Server": "cloudflare", - "Transfer-Encoding": "chunked", - "alt-svc": "h3=\":443\"; ma=86400", - "cf-cache-status": "DYNAMIC", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-YTRlMDcwZmEtNGMxZS00YTZiLTg5ODAtOWUwZDFiYmE1YzVj' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-envoy-upstream-service-time": "290", - "x-koyeb-backend": "par", - "x-koyeb-glb": "sfo", - "x-powered-by": "Next.js" + "id": "overall_grade", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "MEDIUM", + "finding": "B" }, - "scan_id": 57059196, - "score": 95, - "start_time": "Sun, 20 Oct 2024 10:32:55 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "block-all-mixed-content": [ - "'none'" - ], - "connect-src": [ - "https://rlarzronkgoyvtdkltqy.supabase.co", - "client.crisp.chat", - "https://phenomenal-trust-ee3da2c906.strapiapp.com", - "wss://stream.relay.crisp.chat", - "*.axept.io", - "ws://0.0.0.0:3000", - "wss://client.relay.crisp.chat", - "'self'", - "*.posthog.com", - "https://px.ads.linkedin.com" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "client.crisp.chat", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'none'" - ], - "frame-src": [ - "www.dailymotion.com", - "dailymotion.com", - "youtube.com", - "www.youtube.com", - "*.adform.net" - ], - "img-src": [ - "ytimg.com", - "https://image.crisp.chat", - "blob:", - "https://axeptio.imgix.net", - "'self'", - "https://favicons.axept.io", - "server.adform.net", - "https://px4.ads.linkedin.com", - "px.ads.linkedin.com", - "data:", - "https://phenomenal-trust-ee3da2c906.media.strapiapp.com", - "https://client.crisp.chat" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "client.crisp.chat", - "'nonce-ytrlmdcwzmetngmxzs00ytziltg5odatowuwzdfiyme1yzvj'", - "'strict-dynamic'" - ], - "style-src": [ - "client.crisp.chat", - "'unsafe-inline'", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": true, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://www.territoiresentransitions.fr/", - "redirects": true, - "route": [ - "http://territoiresentransitions.fr/", - "https://www.territoiresentransitions.fr/" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 63072000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "uv1j", - "url": "https://territoiresentransitions.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T10:19:44Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T14:18:36Z", - "next_check_at": "2024-11-24T14:19:36Z", - "created_at": "2024-09-15T01:37:03Z", - "mute_until": null, - "favicon_url": "https://www.territoiresentransitions.fr/favicon-16x16.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:14:40Z", - "expires_at": "2024-12-31T23:59:59Z", - "valid": true, - "error": null + { + "id": "grade_cap_reason_1", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" }, - "metrics": { - "apdex": 0.781, - "timings": { - "redirect": 80, - "namelookup": 46, - "connection": 3, - "handshake": 11, - "response": 505, - "total": 645 - } + { + "id": "grade_cap_reason_2", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "grade_cap_reason_3", + "ip": "territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "territoiresentransitions.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "territoiresentransitions.fr/104.22.78.190", @@ -335302,7 +329861,7 @@ "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (37)" + "finding": "expires < 60 days (30)" }, { "id": "cert_notBefore", @@ -335470,7 +330029,7 @@ "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1732457829" + "finding": "1733062951" }, { "id": "HSTS", @@ -336038,1719 +330597,3626 @@ "finding": "Grade capped to B. TLS 1.0 offered" }, { - "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/104.22.78.190", + "id": "grade_cap_reason_3", + "ip": "territoiresentransitions.fr/104.22.78.190", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "service", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "LOW", + "finding": "offered (deprecated)" + }, + { + "id": "TLS1_1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "LOW", + "finding": "offered (deprecated)" + }, + { + "id": "TLS1_2", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "LOW", + "cwe": "CWE-310", + "finding": "offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_2", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "server -- TLS 1.3 client determined" + }, + { + "id": "FS", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" + }, + { + "id": "FS_ECDHE_curves", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "prime256v1" + }, + { + "id": "TLS_extensions", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + }, + { + "id": "TLS_session_ticket", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "valid for 64800 seconds only (", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "2020-01-27 12:48" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "MEDIUM", + "finding": "2024-12-31 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "MEDIUM", + "finding": "expires <= 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "301 Moved Permanently ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "1733062989" + }, + { + "id": "HSTS", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "cloudflare" + }, + { + "id": "banner_application", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "No application banner found" }, { - "id": "service", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cookie_count", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "pre_128cipher", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "Cache-Control", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "max-age=3600" }, { - "id": "SSLv2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "banner_reverseproxy", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" }, { - "id": "SSLv3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "heartbleed", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "not offered" + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" }, { - "id": "TLS1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "CCS", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "TLS1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "ticketbleed", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" }, { - "id": "TLS1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "ROBOT", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "offered" + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" }, { - "id": "TLS1_3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "secure_renego", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "offered with final" + "cwe": "CWE-310", + "finding": "supported" }, { - "id": "ALPN_HTTP2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "secure_client_renego", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "h2" + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "ALPN", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "CRIME_TLS", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "http/1.1" + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "cipherlist_NULL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "BREACH", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { - "id": "cipherlist_aNULL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "POODLE_SSL", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" }, { - "id": "cipherlist_EXPORT", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "fallback_SCSV", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "supported" }, { - "id": "cipherlist_LOW", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "SWEET32", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not offered" + "finding": "not vulnerable" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "FREAK", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", + "severity": "OK", + "cve": "CVE-2015-0204", "cwe": "CWE-310", - "finding": "not offered" + "finding": "not vulnerable" }, { - "id": "cipherlist_OBSOLETED", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "DROWN", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "LOW", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "offered" + "finding": "not vulnerable on this host and port" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "DROWN_hint", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "finding": "offered" + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { - "id": "cipher_order-tls1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "LOGJAM", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "cipher_order-tls1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "LOGJAM-common_primes", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "server" + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" }, { - "id": "cipherorder_TLSv1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "BEAST_CBC_TLS1", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" }, { - "id": "cipher_order-tls1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "BEAST", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "LOW", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { - "id": "cipherorder_TLSv1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "LUCKY13", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "severity": "LOW", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { - "id": "cipher_order", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "winshock", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" }, { - "id": "FS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "RC4", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "offered" + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "FS_ciphers", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "clientsimulation-android_60", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" - }, - { - "id": "FS_ECDHE_curves", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "finding": "prime256v1" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "TLS_extensions", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "clientsimulation-android_70", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "TLS_session_ticket", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "clientsimulation-android_81", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "key_exchange_score_weighted", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" + "finding": "30" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipher_strength_score", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + "finding": "60" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipher_strength_score_weighted", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:48" + "finding": "24" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "final_score", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-31 23:59" + "severity": "INFO", + "finding": "82" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "overall_grade", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", - "finding": "expires <= 40 days" + "finding": "B" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "grade_cap_reason_1", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + "finding": "Grade capped to B. TLS 1.1 offered" }, { - "id": "intermediate_cert_badOCSP", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "grade_cap_reason_2", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" }, { - "id": "HTTP_status_code", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "grade_cap_reason_3", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "Grade capped to A. HSTS is not offered" }, { - "id": "HTTP_clock_skew", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "scanTime", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "115" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_ADEME_V2_Desktop_1_7413207b85.png" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/placeholder.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/css/6c6e82507446b915.css" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/css/7f7659b354ea40dc.css" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/css/60ab64ca6a37f29d.css" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/css/fd7769a8803f5759.css" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/css/a0eaa621cd219abb.css" + }, + { + "type": "unknown", + "url": "https://static.axept.io/sdk-slim.js" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_Jean_Marie_Oudart_Cretes_Preardennaises_7be427e943.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_Beatrice_Santais_Coeurde_Savoie_19b9ae1472.png" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/webpack-89aa0c44a131118f.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/5c3aaacb-64d9711bc12d99bd.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/4683-ccaf1c00817d2cab.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/main-app-179cafdaff3f6dbf.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/e1db169e-ffd33cdbb4000a3b.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/f9d6ff22-5186da4a4de1bd46.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/2223-9ff58bce63c7555d.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/1652-a5f030fac18468f3.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7425-1f45e3fd0277b135.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/1250-4de550a8905f548f.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3946-1995c75c4518e0dd.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/9479-2495f926faf01bfc.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/9650-6ca96eb2f677ca18.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/layout-457a7b43a63f2132.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/error-9e2283b27105c5a4.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7808-7f43b495d6f2fd8c.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3907-b8bbc8a5f5aa0e12.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3026-47bfe8e989bb1233.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7444-a56ea8bc280dc764.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/2812-01a0c9e5d1bf2991.js" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/page-bc124cda784e5fed.js" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_WIN_20231214_08_22_00_Pro_6b8d3dfb11.jpg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/ingest/decide/?v=3&ip=1&_=1733062847223&ver=1.165.0&compression=base64" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/menu-fill.b85985e2.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/close-line.527b332c.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/question-line.a7d73dc3.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/add-circle-line.2374647a.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/external-link-line.24fd6719.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/account-circle-line.9d131fe1.svg" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/remixicon.f5581cad.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/image?url=%2Fademe.jpg&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/image?url=%2Fterritoire-engage.jpg&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/ingest/decide?v=3&ip=1&_=1733062847223&ver=1.165.0&compression=base64" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/_next/static/media/remixicon.f5581cad.woff2" + }, + { + "type": "unknown", + "url": "https://client.axept.io/65ef34473dcae5d0c7a47699.json?r=0" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/logo_cea9315542.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/Dashboard4_4ef9de1dfa.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/attractif_1356263cec.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/sobriete_5847987d25.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/sante_431d71593d.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/ressources_42f6a25321.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/resilience_b1f9e5bee6.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/jm_portrait_rond_s1j11z_2_dafdf984ed.png" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/675_bis_1_c031a9c0a9.jpg" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/epinal_1_262f8fe785.jpg" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/2022_PHOTO_JR_0e15c80bdb.jpg" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/engagement_03_a5549da9a9.jpg" + }, + { + "type": "unknown", + "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/Photo_Guillaume_Briand_85d7dc5403.jpg" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%29%29" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%2C+cot.eq.true%29%29" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/programme?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/outil-numerique?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/collectivites?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/actus?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/contact?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_evolution_utilisateur?select=*&mois=gte.2022-01-01&code_region=is.null&code_departement=is.null" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%2C+cot.eq.true%29%29" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_evolution_utilisateur?select=*&mois=gte.2022-01-01&code_region=is.null&code_departement=is.null" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%29%29" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/ingest/static/surveys.js?v=1.165.0" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/ingest/api/surveys/?token=phc_lIz3HgZwWwCzmGWsCISASM5IQdvD5mAz8pe7uTyYtzr&ip=1&_=1733062847900&ver=1.165.0" + }, + { + "type": "unknown", + "url": "https://www.territoiresentransitions.fr/ingest/api/surveys?token=phc_lIz3HgZwWwCzmGWsCISASM5IQdvD5mAz8pe7uTyYtzr&ip=1&_=1733062847900&ver=1.165.0" + }, + { + "type": "unknown", + "url": "https://client.axept.io/pack/fr-EU" + }, + { + "type": "unknown", + "url": "https://axeptio.imgix.net/2022/01/d35cbf0e-80e7-4b22-b1f0-22a6f9371134.png?bg=564ef1&w=200&mask=https://axeptio.imgix.net/2022/01/64b1005a-e876-41b8-ab0b-5cef6f8a6caf.png" + }, + { + "type": "unknown", + "url": "https://axeptio.imgix.net/2021/02/persos%20site-44.png?auto=format&fit=crop&w=170&h=auto&dpr=1" + } + ], + "cookies": [ + { + "name": "axeptio_all_vendors", + "value": "%2C%2C", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1749478847, + "size": 25, + "httpOnly": false, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "axeptio_authorized_vendors", + "value": "%2C%2C", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1749478847, + "size": 32, + "httpOnly": false, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "axeptio_cookies", + "value": "{%22$$token%22:%2286j1xur5cljxvoze4a881l%22%2C%22$$date%22:%222024-12-01T14:20:47.536Z%22%2C%22$$cookiesVersion%22:{}%2C%22$$completed%22:false}", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1749478847, + "size": 159, + "httpOnly": false, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb3b8461c886214-ORD", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-NWFkNzhjMDgtODc0OS00NjkwLTg5MDAtOWJhMTdhNGYyMGZl' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 14:20:46 GMT", + "server": "cloudflare", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-envoy-upstream-service-time": "288", + "x-koyeb-backend": "par", + "x-koyeb-glb": "was", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "territoiresentransitions.fr", + "ip": "172.67.24.44", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.territoiresentransitions.fr", + "ip": "104.22.78.190", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "phenomenal-trust-ee3da2c906.media.strapiapp.com", + "ip": "172.64.145.29", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "static.axept.io", + "ip": "18.160.225.12", + "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] + } + }, + { + "hostname": "client.axept.io", + "ip": "3.168.51.100", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "rlarzronkgoyvtdkltqy.supabase.co", + "ip": "172.64.149.246", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "axeptio.imgix.net", + "ip": "146.75.78.208", + "geoip": { + "city": { + "geoname_id": 4887398, + "names": { + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "60602" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4896861, + "iso_code": "IL", + "names": { + "de": "Illinois", + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://territoiresentransitions.fr/": { + "status": 301 + }, + "https://www.territoiresentransitions.fr/": { + "status": 200 + } }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "envoy", + "name": "Envoy", + "description": "Envoy is an open-source edge and service proxy, designed for cloud-native applications.", + "confidence": 100, + "version": null, + "icon": "Envoy.png", + "website": "https://www.envoyproxy.io/", + "cpe": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.16", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "axeptio", + "name": "Axeptio", + "description": "Axeptio is a trusted third party that collects and archive users' consent in a GDPR compliant fashion.", + "confidence": 100, + "version": null, + "icon": "Axeptio.png", + "website": "https://www.axeptio.eu", + "cpe": null, + "categories": [ + { + "id": 67, + "slug": "cookie-compliance", + "name": "Cookie compliance" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "linkedin-insight-tag", + "name": "Linkedin Insight Tag", + "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", + "confidence": 100, + "version": null, + "icon": "Linkedin.svg", + "website": "https://business.linkedin.com/marketing-solutions/insight-tag", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "linkedin-ads", + "name": "Linkedin Ads", + "description": "Linkedin Ads is a paid marketing tool that offers access to Linkedin social networks through various sponsored posts and other methods.", + "confidence": 100, + "version": null, + "icon": "Linkedin.svg", + "website": "https://business.linkedin.com/marketing-solutions/ads", + "cpe": null, + "categories": [ + { + "id": 36, + "slug": "advertising", + "name": "Advertising" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "HTTP_headerTime", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "1732457866" - }, + "requestedUrl": "https://territoiresentransitions.fr/", + "finalUrl": "https://www.territoiresentransitions.fr/", + "fetchTime": "2024-12-01T14:20:21.539Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://territoiresentransitions.fr/) was redirected to https://www.territoiresentransitions.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.49 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.93 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.96 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 11161, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3324, + "firstMeaningfulPaint": 3324, + "largestContentfulPaint": 10706, + "interactive": 11161, + "speedIndex": 4228, + "totalBlockingTime": 132, + "maxPotentialFID": 146, + "cumulativeLayoutShift": 0.2756597086588542, + "cumulativeLayoutShiftMainFrame": 0.2756597086588542, + "totalCumulativeLayoutShift": 0.2756597086588542, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 337923429, + "observedNavigationStart": 0, + "observedNavigationStartTs": 337923429, + "observedFirstPaint": 1061, + "observedFirstPaintTs": 338984707, + "observedFirstContentfulPaint": 1061, + "observedFirstContentfulPaintTs": 338984707, + "observedFirstContentfulPaintAllFrames": 1061, + "observedFirstContentfulPaintAllFramesTs": 338984707, + "observedFirstMeaningfulPaint": 1061, + "observedFirstMeaningfulPaintTs": 338984707, + "observedLargestContentfulPaint": 1840, + "observedLargestContentfulPaintTs": 339763288, + "observedLargestContentfulPaintAllFrames": 1840, + "observedLargestContentfulPaintAllFramesTs": 339763288, + "observedTraceEnd": 4491, + "observedTraceEndTs": 342414650, + "observedLoad": 1845, + "observedLoadTs": 339768816, + "observedDomContentLoaded": 1059, + "observedDomContentLoadedTs": 338982270, + "observedCumulativeLayoutShift": 0.2756597086588542, + "observedCumulativeLayoutShiftMainFrame": 0.2756597086588542, + "observedTotalCumulativeLayoutShift": 0.2756597086588542, + "observedFirstVisualChange": 1063, + "observedFirstVisualChangeTs": 338986429, + "observedLastVisualChange": 1846, + "observedLastVisualChangeTs": 339769429, + "observedSpeedIndex": 1621, + "observedSpeedIndexTs": 339544084 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 83, + "numScripts": 23, + "numStylesheets": 5, + "numFonts": 5, + "numTasks": 1322, + "numTasksOver10ms": 7, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 2.526, + "throughput": 67382589.97333159, + "maxRtt": 4.623999999999999, + "maxServerLatency": 195.97199999999998, + "totalByteWeight": 4236148, + "totalTaskTime": 368.05999999999887, + "mainDocumentTransferSize": 38009 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://territoiresentransitions.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "HSTS", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://territoiresentransitions.fr/mentions-legales" }, { - "id": "HPKP", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 3, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://www.ademe.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "territoires-en-transitions", + "type": "startup", + "attributes": { + "name": "Territoires en Transitions", + "pitch": "Aider les collectivités à prioriser la mise en œuvre des actions les plus impactantes pour réussir la transition écologique", + "stats_url": "https://www.territoiresentransitions.fr/stats", + "budget_url": "https://www.territoiresentransitions.fr/budget", + "link": "https://territoiresentransitions.fr/", + "repository": "https://github.com/betagouv/territoires-en-transitions", + "contact": "contact@territoiresentransitions.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ADans%20le%20cadre%20des%20programmes%20d%27accompagnement%20des%20collectivit%C3%A9s%20dans%20leurs%20d%C3%A9marches%20de%20transition%20%C3%A9cologique%2C%20l%27ADEME%20%28l%27Agence%20la%20transition%20%C3%A9cologique%29%20s%27est%20associ%C3%A9e%20%C3%A0%20beta.gouv.fr.%20L%27objectif%20%3A%20Aider%20les%20collectivit%C3%A9s%20%C3%A0%20prioriser%20la%20mise%20en%20%C5%93uvre%20des%20actions%20les%20plus%20impactantes%20pour%20r%C3%A9ussir%20la%20transition%20%C3%A9cologique.%0A%0A%23%23%20Une%20transition%20%C3%A9cologique%20lente%20et%20complexe%0A%0ALes%20collectivit%C3%A9s%20ont%20un%20r%C3%B4le%20central%20%C3%A0%20jouer%20dans%20la%20transition%20%C3%A9cologique.%20Elles%20poss%C3%A8dent%20les%20comp%C3%A9tences%20et%20l%27influence%20sur%20de%20nombreuses%20activit%C3%A9s%20d%C3%A9terminantes%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique.%0A%0AUne%20majorit%C3%A9%20des%20collectivit%C3%A9s%20rencontrent%20des%20difficult%C3%A9s%20%C3%A0%20mettre%20en%20place%20des%20actions%20%C3%A0%20la%20hauteur%20des%20enjeux%20sur%20leur%20territoire.%0A%0AAu-del%C3%A0%20des%20diff%C3%A9rents%20blocages%20politiques%2C%20organisationnels%20et%20financiers%2C%20ces%20difficult%C3%A9s%20sont%20directement%20li%C3%A9es%20%C3%A0%20la%20complexit%C3%A9%20et%20transversalit%C3%A9%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20qui%2C%20pourtant%2C%20dans%20leur%20mise%20en%20oeuvre%2C%20ne%20sont%20port%C3%A9s%20que%20par%20quelques%20personnes%20au%20sein%20de%20la%20collectivit%C3%A9.%0A%0A%23%23%20Faciliter%20et%20acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20de%20transition%20%C3%A9cologique%0A%0ALa%20plateforme%20num%C3%A9rique%20a%20pour%20objectifs%20de%20faciliter%20et%20d%27acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20ayant%20le%20plus%20d%27impact%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique%20au%20sein%20d%27une%20interface%20permettant%20%20%3A%0A%0A%2A%20D%27acc%C3%A9der%20aux%20r%C3%A9f%C3%A9rentiels%20d%27actions%20de%20transition%20%C3%A9cologique%20%28Climat-Air-%C3%89nergie%20%28aussi%20connu%20comme%20la%20labellisation%20Cit%27ergie%29%20et%20%C3%89conomie%20Circulaire%29%20et%20de%20personnaliser%20leur%20utilisation%0A%2A%20De%20g%C3%A9rer%20et%20suivre%20ses%20actions%20et%20indicateurs%20de%20transition%20%C3%A9cologique%0A%2A%20De%20prioriser%20les%20actions%20ayant%20le%20plus%20d%27impact%0A%2A%20De%20partager%20la%20progression%20des%20r%C3%A9alisations%20et%20des%20retours%20d%27exp%C3%A9riences%20entre%20collectivit%C3%A9s", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 300000€ pour la promotion 14" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2020-09-21", + "end": "2020-11-03" + }, + { + "name": "construction", + "start": "2020-11-03", + "end": "" + }, + { + "name": "acceleration", + "start": "2023-01-16", + "end": "" + } + ], + "sponsors": [ + "ademe" + ], + "thematiques": [ + "Territoires" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/betagouv/territoires-en-transitions/blob/upcoming_develop/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/territoires-en-transitions", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "ademe" + } + } + } + }, + "ecoindex": [ { - "id": "banner_server", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "cloudflare" + "width": 1920, + "height": 1080, + "url": "https://territoiresentransitions.fr", + "size": 30272.988, + "nodes": 394, + "requests": 75, + "grade": "D", + "score": 52, + "ges": 1.96, + "water": 2.94, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 14:17:22.662926", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A", + "apdex": 0.767, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-12-31T23:59:00.000Z", + "testsslGrade": "B", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "F", + "trackersCount": 84, + "lighthouse_performance": 0.49, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.93, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.96, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "D", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://app.territoiresentransitions.fr", + "category": "ademe", + "betaId": "territoires-en-transitions", + "tags": [ + "app", + "production", + "ADEME" + ], + "repositories": [ + "betagouv/territoires-en-transitions" + ], + "http": { + "url": "https://app.territoiresentransitions.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:39:39 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "CF-Cache-Status": "DYNAMIC", + "CF-RAY": "8d55fb59eaa475a2-SEA", + "Cache-Control": "public, max-age=0", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 03:39:38 GMT", + "Server": "cloudflare", + "Transfer-Encoding": "chunked", + "alt-svc": "h3=\":443\"; ma=86400", + "etag": "W/\"fb5-19295e323c0\"", + "last-modified": "Wed, 16 Oct 2024 15:12:24 GMT", + "x-envoy-upstream-service-time": "144", + "x-koyeb-backend": "par", + "x-koyeb-glb": "sfo", + "x-powered-by": "Express" }, - { - "id": "banner_application", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" + "scan_id": 57049427, + "score": 10, + "start_time": "Sun, 20 Oct 2024 03:39:37 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://app.territoiresentransitions.fr/", + "redirects": false, + "route": [ + "http://app.territoiresentransitions.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "7p54", + "url": "https://app.territoiresentransitions.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-07T03:55:00Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T14:37:40Z", + "next_check_at": "2024-12-01T14:42:39Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://app.territoiresentransitions.fr/favicon-32x32.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T14:37:41Z", + "expires_at": "2025-01-06T04:07:21Z", + "valid": true, + "error": null }, - { - "id": "cookie_count", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "metrics": { + "apdex": 0.945, + "timings": { + "redirect": 0, + "namelookup": 56, + "connection": 8, + "handshake": 17, + "response": 269, + "total": 349 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "app.territoiresentransitions.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "Cache-Control", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "service", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "max-age=3600" + "finding": "HTTP" }, { - "id": "banner_reverseproxy", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "pre_128cipher", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" + "finding": "No 128 cipher limit bug" }, { - "id": "CCS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "SSLv2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "not offered" }, { - "id": "ticketbleed", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "SSLv3", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "not offered" }, { - "id": "ROBOT", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS1", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "severity": "INFO", + "finding": "not offered" }, { - "id": "secure_renego", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS1_1", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" + "severity": "INFO", + "finding": "not offered" }, { - "id": "secure_client_renego", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS1_2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "CRIME_TLS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS1_3", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered with final" }, { - "id": "BREACH", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "ALPN_HTTP2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "h2" }, { - "id": "POODLE_SSL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "ALPN", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" + "severity": "INFO", + "finding": "http/1.1" }, { - "id": "fallback_SCSV", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_NULL", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "supported" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "SWEET32", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_aNULL", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "not offered" }, { - "id": "FREAK", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_EXPORT", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "DROWN", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_LOW", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "DROWN_hint", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_3DES_IDEA", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" - }, - { - "id": "LOGJAM", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST_CBC_TLS1", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" - }, - { - "id": "BEAST", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "LOW", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not offered" }, { - "id": "LUCKY13", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_OBSOLETED", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", - "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "offered" }, { - "id": "winshock", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_STRONG_NOFS", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "RC4", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherlist_STRONG_FS", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "No connection" + "finding": "offered" }, { - "id": "clientsimulation-ie_8_win7", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipher_order-tls1_2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" + "severity": "OK", + "finding": "server" }, { - "id": "clientsimulation-ie_8_xp", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipherorder_TLSv1_2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "clientsimulation-ie_11_win7", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cipher_order", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "server -- TLS 1.3 client determined" }, { - "id": "clientsimulation-ie_11_win81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "FS", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "offered" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "FS_ciphers", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { - "id": "clientsimulation-ie_11_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "FS_ECDHE_curves", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "severity": "OK", + "finding": "prime256v1" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS_extensions", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "TLS_session_ticket", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "valid for 64800 seconds only (", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "severity": "OK", + "finding": "SHA256 with RSA" }, { - "id": "clientsimulation-libressl_283", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_keySize ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "clientsimulation-openssl_102e", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_keyUsage ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "clientsimulation-openssl_110l", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_extKeyUsage ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLS Web Server Authentication" }, { - "id": "clientsimulation-openssl_111d", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_serialNumber ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "EA4B327F6A12626A132C18A2D63281AD" }, { - "id": "clientsimulation-openssl_303", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_serialNumberLen ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "16" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_fingerprintSHA1 ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "95833913FD18C6415C484B567C3E7BF38B9BFEE1" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_fingerprintSHA256 ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "9C48506FAF42859ABD66A3D42383AB64BF1699696437C5D6BC2A3965B266B7DD" }, { - "id": "rating_spec", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "rating_doc", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_commonName ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "severity": "OK", + "finding": "app.territoiresentransitions.fr" }, { - "id": "protocol_support_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_commonName_wo_SNI ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "95" + "finding": "request w/o SNI didn't succeed" }, { - "id": "protocol_support_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_subjectAltName ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "28" + "finding": "app.territoiresentransitions.fr" }, { - "id": "key_exchange_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_trust ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "100" + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "key_exchange_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_chain_of_trust ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "30" + "severity": "OK", + "finding": "passed." }, { - "id": "cipher_strength_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_certificatePolicies_EV ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "no" }, { - "id": "cipher_strength_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_expirationStatus ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "24" + "severity": "MEDIUM", + "finding": "expires < 60 days (35)" }, { - "id": "final_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_notBefore ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "82" + "finding": "2024-10-08 04:07" }, { - "id": "overall_grade", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_notAfter ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", - "finding": "B" - }, - { - "id": "grade_cap_reason_1", - "ip": "territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" + "finding": "2025-01-06 04:07" }, { - "id": "grade_cap_reason_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_extlifeSpan ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "id": "cert_eTLS ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "not present" }, { - "id": "service", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_crlDistributionPoints ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "http://c.pki.goog/wr1/GdqwacXaYSQ.crl" }, { - "id": "pre_128cipher", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_ocspURL ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" - }, - { - "id": "TLS1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "finding": "http://o.pki.goog/s/wr1/6ks" }, { - "id": "TLS1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "OCSP_stapling ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "TLS1_3", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_ocspRevoked ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "h2" + "finding": "not revoked" }, { - "id": "ALPN", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_mustStapleExtension ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "--" }, { - "id": "cipherlist_EXPORT", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "DNS_CAArecord ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "LOW", + "finding": "--" }, { - "id": "cipherlist_LOW", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certificate_transparency ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "yes (certificate extension)" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certs_countServer ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "LOW", - "cwe": "CWE-310", - "finding": "offered" + "finding": "3" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certs_list_ordering_problem ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "no" }, { - "id": "cipherorder_TLSv1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_caIssuers ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipherorder_TLSv1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cipherorder_TLSv1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" - }, - { - "id": "FS", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_expiration <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_chain <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only ( ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "off by 0 seconds from your localtime" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_expiration <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "0002/Brotli" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_chain <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_badOCSP ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_signatureAlgorithm ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_keySize ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_keyUsage ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Agreement" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_extKeyUsage ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_serialNumber ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "079BFB97C9E55C758B4FCB5930015662" + "finding": "78656137612F26C70E3C9A56295E280B" }, { - "id": "cert_serialNumberLen", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_serialNumberLen ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_fingerprintSHA1 ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "98E74EC55D56C1D768780778049D02D16D28F1CE" + "finding": "3209A0D7686996BCA15E41BDA9ABC9A754A82A68" }, { - "id": "cert_fingerprintSHA256", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_fingerprintSHA256 ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "3EDFCE49F478ED7A2F9C631E8CAB8EEDA3B859700F7C861C2A9F94F44294D39A" + "finding": "9557F48A2A0DE445F4DF6233C6A15DD341F2A3E66CC303C5F3608D69B9CE61AF" }, { - "id": "cert", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFRDCCBOmgAwIBAgIQB5v7l8nlXHWLT8tZMAFWYjAKBggqhkjOPQQDAjBKMQswCQYDVQQGEwJVUzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEgMB4GA1UEAxMXQ2xvdWRmbGFyZSBJbmMgRUNDIENBLTMwHhcNMjQwMjE2MDAwMDAwWhcNMjQxMjMxMjM1OTU5WjB7MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5jaXNjbzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEkMCIGA1UEAxMbdGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEymkh3HBF5H0cZ7GU695f1D0G4IWlgd1NiSL4F649JXaDssuTcV/csRbzjz//fNdmV/dYDnAeIY/7k/wxenEUHKOCA34wggN6MB8GA1UdIwQYMBaAFKXON+rrsHUOlGeItEX62SQQh5YfMB0GA1UdDgQWBBQpIYByuHaWbMcL/nZvQj5F8xQQ1zBFBgNVHREEPjA8ght0ZXJyaXRvaXJlc2VudHJhbnNpdGlvbnMuZnKCHSoudGVycml0b2lyZXNlbnRyYW5zaXRpb25zLmZyMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCA4gwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHsGA1UdHwR0MHIwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9DbG91ZGZsYXJlSW5jRUNDQ0EtMy5jcmwwN6A1oDOGMWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9DbG91ZGZsYXJlSW5jRUNDQ0EtMy5jcmwwdgYIKwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9DbG91ZGZsYXJlSW5jRUNDQ0EtMy5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGNr5HFXwAABAMARjBEAiBR2l/VNF6jouWwBy5Br7ZbIyEJ9VtOXL7BRnARohnpFwIgaSe8AbXtx45tV/Y1j+ptlvkie99hnbAb86ELhLqtDS0AdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAY2vkcVlAAAEAwBGMEQCICgVqtdTJQM+pvLW9wbuY7qGyKy30pPHZgAKbqduNDw7AiAbxKA6BADufGlGRYx3SwzDc1vJ3huNoFmeiQbHYOZXXgB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABja+RxWQAAAQDAEgwRgIhAI4qkEQGF8ylt8NPj8HfOX0+Va37UZ3TKCbwaWbKjVi8AiEA3blcVfPpbZCpPVYAHoWjwRSjt2JcCSPKh57XOY2ZmHwwCgYIKoZIzj0EAwIDSQAwRgIhALImGYPek77Rcn+HaRNYN+ZO0tD+GW26/T7gMQgQJiT5AiEAqcZQZ8qiD3wi3ycYibT/x0bEprwBg55qp2tFG2UoJB0=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_commonName ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "territoiresentransitions.fr" + "finding": "app.territoiresentransitions.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_commonName_wo_SNI ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { - "id": "cert_subjectAltName", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_subjectAltName ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "territoiresentransitions.fr *.territoiresentransitions.fr" + "finding": "app.territoiresentransitions.fr" }, { - "id": "cert_trust", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_trust ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_chain_of_trust ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_certificatePolicies_EV ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_expirationStatus ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (37)" + "finding": "expires < 60 days (35)" }, { - "id": "cert_notBefore", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_notBefore ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "2024-02-16 00:00" + "finding": "2024-10-08 04:07" }, { - "id": "cert_notAfter", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_notAfter ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", - "finding": "2024-12-31 23:59" + "finding": "2025-01-06 04:07" }, { - "id": "cert_extlifeSpan", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_extlifeSpan ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_eTLS ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_crlDistributionPoints ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" + "finding": "http://c.pki.goog/we1/r1Lq4vMcD8c.crl" }, { - "id": "cert_ocspURL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_ocspURL ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://o.pki.goog/s/we1/eGU" }, { - "id": "OCSP_stapling", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "OCSP_stapling ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cert_ocspRevoked", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_ocspRevoked ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "not revoked" }, { - "id": "cert_mustStapleExtension", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_mustStapleExtension ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "DNS_CAArecord ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certificate_transparency ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certs_countServer ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "certs_list_ordering_problem ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "cert_caIssuers ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:48" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-31 23:59" + "severity": "OK", + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_expiration <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "MEDIUM", - "finding": "expires <= 40 days" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_chain <#1> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "1732457903" + "finding": "1733063718" }, { "id": "HSTS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "max-age=3600" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -337758,7 +334224,7 @@ }, { "id": "heartbleed", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -337767,7 +334233,7 @@ }, { "id": "CCS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -337776,7 +334242,7 @@ }, { "id": "ticketbleed", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -337785,16 +334251,16 @@ }, { "id": "ROBOT", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -337802,7 +334268,7 @@ }, { "id": "secure_client_renego", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -337811,7 +334277,7 @@ }, { "id": "CRIME_TLS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -337820,16 +334286,16 @@ }, { "id": "BREACH", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -337838,14 +334304,14 @@ }, { "id": "fallback_SCSV", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -337854,7 +334320,7 @@ }, { "id": "FREAK", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -337863,7 +334329,7 @@ }, { "id": "DROWN", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -337872,16 +334338,16 @@ }, { "id": "DROWN_hint", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C48506FAF42859ABD66A3D42383AB64BF1699696437C5D6BC2A3965B266B7DD" }, { "id": "LOGJAM", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -337890,34 +334356,25 @@ }, { "id": "LOGJAM-common_primes", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, - { - "id": "BEAST_CBC_TLS1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" - }, { "id": "BEAST", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -337926,7 +334383,7 @@ }, { "id": "winshock", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -337935,7 +334392,7 @@ }, { "id": "RC4", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -337944,1899 +334401,326 @@ }, { "id": "clientsimulation-android_60", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "95" - }, - { - "id": "protocol_support_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "28" - }, - { - "id": "key_exchange_score", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "key_exchange_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "cipher_strength_score", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "82" - }, - { - "id": "overall_grade", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "MEDIUM", - "finding": "B" - }, - { - "id": "grade_cap_reason_1", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" - }, - { - "id": "grade_cap_reason_2", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" - }, - { - "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "112" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_ADEME_V2_Desktop_1_7413207b85.png" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/placeholder.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/6c6e82507446b915.css" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/7f7659b354ea40dc.css" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/60ab64ca6a37f29d.css" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/fd7769a8803f5759.css" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/a0eaa621cd219abb.css" - }, - { - "type": "unknown", - "url": "https://static.axept.io/sdk-slim.js" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_Jean_Marie_Oudart_Cretes_Preardennaises_7be427e943.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_Beatrice_Santais_Coeurde_Savoie_19b9ae1472.png" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/webpack-89aa0c44a131118f.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/5c3aaacb-64d9711bc12d99bd.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/4683-ccaf1c00817d2cab.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/main-app-179cafdaff3f6dbf.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/e1db169e-ffd33cdbb4000a3b.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/f9d6ff22-5186da4a4de1bd46.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/2223-9ff58bce63c7555d.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/1652-a5f030fac18468f3.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7425-1f45e3fd0277b135.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/1250-4de550a8905f548f.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3946-1995c75c4518e0dd.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/9479-2495f926faf01bfc.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/9650-6ca96eb2f677ca18.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/layout-457a7b43a63f2132.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/error-9e2283b27105c5a4.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7808-7f43b495d6f2fd8c.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3907-b8bbc8a5f5aa0e12.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/3026-47bfe8e989bb1233.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/7444-a56ea8bc280dc764.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/2812-01a0c9e5d1bf2991.js" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/page-bc124cda784e5fed.js" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/large_WIN_20231214_08_22_00_Pro_6b8d3dfb11.jpg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/ingest/decide/?v=3&ip=1&_=1732457762594&ver=1.165.0&compression=base64" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/menu-fill.b85985e2.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/close-line.527b332c.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/question-line.a7d73dc3.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/add-circle-line.2374647a.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/external-link-line.24fd6719.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/account-circle-line.9d131fe1.svg" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/remixicon.f5581cad.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/image?url=%2Fademe.jpg&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/image?url=%2Fterritoire-engage.jpg&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/remixicon.f5581cad.woff2" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/ingest/decide?v=3&ip=1&_=1732457762594&ver=1.165.0&compression=base64" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%29%29" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%29%29" - }, - { - "type": "unknown", - "url": "https://client.axept.io/65ef34473dcae5d0c7a47699.json?r=0" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/logo_cea9315542.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/Dashboard4_4ef9de1dfa.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/attractif_1356263cec.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/sobriete_5847987d25.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/sante_431d71593d.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/ressources_42f6a25321.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/resilience_b1f9e5bee6.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/jm_portrait_rond_s1j11z_2_dafdf984ed.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/675_bis_1_c031a9c0a9.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/epinal_1_262f8fe785.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/2022_PHOTO_JR_0e15c80bdb.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/engagement_03_a5549da9a9.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/Photo_Guillaume_Briand_85d7dc5403.jpg" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%2C+cot.eq.true%29%29" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/programme?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/outil-numerique?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/collectivites?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/actus?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/contact?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_evolution_utilisateur?select=*&mois=gte.2022-01-01&code_region=is.null&code_departement=is.null" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_engagement_collectivite?select=*&and=%28or%28etoiles_eci.gte.1%2C+etoiles_cae.gte.1%2C+cot.eq.true%29%29" - }, - { - "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/stats_locales_evolution_utilisateur?select=*&mois=gte.2022-01-01&code_region=is.null&code_departement=is.null" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/ingest/static/surveys.js?v=1.165.0" - }, - { - "type": "unknown", - "url": "https://client.axept.io/pack/fr-EU" - }, - { - "type": "unknown", - "url": "https://axeptio.imgix.net/2022/01/d35cbf0e-80e7-4b22-b1f0-22a6f9371134.png?bg=564ef1&w=200&mask=https://axeptio.imgix.net/2022/01/64b1005a-e876-41b8-ab0b-5cef6f8a6caf.png" - }, - { - "type": "unknown", - "url": "https://axeptio.imgix.net/2021/02/persos%20site-44.png?auto=format&fit=crop&w=170&h=auto&dpr=1" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/ingest/api/surveys/?token=phc_lIz3HgZwWwCzmGWsCISASM5IQdvD5mAz8pe7uTyYtzr&ip=1&_=1732457763226&ver=1.165.0" - }, - { - "type": "unknown", - "url": "https://www.territoiresentransitions.fr/ingest/api/surveys?token=phc_lIz3HgZwWwCzmGWsCISASM5IQdvD5mAz8pe7uTyYtzr&ip=1&_=1732457763226&ver=1.165.0" - } - ], - "cookies": [ - { - "name": "axeptio_all_vendors", - "value": "%2C%2C", - "domain": ".territoiresentransitions.fr", - "path": "/", - "expires": 1748873762, - "size": 25, - "httpOnly": false, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "axeptio_authorized_vendors", - "value": "%2C%2C", - "domain": ".territoiresentransitions.fr", - "path": "/", - "expires": 1748873762, - "size": 32, - "httpOnly": false, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "axeptio_cookies", - "value": "{%22$$token%22:%22fvezlgds1kq9cj93k8pug6%22%2C%22$$date%22:%222024-11-24T14:16:02.820Z%22%2C%22$$cookiesVersion%22:{}%2C%22$$completed%22:false}", - "domain": ".territoiresentransitions.fr", - "path": "/", - "expires": 1748873762, - "size": 159, - "httpOnly": false, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e7a03b368e3cf1f-SJC", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-MDZmMjg4NDgtMDY1NC00ODNhLTg3MWItZjBhYjdjOTg5NjJj' 'strict-dynamic' *.axept.io *.posthog.com client.crisp.chat *.googletagmanager.com *.adform.net https://snap.licdn.com; style-src 'self' 'unsafe-inline' client.crisp.chat; img-src 'self' blob: data: ytimg.com px.ads.linkedin.com server.adform.net https://axeptio.imgix.net https://favicons.axept.io https://image.crisp.chat https://client.crisp.chat https://px4.ads.linkedin.com https://secure.adnxs.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self' client.crisp.chat; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://0.0.0.0:3000 *.posthog.com *.axept.io client.crisp.chat wss://client.relay.crisp.chat wss://stream.relay.crisp.chat https://px.ads.linkedin.com; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com *.adform.net; block-all-mixed-content; upgrade-insecure-requests;", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:16:02 GMT", - "server": "cloudflare", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-envoy-upstream-service-time": "324", - "x-koyeb-backend": "par", - "x-koyeb-glb": "sfo", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "territoiresentransitions.fr", - "ip": "104.22.78.190", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.territoiresentransitions.fr", - "ip": "104.22.78.190", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "phenomenal-trust-ee3da2c906.media.strapiapp.com", - "ip": "104.18.42.227", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "static.axept.io", - "ip": "13.227.74.63", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "rlarzronkgoyvtdkltqy.supabase.co", - "ip": "104.18.38.10", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "client.axept.io", - "ip": "18.238.192.5", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "axeptio.imgix.net", - "ip": "151.101.42.208", - "geoip": { - "city": { - "geoname_id": 5392171, - "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "95141" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://territoiresentransitions.fr/": { - "status": 301 - }, - "https://www.territoiresentransitions.fr/": { - "status": 200 - } + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "No connection" }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "envoy", - "name": "Envoy", - "description": "Envoy is an open-source edge and service proxy, designed for cloud-native applications.", - "confidence": 100, - "version": null, - "icon": "Envoy.png", - "website": "https://www.envoyproxy.io/", - "cpe": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.16", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "axeptio", - "name": "Axeptio", - "description": "Axeptio is a trusted third party that collects and archive users' consent in a GDPR compliant fashion.", - "confidence": 100, - "version": null, - "icon": "Axeptio.png", - "website": "https://www.axeptio.eu", - "cpe": null, - "categories": [ - { - "id": 67, - "slug": "cookie-compliance", - "name": "Cookie compliance" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "linkedin-insight-tag", - "name": "Linkedin Insight Tag", - "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", - "confidence": 100, - "version": null, - "icon": "Linkedin.svg", - "website": "https://business.linkedin.com/marketing-solutions/insight-tag", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "linkedin-ads", - "name": "Linkedin Ads", - "description": "Linkedin Ads is a paid marketing tool that offers access to Linkedin social networks through various sponsored posts and other methods.", - "confidence": 100, - "version": null, - "icon": "Linkedin.svg", - "website": "https://business.linkedin.com/marketing-solutions/ads", - "cpe": null, - "categories": [ - { - "id": 36, - "slug": "advertising", - "name": "Advertising" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://territoiresentransitions.fr/", - "finalUrl": "https://www.territoiresentransitions.fr/", - "fetchTime": "2024-11-24T14:15:36.138Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://territoiresentransitions.fr/) was redirected to https://www.territoiresentransitions.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.46 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.93 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.96 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 18520, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3918, - "firstMeaningfulPaint": 3918, - "largestContentfulPaint": 19312, - "interactive": 18520, - "speedIndex": 4404, - "totalBlockingTime": 217, - "maxPotentialFID": 150, - "cumulativeLayoutShift": 0.20096976216634116, - "cumulativeLayoutShiftMainFrame": 0.20096976216634116, - "totalCumulativeLayoutShift": 0.20096976216634116, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 325646627, - "observedNavigationStart": 0, - "observedNavigationStartTs": 325646627, - "observedFirstPaint": 897, - "observedFirstPaintTs": 326543501, - "observedFirstContentfulPaint": 897, - "observedFirstContentfulPaintTs": 326543501, - "observedFirstContentfulPaintAllFrames": 897, - "observedFirstContentfulPaintAllFramesTs": 326543501, - "observedFirstMeaningfulPaint": 897, - "observedFirstMeaningfulPaintTs": 326543501, - "observedLargestContentfulPaint": 1410, - "observedLargestContentfulPaintTs": 327056491, - "observedLargestContentfulPaintAllFrames": 1410, - "observedLargestContentfulPaintAllFramesTs": 327056491, - "observedTraceEnd": 4344, - "observedTraceEndTs": 329990486, - "observedLoad": 1347, - "observedLoadTs": 326993574, - "observedDomContentLoaded": 886, - "observedDomContentLoadedTs": 326532465, - "observedCumulativeLayoutShift": 0.20096976216634116, - "observedCumulativeLayoutShiftMainFrame": 0.20096976216634116, - "observedTotalCumulativeLayoutShift": 0.20096976216634116, - "observedFirstVisualChange": 906, - "observedFirstVisualChangeTs": 326552627, - "observedLastVisualChange": 1423, - "observedLastVisualChangeTs": 327069627, - "observedSpeedIndex": 1241, - "observedSpeedIndexTs": 326887757 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 83, - "numScripts": 23, - "numStylesheets": 5, - "numFonts": 5, - "numTasks": 1327, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.8929999999999998, - "throughput": 71259218.10747924, - "maxRtt": 2.2170000000000005, - "maxServerLatency": 247.161, - "totalByteWeight": 4236226, - "totalTaskTime": 379.26699999999903, - "mainDocumentTransferSize": 38026 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://territoiresentransitions.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-ie_8_xp", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://territoiresentransitions.fr/mentions-legales" + "id": "clientsimulation-ie_11_win7", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 3, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://www.ademe.fr/donnees-personnelles/" - } - ], - "betagouv": { - "id": "territoires-en-transitions", - "type": "startup", - "attributes": { - "name": "Territoires en Transitions", - "pitch": "Aider les collectivités à prioriser la mise en œuvre des actions les plus impactantes pour réussir la transition écologique", - "stats_url": "https://www.territoiresentransitions.fr/stats", - "budget_url": "https://www.territoiresentransitions.fr/budget", - "link": "https://territoiresentransitions.fr/", - "repository": "https://github.com/betagouv/territoires-en-transitions", - "contact": "contact@territoiresentransitions.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ADans%20le%20cadre%20des%20programmes%20d%27accompagnement%20des%20collectivit%C3%A9s%20dans%20leurs%20d%C3%A9marches%20de%20transition%20%C3%A9cologique%2C%20l%27ADEME%20%28l%27Agence%20la%20transition%20%C3%A9cologique%29%20s%27est%20associ%C3%A9e%20%C3%A0%20beta.gouv.fr.%20L%27objectif%20%3A%20Aider%20les%20collectivit%C3%A9s%20%C3%A0%20prioriser%20la%20mise%20en%20%C5%93uvre%20des%20actions%20les%20plus%20impactantes%20pour%20r%C3%A9ussir%20la%20transition%20%C3%A9cologique.%0A%0A%23%23%20Une%20transition%20%C3%A9cologique%20lente%20et%20complexe%0A%0ALes%20collectivit%C3%A9s%20ont%20un%20r%C3%B4le%20central%20%C3%A0%20jouer%20dans%20la%20transition%20%C3%A9cologique.%20Elles%20poss%C3%A8dent%20les%20comp%C3%A9tences%20et%20l%27influence%20sur%20de%20nombreuses%20activit%C3%A9s%20d%C3%A9terminantes%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique.%0A%0AUne%20majorit%C3%A9%20des%20collectivit%C3%A9s%20rencontrent%20des%20difficult%C3%A9s%20%C3%A0%20mettre%20en%20place%20des%20actions%20%C3%A0%20la%20hauteur%20des%20enjeux%20sur%20leur%20territoire.%0A%0AAu-del%C3%A0%20des%20diff%C3%A9rents%20blocages%20politiques%2C%20organisationnels%20et%20financiers%2C%20ces%20difficult%C3%A9s%20sont%20directement%20li%C3%A9es%20%C3%A0%20la%20complexit%C3%A9%20et%20transversalit%C3%A9%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20qui%2C%20pourtant%2C%20dans%20leur%20mise%20en%20oeuvre%2C%20ne%20sont%20port%C3%A9s%20que%20par%20quelques%20personnes%20au%20sein%20de%20la%20collectivit%C3%A9.%0A%0A%23%23%20Faciliter%20et%20acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20de%20transition%20%C3%A9cologique%0A%0ALa%20plateforme%20num%C3%A9rique%20a%20pour%20objectifs%20de%20faciliter%20et%20d%27acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20ayant%20le%20plus%20d%27impact%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique%20au%20sein%20d%27une%20interface%20permettant%20%20%3A%0A%0A%2A%20D%27acc%C3%A9der%20aux%20r%C3%A9f%C3%A9rentiels%20d%27actions%20de%20transition%20%C3%A9cologique%20%28Climat-Air-%C3%89nergie%20%28aussi%20connu%20comme%20la%20labellisation%20Cit%27ergie%29%20et%20%C3%89conomie%20Circulaire%29%20et%20de%20personnaliser%20leur%20utilisation%0A%2A%20De%20g%C3%A9rer%20et%20suivre%20ses%20actions%20et%20indicateurs%20de%20transition%20%C3%A9cologique%0A%2A%20De%20prioriser%20les%20actions%20ayant%20le%20plus%20d%27impact%0A%2A%20De%20partager%20la%20progression%20des%20r%C3%A9alisations%20et%20des%20retours%20d%27exp%C3%A9riences%20entre%20collectivit%C3%A9s", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 300000€ pour la promotion 14" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2020-09-21", - "end": "2020-11-03" - }, - { - "name": "construction", - "start": "2020-11-03", - "end": "" - }, - { - "name": "acceleration", - "start": "2023-01-16", - "end": "" - } - ], - "sponsors": [ - "ademe" - ], - "thematiques": [ - "Territoires" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/betagouv/territoires-en-transitions/blob/upcoming_develop/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/territoires-en-transitions", - "accessibility_status": "non conforme" + "id": "clientsimulation-ie_11_win81", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "ademe" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://territoiresentransitions.fr", - "size": 30265.416, - "nodes": 381, - "requests": 70, - "grade": "D", - "score": 53, - "ges": 1.94, - "water": 2.91, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:12:36.582880", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "A", - "apdex": 0.781, - "apdexGrade": "F", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-31T23:59:00.000Z", - "testsslGrade": "B", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "F", - "trackersCount": 84, - "lighthouse_performance": 0.46, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.93, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.96, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "D", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://app.territoiresentransitions.fr", - "category": "ademe", - "betaId": "territoires-en-transitions", - "tags": [ - "app", - "production", - "ADEME" - ], - "repositories": [ - "betagouv/territoires-en-transitions" - ], - "http": { - "url": "https://app.territoiresentransitions.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:39:39 GMT", - "grade": "F", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "8d55fb59eaa475a2-SEA", - "Cache-Control": "public, max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 03:39:38 GMT", - "Server": "cloudflare", - "Transfer-Encoding": "chunked", - "alt-svc": "h3=\":443\"; ma=86400", - "etag": "W/\"fb5-19295e323c0\"", - "last-modified": "Wed, 16 Oct 2024 15:12:24 GMT", - "x-envoy-upstream-service-time": "144", - "x-koyeb-backend": "par", - "x-koyeb-glb": "sfo", - "x-powered-by": "Express" + "id": "clientsimulation-ie_11_winphone81", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, - "scan_id": 57049427, - "score": 10, - "start_time": "Sun, 20 Oct 2024 03:39:37 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "http://app.territoiresentransitions.fr/", - "redirects": false, - "route": [ - "http://app.territoiresentransitions.fr/" - ], - "status_code": 200 - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "7p54", - "url": "https://app.territoiresentransitions.fr", - "alias": "", - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-07T03:55:00Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T14:25:23Z", - "next_check_at": "2024-11-24T14:30:22Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://app.territoiresentransitions.fr/favicon-32x32.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:10:27Z", - "expires_at": "2025-01-06T04:07:21Z", - "valid": true, - "error": null + { + "id": "clientsimulation-ie_11_win10", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 59, - "connection": 4, - "handshake": 12, - "response": 265, - "total": 340 - } + { + "id": "clientsimulation-edge_15_win10", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-java1102", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "app.territoiresentransitions.fr/104.22.79.190", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "app.territoiresentransitions.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "app.territoiresentransitions.fr/104.22.78.190", @@ -340184,7 +335068,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (42)" + "finding": "expires < 60 days (35)" }, { "id": "cert_notBefore ", @@ -340485,7 +335369,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (42)" + "finding": "expires < 60 days (35)" }, { "id": "cert_notBefore ", @@ -340695,7 +335579,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1732458254" + "finding": "1733063776" }, { "id": "HSTS", @@ -341593,7 +336477,7 @@ "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (42)" + "finding": "expires < 60 days (35)" }, { "id": "cert_notBefore ", @@ -341894,7 +336778,7 @@ "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (42)" + "finding": "expires < 60 days (35)" }, { "id": "cert_notBefore ", @@ -342104,7 +336988,7 @@ "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "1732458311" + "finding": "1733063839" }, { "id": "HSTS", @@ -342614,120 +337498,1375 @@ "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "id": "key_exchange_score_weighted", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "app.territoiresentransitions.fr/172.67.24.44", + "port": "443", + "severity": "INFO", + "finding": "181" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://stonly.com/js/widget/v2/version?v=1733063649692" + }, + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" + }, + { + "type": "unknown", + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" + }, + { + "type": "unknown", + "url": "https://stonly.com/js/widget/v2/stonly-widget.js?v=4693a7e4" + }, + { + "type": "unknown", + "url": "https://stonly.com/js/widget/v2/vendors~widget-454506fead718e9b82b1.stonly.js" + }, + { + "type": "unknown", + "url": "https://stonly.com/js/widget/v2/widget-589f4b4bb830cd3a3966.stonly.js" + }, + { + "type": "unknown", + "url": "https://s.stonly.com/stonly-stat-id.html?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&v=1.6" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v1/targeting/identify" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v1/targeting/identify" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&stonlyAnonymousId=7e0103e0-2332-4b72-9fef-c4b5975d726c&url=https%3A%2F%2Fapp.territoiresentransitions.fr%2F" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&stonlyAnonymousId=7e0103e0-2332-4b72-9fef-c4b5975d726c&url=https%3A%2F%2Fapp.territoiresentransitions.fr%2F" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v1/stat" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v1/stat" + } + ], + "cookies": [], + "headers": { + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb3cbdeab1d9c5a-IAD", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 14:34:09 GMT", + "server": "cloudflare", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-envoy-upstream-service-time": "106", + "x-koyeb-backend": "par", + "x-koyeb-glb": "was", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "app.territoiresentransitions.fr", + "ip": "104.22.78.190", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "stonly.com", + "ip": "3.167.56.28", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "rlarzronkgoyvtdkltqy.supabase.co", + "ip": "104.18.38.10", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "s.stonly.com", + "ip": "3.162.112.47", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "api.stonly.com", + "ip": "35.181.14.116", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://app.territoiresentransitions.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "magento", + "name": "Magento", + "description": "Magento is an open-source ecommerce platform written in PHP.", + "confidence": 100, + "version": null, + "icon": "Magento.svg", + "website": "https://magento.com", + "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "envoy", + "name": "Envoy", + "description": "Envoy is an open-source edge and service proxy, designed for cloud-native applications.", + "confidence": 100, + "version": null, + "icon": "Envoy.png", + "website": "https://www.envoyproxy.io/", + "cpe": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.16", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.15.0", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://app.territoiresentransitions.fr/", + "finalUrl": "https://app.territoiresentransitions.fr/", + "fetchTime": "2024-12-01T14:33:42.967Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.47 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 8428, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1791, + "firstMeaningfulPaint": 1791, + "largestContentfulPaint": 8335, + "interactive": 8428, + "speedIndex": 1839, + "totalBlockingTime": 349, + "maxPotentialFID": 354, + "cumulativeLayoutShift": 0.644908811993069, + "cumulativeLayoutShiftMainFrame": 0.644908811993069, + "totalCumulativeLayoutShift": 0.644908811993069, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 416191027, + "observedNavigationStart": 0, + "observedNavigationStartTs": 416191027, + "observedFirstPaint": 396, + "observedFirstPaintTs": 416586857, + "observedFirstContentfulPaint": 396, + "observedFirstContentfulPaintTs": 416586857, + "observedFirstContentfulPaintAllFrames": 396, + "observedFirstContentfulPaintAllFramesTs": 416586857, + "observedFirstMeaningfulPaint": 396, + "observedFirstMeaningfulPaintTs": 416586857, + "observedLargestContentfulPaint": 737, + "observedLargestContentfulPaintTs": 416927527, + "observedLargestContentfulPaintAllFrames": 737, + "observedLargestContentfulPaintAllFramesTs": 416927527, + "observedTraceEnd": 3935, + "observedTraceEndTs": 420126054, + "observedLoad": 735, + "observedLoadTs": 416926247, + "observedDomContentLoaded": 480, + "observedDomContentLoadedTs": 416670582, + "observedCumulativeLayoutShift": 0.644908811993069, + "observedCumulativeLayoutShiftMainFrame": 0.644908811993069, + "observedTotalCumulativeLayoutShift": 0.644908811993069, + "observedFirstVisualChange": 392, + "observedFirstVisualChangeTs": 416583027, + "observedLastVisualChange": 742, + "observedLastVisualChangeTs": 416933027, + "observedSpeedIndex": 661, + "observedSpeedIndexTs": 416851992 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 55, + "numScripts": 21, + "numStylesheets": 8, + "numFonts": 4, + "numTasks": 917, + "numTasksOver10ms": 6, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 86301721.25589614, + "maxRtt": 83.19500000000001, + "maxServerLatency": 131.36500000000004, + "totalByteWeight": 1065512, + "totalTaskTime": 410.6609999999993, + "mainDocumentTransferSize": 26368 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://territoiresentransitions.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://territoiresentransitions.fr/mentions-legales" }, { - "id": "cipher_strength_score_weighted", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 5, + "score": 4, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://www.ademe.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "territoires-en-transitions", + "type": "startup", + "attributes": { + "name": "Territoires en Transitions", + "pitch": "Aider les collectivités à prioriser la mise en œuvre des actions les plus impactantes pour réussir la transition écologique", + "stats_url": "https://www.territoiresentransitions.fr/stats", + "budget_url": "https://www.territoiresentransitions.fr/budget", + "link": "https://territoiresentransitions.fr/", + "repository": "https://github.com/betagouv/territoires-en-transitions", + "contact": "contact@territoiresentransitions.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ADans%20le%20cadre%20des%20programmes%20d%27accompagnement%20des%20collectivit%C3%A9s%20dans%20leurs%20d%C3%A9marches%20de%20transition%20%C3%A9cologique%2C%20l%27ADEME%20%28l%27Agence%20la%20transition%20%C3%A9cologique%29%20s%27est%20associ%C3%A9e%20%C3%A0%20beta.gouv.fr.%20L%27objectif%20%3A%20Aider%20les%20collectivit%C3%A9s%20%C3%A0%20prioriser%20la%20mise%20en%20%C5%93uvre%20des%20actions%20les%20plus%20impactantes%20pour%20r%C3%A9ussir%20la%20transition%20%C3%A9cologique.%0A%0A%23%23%20Une%20transition%20%C3%A9cologique%20lente%20et%20complexe%0A%0ALes%20collectivit%C3%A9s%20ont%20un%20r%C3%B4le%20central%20%C3%A0%20jouer%20dans%20la%20transition%20%C3%A9cologique.%20Elles%20poss%C3%A8dent%20les%20comp%C3%A9tences%20et%20l%27influence%20sur%20de%20nombreuses%20activit%C3%A9s%20d%C3%A9terminantes%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique.%0A%0AUne%20majorit%C3%A9%20des%20collectivit%C3%A9s%20rencontrent%20des%20difficult%C3%A9s%20%C3%A0%20mettre%20en%20place%20des%20actions%20%C3%A0%20la%20hauteur%20des%20enjeux%20sur%20leur%20territoire.%0A%0AAu-del%C3%A0%20des%20diff%C3%A9rents%20blocages%20politiques%2C%20organisationnels%20et%20financiers%2C%20ces%20difficult%C3%A9s%20sont%20directement%20li%C3%A9es%20%C3%A0%20la%20complexit%C3%A9%20et%20transversalit%C3%A9%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20qui%2C%20pourtant%2C%20dans%20leur%20mise%20en%20oeuvre%2C%20ne%20sont%20port%C3%A9s%20que%20par%20quelques%20personnes%20au%20sein%20de%20la%20collectivit%C3%A9.%0A%0A%23%23%20Faciliter%20et%20acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20de%20transition%20%C3%A9cologique%0A%0ALa%20plateforme%20num%C3%A9rique%20a%20pour%20objectifs%20de%20faciliter%20et%20d%27acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20ayant%20le%20plus%20d%27impact%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique%20au%20sein%20d%27une%20interface%20permettant%20%20%3A%0A%0A%2A%20D%27acc%C3%A9der%20aux%20r%C3%A9f%C3%A9rentiels%20d%27actions%20de%20transition%20%C3%A9cologique%20%28Climat-Air-%C3%89nergie%20%28aussi%20connu%20comme%20la%20labellisation%20Cit%27ergie%29%20et%20%C3%89conomie%20Circulaire%29%20et%20de%20personnaliser%20leur%20utilisation%0A%2A%20De%20g%C3%A9rer%20et%20suivre%20ses%20actions%20et%20indicateurs%20de%20transition%20%C3%A9cologique%0A%2A%20De%20prioriser%20les%20actions%20ayant%20le%20plus%20d%27impact%0A%2A%20De%20partager%20la%20progression%20des%20r%C3%A9alisations%20et%20des%20retours%20d%27exp%C3%A9riences%20entre%20collectivit%C3%A9s", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 300000€ pour la promotion 14" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2020-09-21", + "end": "2020-11-03" + }, + { + "name": "construction", + "start": "2020-11-03", + "end": "" + }, + { + "name": "acceleration", + "start": "2023-01-16", + "end": "" + } + ], + "sponsors": [ + "ademe" + ], + "thematiques": [ + "Territoires" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://github.com/betagouv/territoires-en-transitions/blob/upcoming_develop/SECURITY.md", + "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/territoires-en-transitions", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "ademe" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "81" + "width": 1920, + "height": 1080, + "url": "https://app.territoiresentransitions.fr", + "size": 1627.497, + "nodes": 226, + "requests": 60, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 14:30:40.214311", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "F", + "apdex": 0.945, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": null, + "testsslExpireDate": null, + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 14, + "lighthouse_performance": 0.47, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "category": "pole-emploi", + "betaId": "estime", + "tools": { + "nmap": false + }, + "http": { + "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 10:35:18 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Cache-Control": "max-age=86400, public", + "Content-Encoding": "gzip", + "Content-Length": "556", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 10:35:17 GMT", + "Expires": "Wed, 11 Jan 1984 05:00:00 GMT", + "Last-Modified": "Wed, 02 Oct 2024 08:23:24 GMT", + "Set-Cookie": "BIGipServerPOOL_Z5_PROD_MOP_HTTP=2694581002.20480.0000; path=/; Httponly; Secure, TS016fc3b0=0150c672c3819a55bfe80fa324cd10230d1edc5ce83f8c821b397f630e015011df12ffa46e295c54a168ca12ff0c9ff744818efba3; Path=/; Domain=.candidat.francetravail.fr; ", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff'" }, - { - "id": "overall_grade", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57059265, + "score": 10, + "start_time": "Sun, 20 Oct 2024 10:35:15 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "BIGipServerPOOL_PROD_HTTP_ERR": { + "domain": "candidat.francetravail.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "BIGipServerPOOL_Z5_PROD_MOP_HTTP": { + "domain": "candidat.francetravail.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "TS016fc3b0": { + "domain": ".candidat.francetravail.fr", + "expires": null, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://candidat.francetravail.fr/espacepersonnel/", + "redirects": true, + "route": [ + "http://candidat.pole-emploi.fr/", + "https://candidat.pole-emploi.fr/", + "https://candidat.francetravail.fr/", + "https://candidat.francetravail.fr/espacepersonnel/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff'" + }, + "pass": false, + "result": "x-content-type-options-header-invalid", + "score_description": "X-Content-Type-Options header cannot be recognized", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "ewtl", + "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "alias": null, + "last_status": 200, + "uptime": 99.97, + "down": false, + "down_since": null, + "up_since": "2024-11-29T13:08:00Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T14:36:56Z", + "next_check_at": "2024-12-01T14:37:55Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://candidat.francetravail.fr/assets/pole-emploi-framework/img/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T14:36:58Z", + "expires_at": "2025-05-24T14:00:24Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "app.territoiresentransitions.fr/172.67.24.44", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 0.986, + "timings": { + "redirect": 1004, + "namelookup": 1, + "connection": 156, + "handshake": 165, + "response": 188, + "total": 1514 + } }, + "uptimeGrade": "A", + "apdexGrade": "B" + }, + "nmap": { + "host": "candidat.pole-emploi.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http-proxy", + "product": "F5 BIG-IP load balancer http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http-proxy", + "product": "F5 BIG-IP load balancer http proxy", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "not offered" }, { "id": "cipherlist_NULL", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -342735,7 +338874,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -342743,7 +338882,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -342751,7 +338890,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -342759,7 +338898,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -342767,799 +338906,484 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_signatureAlgorithm", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_keySize", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_keyUsage", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "EA4B327F6A12626A132C18A2D63281AD" - }, - { - "id": "cert_serialNumberLen ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "95833913FD18C6415C484B567C3E7BF38B9BFEE1" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "9C48506FAF42859ABD66A3D42383AB64BF1699696437C5D6BC2A3965B266B7DD" - }, - { - "id": "cert ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "app.territoiresentransitions.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "app.territoiresentransitions.fr" - }, - { - "id": "cert_trust ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (42)" - }, - { - "id": "cert_notBefore ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "2024-10-08 04:07" - }, - { - "id": "cert_notAfter ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-06 04:07" - }, - { - "id": "cert_extlifeSpan ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/GdqwacXaYSQ.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/6ks" - }, - { - "id": "OCSP_stapling ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "cert_signatureAlgorithm ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "ECDSA with SHA256" - }, - { - "id": "cert_keySize ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" - }, - { - "id": "cert_keyUsage ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature" - }, - { - "id": "cert_extKeyUsage ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_extKeyUsage", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_serialNumber", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "78656137612F26C70E3C9A56295E280B" + "finding": "41C9CBD611128361B6F3F399139CBCCB" }, { - "id": "cert_serialNumberLen ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_serialNumberLen", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "16" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_fingerprintSHA1", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "3209A0D7686996BCA15E41BDA9ABC9A754A82A68" + "finding": "AF43468E643613CCC5EA88AE2AA0F3256A3B13B5" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_fingerprintSHA256", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "9557F48A2A0DE445F4DF6233C6A15DD341F2A3E66CC303C5F3608D69B9CE61AF" + "finding": "49CEC52C230B9A4724ED501C48735272C501400753B6EA1E2A45AA1394881316" }, { - "id": "cert ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_commonName", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "app.territoiresentransitions.fr" + "finding": "candidat.pole-emploi.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_commonName_wo_SNI", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed, usual for EC certificates" + "finding": "candidat.pole-emploi.fr" }, { - "id": "cert_subjectAltName ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_subjectAltName", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "app.territoiresentransitions.fr" + "finding": "candidat.pole-emploi.fr www.candidat.pole-emploi.fr" }, { - "id": "cert_trust ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_trust", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN and CN (same w/o SNI)" }, { - "id": "cert_chain_of_trust ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_chain_of_trust", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_certificatePolicies_EV", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_expirationStatus", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (42)" + "severity": "OK", + "finding": "173 >= 60 days" }, { - "id": "cert_notBefore ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_notBefore", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "2024-10-08 04:07" + "finding": "2024-05-24 14:00" }, { - "id": "cert_notAfter ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_notAfter", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-06 04:07" + "severity": "OK", + "finding": "2025-05-24 14:00" }, { - "id": "cert_extlifeSpan ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_extlifeSpan", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_eTLS", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_crlDistributionPoints", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/r1Lq4vMcD8c.crl" + "finding": "http://crl.entrust.net/level1m.crl" }, { - "id": "cert_ocspURL ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_ocspURL", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/eGU" - }, - { - "id": "OCSP_stapling ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://ocsp.entrust.net" }, { - "id": "cert_ocspRevoked ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "OCSP_stapling", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_mustStapleExtension", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "DNS_CAArecord", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "certificate_transparency", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "certs_countServer", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "3" }, { - "id": "certs_list_ordering_problem ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "certs_list_ordering_problem", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "cert_caIssuers", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { - "id": "intermediate_cert <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notBefore <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2014-12-15 15:25" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notAfter <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2030-10-15 15:55" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_expiration <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_chain <#1>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" }, { - "id": "intermediate_cert <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIEPjCCAyagAwIBAgIESlOMKDANBgkqhkiG9w0BAQsFADCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwHhcNMDkwNzA3MTcyNTU0WhcNMzAxMjA3MTc1NTU0WjCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hLZy254Ma+KZ6TABp3bqMriVQRrJ2mFOWHLP/vaCeb9zYQYKpSfYs1/TRU4cctZOMvJyig/3gxnQaoCAAEUesMfnmr8SVycco2gvCoe9amsOXmXzHHfV1IWNcCG0szLni6LVhjkCsbjSR87kyUnEO6fe+1R9V77w6G7CebI6C1XiUJgWMhNcL3hWwcKUs/Ja5CeanyTXxuzQmyWC48zCxEXFjJd6BmsqEZ+pCm5IO2/b1BEZQvePB7/1U1+cPvQXLOZprE4yTGJ36rfo5bs0vBmLrpxR57d+tVOxMyLlbc9wPBr64ptntoP0jaWvYkxN4FisZDQSA/i2jZRjJKRxAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRqciZ60B7vfec7aVHUbI2fkBJmqzANBgkqhkiG9w0BAQsFAAOCAQEAeZ8dlsa2eT8ijYfThwMEYGprmi5ZiXMRrEPR9RP/jTkrwPK9T3CMqS/qF8QLVJ7UG5aYMzyorWKiAHarWWluBh1+xLlEjZivEtRh2woZRkfz6/djwUAFQKXSt/S1mja/qYh2iARVBCuch38aNzx+LaUa2NSJXsq9rD1s2G2v1fN2D807iDginWyTmsQ9v4IbZT+mD12q/OWyFcq1rca8PdCE6OoGcrBNOTJ4vz4RnAuknZoh8/CbCzB428Hch0P+vGOaysXCHMnHjf87ElgI5rY97HosTvuDls4MPGmHVHOkc8KT/1EQrBVUAdj8BbGJoX90g5pJ19xOe4pIb4tF9g==\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notBefore <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2009-07-07 17:25" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_notAfter <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2030-12-07 17:55" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_expiration <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_chain <#2>", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "intermediate_cert_badOCSP", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "308 Permanent Redirect ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.territoiresentransitions.fr/104.22.79.190", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "1732458369" + "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "BigIP" }, { "id": "banner_application", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "id": "security_headers", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -343567,7 +339391,7 @@ }, { "id": "heartbleed", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -343576,7 +339400,7 @@ }, { "id": "CCS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -343585,25 +339409,25 @@ }, { "id": "ticketbleed", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -343611,16 +339435,16 @@ }, { "id": "secure_client_renego", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "not vulnerable, mitigated" }, { "id": "CRIME_TLS", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -343629,16 +339453,16 @@ }, { "id": "BREACH", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip br HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -343647,14 +339471,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -343663,7 +339487,7 @@ }, { "id": "FREAK", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -343672,7 +339496,7 @@ }, { "id": "DROWN", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -343681,16 +339505,16 @@ }, { "id": "DROWN_hint", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C48506FAF42859ABD66A3D42383AB64BF1699696437C5D6BC2A3965B266B7DD" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=49CEC52C230B9A4724ED501C48735272C501400753B6EA1E2A45AA1394881316" }, { "id": "LOGJAM", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -343699,7 +339523,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -343708,7 +339532,7 @@ }, { "id": "BEAST", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -343717,16 +339541,16 @@ }, { "id": "LUCKY13", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -343735,7 +339559,7 @@ }, { "id": "RC4", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -343744,437 +339568,683 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "app.territoiresentransitions.fr/104.22.79.190", + "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "176" + "finding": "96" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/version?v=1732458185878" + "url": "https://candidat.francetravail.fr/simucalculreprise" }, { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/" }, { "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" + "url": "https://candidat.francetravail.fr/portail-simulateurs/runtime.869b6c19ced8eff7.js" }, { "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" + "url": "https://candidat.francetravail.fr/portail-simulateurs/polyfills.850f05145ba5b9ef.js" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/stonly-widget.js?v=179cd20c" + "url": "https://candidat.francetravail.fr/portail-simulateurs/main.492250b771581322.js" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/vendors~widget-454506fead718e9b82b1.stonly.js" + "url": "https://candidat.francetravail.fr/portail-simulateurs/scripts.33a46df0852d5b26.js" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/widget-b61c56daeb4d9e7f12d5.stonly.js" + "url": "https://candidat.francetravail.fr/portail-simulateurs/styles.a663cb5abdd8b943.css" }, { "type": "unknown", - "url": "https://s.stonly.com/stonly-stat-id.html?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&v=1.6" + "url": "https://candidat.francetravail.fr/portail-simulateurs/environment.json" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v1/targeting/identify" + "url": "https://candidat.francetravail.fr/portail-simulateurs/configuration/prod/configuration.json" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v1/targeting/identify" + "url": "https://candidat.francetravail.fr/portail-simulateurs/527.d5fe62b44e3ee3a6.js" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&stonlyAnonymousId=9b220e2d-f0eb-4a09-92d4-babfdfa514b5&url=https%3A%2F%2Fapp.territoiresentransitions.fr%2F" + "url": "https://cdn.tagcommander.com/4340/tc_PoleEmploi_24.js" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=1b1b2533-383c-11ef-a9d4-06cb0cb2a85e&stonlyAnonymousId=9b220e2d-f0eb-4a09-92d4-babfdfa514b5&url=https%3A%2F%2Fapp.territoiresentransitions.fr%2F" + "url": "https://api.francetravail.fr/json/menu-burger-candidat" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v1/stat" + "url": "https://api.francetravail.fr/json/header" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v1/stat" + "url": "https://api.francetravail.fr/json/footer" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/icons.7ae89a99da6cadce.ttf?wekjvp" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-medium-webfont.194e3d38df48da35.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-light-webfont.307a1a11c1d7ea10.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-bold-webfont.f52d56320d58032f.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/icons.7ae89a99da6cadce.ttf?wekjvp" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-medium-webfont.194e3d38df48da35.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-light-webfont.307a1a11c1d7ea10.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-bold-webfont.f52d56320d58032f.woff2" + }, + { + "type": "at-internet", + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "details": { + "id": "at-internet", + "message": "Ensure your TOS notify the AT internet usage" + } + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pdsz850snioqj" + }, + { + "type": "unknown", + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" + }, + { + "type": "unknown", + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" + }, + { + "type": "unknown", + "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pdsz850snioqj" + } + ], + "cookies": [ + { + "name": "BIGipServerPOOL_TAS_SDDC_HTTP", + "value": "1838353162.20480.0000", + "domain": "candidat.francetravail.fr", + "path": "/", + "expires": -1, + "size": 50, + "httpOnly": true, + "secure": true, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], - "cookies": [], "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e7a0e094a73d6f1-IAD", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:23:05 GMT", - "server": "cloudflare", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-envoy-upstream-service-time": "111", - "x-koyeb-backend": "par", - "x-koyeb-glb": "was", - "x-powered-by": "Next.js" + "date": "Sun, 01 Dec 2024 14:35:02 GMT", + "last-modified": "Thu, 14 Nov 2024 10:27:29 GMT", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1838353162.20480.0000; path=/; Httponly; Secure\nTS011b8e23=0150c672c34ea479250728a6e1325ec0dc5bac68c8893fd6022173b943a0d2fb662eb5d4d97d11678823975e86029b8894391127af; Path=/; Domain=.pn322-portailsimulateurs-prod.apps.tas-prod.pole-emploi.intra;", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff'", + "x-robots-tag": "noindex, noarchive, nofollow, nosnippet", + "x-vcap-request-id": "ff5face2-cc15-4ec3-705a-614dd7732f02" }, "endpoints": [ { - "hostname": "app.territoiresentransitions.fr", - "ip": "172.67.24.44", + "hostname": "candidat.pole-emploi.fr", + "ip": "185.215.64.30", "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] } }, { - "hostname": "stonly.com", - "ip": "3.167.56.9", + "hostname": "candidat.francetravail.fr", + "ip": "185.215.64.85", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } + }, + { + "hostname": "cdn.tagcommander.com", + "ip": "192.229.163.55", "geoip": { "continent": { "code": "NA", @@ -344206,8 +340276,8 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, + "latitude": 32.7797, + "longitude": -96.8022, "time_zone": "America/Chicago" }, "registered_country": { @@ -344223,14 +340293,139 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 4736286, + "iso_code": "TX", + "names": { + "de": "Texas", + "en": "Texas", + "es": "Texas", + "fr": "Texas", + "ja": "テキサス州", + "pt-BR": "Texas", + "ru": "Техас", + "zh-CN": "得克萨斯州" + } + } + ] } }, { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", + "hostname": "api.francetravail.fr", + "ip": "185.215.64.96", "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } + }, + { + "hostname": "tag.aticdn.net", + "ip": "108.156.91.50", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { "geoname_id": 6252001, "iso_code": "US", "names": { @@ -344243,13 +340438,13 @@ "ru": "США", "zh-CN": "美国" } - } - } - }, - { - "hostname": "rlarzronkgoyvtdkltqy.supabase.co", - "ip": "104.18.38.10", - "geoip": { + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -344267,9 +340462,21 @@ } }, { - "hostname": "s.stonly.com", - "ip": "3.162.112.25", + "hostname": "hd.pe.fr", + "ip": "18.160.213.127", "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -344300,9 +340507,13 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" }, "registered_country": { "geoname_id": 6252001, @@ -344317,12 +340528,123 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] } }, { - "hostname": "api.stonly.com", - "ip": "35.181.14.116", + "hostname": "www.francetravail.fr", + "ip": "185.215.64.79", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } + }, + { + "hostname": "privacy.trustcommander.net", + "ip": "15.188.101.226", "geoip": { "city": { "geoname_id": 2988507, @@ -344421,325 +340743,28 @@ }, "wappalyzer": { "urls": { - "https://app.territoiresentransitions.fr/": { - "status": 200 + "https://candidat.pole-emploi.fr/simucalculreprise": { + "status": 308, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://candidat.pole-emploi.fr/simucalculreprise (https://candidat.pole-emploi.fr/simucalculreprise)" } }, "technologies": [ { - "slug": "magento", - "name": "Magento", - "description": "Magento is an open-source ecommerce platform written in PHP.", - "confidence": 100, - "version": null, - "icon": "Magento.svg", - "website": "https://magento.com", - "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "envoy", - "name": "Envoy", - "description": "Envoy is an open-source edge and service proxy, designed for cloud-native applications.", + "slug": "f5-bigip", + "name": "F5 BigIP", + "description": "F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.", "confidence": 100, "version": null, - "icon": "Envoy.png", - "website": "https://www.envoyproxy.io/", - "cpe": "cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*", + "icon": "F5.png", + "website": "https://www.f5.com/products/big-ip-services", + "cpe": "cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*", "categories": [ { "id": 64, "slug": "reverse-proxies", "name": "Reverse proxies" } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.16", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.15.0", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true } ] }, @@ -344747,10 +340772,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://app.territoiresentransitions.fr/", - "finalUrl": "https://app.territoiresentransitions.fr/", - "fetchTime": "2024-11-24T14:22:39.481Z", - "runWarnings": [], + "requestedUrl": "https://candidat.pole-emploi.fr/simucalculreprise", + "finalUrl": "https://candidat.francetravail.fr/portail-simulateurs/", + "fetchTime": "2024-12-01T14:34:35.157Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://candidat.pole-emploi.fr/simucalculreprise) was redirected to https://candidat.francetravail.fr/portail-simulateurs/. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -344760,7 +340787,7 @@ "snapshot" ], "id": "performance", - "score": 0.53 + "score": 0.45 }, "accessibility": { "title": "Accessibility", @@ -344771,7 +340798,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 0.93 }, "best-practices": { "title": "Best Practices", @@ -344781,7 +340808,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -344792,7 +340819,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -344802,7 +340829,7 @@ "navigation" ], "id": "pwa", - "score": 0.3 + "score": 0.4 } }, "audits": { @@ -344812,53 +340839,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8443, + "numericValue": 9062, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2919, - "firstMeaningfulPaint": 2919, - "largestContentfulPaint": 5002, - "interactive": 8443, - "speedIndex": 2919, - "totalBlockingTime": 205, - "maxPotentialFID": 214, - "cumulativeLayoutShift": 0.6462631632486978, - "cumulativeLayoutShiftMainFrame": 0.6462631632486978, - "totalCumulativeLayoutShift": 0.6462631632486978, + "firstContentfulPaint": 4884, + "firstMeaningfulPaint": 4884, + "largestContentfulPaint": 10542, + "interactive": 9062, + "speedIndex": 8001, + "totalBlockingTime": 296, + "maxPotentialFID": 236, + "cumulativeLayoutShift": 0.003146437009175619, + "cumulativeLayoutShiftMainFrame": 0.003146437009175619, + "totalCumulativeLayoutShift": 0.003146437009175619, "observedTimeOrigin": 0, - "observedTimeOriginTs": 349651859, + "observedTimeOriginTs": 510250412, "observedNavigationStart": 0, - "observedNavigationStartTs": 349651859, - "observedFirstPaint": 373, - "observedFirstPaintTs": 350024765, - "observedFirstContentfulPaint": 373, - "observedFirstContentfulPaintTs": 350024765, - "observedFirstContentfulPaintAllFrames": 373, - "observedFirstContentfulPaintAllFramesTs": 350024765, - "observedFirstMeaningfulPaint": 373, - "observedFirstMeaningfulPaintTs": 350024765, - "observedLargestContentfulPaint": 434, - "observedLargestContentfulPaintTs": 350086062, - "observedLargestContentfulPaintAllFrames": 434, - "observedLargestContentfulPaintAllFramesTs": 350086062, - "observedTraceEnd": 3853, - "observedTraceEndTs": 353504709, - "observedLoad": 490, - "observedLoadTs": 350141999, - "observedDomContentLoaded": 333, - "observedDomContentLoadedTs": 349984417, - "observedCumulativeLayoutShift": 0.6462631632486978, - "observedCumulativeLayoutShiftMainFrame": 0.6462631632486978, - "observedTotalCumulativeLayoutShift": 0.6462631632486978, - "observedFirstVisualChange": 384, - "observedFirstVisualChangeTs": 350035859, - "observedLastVisualChange": 517, - "observedLastVisualChangeTs": 350168859, - "observedSpeedIndex": 428, - "observedSpeedIndexTs": 350079996 + "observedNavigationStartTs": 510250412, + "observedFirstPaint": 819, + "observedFirstPaintTs": 511069503, + "observedFirstContentfulPaint": 2520, + "observedFirstContentfulPaintTs": 512770193, + "observedFirstContentfulPaintAllFrames": 2520, + "observedFirstContentfulPaintAllFramesTs": 512770193, + "observedFirstMeaningfulPaint": 2520, + "observedFirstMeaningfulPaintTs": 512770193, + "observedLargestContentfulPaint": 2880, + "observedLargestContentfulPaintTs": 513129952, + "observedLargestContentfulPaintAllFrames": 2880, + "observedLargestContentfulPaintAllFramesTs": 513129952, + "observedTraceEnd": 5615, + "observedTraceEndTs": 515865058, + "observedLoad": 2067, + "observedLoadTs": 512317602, + "observedDomContentLoaded": 2067, + "observedDomContentLoadedTs": 512317460, + "observedCumulativeLayoutShift": 0.003146437009175619, + "observedCumulativeLayoutShiftMainFrame": 0.003146437009175619, + "observedTotalCumulativeLayoutShift": 0.003146437009175619, + "observedFirstVisualChange": 2529, + "observedFirstVisualChangeTs": 512779412, + "observedLastVisualChange": 3312, + "observedLastVisualChangeTs": 513562412, + "observedSpeedIndex": 2752, + "observedSpeedIndexTs": 513002312 }, { "lcpInvalidated": false @@ -344876,23 +340903,23 @@ "type": "debugdata", "items": [ { - "numRequests": 55, - "numScripts": 21, - "numStylesheets": 8, - "numFonts": 4, - "numTasks": 904, - "numTasksOver10ms": 6, + "numRequests": 36, + "numScripts": 8, + "numStylesheets": 1, + "numFonts": 5, + "numTasks": 674, + "numTasksOver10ms": 11, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 88700303.29247329, - "maxRtt": 85.039, - "maxServerLatency": 109.497, - "totalByteWeight": 1064505, - "totalTaskTime": 337.7019999999992, - "mainDocumentTransferSize": 26502 + "rtt": 1.963, + "throughput": 5198314.792624508, + "maxRtt": 109.02499999999999, + "maxServerLatency": 23.391, + "totalByteWeight": 721048, + "totalTaskTime": 337.7879999999989, + "mainDocumentTransferSize": 2216 } ] } @@ -344902,92 +340929,98 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://territoiresentransitions.fr/accessibilite" + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://www.francetravail.fr/informations/aide-et-accessibilite.html" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://territoiresentransitions.fr/mentions-legales" + "missingTrackers": [] }, { "slug": "pc", "mention": "Données personnelles", "maxScore": 5, - "score": 4, + "score": 2, "missingWords": [ - "durée de la conservation (ou) durée de conservation" + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" ], - "missingTrackers": [], - "declarationUrl": "https://www.ademe.fr/donnees-personnelles/" + "missingTrackers": [ + "at-internet" + ], + "declarationUrl": "https://www.francetravail.fr/informations/informations-legales-et-conditio/protection-des-donnees-personnel.html" } ], "betagouv": { - "id": "territoires-en-transitions", + "id": "estime", "type": "startup", "attributes": { - "name": "Territoires en Transitions", - "pitch": "Aider les collectivités à prioriser la mise en œuvre des actions les plus impactantes pour réussir la transition écologique", - "stats_url": "https://www.territoiresentransitions.fr/stats", - "budget_url": "https://www.territoiresentransitions.fr/budget", - "link": "https://territoiresentransitions.fr/", - "repository": "https://github.com/betagouv/territoires-en-transitions", - "contact": "contact@territoiresentransitions.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ADans%20le%20cadre%20des%20programmes%20d%27accompagnement%20des%20collectivit%C3%A9s%20dans%20leurs%20d%C3%A9marches%20de%20transition%20%C3%A9cologique%2C%20l%27ADEME%20%28l%27Agence%20la%20transition%20%C3%A9cologique%29%20s%27est%20associ%C3%A9e%20%C3%A0%20beta.gouv.fr.%20L%27objectif%20%3A%20Aider%20les%20collectivit%C3%A9s%20%C3%A0%20prioriser%20la%20mise%20en%20%C5%93uvre%20des%20actions%20les%20plus%20impactantes%20pour%20r%C3%A9ussir%20la%20transition%20%C3%A9cologique.%0A%0A%23%23%20Une%20transition%20%C3%A9cologique%20lente%20et%20complexe%0A%0ALes%20collectivit%C3%A9s%20ont%20un%20r%C3%B4le%20central%20%C3%A0%20jouer%20dans%20la%20transition%20%C3%A9cologique.%20Elles%20poss%C3%A8dent%20les%20comp%C3%A9tences%20et%20l%27influence%20sur%20de%20nombreuses%20activit%C3%A9s%20d%C3%A9terminantes%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique.%0A%0AUne%20majorit%C3%A9%20des%20collectivit%C3%A9s%20rencontrent%20des%20difficult%C3%A9s%20%C3%A0%20mettre%20en%20place%20des%20actions%20%C3%A0%20la%20hauteur%20des%20enjeux%20sur%20leur%20territoire.%0A%0AAu-del%C3%A0%20des%20diff%C3%A9rents%20blocages%20politiques%2C%20organisationnels%20et%20financiers%2C%20ces%20difficult%C3%A9s%20sont%20directement%20li%C3%A9es%20%C3%A0%20la%20complexit%C3%A9%20et%20transversalit%C3%A9%20des%20sujets%20de%20la%20transition%20%C3%A9cologique%20qui%2C%20pourtant%2C%20dans%20leur%20mise%20en%20oeuvre%2C%20ne%20sont%20port%C3%A9s%20que%20par%20quelques%20personnes%20au%20sein%20de%20la%20collectivit%C3%A9.%0A%0A%23%23%20Faciliter%20et%20acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20de%20transition%20%C3%A9cologique%0A%0ALa%20plateforme%20num%C3%A9rique%20a%20pour%20objectifs%20de%20faciliter%20et%20d%27acc%C3%A9l%C3%A9rer%20la%20mise%20en%20oeuvre%20des%20actions%20ayant%20le%20plus%20d%27impact%20pour%20la%20r%C3%A9ussite%20de%20la%20transition%20%C3%A9cologique%20au%20sein%20d%27une%20interface%20permettant%20%20%3A%0A%0A%2A%20D%27acc%C3%A9der%20aux%20r%C3%A9f%C3%A9rentiels%20d%27actions%20de%20transition%20%C3%A9cologique%20%28Climat-Air-%C3%89nergie%20%28aussi%20connu%20comme%20la%20labellisation%20Cit%27ergie%29%20et%20%C3%89conomie%20Circulaire%29%20et%20de%20personnaliser%20leur%20utilisation%0A%2A%20De%20g%C3%A9rer%20et%20suivre%20ses%20actions%20et%20indicateurs%20de%20transition%20%C3%A9cologique%0A%2A%20De%20prioriser%20les%20actions%20ayant%20le%20plus%20d%27impact%0A%2A%20De%20partager%20la%20progression%20des%20r%C3%A9alisations%20et%20des%20retours%20d%27exp%C3%A9riences%20entre%20collectivit%C3%A9s", + "name": "Estime", + "pitch": "Soutenir la reprise d'activité des personnes en demande d'emploi en facilitant l'accès à l'information concernant les aides financières", + "stats_url": "", + "link": "https://candidat.francetravail.fr/simucalculreprise", + "repository": "https://github.com/StartupsPoleEmploi/estime-frontend", + "contact": "annie.compa@pole-emploi.fr", + "content_url_encoded_markdown": "%2A%2AProbl%C3%A8me%2A%2A%0A%0ALes%20aides%20et%20allocations%20li%C3%A9es%20%C3%A0%20la%20reprise%20d%E2%80%99activit%C3%A9%20%28prime%20d%E2%80%99activit%C3%A9%2C%20RSA%2C%20ASS%2C%20Aide%20%C3%A0%20la%20Garde%20d%E2%80%99Enfant%20pour%20Parent%20Isol%C3%A9%2C%20APL%20etc.%29%20sont%20parfois%20m%C3%A9connues%20ou%20complexes%20%C3%A0%20articuler.%0A%0AAujourd%E2%80%99hui%2C%20une%20personne%20qui%20souhaite%20connaitre%20l%E2%80%99impact%20d%E2%80%99une%20prise%20de%20poste%20sur%20ses%20ressources%20financi%C3%A8res%20doit%20effectuer%20plusieurs%20simulations%20sur%20des%20sites%20diff%C3%A9rents%2C%20puis%20effectuer%20les%20calculs%20manuellement%2C%20avec%20un%20risque%20d%E2%80%99erreur%20et%20de%20d%C3%A9couragement.%20Certains%20demandeurs%20d%E2%80%99emploi%20ou%20b%C3%A9n%C3%A9ficiaires%20de%20minima%20sociaux%20peuvent%20ainsi%20avoir%20peur%20de%20perdre%20une%20partie%20de%20leurs%20ressources%20en%20reprenant%20un%20emploi.%0A%0APourrions-nous%20d%C3%A9clencher%20la%20reprise%20d%E2%80%99activit%C3%A9%20de%20ces%20personnes%20en%20les%20rassurant%20sur%20leurs%20ressources%20financi%C3%A8res%20%C3%A0%20venir%20%3F%0A%0A%2A%2AProduit%2A%2A%0A%0A%2A%C2%AB%C2%A0Un%20service%20cr%C3%A9%C3%A9%20pour%20ceux%20qui%20s%E2%80%99interrogent%20sur%20l%E2%80%99impact%20d%E2%80%99une%20reprise%20d%E2%80%99emploi%20sur%20leur%20budget%C2%A0%21%C2%A0%C2%BB%2A%0A%0AEstime%20est%20un%20simulateur%20personnalis%C3%A9%20qui%20permet%20aux%20demandeurs%20d%E2%80%99emploi%20et%20aux%20b%C3%A9n%C3%A9ficiaires%20de%20minima%20sociaux%20de%20visualiser%20leurs%20futures%20ressources%20en%20cas%20de%20reprise%20d%E2%80%99emploi%20et%20d%E2%80%99%C3%AAtre%20inform%C3%A9s%20quant%20aux%20d%C3%A9marches%20d%E2%80%99obtention%20des%20aides.%0A%0AAu%20lancement%20de%20la%20startup%2C%20gr%C3%A2ce%20%C3%A0%20des%20interviews%20et%20du%20benchmarking%2C%20nous%20avons%20v%C3%A9rifi%C3%A9%20qu%E2%80%99il%20n%E2%80%99existait%20pas%20d%E2%80%99outil%20similaire%20sur%20le%20march%C3%A9.%20Estime%20est%20le%20seul%20simulateur%20capable%20de%20pr%C3%A9senter%20une%20projection%20sur%206%20mois%20des%20ressources%20apr%C3%A8s%20reprise%20d%E2%80%99emploi%2C%20et%20de%20combiner%20les%20aides%20et%20allocations%20de%C2%A0%2A%2AP%C3%B4le%20emploi%2A%2A%C2%A0%28allocation%20ch%C3%B4mage%2C%20aide%20%C3%A0%20la%20mobilit%C3%A9%2C%20aide%20%C3%A0%20la%20garde%20d%E2%80%99enfant%E2%80%A6%29%C2%A0%C2%A0et%20de%20la%C2%A0%2A%2ACAF%2A%2A%C2%A0%28aides%20au%20logement%2C%20RSA%E2%80%A6%29.%0A%0ADepuis%20mars%202021%2C%20le%20simulateur%20n%E2%80%99a%20cess%C3%A9%20d%E2%80%99%C3%A9voluer%20et%20d%E2%80%99int%C3%A9grer%20d%E2%80%99autres%20situations.%20Ainsi%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99ASS%20%281er%C2%A0public%20cible%20du%20service%29%20ont%20%C3%A9t%C3%A9%20rejoints%20%C3%A0%20l%E2%80%99%C3%A9t%C3%A9%202021%20par%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99AAH%20et%20du%20RSA%2C%20puis%20par%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99ARE%20en%20janvier%202022.%0A%0AL%E2%80%99%C3%A9quipe%20a%20ensuite%20entendu%20les%20demandes%20des%20conseillers%20P%C3%B4le%20emploi%20et%20celles%20de%20nos%20partenaires%20%3A%20depuis%20septembre%202022%2C%20il%20est%20possible%20d%E2%80%99utiliser%20le%20service%2C%C2%A0%2A%2Asans%20authentification%2A%2A%C2%A0P%C3%B4le%20emploi.%20Ainsi%2C%20par%20exemple%2C%20un%20b%C3%A9n%C3%A9ficiaire%20RSA%20non%20inscrit%2C%20ou%20bien%20un%20demandeur%20d%E2%80%99emploi%20qui%20n%E2%80%99a%20pas%20ses%20identifiants%20en%20t%C3%AAte%2C%20peut%20utiliser%20Estime%20et%20connaitre%20l%E2%80%99impact%20d%E2%80%99une%20reprise%20d%E2%80%99emploi%20sur%20son%20budget.%5C%0ALes%20conseillers%20P%C3%B4le%20emploi%2C%20et%20plus%20globalement%C2%A0%2A%2Atous%20les%20professionnels%20de%20l%E2%80%99emploi%20et%20de%20l%E2%80%99insertion%2A%2A%2C%20qui%20re%C3%A7oivent%20et%20accompagnent%20les%20DE%2C%20peuvent%20aussi%20maintenant%20librement%20utiliser%20le%20simulateur%20et%2Fou%20en%20faire%20la%20promotion%20%21%0A%0A%2A%2ALes%20b%C3%A9n%C3%A9fices%20d%E2%80%99Estime%2A%2A%0A%0ALa%20richesse%20du%20simulateur%20Estime%20permet%20aux%20conseillers%20qui%20accompagnent%20les%20demandeurs%20d%E2%80%99emploi%20un%20gain%20de%20temps%20de%2027%20minutes%20par%20simulation.%20Ils%20peuvent%20ainsi%20r%C3%A9investir%20ce%20temps%20dans%20d%E2%80%99autres%20champs%20de%20leur%20accompagnement.%0A%0ADe%20plus%2C%20les%20r%C3%A9sultats%20actuels%20confirment%C2%A0%2A%2Al%E2%80%99impact%2A%2A%C2%A0du%20service%20sur%20la%20reprise%20d%E2%80%99emploi%20de%20ses%20utilisateurs.%20Deux%20chiffres%20importants%20%28septembre%202022%29%C2%A0%3A%0A%0A1.%20Le%20nombre%20de%20candidatures%20des%20utilisateurs%20d%27Estime%20est%208%20fois%20plus%20important%C2%A0que%20le%20nombre%20de%20candidatures%20des%20non-utilisateurs%20du%20service%0A2.%20Les%20DPAE%2A%C2%A0des%20utilisateurs%20d%27Estime%20sont%C2%A02%20fois%C2%A0plus%20nombreuses%C2%A0que%20les%20DPAE%20des%20non-utilisateurs%20du%20service.%0A%0APar%20ailleurs%2C%20lors%20des%204%20saisons%20de%20webinaires%20internes%20organis%C3%A9s%20par%20l%E2%80%99%C3%A9quipe%20%281800%20participants%20en%20tout%29%20nous%20avons%20pu%20mesurer%20l%E2%80%99utilit%C3%A9%20d%E2%80%99Estime%20pour%20les%20conseillers%20P%C3%B4le%20emploi.%20Mais%20les%20partenaires%20aussi%20ont%20accueilli%20l%E2%80%99outil%20avec%20engouement%20lors%20des%20interventions%20et%20pr%C3%A9sentations%20externes.%20Le%20simulateur%20Estime%20est%20devenu%20un%20vrai%20levier%20pour%20les%20diff%C3%A9rents%20collaborateurs.%0A%0ADepuis%20le%20lancement%2C%20le%20simulateur%20a%20d%C3%A9pass%C3%A9%20le%C2%A0%2A%2Amillion%20de%20visiteurs%2A%2A%C2%A0%21%0A%0ALe%20simulateur%20est%20accessible%20ici%C2%A0%3A%C2%A0%2Ahttps%3A%2F%2Fcandidat.francetravail.fr%2Fsimucalculreprise%2A%0A%0AAinsi%20que%20sur%20l%E2%80%99Emploi%20store%20depuis%20d%C3%A9but%20octobre%202022%C2%A0%3A%C2%A0%2A%3Chttps%3A%2F%2Fwww.emploi-store.fr%2Fportail%2Fservices%2FsimulateurRepriseDEmploi%3E%2A%0A%0AEn%202022%20les%20activit%C3%A9s%20de%20la%20startup%20sous%20sa%20forme%20actuelle%20sont%20cl%C3%B4tur%C3%A9es%20et%20le%20produit%20est%20%C3%A0%20la%20main%20de%20la%20Direction%20de%20la%20R%C3%A9glementation%20et%20de%20l%E2%80%99Indemnisation%20%28DIR%20P%C3%B4le%20emploi%29.%0A", "events": [ { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 300000€ pour la promotion 14" + "name": "product_launch", + "date": "2021-01-07", + "comment": "La première version du site est ouverte aux Demandeurs d'Emploi bénéficiaires de l'Allocation de Solidarité Spécifique." } ], "phases": [ { "name": "investigation", - "start": "2020-09-21", - "end": "2020-11-03" + "start": "2020-04-01", + "end": "2020-06-04" }, { "name": "construction", - "start": "2020-11-03", - "end": "" + "start": "2020-06-04", + "end": "2020-08-28" }, { "name": "acceleration", - "start": "2023-01-16", + "start": "2020-09-01", + "end": "" + }, + { + "name": "transfer", + "start": "2022-12-30", + "end": "" + }, + { + "name": "success", + "start": "2023-01-19", "end": "" } ], "sponsors": [ - "ademe" - ], - "thematiques": [ - "Territoires" + "francetravail" ], - "analyse_risques": "true", - "analyse_risques_url": "https://github.com/betagouv/territoires-en-transitions/blob/upcoming_develop/SECURITY.md", - "dashlord_url": "https://dashlord.incubateur-ademe.beta.gouv.fr/startup/territoires-en-transitions", + "thematiques": [], "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "ademe" + "id": "francetravail" } } } @@ -344996,69 +341029,69 @@ { "width": 1920, "height": 1080, - "url": "https://app.territoiresentransitions.fr", - "size": 1627.808, - "nodes": 225, - "requests": 60, + "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "size": 782.412, + "nodes": 441, + "requests": 34, "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, + "score": 70, + "ges": 1.6, + "water": 2.4, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:19:37.039085", - "page_type": "website" + "date": "2024-12-01 14:31:36.329749", + "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { "httpGrade": "F", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, + "apdex": 0.986, + "apdexGrade": "B", + "uptime": 99.97, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": null, - "testsslExpireDate": null, + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-05-24T14:00:00.000Z", "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 1, "trackersGrade": "F", - "trackersCount": 14, - "lighthouse_performance": 0.53, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.98, + "trackersCount": 30, + "lighthouse_performance": 0.45, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "D", "ecoindexGrade": "C", - "dsfrGrade": "A" + "dsfrGrade": "F" } }, { "404": null, - "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "category": "pole-emploi", - "betaId": "estime", + "betaId": "estime.formation", "tools": { "nmap": false }, "http": { - "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "algorithm_version": 3, "end_time": "Sun, 20 Oct 2024 10:35:18 GMT", "grade": "F", @@ -345253,14 +341286,14 @@ } }, "updownio": { - "token": "ewtl", - "url": "https://candidat.pole-emploi.fr/simucalculreprise", + "token": "pd2i", + "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "alias": null, "last_status": 200, - "uptime": 99.893, + "uptime": 99.97, "down": false, "down_since": null, - "up_since": "2024-11-24T12:53:19Z", + "up_since": "2024-12-01T02:00:22Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -345271,16 +341304,16 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:31:13Z", - "next_check_at": "2024-11-24T14:32:12Z", - "created_at": "2024-01-15T14:01:08Z", + "last_check_at": "2024-12-01T14:52:40Z", + "next_check_at": "2024-12-01T14:53:40Z", + "created_at": "2024-01-15T14:02:08Z", "mute_until": null, "favicon_url": "https://candidat.francetravail.fr/assets/pole-emploi-framework/img/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T14:26:19Z", + "tested_at": "2024-12-01T14:50:43Z", "expires_at": "2025-05-24T14:00:24Z", "valid": true, "error": null @@ -345288,12 +341321,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 991, - "namelookup": 1, - "connection": 158, - "handshake": 187, - "response": 169, - "total": 1505 + "redirect": 521, + "namelookup": 16, + "connection": 147, + "handshake": 164, + "response": 164, + "total": 1012 } }, "uptimeGrade": "A", @@ -345666,7 +341699,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "180 >= 60 days" + "finding": "173 >= 60 days" }, { "id": "cert_notBefore", @@ -346418,19 +342451,95 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "105" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://candidat.francetravail.fr/simucalculreprise" + "url": "https://candidat.francetravail.fr/simulation-ressources-formation" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/runtime.2edba46cc413b272.js" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/polyfills.0d9fce6bc5f026c9.js" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/main.d1f31eea7cac08e8.js" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/styles.7e198897bbf322fd.css" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/environment.json" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/configuration/prod/configuration.json" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/351.99cea197bff5ba07.js" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/441.e27f4dba4088ac41.js" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/872.52d19c8033b4b742.js" + }, + { + "type": "unknown", + "url": "https://cdn.tagcommander.com/4340/tc_PoleEmploi_24.js" }, { "type": "unknown", "url": "https://candidat.francetravail.fr/portail-simulateurs/" }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/icons.7ae89a99da6cadce.ttf?wekjvp" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-light-webfont.307a1a11c1d7ea10.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/icons.7ae89a99da6cadce.ttf?wekjvp" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + }, + { + "type": "unknown", + "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-light-webfont.307a1a11c1d7ea10.woff2" + }, + { + "type": "at-internet", + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "details": { + "id": "at-internet", + "message": "Ensure your TOS notify the AT internet usage" + } + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pxh3esvx26hgq" + }, { "type": "unknown", "url": "https://candidat.francetravail.fr/portail-simulateurs/runtime.869b6c19ced8eff7.js" @@ -346520,38 +342629,34 @@ "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-bold-webfont.f52d56320d58032f.woff2" }, { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } + "type": "unknown", + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pxh3esvx26hgq" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vp4llu95kpc4ky" + "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" }, { "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pxh3esvx26hgq" }, { "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" }, { "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vp4llu95kpc4ky" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" } ], "cookies": [ { "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1771244298.20480.0000", + "value": "1821575946.20480.0000", "domain": "candidat.francetravail.fr", "path": "/", "expires": -1, @@ -346567,14 +342672,14 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:30:11 GMT", - "last-modified": "Thu, 14 Nov 2024 10:27:29 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1771244298.20480.0000; path=/; Httponly; Secure\nTS011b8e23=0150c672c3e62010936df3ddb34efd2499277376ff06aa3dc4c200ffbc8e268d49f9013e076284bfeffdb9a1d8c99fd92c4c270713; Path=/; Domain=.pn322-portailsimulateurs-prod.apps.tas-prod.pole-emploi.intra;", + "date": "Sun, 01 Dec 2024 14:50:18 GMT", + "last-modified": "Thu, 07 Nov 2024 12:09:29 GMT", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1821575946.20480.0000; path=/; Httponly; Secure\nTS01fca309=0150c672c363e53407880b82e52c0c26a4ca169f77ebc0ca6d4a0e836aa1d6d85c3b0613a5b3e5c1a79734dc6cb94d4dae725f20f9; Path=/; Domain=.pn307-estimeformation-prod.apps.tas-prod.pole-emploi.intra;", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "x-content-type-options": "nosniff'", - "x-robots-tag": "noindex, noarchive, nofollow, nosnippet", - "x-vcap-request-id": "59ebbb94-a059-41ef-7a4a-20c7cd060b5e" + "x-robots-tag": "noindex, nofollow, nosnippet, noarchive", + "x-vcap-request-id": "586b859c-13b7-4a6e-4940-f9704e6b5a1a" }, "endpoints": [ { @@ -346837,117 +342942,10 @@ ] } }, - { - "hostname": "api.francetravail.fr", - "ip": "185.215.64.96", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.16", + "ip": "18.244.214.53", "geoip": { - "city": { - "geoname_id": 5809844, - "names": { - "de": "Seattle", - "en": "Seattle", - "es": "Seattle", - "fr": "Seattle", - "ja": "シアトル", - "pt-BR": "Seattle", - "ru": "Сиэтл" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -346978,13 +342976,9 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 47.6109, - "longitude": -122.3303, - "metro_code": 819, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "98101" + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -346999,41 +342993,13 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5815135, - "iso_code": "WA", - "names": { - "de": "Washington", - "en": "Washington", - "es": "Washington", - "fr": "Washington", - "ja": "ワシントン州", - "pt-BR": "Washington", - "ru": "Вашингтон", - "zh-CN": "华盛顿州" - } - } - ] + } } }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.7", + "ip": "18.173.121.28", "geoip": { - "city": { - "geoname_id": 5809844, - "names": { - "de": "Seattle", - "en": "Seattle", - "es": "Seattle", - "fr": "Seattle", - "ja": "シアトル", - "pt-BR": "Seattle", - "ru": "Сиэтл" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -347064,13 +343030,9 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 47.6109, - "longitude": -122.3303, - "metro_code": 819, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "98101" + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -347085,28 +343047,12 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5815135, - "iso_code": "WA", - "names": { - "de": "Washington", - "en": "Washington", - "es": "Washington", - "fr": "Washington", - "ja": "ワシントン州", - "pt-BR": "Washington", - "ru": "Вашингтон", - "zh-CN": "华盛顿州" - } - } - ] + } } }, { - "hostname": "www.francetravail.fr", - "ip": "185.215.64.79", + "hostname": "api.francetravail.fr", + "ip": "185.215.64.96", "geoip": { "city": { "geoname_id": 2992287, @@ -347201,7 +343147,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "15.188.4.187", + "ip": "15.188.101.226", "geoip": { "city": { "geoname_id": 2988507, @@ -347295,14 +343241,109 @@ } ] } + }, + { + "hostname": "www.francetravail.fr", + "ip": "185.215.64.79", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2971071, + "iso_code": "95", + "names": { + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" + } + } + ] + } } ] }, "wappalyzer": { "urls": { - "https://candidat.pole-emploi.fr/simucalculreprise": { + "https://candidat.pole-emploi.fr/simulation-ressources-formation": { "status": 308, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://candidat.pole-emploi.fr/simucalculreprise (https://candidat.pole-emploi.fr/simucalculreprise)" + "error": "net::ERR_BLOCKED_BY_CLIENT at https://candidat.pole-emploi.fr/simulation-ressources-formation (https://candidat.pole-emploi.fr/simulation-ressources-formation)" } }, "technologies": [ @@ -347329,11 +343370,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://candidat.pole-emploi.fr/simucalculreprise", + "requestedUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "finalUrl": "https://candidat.francetravail.fr/portail-simulateurs/", - "fetchTime": "2024-11-24T14:29:44.641Z", + "fetchTime": "2024-12-01T14:48:27.180Z", "runWarnings": [ - "The page may not be loading as expected because your test URL (https://candidat.pole-emploi.fr/simucalculreprise) was redirected to https://candidat.francetravail.fr/portail-simulateurs/. Try testing the second URL directly." + "The page loaded too slowly to finish within the time limit. Results may be incomplete.", + "The page may not be loading as expected because your test URL (https://candidat.pole-emploi.fr/simulation-ressources-formation) was redirected to https://candidat.francetravail.fr/portail-simulateurs/. Try testing the second URL directly." ], "categories": { "performance": { @@ -347344,7 +343386,7 @@ "snapshot" ], "id": "performance", - "score": 0.45 + "score": 0.38 }, "accessibility": { "title": "Accessibility", @@ -347396,53 +343438,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8786, + "numericValue": 22051, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4532, - "firstMeaningfulPaint": 4532, - "largestContentfulPaint": 9976, - "interactive": 8786, - "speedIndex": 6237, - "totalBlockingTime": 378, - "maxPotentialFID": 306, - "cumulativeLayoutShift": 0.003157154401143392, - "cumulativeLayoutShiftMainFrame": 0.003157154401143392, - "totalCumulativeLayoutShift": 0.003157154401143392, + "firstContentfulPaint": 11824, + "firstMeaningfulPaint": 14846, + "largestContentfulPaint": 20322, + "interactive": 22051, + "speedIndex": 12899, + "totalBlockingTime": 317, + "maxPotentialFID": 163, + "cumulativeLayoutShift": 0.003278799374898275, + "cumulativeLayoutShiftMainFrame": 0.003278799374898275, + "totalCumulativeLayoutShift": 0.003278799374898275, "observedTimeOrigin": 0, - "observedTimeOriginTs": 446037794, + "observedTimeOriginTs": 346389100, "observedNavigationStart": 0, - "observedNavigationStartTs": 446037794, - "observedFirstPaint": 684, - "observedFirstPaintTs": 446721992, - "observedFirstContentfulPaint": 2146, - "observedFirstContentfulPaintTs": 448184204, - "observedFirstContentfulPaintAllFrames": 2146, - "observedFirstContentfulPaintAllFramesTs": 448184204, - "observedFirstMeaningfulPaint": 2146, - "observedFirstMeaningfulPaintTs": 448184204, - "observedLargestContentfulPaint": 2458, - "observedLargestContentfulPaintTs": 448496083, - "observedLargestContentfulPaintAllFrames": 2458, - "observedLargestContentfulPaintAllFramesTs": 448496083, - "observedTraceEnd": 5068, - "observedTraceEndTs": 451106194, - "observedLoad": 1723, - "observedLoadTs": 447760382, - "observedDomContentLoaded": 1722, - "observedDomContentLoadedTs": 447760232, - "observedCumulativeLayoutShift": 0.003157154401143392, - "observedCumulativeLayoutShiftMainFrame": 0.003157154401143392, - "observedTotalCumulativeLayoutShift": 0.003157154401143392, - "observedFirstVisualChange": 2144, - "observedFirstVisualChangeTs": 448181794, - "observedLastVisualChange": 2777, - "observedLastVisualChangeTs": 448814794, - "observedSpeedIndex": 2342, - "observedSpeedIndexTs": 448379397 + "observedNavigationStartTs": 346389100, + "observedFirstPaint": 172, + "observedFirstPaintTs": 346560897, + "observedFirstContentfulPaint": 5, + "observedFirstContentfulPaintTs": 346394349, + "observedFirstContentfulPaintAllFrames": 5, + "observedFirstContentfulPaintAllFramesTs": 346394349, + "observedFirstMeaningfulPaint": 1422, + "observedFirstMeaningfulPaintTs": 347811390, + "observedLargestContentfulPaint": 1490, + "observedLargestContentfulPaintTs": 347879118, + "observedLargestContentfulPaintAllFrames": 1490, + "observedLargestContentfulPaintAllFramesTs": 347879118, + "observedTraceEnd": 41260, + "observedTraceEndTs": 387649180, + "observedLoad": 852, + "observedLoadTs": 347240729, + "observedDomContentLoaded": 0, + "observedDomContentLoadedTs": 346389430, + "observedCumulativeLayoutShift": 0.003278799374898275, + "observedCumulativeLayoutShiftMainFrame": 0.003278799374898275, + "observedTotalCumulativeLayoutShift": 0.003278799374898275, + "observedFirstVisualChange": 1430, + "observedFirstVisualChangeTs": 347819100, + "observedLastVisualChange": 2413, + "observedLastVisualChangeTs": 348802100, + "observedSpeedIndex": 1516, + "observedSpeedIndexTs": 347905083 }, { "lcpInvalidated": false @@ -347460,23 +343502,23 @@ "type": "debugdata", "items": [ { - "numRequests": 36, - "numScripts": 8, - "numStylesheets": 1, - "numFonts": 5, - "numTasks": 667, - "numTasksOver10ms": 10, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numRequests": 69, + "numScripts": 17, + "numStylesheets": 2, + "numFonts": 8, + "numTasks": 1434, + "numTasksOver10ms": 21, + "numTasksOver25ms": 8, + "numTasksOver50ms": 3, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.078999999999999, - "throughput": 6242680.611243835, - "maxRtt": 94.612, - "maxServerLatency": 4.3430000000000035, - "totalByteWeight": 721971, - "totalTaskTime": 363.3089999999994, - "mainDocumentTransferSize": 2216 + "rtt": 1.3950000000000005, + "throughput": 8973630.33992359, + "maxRtt": 159.147, + "maxServerLatency": 155.734, + "totalByteWeight": 2332452, + "totalTaskTime": 839.5550000000019, + "mainDocumentTransferSize": 2123 } ] } @@ -347486,10 +343528,10 @@ ], "screenshot": true, "stats": { - "grade": "F" + "grade": "A" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" @@ -347523,55 +343565,87 @@ } ], "betagouv": { - "id": "estime", + "id": "estime.formation", "type": "startup", "attributes": { - "name": "Estime", - "pitch": "Soutenir la reprise d'activité des personnes en demande d'emploi en facilitant l'accès à l'information concernant les aides financières", - "stats_url": "", - "link": "https://candidat.francetravail.fr/simucalculreprise", - "repository": "https://github.com/StartupsPoleEmploi/estime-frontend", - "contact": "annie.compa@pole-emploi.fr", - "content_url_encoded_markdown": "%2A%2AProbl%C3%A8me%2A%2A%0A%0ALes%20aides%20et%20allocations%20li%C3%A9es%20%C3%A0%20la%20reprise%20d%E2%80%99activit%C3%A9%20%28prime%20d%E2%80%99activit%C3%A9%2C%20RSA%2C%20ASS%2C%20Aide%20%C3%A0%20la%20Garde%20d%E2%80%99Enfant%20pour%20Parent%20Isol%C3%A9%2C%20APL%20etc.%29%20sont%20parfois%20m%C3%A9connues%20ou%20complexes%20%C3%A0%20articuler.%0A%0AAujourd%E2%80%99hui%2C%20une%20personne%20qui%20souhaite%20connaitre%20l%E2%80%99impact%20d%E2%80%99une%20prise%20de%20poste%20sur%20ses%20ressources%20financi%C3%A8res%20doit%20effectuer%20plusieurs%20simulations%20sur%20des%20sites%20diff%C3%A9rents%2C%20puis%20effectuer%20les%20calculs%20manuellement%2C%20avec%20un%20risque%20d%E2%80%99erreur%20et%20de%20d%C3%A9couragement.%20Certains%20demandeurs%20d%E2%80%99emploi%20ou%20b%C3%A9n%C3%A9ficiaires%20de%20minima%20sociaux%20peuvent%20ainsi%20avoir%20peur%20de%20perdre%20une%20partie%20de%20leurs%20ressources%20en%20reprenant%20un%20emploi.%0A%0APourrions-nous%20d%C3%A9clencher%20la%20reprise%20d%E2%80%99activit%C3%A9%20de%20ces%20personnes%20en%20les%20rassurant%20sur%20leurs%20ressources%20financi%C3%A8res%20%C3%A0%20venir%20%3F%0A%0A%2A%2AProduit%2A%2A%0A%0A%2A%C2%AB%C2%A0Un%20service%20cr%C3%A9%C3%A9%20pour%20ceux%20qui%20s%E2%80%99interrogent%20sur%20l%E2%80%99impact%20d%E2%80%99une%20reprise%20d%E2%80%99emploi%20sur%20leur%20budget%C2%A0%21%C2%A0%C2%BB%2A%0A%0AEstime%20est%20un%20simulateur%20personnalis%C3%A9%20qui%20permet%20aux%20demandeurs%20d%E2%80%99emploi%20et%20aux%20b%C3%A9n%C3%A9ficiaires%20de%20minima%20sociaux%20de%20visualiser%20leurs%20futures%20ressources%20en%20cas%20de%20reprise%20d%E2%80%99emploi%20et%20d%E2%80%99%C3%AAtre%20inform%C3%A9s%20quant%20aux%20d%C3%A9marches%20d%E2%80%99obtention%20des%20aides.%0A%0AAu%20lancement%20de%20la%20startup%2C%20gr%C3%A2ce%20%C3%A0%20des%20interviews%20et%20du%20benchmarking%2C%20nous%20avons%20v%C3%A9rifi%C3%A9%20qu%E2%80%99il%20n%E2%80%99existait%20pas%20d%E2%80%99outil%20similaire%20sur%20le%20march%C3%A9.%20Estime%20est%20le%20seul%20simulateur%20capable%20de%20pr%C3%A9senter%20une%20projection%20sur%206%20mois%20des%20ressources%20apr%C3%A8s%20reprise%20d%E2%80%99emploi%2C%20et%20de%20combiner%20les%20aides%20et%20allocations%20de%C2%A0%2A%2AP%C3%B4le%20emploi%2A%2A%C2%A0%28allocation%20ch%C3%B4mage%2C%20aide%20%C3%A0%20la%20mobilit%C3%A9%2C%20aide%20%C3%A0%20la%20garde%20d%E2%80%99enfant%E2%80%A6%29%C2%A0%C2%A0et%20de%20la%C2%A0%2A%2ACAF%2A%2A%C2%A0%28aides%20au%20logement%2C%20RSA%E2%80%A6%29.%0A%0ADepuis%20mars%202021%2C%20le%20simulateur%20n%E2%80%99a%20cess%C3%A9%20d%E2%80%99%C3%A9voluer%20et%20d%E2%80%99int%C3%A9grer%20d%E2%80%99autres%20situations.%20Ainsi%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99ASS%20%281er%C2%A0public%20cible%20du%20service%29%20ont%20%C3%A9t%C3%A9%20rejoints%20%C3%A0%20l%E2%80%99%C3%A9t%C3%A9%202021%20par%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99AAH%20et%20du%20RSA%2C%20puis%20par%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%E2%80%99ARE%20en%20janvier%202022.%0A%0AL%E2%80%99%C3%A9quipe%20a%20ensuite%20entendu%20les%20demandes%20des%20conseillers%20P%C3%B4le%20emploi%20et%20celles%20de%20nos%20partenaires%20%3A%20depuis%20septembre%202022%2C%20il%20est%20possible%20d%E2%80%99utiliser%20le%20service%2C%C2%A0%2A%2Asans%20authentification%2A%2A%C2%A0P%C3%B4le%20emploi.%20Ainsi%2C%20par%20exemple%2C%20un%20b%C3%A9n%C3%A9ficiaire%20RSA%20non%20inscrit%2C%20ou%20bien%20un%20demandeur%20d%E2%80%99emploi%20qui%20n%E2%80%99a%20pas%20ses%20identifiants%20en%20t%C3%AAte%2C%20peut%20utiliser%20Estime%20et%20connaitre%20l%E2%80%99impact%20d%E2%80%99une%20reprise%20d%E2%80%99emploi%20sur%20son%20budget.%5C%0ALes%20conseillers%20P%C3%B4le%20emploi%2C%20et%20plus%20globalement%C2%A0%2A%2Atous%20les%20professionnels%20de%20l%E2%80%99emploi%20et%20de%20l%E2%80%99insertion%2A%2A%2C%20qui%20re%C3%A7oivent%20et%20accompagnent%20les%20DE%2C%20peuvent%20aussi%20maintenant%20librement%20utiliser%20le%20simulateur%20et%2Fou%20en%20faire%20la%20promotion%20%21%0A%0A%2A%2ALes%20b%C3%A9n%C3%A9fices%20d%E2%80%99Estime%2A%2A%0A%0ALa%20richesse%20du%20simulateur%20Estime%20permet%20aux%20conseillers%20qui%20accompagnent%20les%20demandeurs%20d%E2%80%99emploi%20un%20gain%20de%20temps%20de%2027%20minutes%20par%20simulation.%20Ils%20peuvent%20ainsi%20r%C3%A9investir%20ce%20temps%20dans%20d%E2%80%99autres%20champs%20de%20leur%20accompagnement.%0A%0ADe%20plus%2C%20les%20r%C3%A9sultats%20actuels%20confirment%C2%A0%2A%2Al%E2%80%99impact%2A%2A%C2%A0du%20service%20sur%20la%20reprise%20d%E2%80%99emploi%20de%20ses%20utilisateurs.%20Deux%20chiffres%20importants%20%28septembre%202022%29%C2%A0%3A%0A%0A1.%20Le%20nombre%20de%20candidatures%20des%20utilisateurs%20d%27Estime%20est%208%20fois%20plus%20important%C2%A0que%20le%20nombre%20de%20candidatures%20des%20non-utilisateurs%20du%20service%0A2.%20Les%20DPAE%2A%C2%A0des%20utilisateurs%20d%27Estime%20sont%C2%A02%20fois%C2%A0plus%20nombreuses%C2%A0que%20les%20DPAE%20des%20non-utilisateurs%20du%20service.%0A%0APar%20ailleurs%2C%20lors%20des%204%20saisons%20de%20webinaires%20internes%20organis%C3%A9s%20par%20l%E2%80%99%C3%A9quipe%20%281800%20participants%20en%20tout%29%20nous%20avons%20pu%20mesurer%20l%E2%80%99utilit%C3%A9%20d%E2%80%99Estime%20pour%20les%20conseillers%20P%C3%B4le%20emploi.%20Mais%20les%20partenaires%20aussi%20ont%20accueilli%20l%E2%80%99outil%20avec%20engouement%20lors%20des%20interventions%20et%20pr%C3%A9sentations%20externes.%20Le%20simulateur%20Estime%20est%20devenu%20un%20vrai%20levier%20pour%20les%20diff%C3%A9rents%20collaborateurs.%0A%0ADepuis%20le%20lancement%2C%20le%20simulateur%20a%20d%C3%A9pass%C3%A9%20le%C2%A0%2A%2Amillion%20de%20visiteurs%2A%2A%C2%A0%21%0A%0ALe%20simulateur%20est%20accessible%20ici%C2%A0%3A%C2%A0%2Ahttps%3A%2F%2Fcandidat.francetravail.fr%2Fsimucalculreprise%2A%0A%0AAinsi%20que%20sur%20l%E2%80%99Emploi%20store%20depuis%20d%C3%A9but%20octobre%202022%C2%A0%3A%C2%A0%2A%3Chttps%3A%2F%2Fwww.emploi-store.fr%2Fportail%2Fservices%2FsimulateurRepriseDEmploi%3E%2A%0A%0AEn%202022%20les%20activit%C3%A9s%20de%20la%20startup%20sous%20sa%20forme%20actuelle%20sont%20cl%C3%B4tur%C3%A9es%20et%20le%20produit%20est%20%C3%A0%20la%20main%20de%20la%20Direction%20de%20la%20R%C3%A9glementation%20et%20de%20l%E2%80%99Indemnisation%20%28DIR%20P%C3%B4le%20emploi%29.%0A", + "name": "Mes Ressources Formation Ex Estime Formation", + "pitch": "Favoriser l'entrée en formation en anticipant l’impact d’une rémunération de formation sur les aides et allocations", + "stats_url": "https://candidat.francetravail.fr/simulation-ressources-formation/stats", + "link": "https://candidat.francetravail.fr/portail-simulateurs/accueil-formation", + "contact": "dctsiestimeformation.00885@pole-emploi.fr", + "content_url_encoded_markdown": "%3E%20%E2%9A%A0%EF%B8%8F%20Il%20est%20%C3%A9galement%20disponible%20dans%20le%20guide%20des%20simulateurs%20sur%20le%20site%20France%20Travail%0A%0A%2A%2AContexte%2A%2A%0A%0ALa%20formation%20professionnelle%20des%20demandeurs%20d%E2%80%99emploi%20est%20un%20enjeu%20strat%C3%A9gique%20pour%20France%20Travail.%0AL%27aspect%20financier%20est%20l%27un%20des%20principaux%20freins%20%C3%A0%20l%27entr%C3%A9e%20en%20formation.%0A%0ALe%20simulateur%20reprise%20d%27emploi%20anciennement%20Estime%20reprise%20d%27emploi%20a%20prouv%C3%A9%20que%20ce%20frein%20financier%20pouvait%20%C3%AAtre%20lev%C3%A9%20dans%20le%20cas%20d%27une%20reprise%20d%27emploi.%0A%0A%0A%0A%2A%2AProbl%C3%A8me%2A%2A%0A%0AParce%20que%20c%27est%20tr%C3%A8s%20compliqu%C3%A9%20de%20s%27y%20retrouver%20dans%20tous%20les%20dispositifs%2C%20les%20b%C3%A9n%C3%A9ficiaires%20pensent%20qu%27ils%20sont%20perdants%20financi%C3%A8rement%20s%27ils%20rentrent%20en%20formation%20alors%20qu%27en%20r%C3%A9alit%C3%A9%20dans%20la%20plupart%20des%20cas%2C%20ils%20sont%20gagnants%20financi%C3%A8rement%20%21%0A%0ALes%20accompagnants%20du%20R%C3%A9seau%20Pour%20l%27Emploi%20%28conseillers%20P%C3%B4le%20emploi%2C%20prestataires%20des%20d%C3%A9partements%2C%20associations..%29%20ne%20savent%20pour%20la%20plupart%20pas%20calculer%20l%27impact%20financier%20d%27une%20r%C3%A9mun%C3%A9ration%20sur%20les%20aides%20et%20allocations%20per%C3%A7ues%20par%20le%20b%C3%A9n%C3%A9ficiaires.%20Ils%20ne%20peuvent%20donc%20pas%20lever%20ce%20frein%20%C3%A0%20l%27entr%C3%A9e%20en%20formation.%0A%0A%0A%0A%2A%2ASolution%2A%2A%0A%0AUn%20simulateur%20permettant%20d%27estimer%20l%27impact%20d%27une%20r%C3%A9mun%C3%A9ration%20de%20formation%20sur%20l%27%C3%A9quilibre%20financier%20des%20b%C3%A9n%C3%A9ficiaires.%20Il%20est%20accessible%20en%20parcours%20authentifi%C3%A9%20et%20non%20authentifi%C3%A9%20avec%20l%27assistance%20d%27un%20accompagnant%20ou%20en%20toute%20autonomie.%0A%0APour%20obtenir%20une%20estimation%2C%20il%20suffit%20de%20remplir%20le%20formulaire%20du%20simulateur%20et%20vous%20obtiendrez%20instantan%C3%A9ment%20une%20projection%20d%C3%A9taill%C3%A9e%20des%20ressources%20du%20b%C3%A9n%C3%A9ficiaires%20s%27il%20rentre%20en%20formation.%0A%0ACe%20simulateur%20permet%20d%27acc%C3%A9der%20%C3%A0%203%20niveaux%20de%20simulation%20selon%20le%20degr%C3%A9%20de%20maturit%C3%A9%20du%20projet%20de%20formation%3A%0A%2A%20une%20estimation%20simplifi%C3%A9e%20du%20montant%20de%20r%C3%A9mun%C3%A9ration%20uniquement%0A%2A%20une%20estimation%20d%C3%A9taill%C3%A9e%20du%20montant%20de%20la%20r%C3%A9mun%C3%A9ration%20de%20formation%20et%20des%20allocations%20%0A%2A%20%20une%20estimation%20personnalis%C3%A9e%20du%20montant%20de%20la%20r%C3%A9mun%C3%A9ration%20de%20formation%2C%20des%20allocations%20et%20des%20aides%20pour%20un%20projet%20de%20formation%20d%C3%A9fini%0A%0APour%20les%20simulations%20d%C3%A9taill%C3%A9es%20et%20simplifi%C3%A9es%2C%20le%20r%C3%A9sultat%20indiquera%20jusqu%27%C3%A0%2010%20aides%20et%20allocations%20selon%20la%20situation%20du%20foyer%20%28RSA%2C%20ASS%2C%20Prime%20d%27activit%C3%A9%2C%20Aide%20au%20logement%2C%20aide%20%C3%A0%20la%20mobilit%C3%A9%20....%29%0A%0A%20Il%20y%20a%20%C3%A9galement%20la%20possibilit%C3%A9%20en%20fin%20de%20simulation%20d%27%C3%AAtre%20redirig%C3%A9%20vers%20d%27autres%20services%20en%20lien%20avec%20le%20projet%20de%20formation%20%28%20Trouver%20ma%20formation%2C%20Immersion%20Facilit%C3%A9e%2C%20Mes%20Aides%2C%20Mes%20%C3%A9v%C3%A8nements%20Emploi%2C%20Mon%20enfant.fr%2C%20le%20site%20de%20la%20R%C3%A9gion%20et%20prochainement%20M%C3%A9tier%20Scope%29%0A%0ALe%20b%C3%A9n%C3%A9ficiaire%20pourra%20%C3%A9galement%20t%C3%A9l%C3%A9charger%20un%20PDF%20imprimable%20du%20r%C3%A9sultat%20de%20l%27estimation.%0A%0A%0A%2A%2AStrat%C3%A9gie%2A%2A%0A%0ADans%20un%20premier%20temps%2C%20nous%20nous%20sommes%20appuy%C3%A9s%20sur%20les%20accompagnants%20du%20R%C3%A9seau%20Pour%20l%27Emploi%20pour%20d%C3%A9ployer%20la%20solution.%20Aujourd%27hui%2C%20ils%20sont%20nos%20principaux%20ambassadeurs%20et%20nous%20continuons%20%C3%A0%20leur%20d%C3%A9ployer%20la%20solution%20d%C3%A8s%20l%27ouverture%20d%27un%20nouveau%20territoire.%0ADans%20le%20cadre%20de%20l%27exp%C3%A9rimentation%20RSA%2C%20le%20service%20a%20tout%20d%27abord%20%C3%A9t%C3%A9%20ouvert%20pour%20les%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%20puis%20nous%20avons%20ajout%C3%A9%20petit-%C3%A0-petit%20d%27autres%20publics%20et%20d%27autres%20dispositifs%20afin%20de%20toucher%20%C3%A0%20terme%20la%20majorit%C3%A9%20des%20b%C3%A9n%C3%A9ficiaires%20des%20minimas%20sociaux%20%20%28environ%202%2C5%20millions%29.%20Nous%20envisageons%20%C3%A9galement%20d%27ouvrir%20aux%20autres%20publics%20avec%20de%20faibles%20ressources%20qui%20ont%20un%20besoin%20de%20se%20projeter%20financi%C3%A8rement%20avant%20de%20se%20lancer%20dans%20un%20projet%20de%20formation.%20%0A%0A%2A%2ANotre%20objectif%20est%20d%27augmenter%20le%20taux%20d%27entr%C3%A9e%20en%20formation%20des%20personnes%20qui%20auront%20b%C3%A9n%C3%A9fici%C3%A9%20de%20notre%20solution.%2A%2A%0A%0ADepuis%20le%2015%2F04%2F2024%2C%20Estime%20Formation%20est%20directement%20accessible%20aux%20allocataires%20depuis%20le%20guide%20des%20simulateurs.%20En%20compl%C3%A9ment%20de%20l%27ouverture%20aux%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%2C%20de%20l%27ASS%20et%20les%20personnes%20sans%20ressource%20qui%20ont%20un%20projet%20de%20formation%2C%20le%20simulateur%20permet%20%C3%A9galement%20de%20se%20projeter%20financi%C3%A8rement%20lorsqu%27on%20a%20pas%20de%20projet%20de%20formation.%0APour%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%27ACEJ%2C%20ils%20peuvent%20acc%C3%A9der%20%C3%A0%20la%20simulation%20leur%20permettant%20d%27obtenir%20le%20moment%20de%20leur%20r%C3%A9mun%C3%A9ration.%0A%0ANous%20envisageons%20d%27ouvrir%20le%20simulateur%20pour%20les%20formations%20%C3%A0%20temps%20partiel%20et%20aux%20b%C3%A9n%C3%A9ficiaires%20de%20l%27ARE%20ainsi%20que%20les%20personnes%20percevant%20d%C3%A9j%C3%A0%20la%20prime%20d%27activit%C3%A9.%0A%0APour%20les%20autres%20publics%2C%20ils%20ont%20acc%C3%A8s%20%C3%A0%20une%20page%20d%27information%20sp%C3%A9cifique%20selon%20leur%20situation.%0A%0A%2AOuvert%20actuellement%20sur%20les%209%20r%C3%A9gions%20%3A%2A%0A-%20Haut%20de%20France%0A-%20Pays%20de%20la%20Loire%0A-%20R%C3%A9gion%20Sud%20PACA%0A-%20Occitanie%0A-%20Nouvelle%20Aquitaine%0A-%20Bourgogne-Franche-Comt%C3%A9%0A-%20Grand%20Est%20%0A-%20Centre%20Val%20de%20Loire%0A-%20Corse%0A%0AEt%20d%27ici%20la%20fin%20de%20l%27ann%C3%A9e%202024%2C%20nous%20envisageons%20d%27ouvrir%20%C3%A0%20l%27ensemble%20de%20la%20M%C3%A9tropole%20et%20d%C3%A9but%202025%2C%20aux%20D%C3%A9partements%20et%20R%C3%A9gions%20d%27Outre-Mer.%0A", "events": [ { "name": "product_launch", - "date": "2021-01-07", - "comment": "La première version du site est ouverte aux Demandeurs d'Emploi bénéficiaires de l'Allocation de Solidarité Spécifique." - } - ], - "phases": [ + "date": "2023-10-23", + "comment": "Ouverture aux accompagnants uniquement" + }, { - "name": "investigation", - "start": "2020-04-01", - "end": "2020-06-04" + "name": "committee", + "date": "2024-01-10", + "comment": "Passage en croissance" }, { - "name": "construction", - "start": "2020-06-04", - "end": "2020-08-28" + "name": "other", + "date": "2024-01-11", + "comment": "Ouverture aux bénéficiaires de l'ASS" }, { - "name": "acceleration", - "start": "2020-09-01", + "name": "other", + "date": "2024-03-13", + "comment": "Automatisation du calcul de la rémunération de formation" + }, + { + "name": "other", + "date": "2024-04-16", + "comment": "Accessibles aux usagers directement depuis le guide des simulateurs sur le site France Travail" + }, + { + "name": "other", + "date": "2024-04-30", + "comment": "Ouverture 1er version du parcours pour les personnes n'ayant pas de projet de formation validé: accès à une estimation détaillée du montant de rémunération de formation et des allocations" + }, + { + "name": "other", + "date": "2024-05-30", + "comment": "Ouverture aux personnes sans ressource" + }, + { + "name": "other", + "date": "2024-07-16", + "comment": "Ouverture 2nd version du parcours pour les personnes n'ayant pas de projet de formation validé: accès à une estimation du montant de rémunération uniquement" + }, + { + "name": "other", + "date": "2024-07-22", + "comment": "Ouvertures parcours avec estimation du montant de rémunération uniquement pour les bénéficiaires de l'ACEJ" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2022-11-20", "end": "" }, { - "name": "transfer", - "start": "2022-12-30", + "name": "construction", + "start": "2023-01-20", "end": "" }, { - "name": "success", - "start": "2023-01-19", + "name": "acceleration", + "start": "2024-01-11", "end": "" } ], "sponsors": [ "francetravail" ], - "thematiques": [], - "accessibility_status": "non conforme" + "thematiques": [ + "Travail / Emploi", + "Formation" + ], + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { @@ -347586,16 +343660,16 @@ { "width": 1920, "height": 1080, - "url": "https://candidat.pole-emploi.fr/simucalculreprise", - "size": 789.36, + "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "size": 2401.357, "nodes": 441, - "requests": 35, + "requests": 54, "grade": "C", - "score": 70, - "ges": 1.6, - "water": 2.4, + "score": 59, + "ges": 1.82, + "water": 2.73, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:26:45.707654", + "date": "2024-12-01 14:45:16.512280", "page_type": null } ], @@ -347607,7 +343681,7 @@ "httpGrade": "F", "apdex": 1, "apdexGrade": "A", - "uptime": 99.893, + "uptime": 99.97, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -347618,8 +343692,8 @@ "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "F", - "trackersCount": 30, - "lighthouse_performance": 0.45, + "trackersCount": 48, + "lighthouse_performance": 0.38, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", @@ -347629,8 +343703,8 @@ "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "A", + "statsGrade": "A", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "B", "declaration-rgpd-ml": "F", @@ -347641,39 +343715,41 @@ }, { "404": null, - "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "url": "https://mobiville.pole-emploi.fr", "category": "pole-emploi", - "betaId": "estime.formation", + "betaId": "mobiville", "tools": { "nmap": false }, "http": { - "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "url": "https://mobiville.pole-emploi.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 10:35:18 GMT", - "grade": "F", + "end_time": "Sun, 20 Oct 2024 10:49:32 GMT", + "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Accept-Ranges": "bytes", - "Cache-Control": "max-age=86400, public", + "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", - "Content-Length": "556", "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 10:35:17 GMT", - "Expires": "Wed, 11 Jan 1984 05:00:00 GMT", - "Last-Modified": "Wed, 02 Oct 2024 08:23:24 GMT", - "Set-Cookie": "BIGipServerPOOL_Z5_PROD_MOP_HTTP=2694581002.20480.0000; path=/; Httponly; Secure, TS016fc3b0=0150c672c3819a55bfe80fa324cd10230d1edc5ce83f8c821b397f630e015011df12ffa46e295c54a168ca12ff0c9ff744818efba3; Path=/; Domain=.candidat.francetravail.fr; ", + "Date": "Sun, 20 Oct 2024 10:49:31 GMT", + "Last-Modified": "Tue, 16 Jul 2024 16:59:33 GMT", + "Referrer-Policy": "no-referrer-when-downgrade", + "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS016fc3b0=0150c672c3cdad064530cba4e53a74a85655a3c096a278e26a5e254ba900add3926c6c2957fbb7c8cd2e6b2aceac38e7342b8de352; Path=/; Domain=.candidat.francetravail.fr; ", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff'" + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Xss-Protection": "1; mode=block" }, - "scan_id": 57059265, - "score": 10, - "start_time": "Sun, 20 Oct 2024 10:35:15 GMT", + "scan_id": 57059657, + "score": 65, + "start_time": "Sun, 20 Oct 2024 10:49:28 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, + "tests_failed": 3, + "tests_passed": 7, "tests_quantity": 10, "details": { "content-security-policy": { @@ -347706,12 +343782,32 @@ "samesite": false, "secure": true }, - "BIGipServerPOOL_Z5_PROD_MOP_HTTP": { + "BIGipServerPOOL_Z2_PROD_MOP_HTTP": { + "domain": "candidat.francetravail.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "BIGipServerPOOL_Z5_PROD_MOP_HTTP": { + "domain": "candidat.francetravail.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "Path": { "domain": "candidat.francetravail.fr", "expires": null, "httponly": true, "max-age": null, - "path": "/", + "path": "/mobiville", "port": null, "samesite": false, "secure": true @@ -347730,9 +343826,9 @@ "sameSite": null }, "pass": false, - "result": "cookies-without-secure-flag", - "score_description": "Cookies set without using the Secure flag or set over HTTP", - "score_modifier": -20 + "result": "cookies-without-secure-flag-but-protected-by-hsts", + "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", + "score_modifier": -5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -347753,13 +343849,13 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://candidat.francetravail.fr/espacepersonnel/", + "destination": "https://candidat.francetravail.fr/mobiville/", "redirects": true, "route": [ - "http://candidat.pole-emploi.fr/", - "https://candidat.pole-emploi.fr/", - "https://candidat.francetravail.fr/", - "https://candidat.francetravail.fr/espacepersonnel/" + "http://mobiville.pole-emploi.fr/", + "https://mobiville.pole-emploi.fr/", + "https://candidat.pole-emploi.fr/mobiville/", + "https://candidat.francetravail.fr/mobiville/" ], "status_code": 200 }, @@ -347772,85 +343868,102 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "no-referrer-when-downgrade", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-breadcrumb.js": { + "crossorigin": null, + "integrity": null + }, + "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-footer.js": { + "crossorigin": null, + "integrity": null + }, + "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-header.js": { + "crossorigin": null, + "integrity": null + }, + "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-subnav.js": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff'" + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-header-invalid", - "score_description": "X-Content-Type-Options header cannot be recognized", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "DENY" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "pd2i", - "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "token": "76mj", + "url": "https://mobiville.pole-emploi.fr", "alias": null, "last_status": 200, - "uptime": 99.922, + "uptime": 99.97, "down": false, "down_since": null, - "up_since": "2024-11-24T12:46:53Z", + "up_since": "2024-11-30T13:07:27Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -347861,127 +343974,277 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:40:53Z", - "next_check_at": "2024-11-24T14:41:53Z", - "created_at": "2024-01-15T14:02:08Z", + "last_check_at": "2024-12-01T14:50:21Z", + "next_check_at": "2024-12-01T14:51:21Z", + "created_at": "2024-01-15T14:01:08Z", "mute_until": null, - "favicon_url": "https://candidat.francetravail.fr/assets/pole-emploi-framework/img/favicon/favicon.ico", + "favicon_url": "https://candidat.francetravail.fr/mobiville/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T14:32:53Z", - "expires_at": "2025-05-24T14:00:24Z", + "tested_at": "2024-12-01T14:50:22Z", + "expires_at": "2025-05-14T06:28:49Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 465, - "namelookup": 10, - "connection": 154, - "handshake": 158, - "response": 162, - "total": 950 + "redirect": 1174, + "namelookup": 36, + "connection": 161, + "handshake": 166, + "response": 176, + "total": 1712 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "candidat.pole-emploi.fr", + "host": "mobiville.pole-emploi.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "996", "open_ports": [ { "service": { - "name": "http-proxy", - "product": "F5 BIG-IP load balancer http proxy", + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ + { + "cvss": "9.8", + "id": "CVE-2023-38408", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "7.8", + "id": "CVE-2020-15778", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "7.5", + "id": "SSV:92579", + "type": "seebug", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "id": "PACKETSTORM:173661", + "type": "packetstorm", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "id": "CVE-2020-12062", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "7.5", + "id": "1337DAY-ID-26576", + "type": "zdt", + "is_exploit": "true" + }, + { + "cvss": "7.1", + "id": "CVE-2021-28041", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "7.0", + "id": "CVE-2021-41617", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "cvss": "6.5", + "id": "CVE-2023-51385", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "5.9", + "id": "CVE-2023-48795", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "5.9", + "id": "CVE-2020-14145", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "5.3", + "id": "CVE-2016-20012", + "type": "cve", + "is_exploit": "false" + }, + { + "cvss": "0.0", + "id": "PACKETSTORM:140261", + "type": "packetstorm", + "is_exploit": "true" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http-proxy", - "product": "F5 BIG-IP load balancer http proxy", + "name": "http", + "product": "nginx", "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "nrpe", + "id": "5666", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "F" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "port": "443", + "severity": "INFO", + "finding": "not offered + downgraded to weaker protocol" + }, + { + "id": "ALPN_HTTP2", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "offered with final" + "finding": "h2" }, { "id": "ALPN", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347989,7 +344252,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347997,7 +344260,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348005,7 +344268,7 @@ }, { "id": "cipherlist_LOW", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348013,7 +344276,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -348021,484 +344284,512 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "random" }, { - "id": "certificate_compression", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "id": "cert_compression", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "N/A" }, { "id": "clientAuth", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "41C9CBD611128361B6F3F399139CBCCB" + "finding": "0BB8D27F4E9B8E78BE58CF3F6DE53F41" }, { "id": "cert_serialNumberLen", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "AF43468E643613CCC5EA88AE2AA0F3256A3B13B5" + "finding": "8031B941ED6EC9F87554FF12770083B2D2EBD3A3" }, { "id": "cert_fingerprintSHA256", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "49CEC52C230B9A4724ED501C48735272C501400753B6EA1E2A45AA1394881316" + "finding": "D96F8B8E05811C6599AE71495F2E50F6BE6B0369DC1D7607E14E18EED3343DE2" }, { "id": "cert", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "candidat.pole-emploi.fr" + "finding": "mobiville.pole-emploi.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "candidat.pole-emploi.fr" + "finding": "mobiville.pole-emploi.fr" }, { "id": "cert_subjectAltName", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "candidat.pole-emploi.fr www.candidat.pole-emploi.fr" + "finding": "mobiville.pole-emploi.fr mobiville.francetravail.fr" }, { "id": "cert_trust", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "180 >= 60 days" + "finding": "163 >= 60 days" }, { "id": "cert_notBefore", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "2024-05-24 14:00" + "finding": "2024-05-14 06:28" }, { "id": "cert_notAfter", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "2025-05-24 14:00" + "finding": "2025-05-14 06:28" }, { "id": "cert_extlifeSpan", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "http://crl.entrust.net/level1m.crl" }, { "id": "cert_ocspURL", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "http://ocsp.entrust.net" }, { "id": "OCSP_stapling", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "2014-12-15 15:25" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "2030-10-15 15:55" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" }, { "id": "intermediate_cert <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "2009-07-07 17:25" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "2030-12-07 17:55" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { "id": "intermediate_cert_badOCSP", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "308 Permanent Redirect ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "Got no HTTP time, maybe try different URL?" + "finding": "0 seconds from localtime" }, { - "id": "HSTS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "id": "HTTP_headerTime", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "INFO", + "finding": "1733064625" + }, + { + "id": "HSTS_time", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "port": "443", + "severity": "OK", + "finding": "182 days (=15768000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "BigIP" + "finding": "nginx" }, { "id": "banner_application", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -348506,7 +344797,7 @@ }, { "id": "heartbleed", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -348515,7 +344806,7 @@ }, { "id": "CCS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -348524,7 +344815,7 @@ }, { "id": "ticketbleed", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -348533,16 +344824,16 @@ }, { "id": "ROBOT", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -348550,16 +344841,16 @@ }, { "id": "secure_client_renego", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable, mitigated" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -348568,7 +344859,7 @@ }, { "id": "BREACH", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -348577,7 +344868,7 @@ }, { "id": "POODLE_SSL", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -348586,14 +344877,14 @@ }, { "id": "fallback_SCSV", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -348602,7 +344893,7 @@ }, { "id": "FREAK", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -348611,7 +344902,7 @@ }, { "id": "DROWN", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -348620,16 +344911,16 @@ }, { "id": "DROWN_hint", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=49CEC52C230B9A4724ED501C48735272C501400753B6EA1E2A45AA1394881316" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D96F8B8E05811C6599AE71495F2E50F6BE6B0369DC1D7607E14E18EED3343DE2" }, { "id": "LOGJAM", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -348638,16 +344929,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -348656,16 +344947,16 @@ }, { "id": "LUCKY13", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -348674,7 +344965,7 @@ }, { "id": "RC4", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -348683,541 +344974,570 @@ }, { "id": "clientsimulation-android_60", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_81", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_90", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_X", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_11", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_12", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-ie_6_xp", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-java_7u25", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1703", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-go_1178", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-libressl_283", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_303", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "rating_spec", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "candidat.pole-emploi.fr/185.215.64.30", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "candidat.pole-emploi.fr/185.215.64.30", + "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "70" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation" + "url": "https://candidat.francetravail.fr/mobiville/" }, { - "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/runtime.2edba46cc413b272.js" + "type": "google fonts", + "url": "https://fonts.googleapis.com/icon?family=Material+Icons", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } }, { - "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/polyfills.0d9fce6bc5f026c9.js" + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@400;700;900&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/main.d1f31eea7cac08e8.js" + "url": "https://cdn.francetravail.fr/studio/design-system/css/styles.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/styles.7e198897bbf322fd.css" + "url": "https://candidat.francetravail.fr/mobiville/static/css/main.64ddbb1a.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/environment.json" + "url": "https://candidat.francetravail.fr/mobiville/static/js/main.cf4f559d.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/configuration/prod/configuration.json" + "url": "https://candidat.francetravail.fr/mobiville/static/js/592.9c544c5f.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/351.99cea197bff5ba07.js" + "url": "https://candidat.francetravail.fr/mobiville/static/js/840.65189b83.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/441.e27f4dba4088ac41.js" + "url": "https://candidat.francetravail.fr/mobiville/static/css/551.a1a00321.chunk.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/872.52d19c8033b4b742.js" + "url": "https://candidat.francetravail.fr/mobiville/static/js/551.a2d5a06c.chunk.js" }, { "type": "unknown", - "url": "https://cdn.tagcommander.com/4340/tc_PoleEmploi_24.js" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-regular.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/" + "url": "https://candidat.francetravail.fr/mobiville/api/cities/criterions" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/icons.7ae89a99da6cadce.ttf?wekjvp" + "url": "https://candidat.francetravail.fr/mobiville/api/region" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + "url": "https://cdn.tagcommander.com/4340/uat/tc_PoleEmploi_24.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-light-webfont.307a1a11c1d7ea10.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-regular.woff2" + }, + { + "type": "at-internet", + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "details": { + "id": "at-internet", + "message": "Ensure your TOS notify the AT internet usage" + } }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/icons.7ae89a99da6cadce.ttf?wekjvp" + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pwi3g7wckiaxo" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/simulation-ressources-formation/roboto-light-webfont.307a1a11c1d7ea10.woff2" + "url": "https://hd.pe.fr/event?s=475540&idclient=m45pwi3g7wckiaxo" }, { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } + "type": "unknown", + "url": "https://cdn.francetravail.fr/studio/legacy/css/theme-pole-emploi.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/runtime.869b6c19ced8eff7.js" + "url": "https://cdn.francetravail.fr/studio/legacy/css/webcomponent.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/polyfills.850f05145ba5b9ef.js" + "url": "https://cdn.francetravail.fr/studio/legacy/css/bootstrap.css" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/main.492250b771581322.js" + "url": "https://candidat.francetravail.fr/mobiville/static/js/100.c36904a3.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/scripts.33a46df0852d5b26.js" + "url": "https://candidat.francetravail.fr/mobiville/static/js/171.25b54386.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/styles.a663cb5abdd8b943.css" + "url": "https://candidat.francetravail.fr/mobiville/static/js/46.54f2b57e.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/environment.json" + "url": "https://candidat.francetravail.fr/mobiville/static/js/198.485fe196.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/configuration/prod/configuration.json" + "url": "https://candidat.francetravail.fr/mobiville/static/js/704.bfced7b7.chunk.js" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/527.d5fe62b44e3ee3a6.js" + "url": "https://candidat.francetravail.fr/mobiville/static/js/594.c8ea3f9a.chunk.js" }, { "type": "unknown", - "url": "https://api.francetravail.fr/json/menu-burger-candidat" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500.woff2" }, { "type": "unknown", - "url": "https://api.francetravail.fr/json/header" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500.woff2" }, { "type": "unknown", - "url": "https://api.francetravail.fr/json/footer" + "url": "https://candidat.francetravail.fr/mobiville/static/media/home-bg.4e918c4b2800bcb748fa.avif" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/icons.7ae89a99da6cadce.ttf?wekjvp" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-medium-webfont.194e3d38df48da35.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-light-webfont.307a1a11c1d7ea10.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-bold-webfont.f52d56320d58032f.woff2" + "url": "https://candidat.francetravail.fr/mobiville/api/helps/get-previews" }, { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } + "type": "unknown", + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/icons.7ae89a99da6cadce.ttf?wekjvp" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-regular-webfont.68e6d5c5e09a5255.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-medium-webfont.194e3d38df48da35.woff2" + "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500italic.woff2" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-light-webfont.307a1a11c1d7ea10.woff2" + "url": "https://candidat.francetravail.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" }, { "type": "unknown", - "url": "https://candidat.francetravail.fr/portail-simulateurs/roboto-bold-webfont.f52d56320d58032f.woff2" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vpgsedxy4fhu5d" + "url": "https://candidat.francetravail.fr/mobiville/help-logos/120px/action-logement.png" }, { "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vpgsedxy4fhu5d" + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" }, { "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" + "url": "https://candidat.francetravail.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" }, { "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" + "url": "https://candidat.francetravail.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" }, { "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + "url": "https://candidat.francetravail.fr/mobiville/api/cities/autocomplete" } ], "cookies": [ { - "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1804798730.20480.0000", + "name": "TS016fc3b0", + "value": "0150c672c32e64d2d50eded1d4dabf7216a0b6bebe4a61c5f56c303b58136f35684268afacfc9414bc4d50c42c86c5ebde56a5c6d9", + "domain": ".candidat.francetravail.fr", + "path": "/", + "expires": -1, + "size": 116, + "httpOnly": false, + "secure": false, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "BIGipServerPOOL_Z2_PROD_MOP_HTTP", + "value": "2023492362.20480.0000", "domain": "candidat.francetravail.fr", "path": "/", "expires": -1, - "size": 50, + "size": 53, + "httpOnly": true, + "secure": true, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "Path", + "value": "/", + "domain": "candidat.francetravail.fr", + "path": "/mobiville", + "expires": -1, + "size": 5, "httpOnly": true, "secure": true, "session": true, @@ -349227,21 +345547,80 @@ } ], "headers": { + "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:39:38 GMT", - "last-modified": "Thu, 07 Nov 2024 12:09:29 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1804798730.20480.0000; path=/; Httponly; Secure\nTS01fca309=0150c672c34a58dff7a33bb677dc7a17c88bb48285078e9a91b93cd418450ae3ecee45d0444d3f5379e973ab225ffb528c6197c54e; Path=/; Domain=.pn307-estimeformation-prod.apps.tas-prod.pole-emploi.intra;", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 14:49:36 GMT", + "last-modified": "Fri, 11 Oct 2024 14:29:54 GMT", + "referrer-policy": "no-referrer-when-downgrade", + "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS016fc3b0=0150c672c32e64d2d50eded1d4dabf7216a0b6bebe4a61c5f56c303b58136f35684268afacfc9414bc4d50c42c86c5ebde56a5c6d9; Path=/; Domain=.candidat.francetravail.fr;", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "transfer-encoding": "chunked", "vary": "Accept-Encoding", - "x-content-type-options": "nosniff'", - "x-robots-tag": "noindex, nofollow, nosnippet, noarchive", - "x-vcap-request-id": "99ff73fc-82d6-4a54-7171-3f634d0a6550" + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "candidat.pole-emploi.fr", - "ip": "185.215.64.30", + "hostname": "mobiville.pole-emploi.fr", + "ip": "51.68.80.218", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "candidat.francetravail.fr", + "ip": "185.215.64.85", "geoip": { "city": { "geoname_id": 2992287, @@ -349331,12 +345710,66 @@ "zh-CN": "瓦兹河谷省" } } - ] + ] + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.251.163.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } } }, { - "hostname": "candidat.francetravail.fr", - "ip": "185.215.64.85", + "hostname": "cdn.francetravail.fr", + "ip": "185.215.65.86", "geoip": { "city": { "geoname_id": 2992287, @@ -349501,7 +345934,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.104", + "ip": "18.160.18.16", "geoip": { "city": { "geoname_id": 5809844, @@ -349585,104 +346018,9 @@ ] } }, - { - "hostname": "api.francetravail.fr", - "ip": "185.215.64.96", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.42", + "ip": "18.160.18.3", "geoip": { "city": { "geoname_id": 5809844, @@ -349768,7 +346106,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "15.188.4.187", + "ip": "35.180.96.67", "geoip": { "city": { "geoname_id": 2988507, @@ -349962,28 +346300,52 @@ }, "wappalyzer": { "urls": { - "https://candidat.pole-emploi.fr/simulation-ressources-formation": { - "status": 308, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://candidat.pole-emploi.fr/simulation-ressources-formation (https://candidat.pole-emploi.fr/simulation-ressources-formation)" + "https://mobiville.pole-emploi.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://mobiville.pole-emploi.fr/ (https://mobiville.pole-emploi.fr/)" } }, "technologies": [ { - "slug": "f5-bigip", - "name": "F5 BigIP", - "description": "F5's BIG-IP is a family of products covering software and hardware designed around application availability, access control, and security solutions.", + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", "confidence": 100, "version": null, - "icon": "F5.png", - "website": "https://www.f5.com/products/big-ip-services", - "cpe": "cpe:2.3:a:f5:big-ip:*:*:*:*:*:*:*:*", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, { "id": 64, "slug": "reverse-proxies", "name": "Reverse proxies" } - ] + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true } ] }, @@ -349991,12 +346353,11 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "finalUrl": "https://candidat.francetravail.fr/portail-simulateurs/", - "fetchTime": "2024-11-24T14:38:30.666Z", + "requestedUrl": "https://mobiville.pole-emploi.fr/", + "finalUrl": "https://candidat.francetravail.fr/mobiville/", + "fetchTime": "2024-12-01T14:49:08.015Z", "runWarnings": [ - "The page loaded too slowly to finish within the time limit. Results may be incomplete.", - "The page may not be loading as expected because your test URL (https://candidat.pole-emploi.fr/simulation-ressources-formation) was redirected to https://candidat.francetravail.fr/portail-simulateurs/. Try testing the second URL directly." + "The page may not be loading as expected because your test URL (https://mobiville.pole-emploi.fr/) was redirected to https://candidat.francetravail.fr/mobiville/. Try testing the second URL directly." ], "categories": { "performance": { @@ -350007,7 +346368,7 @@ "snapshot" ], "id": "performance", - "score": 0.38 + "score": 0.32 }, "accessibility": { "title": "Accessibility", @@ -350018,7 +346379,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.93 + "score": 0.96 }, "best-practices": { "title": "Best Practices", @@ -350028,7 +346389,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -350039,7 +346400,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -350049,7 +346410,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.5 } }, "audits": { @@ -350059,53 +346420,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 19467, + "numericValue": 10897, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 11175, - "firstMeaningfulPaint": 14185, - "largestContentfulPaint": 18059, - "interactive": 19467, - "speedIndex": 11175, - "totalBlockingTime": 346, - "maxPotentialFID": 165, - "cumulativeLayoutShift": 0.004535733646816678, - "cumulativeLayoutShiftMainFrame": 0.004535733646816678, - "totalCumulativeLayoutShift": 0.004535733646816678, + "firstContentfulPaint": 4742, + "firstMeaningfulPaint": 6467, + "largestContentfulPaint": 11358, + "interactive": 10897, + "speedIndex": 6609, + "totalBlockingTime": 301, + "maxPotentialFID": 222, + "cumulativeLayoutShift": 0.6376253689659966, + "cumulativeLayoutShiftMainFrame": 0.6376253689659966, + "totalCumulativeLayoutShift": 0.6376253689659966, "observedTimeOrigin": 0, - "observedTimeOriginTs": 402462378, + "observedTimeOriginTs": 322430132, "observedNavigationStart": 0, - "observedNavigationStartTs": 402462378, - "observedFirstPaint": 130, - "observedFirstPaintTs": 402592869, - "observedFirstContentfulPaint": 8, - "observedFirstContentfulPaintTs": 402470785, - "observedFirstContentfulPaintAllFrames": 8, - "observedFirstContentfulPaintAllFramesTs": 402470785, - "observedFirstMeaningfulPaint": 1027, - "observedFirstMeaningfulPaintTs": 403489598, - "observedLargestContentfulPaint": 1094, - "observedLargestContentfulPaintTs": 403555950, - "observedLargestContentfulPaintAllFrames": 1094, - "observedLargestContentfulPaintAllFramesTs": 403555950, - "observedTraceEnd": 42275, - "observedTraceEndTs": 444737465, - "observedLoad": 628, - "observedLoadTs": 403090783, - "observedDomContentLoaded": 0, - "observedDomContentLoadedTs": 402462807, - "observedCumulativeLayoutShift": 0.004535733646816678, - "observedCumulativeLayoutShiftMainFrame": 0.004535733646816678, - "observedTotalCumulativeLayoutShift": 0.004535733646816678, - "observedFirstVisualChange": 1038, - "observedFirstVisualChangeTs": 403500378, - "observedLastVisualChange": 1721, - "observedLastVisualChangeTs": 404183378, - "observedSpeedIndex": 1109, - "observedSpeedIndexTs": 403571357 + "observedNavigationStartTs": 322430132, + "observedFirstPaint": 1514, + "observedFirstPaintTs": 323943993, + "observedFirstContentfulPaint": 1514, + "observedFirstContentfulPaintTs": 323943993, + "observedFirstContentfulPaintAllFrames": 1514, + "observedFirstContentfulPaintAllFramesTs": 323943993, + "observedFirstMeaningfulPaint": 2054, + "observedFirstMeaningfulPaintTs": 324484263, + "observedLargestContentfulPaint": 2122, + "observedLargestContentfulPaintTs": 324551681, + "observedLargestContentfulPaintAllFrames": 2122, + "observedLargestContentfulPaintAllFramesTs": 324551681, + "observedTraceEnd": 4774, + "observedTraceEndTs": 327203861, + "observedLoad": 1478, + "observedLoadTs": 323908282, + "observedDomContentLoaded": 1477, + "observedDomContentLoadedTs": 323907615, + "observedCumulativeLayoutShift": 0.6376253689659966, + "observedCumulativeLayoutShiftMainFrame": 0.6376253689659966, + "observedTotalCumulativeLayoutShift": 0.6376253689659966, + "observedFirstVisualChange": 1690, + "observedFirstVisualChangeTs": 324120132, + "observedLastVisualChange": 2490, + "observedLastVisualChangeTs": 324920132, + "observedSpeedIndex": 1884, + "observedSpeedIndexTs": 324314527 }, { "lcpInvalidated": false @@ -350123,23 +346484,23 @@ "type": "debugdata", "items": [ { - "numRequests": 64, + "numRequests": 55, "numScripts": 17, - "numStylesheets": 2, - "numFonts": 8, - "numTasks": 1426, - "numTasksOver10ms": 18, - "numTasksOver25ms": 7, - "numTasksOver50ms": 2, + "numStylesheets": 8, + "numFonts": 7, + "numTasks": 1112, + "numTasksOver10ms": 11, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.283, - "throughput": 10752440.840357784, - "maxRtt": 91.76299999999999, - "maxServerLatency": 85.35999999999997, - "totalByteWeight": 2337199, - "totalTaskTime": 755.3060000000005, - "mainDocumentTransferSize": 2123 + "rtt": 5.159999999999999, + "throughput": 8468629.942989955, + "maxRtt": 92.708, + "maxServerLatency": 13.861999999999995, + "totalByteWeight": 1020796, + "totalTaskTime": 509.5179999999991, + "mainDocumentTransferSize": 1577 } ] } @@ -350152,19 +346513,18 @@ "grade": "A" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://www.francetravail.fr/informations/aide-et-accessibilite.html" + "mention": null }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", + "mention": null, "maxScore": 0, "score": 0, "missingWords": [], @@ -350172,101 +346532,54 @@ }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 5, - "score": 2, - "missingWords": [ - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [ - "at-internet" - ], - "declarationUrl": "https://www.francetravail.fr/informations/informations-legales-et-conditio/protection-des-donnees-personnel.html" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] } ], "betagouv": { - "id": "estime.formation", + "id": "mobiville", "type": "startup", "attributes": { - "name": "Mes Ressources Formation Ex Estime Formation", - "pitch": "Favoriser l'entrée en formation en anticipant l’impact d’une rémunération de formation sur les aides et allocations", - "stats_url": "https://candidat.francetravail.fr/simulation-ressources-formation/stats", - "link": "https://candidat.francetravail.fr/portail-simulateurs/accueil-formation", - "contact": "dctsiestimeformation.00885@pole-emploi.fr", - "content_url_encoded_markdown": "%3E%20%E2%9A%A0%EF%B8%8F%20Pour%20acc%C3%A9der%20%C3%A0%20Mes%20Ressources%20Formation%20Ex%20Estime%20Formation%2C%20suivre%20ce%20lien%20%5Bhttps%3A%2F%2Fcandidat.francetravail.fr%2Fportail-simulateurs%2Faccueil-formation%5D%28%29%0A%0AIl%20est%20%C3%A9galement%20disponible%20dans%20le%20guide%20des%20simulateurs%20sur%20le%20site%20France%20Travail%20%5Bhttps%3A%2F%2Fcandidat.francetravail.fr%2Fportail-simulateurs%2F%20%5D%28%29%0A%0A%2A%2AContexte%2A%2A%0A%0ALa%20formation%20professionnelle%20des%20demandeurs%20d%E2%80%99emploi%20est%20un%20enjeu%20strat%C3%A9gique%20pour%20France%20Travail.%0AL%27aspect%20financier%20est%20l%27un%20des%20principaux%20freins%20%C3%A0%20l%27entr%C3%A9e%20en%20formation.%0A%0ALe%20simulateur%20reprise%20d%27emploi%20anciennement%20Estime%20reprise%20d%27emploi%20a%20prouv%C3%A9%20que%20ce%20frein%20financier%20pouvait%20%C3%AAtre%20lev%C3%A9%20dans%20le%20cas%20d%27une%20reprise%20d%27emploi.%0A%0A%0A%0A%2A%2AProbl%C3%A8me%2A%2A%0A%0AParce%20que%20c%27est%20tr%C3%A8s%20compliqu%C3%A9%20de%20s%27y%20retrouver%20dans%20tous%20les%20dispositifs%2C%20les%20b%C3%A9n%C3%A9ficiaires%20pensent%20qu%27ils%20sont%20perdants%20financi%C3%A8rement%20s%27ils%20rentrent%20en%20formation%20alors%20qu%27en%20r%C3%A9alit%C3%A9%20dans%20la%20plupart%20des%20cas%2C%20ils%20sont%20gagnants%20financi%C3%A8rement%20%21%0A%0ALes%20accompagnants%20du%20R%C3%A9seau%20Pour%20l%27Emploi%20%28conseillers%20P%C3%B4le%20emploi%2C%20prestataires%20des%20d%C3%A9partements%2C%20associations..%29%20ne%20savent%20pour%20la%20plupart%20pas%20calculer%20l%27impact%20financier%20d%27une%20r%C3%A9mun%C3%A9ration%20sur%20les%20aides%20et%20allocations%20per%C3%A7ues%20par%20le%20b%C3%A9n%C3%A9ficiaires.%20Ils%20ne%20peuvent%20donc%20pas%20lever%20ce%20frein%20%C3%A0%20l%27entr%C3%A9e%20en%20formation.%0A%0A%0A%0A%2A%2ASolution%2A%2A%0A%0AUn%20simulateur%20permettant%20d%27estimer%20l%27impact%20d%27une%20r%C3%A9mun%C3%A9ration%20de%20formation%20sur%20l%27%C3%A9quilibre%20financier%20des%20b%C3%A9n%C3%A9ficiaires.%20Il%20est%20accessible%20en%20parcours%20authentifi%C3%A9%20et%20non%20authentifi%C3%A9%20avec%20l%27assistance%20d%27un%20accompagnant%20ou%20en%20toute%20autonomie.%0A%0APour%20obtenir%20une%20estimation%2C%20il%20suffit%20de%20remplir%20le%20formulaire%20du%20simulateur%20et%20vous%20obtiendrez%20instantan%C3%A9ment%20une%20projection%20d%C3%A9taill%C3%A9e%20des%20ressources%20du%20b%C3%A9n%C3%A9ficiaires%20s%27il%20rentre%20en%20formation.%0A%0ACe%20simulateur%20permet%20d%27acc%C3%A9der%20%C3%A0%203%20niveaux%20de%20simulation%20selon%20le%20degr%C3%A9%20de%20maturit%C3%A9%20du%20projet%20de%20formation%3A%0A%2A%20une%20estimation%20simplifi%C3%A9e%20du%20montant%20de%20r%C3%A9mun%C3%A9ration%20uniquement%0A%2A%20une%20estimation%20d%C3%A9taill%C3%A9e%20du%20montant%20de%20la%20r%C3%A9mun%C3%A9ration%20de%20formation%20et%20des%20allocations%20%0A%2A%20%20une%20estimation%20personnalis%C3%A9e%20du%20montant%20de%20la%20r%C3%A9mun%C3%A9ration%20de%20formation%2C%20des%20allocations%20et%20des%20aides%20pour%20un%20projet%20de%20formation%20d%C3%A9fini%0A%0APour%20les%20simulations%20d%C3%A9taill%C3%A9es%20et%20simplifi%C3%A9es%2C%20le%20r%C3%A9sultat%20indiquera%20jusqu%27%C3%A0%2010%20aides%20et%20allocations%20selon%20la%20situation%20du%20foyer%20%28RSA%2C%20ASS%2C%20Prime%20d%27activit%C3%A9%2C%20Aide%20au%20logement%2C%20aide%20%C3%A0%20la%20mobilit%C3%A9%20....%29%0A%0A%20Il%20y%20a%20%C3%A9galement%20la%20possibilit%C3%A9%20en%20fin%20de%20simulation%20d%27%C3%AAtre%20redirig%C3%A9%20vers%20d%27autres%20services%20en%20lien%20avec%20le%20projet%20de%20formation%20%28%20Trouver%20ma%20formation%2C%20Immersion%20Facilit%C3%A9e%2C%20Mes%20Aides%2C%20Mes%20%C3%A9v%C3%A8nements%20Emploi%2C%20Mon%20enfant.fr%2C%20le%20site%20de%20la%20R%C3%A9gion%20et%20prochainement%20M%C3%A9tier%20Scope%29%0A%0ALe%20b%C3%A9n%C3%A9ficiaire%20pourra%20%C3%A9galement%20t%C3%A9l%C3%A9charger%20un%20PDF%20imprimable%20du%20r%C3%A9sultat%20de%20l%27estimation.%0A%0A%0A%2A%2AStrat%C3%A9gie%2A%2A%0A%0ADans%20un%20premier%20temps%2C%20nous%20nous%20sommes%20appuy%C3%A9s%20sur%20les%20accompagnants%20du%20R%C3%A9seau%20Pour%20l%27Emploi%20pour%20d%C3%A9ployer%20la%20solution.%20Aujourd%27hui%2C%20ils%20sont%20nos%20principaux%20ambassadeurs%20et%20nous%20continuons%20%C3%A0%20leur%20d%C3%A9ployer%20la%20solution%20d%C3%A8s%20l%27ouverture%20d%27un%20nouveau%20territoire.%0ADans%20le%20cadre%20de%20l%27exp%C3%A9rimentation%20RSA%2C%20le%20service%20a%20tout%20d%27abord%20%C3%A9t%C3%A9%20ouvert%20pour%20les%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%20puis%20nous%20avons%20ajout%C3%A9%20petit-%C3%A0-petit%20d%27autres%20publics%20et%20d%27autres%20dispositifs%20afin%20de%20toucher%20%C3%A0%20terme%20la%20majorit%C3%A9%20des%20b%C3%A9n%C3%A9ficiaires%20des%20minimas%20sociaux%20%20%28environ%202%2C5%20millions%29.%20Nous%20envisageons%20%C3%A9galement%20d%27ouvrir%20aux%20autres%20publics%20avec%20de%20faibles%20ressources%20qui%20ont%20un%20besoin%20de%20se%20projeter%20financi%C3%A8rement%20avant%20de%20se%20lancer%20dans%20un%20projet%20de%20formation.%20%0A%0A%2A%2ANotre%20objectif%20est%20d%27augmenter%20le%20taux%20d%27entr%C3%A9e%20en%20formation%20des%20personnes%20qui%20auront%20b%C3%A9n%C3%A9fici%C3%A9%20de%20notre%20solution.%2A%2A%0A%0ADepuis%20le%2015%2F04%2F2024%2C%20Estime%20Formation%20est%20directement%20accessible%20aux%20allocataires%20depuis%20le%20guide%20des%20simulateurs.%20En%20compl%C3%A9ment%20de%20l%27ouverture%20aux%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%2C%20de%20l%27ASS%20et%20les%20personnes%20sans%20ressource%20qui%20ont%20un%20projet%20de%20formation%2C%20le%20simulateur%20permet%20%C3%A9galement%20de%20se%20projeter%20financi%C3%A8rement%20lorsqu%27on%20a%20pas%20de%20projet%20de%20formation.%0APour%20les%20b%C3%A9n%C3%A9ficiaires%20de%20l%27ACEJ%2C%20ils%20peuvent%20acc%C3%A9der%20%C3%A0%20la%20simulation%20leur%20permettant%20d%27obtenir%20le%20moment%20de%20leur%20r%C3%A9mun%C3%A9ration.%0A%0ANous%20envisageons%20d%27ouvrir%20le%20simulateur%20pour%20les%20formations%20%C3%A0%20temps%20partiel%20et%20aux%20b%C3%A9n%C3%A9ficiaires%20de%20l%27ARE%20ainsi%20que%20les%20personnes%20percevant%20d%C3%A9j%C3%A0%20la%20prime%20d%27activit%C3%A9.%0A%0APour%20les%20autres%20publics%2C%20ils%20ont%20acc%C3%A8s%20%C3%A0%20une%20page%20d%27information%20sp%C3%A9cifique%20selon%20leur%20situation.%0A%0A%2AOuvert%20actuellement%20sur%20les%208%20r%C3%A9gions%20%3A%2A%0A-%20Haut%20de%20France%0A-%20Pays%20de%20la%20Loire%0A-%20R%C3%A9gion%20Sud%20PACA%0A-%20Occitanie%0A-%20Nouvelle%20Aquitaine%0A-%20Bourgogne-Franche-Comt%C3%A9%0A-%20Grand%20Est%20%0A-%20Centre%20Val%20de%20Loire%0A%0AEt%20d%27ici%20la%20fin%20de%20l%27ann%C3%A9e%202024%2C%20nous%20envisageons%20d%27ouvrir%20%C3%A0%20l%27ensemble%20de%20la%20M%C3%A9tropole%20et%20d%C3%A9but%202025%2C%20aux%20D%C3%A9partements%20et%20R%C3%A9gions%20d%27Outre-Mer.%0A", - "events": [ - { - "name": "product_launch", - "date": "2023-10-23", - "comment": "Ouverture aux accompagnants uniquement" - }, - { - "name": "committee", - "date": "2024-01-10", - "comment": "Passage en croissance" - }, - { - "name": "other", - "date": "2024-01-11", - "comment": "Ouverture aux bénéficiaires de l'ASS" - }, - { - "name": "other", - "date": "2024-03-13", - "comment": "Automatisation du calcul de la rémunération de formation" - }, - { - "name": "other", - "date": "2024-04-16", - "comment": "Accessibles aux usagers directement depuis le guide des simulateurs sur le site France Travail" - }, - { - "name": "other", - "date": "2024-04-30", - "comment": "Ouverture 1er version du parcours pour les personnes n'ayant pas de projet de formation validé: accès à une estimation détaillée du montant de rémunération de formation et des allocations" - }, - { - "name": "other", - "date": "2024-05-30", - "comment": "Ouverture aux personnes sans ressource" - }, - { - "name": "other", - "date": "2024-07-16", - "comment": "Ouverture 2nd version du parcours pour les personnes n'ayant pas de projet de formation validé: accès à une estimation du montant de rémunération uniquement" - }, - { - "name": "other", - "date": "2024-07-22", - "comment": "Ouvertures parcours avec estimation du montant de rémunération uniquement pour les bénéficiaires de l'ACEJ" - } - ], + "name": "Mobiville", + "pitch": "Diminuer le nombre d'emplois non pourvus en facilitant la mobilité géographique des actifs", + "stats_url": "https://candidat.francetravail.fr/mobiville//stats", + "link": "https://candidat.francetravail.fr/mobiville/", + "repository": "https://github.com/StartupsPoleEmploi/mobiville", + "contact": "mobiville@francetravail.fr", + "content_url_encoded_markdown": "%2A%2AProbl%C3%A8me%2A%2A%0A%0AVous%20connaissez%20le%20%2Ad%C3%A9sajustement%20g%C3%A9ographique%2A%20%3F%20Dans%20certains%20bassins%20d%27emploi%2C%20les%20recruteurs%20peinent%20%C3%A0%20trouver%20des%20talents%2C%20tandis%20que%20dans%20d%E2%80%99autres%20territoires%2C%20les%20personnes%20qui%20ont%20ces%20comp%C3%A9tences%20sont%20demandeurs%20d%27emploi.%20Et%20comme%20il%20est%20plus%20facile%20de%20faire%20bouger%20les%20personnes%20que%20les%20entreprises%2C%20nous%20allons%20essayer%20de%20faciliter%20la%20mobilit%C3%A9%20des%20candidats.%0A%0AComment%20r%C3%A9duire%20le%20d%C3%A9sajustement%20g%C3%A9ographique%20entre%20la%20localisation%20des%20comp%C3%A9tences%20candidats%20et%20les%20besoins%20des%20territoires%20%3F%0A%0A%2A%2AContexte%2A%2A%0A%0ALa%20mobilit%C3%A9%20reste%20synonyme%20de%20difficult%C3%A9%20pour%20les%20actifs%20%28demandeurs%20d%27emploi%20et%20salari%C3%A9s%29%20qui%20ne%20connaissent%20pas%20les%20dispositifs%20cr%C3%A9%C3%A9s%20pour%20les%20aider%20%28727M%20d%E2%80%99euros%20pr%C3%A9vus%20par%20Action%20logement%20chaque%20ann%C3%A9e%29.%20Les%20personnes%20qui%20envisagent%20de%20bouger%20passent%20%C3%A0%20l%27action%20pour%20supprimer%20une%20des%20motivations%20%C3%A0%20la%20fois%20professionnelles%20et%20personnelles%20%3B%20il%20faut%20donc%20trouver%20une%20approche%20qui%20englobe%20projet%20de%20vie%20et%20projet%20professionnel.%0A%0A%2A%2AProduit%2A%2A%0A%0AA%20l%27issue%20d%27une%20phase%20d%27investigation%20de%20plusieurs%20semaines%20et%20d%27une%20s%C3%A9rie%20d%27entretiens%20utilisateurs%2C%20nous%20faisons%20le%20choix%20de%20d%C3%A9velopper%20un%20premier%20produit%20qui%20aidera%20les%20actifs%20%C3%A0%20identifier%20les%20territoires%20les%20plus%20propices%20%C3%A0%20leur%20projet%20de%20vie%20et%20leur%20retour%20%C3%A0%20l%E2%80%99emploi%20%3A%20quelle%20est%20la%20%22ville%20id%C3%A9ale%22%20pour%20s%E2%80%99installer%2C%20devenir%20propri%C3%A9taire%20et%20construire%20sa%20carri%C3%A8re%20%3F%0A%0ACible%20prioritaire%20%3A%20l%E2%80%99ensemble%20des%20demandeurs%20d%E2%80%99emploi%20et%20salari%C3%A9s%20qui%20envisagent%20une%20mobilit%C3%A9%20r%C3%A9sidentielle%20et%20qui%20sont%20sans%20enfants%20et%20sans%20conjoints%20%28donc%20plus%20mobile%20et%20sur%20de%20plus%20longues%20distances%29%2C%20soit%20une%20population%20d%27environ%201%20024%20500%20personnes.%0A%0AUne%20%C3%A9volution%20majeure%20sur%20l%E2%80%99outil%2C%20car%20dor%C3%A9navant%2C%20Mobiville%20int%C3%A8gre%20tous%20les%20m%C3%A9tiers%20du%20ROME.%20Gr%C3%A2ce%20%C3%A0%20son%20moteur%20de%20recherche%2C%20la%20mobilit%C3%A9%20g%C3%A9ographique%20professionnelle%20n%27a%20jamais%20%C3%A9t%C3%A9%20aussi%20simple%20et%20facilit%C3%A9e%20%28infos%20sur%20le%20logement%2C%20le%20cadre%20de%20vie%20et%20les%20aides%20%C3%A0%20la%20mobilit%C3%A9%20pour%20chaque%20territoire%29.%0A", + "events": [], "phases": [ { "name": "investigation", - "start": "2022-11-20", - "end": "" + "start": "2020-04-01", + "end": "2020-06-04" }, { "name": "construction", - "start": "2023-01-20", + "start": "2020-06-04", "end": "" }, { "name": "acceleration", - "start": "2024-01-11", + "start": "2021-09-01", + "end": "" + }, + { + "name": "success", + "start": "2023-04-18", "end": "" } ], "sponsors": [ + "action-logement", "francetravail" ], "thematiques": [ - "Travail / Emploi", - "Formation" - ], - "accessibility_status": "partiellement conforme" + "Travail / Emploi" + ] }, "relationships": { "incubator": { @@ -350281,16 +346594,16 @@ { "width": 1920, "height": 1080, - "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "size": 2374.101, - "nodes": 441, - "requests": 54, + "url": "https://mobiville.pole-emploi.fr", + "size": 1173.618, + "nodes": 376, + "requests": 52, "grade": "C", - "score": 59, - "ges": 1.82, - "water": 2.73, + "score": 66, + "ges": 1.68, + "water": 2.52, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:35:30.721378", + "date": "2024-12-01 14:46:03.699103", "page_type": null } ], @@ -350299,78 +346612,76 @@ "detected": false }, "summary": { - "httpGrade": "F", + "httpGrade": "B-", "apdex": 1, "apdexGrade": "A", - "uptime": 99.922, + "uptime": 99.97, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-05-24T14:00:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 1, + "testsslExpireDate": "2025-05-14T06:28:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 47, - "lighthouse_performance": 0.38, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.93, + "trackersCount": 48, + "lighthouse_performance": 0.32, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, + "lighthouse_pwa": 0.5, "lighthouse_pwaGrade": "D", "statsGrade": "A", - "githubRepositoryGrade": "F", + "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "B", + "declaration-a11y": "F", "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "D", + "declaration-rgpd-pc": "F", "ecoindexGrade": "C", "dsfrGrade": "F" } }, { "404": null, - "url": "https://mobiville.pole-emploi.fr", - "category": "pole-emploi", - "betaId": "mobiville", - "tools": { - "nmap": false - }, + "url": "https://monservicesecurise.cyber.gouv.fr", + "category": "lab-innov-anssi", + "betaId": "homologation", + "repositories": [ + "betagouv/mon-service-securise" + ], "http": { - "url": "https://mobiville.pole-emploi.fr", + "url": "https://monservicesecurise.cyber.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 10:49:32 GMT", - "grade": "B-", + "end_time": "Sun, 20 Oct 2024 10:49:48 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", + "Cache-Control": "no-cache", + "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 10:49:31 GMT", - "Last-Modified": "Tue, 16 Jul 2024 16:59:33 GMT", - "Referrer-Policy": "no-referrer-when-downgrade", - "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS016fc3b0=0150c672c3cdad064530cba4e53a74a85655a3c096a278e26a5e254ba900add3926c6c2957fbb7c8cd2e6b2aceac38e7342b8de352; Path=/; Domain=.candidat.francetravail.fr; ", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", + "Date": "Sun, 20 Oct 2024 10:49:48 GMT", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Xss-Protection": "1; mode=block" + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 57059657, - "score": 65, - "start_time": "Sun, 20 Oct 2024 10:49:28 GMT", + "scan_id": 57059677, + "score": 75, + "start_time": "Sun, 20 Oct 2024 10:49:47 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { @@ -350392,91 +346703,38 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "BIGipServerPOOL_PROD_HTTP_ERR": { - "domain": "candidat.francetravail.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - }, - "BIGipServerPOOL_Z2_PROD_MOP_HTTP": { - "domain": "candidat.francetravail.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - }, - "BIGipServerPOOL_Z5_PROD_MOP_HTTP": { - "domain": "candidat.francetravail.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - }, - "Path": { - "domain": "candidat.francetravail.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/mobiville", - "port": null, - "samesite": false, - "secure": true - }, - "TS016fc3b0": { - "domain": ".candidat.francetravail.fr", - "expires": null, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": false - } - }, + "data": null, "sameSite": null }, - "pass": false, - "result": "cookies-without-secure-flag-but-protected-by-hsts", - "score_description": "Cookies set without using the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -5 + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "*", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://candidat.francetravail.fr/mobiville/", + "destination": "https://monservicesecurise.cyber.gouv.fr/", "redirects": true, "route": [ - "http://mobiville.pole-emploi.fr/", - "https://mobiville.pole-emploi.fr/", - "https://candidat.pole-emploi.fr/mobiville/", - "https://candidat.francetravail.fr/mobiville/" + "http://monservicesecurise.cyber.gouv.fr/", + "https://monservicesecurise.cyber.gouv.fr/" ], "status_code": 200 }, @@ -350489,23 +346747,23 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer-when-downgrade", + "data": "no-referrer", "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 31536000, - "preload": true, + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, "preloaded": false }, "pass": true, @@ -350517,29 +346775,12 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-breadcrumb.js": { - "crossorigin": null, - "integrity": null - }, - "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-footer.js": { - "crossorigin": null, - "integrity": null - }, - "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-header.js": { - "crossorigin": null, - "integrity": null - }, - "https://composants-pe-communs.pole-emploi.fr/commun/v1/pe-subnav.js": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -350577,14 +346818,14 @@ } }, "updownio": { - "token": "76mj", - "url": "https://mobiville.pole-emploi.fr", + "token": "uk3g", + "url": "https://monservicesecurise.cyber.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.907, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T14:38:22Z", + "up_since": "2024-11-29T06:12:27Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -350593,279 +346834,135 @@ "published": true, "disabled_locations": [], "recipients": [ + "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:45:22Z", - "next_check_at": "2024-11-24T14:46:22Z", - "created_at": "2024-01-15T14:01:08Z", + "last_check_at": "2024-12-01T15:02:26Z", + "next_check_at": "2024-12-01T15:03:26Z", + "created_at": "2024-05-21T21:45:32Z", "mute_until": null, - "favicon_url": "https://candidat.francetravail.fr/mobiville/favicon.ico", + "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T14:44:27Z", - "expires_at": "2025-05-14T06:28:49Z", + "tested_at": "2024-12-01T14:53:29Z", + "expires_at": "2025-03-20T22:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.984, + "apdex": 1, "timings": { - "redirect": 1116, - "namelookup": 35, - "connection": 158, - "handshake": 168, - "response": 450, - "total": 1926 + "redirect": 0, + "namelookup": 34, + "connection": 99, + "handshake": 107, + "response": 144, + "total": 384 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" }, "nmap": { - "host": "mobiville.pole-emploi.fr", + "host": "monservicesecurise.cyber.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "998", "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", - "vulnerabilities": [ - { - "cvss": "9.8", - "id": "CVE-2023-38408", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.8", - "id": "CVE-2020-15778", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.5", - "id": "SSV:92579", - "type": "seebug", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "CVE-2020-12062", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "7.1", - "id": "CVE-2021-28041", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.0", - "id": "CVE-2021-41617", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "6.8", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.8", - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.5", - "id": "CVE-2023-51385", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2023-48795", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2020-14145", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.3", - "id": "CVE-2016-20012", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "is_exploit": "true" - } - ] - } - }, { "service": { "name": "http", - "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", + "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "nrpe", - "id": "5666", - "vulnerabilities": [] - } } ], - "grade": "F" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "INFO", - "finding": "not offered + downgraded to weaker protocol" + "severity": "OK", + "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -350873,7 +346970,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -350881,7 +346978,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -350889,7 +346986,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -350897,7 +346994,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -350905,7 +347002,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -350913,504 +347010,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "random" }, { - "id": "cert_compression", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "id": "certificate_compression", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "N/A" + "finding": "none" }, { "id": "clientAuth", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "RSA 3072 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "0BB8D27F4E9B8E78BE58CF3F6DE53F41" + "finding": "C113406987D2D1D7E298F4252D17F097" }, { "id": "cert_serialNumberLen", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "8031B941ED6EC9F87554FF12770083B2D2EBD3A3" + "finding": "FD568056AEEB9400A8D038BEEA0CB950A321A785" }, { "id": "cert_fingerprintSHA256", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "D96F8B8E05811C6599AE71495F2E50F6BE6B0369DC1D7607E14E18EED3343DE2" + "finding": "840F1F02564FE46BB897E4C459FDD1B06D1DF2FEA01489DCD055C82AF4925DCD" }, { "id": "cert", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", - "finding": "mobiville.pole-emploi.fr" + "finding": "monservicesecurise.cyber.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "mobiville.pole-emploi.fr" + "finding": "monservicesecurise.cyber.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "mobiville.pole-emploi.fr mobiville.francetravail.fr" + "finding": "monservicesecurise.cyber.gouv.fr monservicesecurise.ssi.gouv.fr www.monservicesecurise.cyber.gouv.fr metabase.monservicesecurise.ssi.gouv.fr metabase.monservicesecurise.cyber.gouv.fr aide.monservicesecurise.ssi.gouv.fr aide.monservicesecurise.cyber.gouv.fr www.monservicesecurise.ssi.gouv.fr" }, { "id": "cert_trust", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", - "finding": "170 >= 60 days" + "finding": "109 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "2024-05-14 06:28" + "finding": "2024-03-20 23:00" }, { "id": "cert_notAfter", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", - "finding": "2025-05-14 06:28" + "finding": "2025-03-20 22:59" }, { "id": "cert_extlifeSpan", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "http://crl.entrust.net/level1m.crl" + "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "http://ocsp.entrust.net" + "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=certigna.fr, issue=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" + "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" + "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "2014-12-15 15:25" + "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", - "finding": "2030-10-15 15:55" + "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "INFO", - "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" - }, - { - "id": "intermediate_cert <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "INFO", - "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "INFO", - "finding": "2009-07-07 17:25" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "OK", - "finding": "2030-12-07 17:55" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" + "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "1732459449" + "finding": "1733065282" }, { "id": "HSTS_time", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", - "finding": "182 days (=15768000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "id": "X-Frame-Options", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Referrer-Policy", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -351418,7 +347494,7 @@ }, { "id": "heartbleed", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -351427,7 +347503,7 @@ }, { "id": "CCS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -351436,7 +347512,7 @@ }, { "id": "ticketbleed", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -351445,16 +347521,16 @@ }, { "id": "ROBOT", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -351462,7 +347538,7 @@ }, { "id": "secure_client_renego", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -351471,7 +347547,7 @@ }, { "id": "CRIME_TLS", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -351480,16 +347556,16 @@ }, { "id": "BREACH", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -351498,14 +347574,14 @@ }, { "id": "fallback_SCSV", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -351514,7 +347590,7 @@ }, { "id": "FREAK", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -351523,7 +347599,7 @@ }, { "id": "DROWN", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -351532,16 +347608,16 @@ }, { "id": "DROWN_hint", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D96F8B8E05811C6599AE71495F2E50F6BE6B0369DC1D7607E14E18EED3343DE2" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=840F1F02564FE46BB897E4C459FDD1B06D1DF2FEA01489DCD055C82AF4925DCD" }, { "id": "LOGJAM", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -351550,7 +347626,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -351559,7 +347635,7 @@ }, { "id": "BEAST", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -351568,7 +347644,7 @@ }, { "id": "LUCKY13", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -351577,7 +347653,7 @@ }, { "id": "winshock", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -351586,7 +347662,7 @@ }, { "id": "RC4", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -351595,597 +347671,410 @@ }, { "id": "clientsimulation-android_60", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mobiville.pole-emploi.fr/51.68.80.218", + "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", "port": "443", "severity": "INFO", - "finding": "116" + "finding": "58" } ], "thirdparties": { "trackers": [ - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/" - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/icon?family=Material+Icons", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, { "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@400;700;900&display=swap", + "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", "details": { "id": "google fonts", "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/css/styles.css" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/css/main.64ddbb1a.css" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/main.cf4f559d.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/592.9c544c5f.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/840.65189b83.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/css/551.a1a00321.chunk.css" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/551.a2d5a06c.chunk.js" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-regular.woff2" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/api/cities/criterions" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/api/region" - }, - { - "type": "unknown", - "url": "https://cdn.tagcommander.com/4340/uat/tc_PoleEmploi_24.js" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-regular.woff2" - }, - { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vpl2qvk3gsvb4l" - }, - { - "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=4340" - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vpl2qvk3gsvb4l" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/legacy/css/theme-pole-emploi.css" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/legacy/css/webcomponent.css" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/legacy/css/bootstrap.css" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/100.c36904a3.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/171.25b54386.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/46.54f2b57e.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/198.485fe196.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/704.bfced7b7.chunk.js" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/js/594.c8ea3f9a.chunk.js" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500.woff2" - }, - { - "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/api/helps/get-previews" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/media/home-bg.4e918c4b2800bcb748fa.avif" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-italic.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700italic.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500italic.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-italic.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-700italic.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.francetravail.fr/studio/design-system/fonts/roboto-v30-latin-500italic.woff2" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/help-logos/120px/action-logement.png" - }, - { - "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" - }, - { - "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2023-ft-fr.svg" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" - }, - { - "type": "unknown", - "url": "https://candidat.francetravail.fr/mobiville/api/cities/autocomplete" } ], "cookies": [ { - "name": "TS016fc3b0", - "value": "0150c672c3fa0dcaf3bf3700659208506cd3ef85db594bdbe3684c69f2acb20ae46a66a396db901b8732443c21c39e3cf42601aa52", - "domain": ".candidat.francetravail.fr", + "name": "_pk_ses.28.a0cf", + "value": "1", + "domain": "monservicesecurise.cyber.gouv.fr", "path": "/", - "expires": -1, - "size": 116, + "expires": 1733067007, + "size": 16, "httpOnly": false, "secure": false, - "session": true, + "session": false, + "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "BIGipServerPOOL_Z2_PROD_MOP_HTTP", - "value": "2023492362.20480.0000", - "domain": "candidat.francetravail.fr", + "name": "_pk_id.28.a0cf", + "value": "e514a1164b147c10.1733065207.", + "domain": "monservicesecurise.cyber.gouv.fr", "path": "/", - "expires": -1, - "size": 53, - "httpOnly": true, - "secure": true, - "session": true, + "expires": 1767020407, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "Path", - "value": "/", - "domain": "candidat.francetravail.fr", - "path": "/mobiville", - "expires": -1, - "size": 5, - "httpOnly": true, + "name": "bln_challengejs", + "value": "Jvn928rcYGR1fFTwFQ82b3OZaKlFX6w6gI0gmspfvoo7_AChq6PoZn83gOszw7jE9S9Qjt_9eBeHVuQsnC6ro8cHMm88yF6UDbGute7pWk-znXT6-ptYSCi7Lgkm0fQ6cLIFa48q5GsYxz0wVYBUyPBF4n2PLF1Qig8ZTEZUkMl10UmikoMqGYTN3z8NjP1WrSwR2_BLKz9kgI4lgG1CI-hardLzCoo03kUIpcpNxlJK3HuMZdSqxL_rlVgQBABrY4KEGbR0MCVPA0RywXN0NiE3Kt_1l1TRxcy5roy-Me8", + "domain": ".cyber.gouv.fr", + "path": "/", + "expires": 1733066106.525456, + "size": 314, + "httpOnly": false, "secure": true, - "session": true, + "session": false, + "sameSite": "None", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 } ], "headers": { - "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", + "accept-ranges": "bytes", + "age": "0", "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 14:43:01 GMT", - "last-modified": "Fri, 11 Oct 2024 14:29:54 GMT", - "referrer-policy": "no-referrer-when-downgrade", - "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS016fc3b0=0150c672c3fa0dcaf3bf3700659208506cd3ef85db594bdbe3684c69f2acb20ae46a66a396db901b8732443c21c39e3cf42601aa52; Path=/; Domain=.candidat.francetravail.fr;", - "strict-transport-security": "max-age=31536000; includeSubDomains; preload", - "transfer-encoding": "chunked", + "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' https://storage.crisp.chat; media-src 'self' https://monservicesecurise-ressources.cellar-c2.services.clever-cloud.com; script-src 'self' ; frame-src https://metabase.monservicesecurise.cyber.gouv.fr/", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 15:00:06 GMT", + "etag": "W/\"6361-HHnTm5BjPvVU3iBHJhuISotFfD0\"", + "referrer-policy": "no-referrer", + "set-cookie": "token=eyJfY3NyZlNlY3JldCI6ImpPOVdKamFZbG9aNHpnPT0iLCJtYWludGVuYW50IjoyODg4NDQyMH0=; path=/; expires=Sun, 01 Dec 2024 16:00:06 GMT; samesite=strict; secure; httponly\ntoken.sig=UDgrBNMEVH3rRU4JoJoz1FhmYVU; path=/; expires=Sun, 01 Dec 2024 16:00:06 GMT; samesite=strict; secure; httponly", + "sozu-id": "01JE1BR8BPPQE50FAZSFATJT1P", + "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "DENY", + "x-frame-options": "deny", + "x-ratelimit-limit": "600", + "x-ratelimit-remaining": "591", + "x-ratelimit-reset": "1733065212", + "x-varnish": "448480", "x-xss-protection": "1; mode=block" }, "endpoints": [ { - "hostname": "mobiville.pole-emploi.fr", - "ip": "51.68.80.218", + "hostname": "monservicesecurise.cyber.gouv.fr", + "ip": "185.231.164.99", "geoip": { "continent": { "code": "EU", @@ -352239,323 +348128,9 @@ } } }, - { - "hostname": "candidat.francetravail.fr", - "ip": "185.215.64.85", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.170", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.francetravail.fr", - "ip": "185.215.65.86", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - }, - { - "hostname": "cdn.tagcommander.com", - "ip": "192.229.163.55", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "de": "Texas", - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "pt-BR": "Texas", - "ru": "Техас", - "zh-CN": "得克萨斯州" - } - } - ] - } - }, - { - "hostname": "tag.aticdn.net", - "ip": "108.156.91.67", + "ip": "142.251.16.95", "geoip": { "continent": { "code": "NA", @@ -352606,318 +348181,16 @@ } } } - }, - { - "hostname": "hd.pe.fr", - "ip": "18.160.213.25", - "geoip": { - "city": { - "geoname_id": 5809844, - "names": { - "de": "Seattle", - "en": "Seattle", - "es": "Seattle", - "fr": "Seattle", - "ja": "シアトル", - "pt-BR": "Seattle", - "ru": "Сиэтл" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 47.6109, - "longitude": -122.3303, - "metro_code": 819, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "98101" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5815135, - "iso_code": "WA", - "names": { - "de": "Washington", - "en": "Washington", - "es": "Washington", - "fr": "Washington", - "ja": "ワシントン州", - "pt-BR": "Washington", - "ru": "Вашингтон", - "zh-CN": "华盛顿州" - } - } - ] - } - }, - { - "hostname": "privacy.trustcommander.net", - "ip": "15.237.129.60", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - }, - { - "hostname": "www.francetravail.fr", - "ip": "185.215.64.79", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } } ] }, "wappalyzer": { "urls": { - "https://mobiville.pole-emploi.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://mobiville.pole-emploi.fr/ (https://mobiville.pole-emploi.fr/)" + "https://monservicesecurise.cyber.gouv.fr/": { + "status": 200 } }, "technologies": [ - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -352942,12 +348215,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://mobiville.pole-emploi.fr/", - "finalUrl": "https://candidat.francetravail.fr/mobiville/", - "fetchTime": "2024-11-24T14:42:34.078Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://mobiville.pole-emploi.fr/) was redirected to https://candidat.francetravail.fr/mobiville/. Try testing the second URL directly." - ], + "requestedUrl": "https://monservicesecurise.cyber.gouv.fr/", + "finalUrl": "https://monservicesecurise.cyber.gouv.fr/", + "fetchTime": "2024-12-01T14:59:40.320Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -352957,7 +348228,7 @@ "snapshot" ], "id": "performance", - "score": 0.23 + "score": 0.95 }, "accessibility": { "title": "Accessibility", @@ -352968,7 +348239,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -352978,7 +348249,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": null }, "seo": { "title": "SEO", @@ -352989,7 +348260,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.98 }, "pwa": { "title": "PWA", @@ -352999,7 +348270,7 @@ "navigation" ], "id": "pwa", - "score": 0.5 + "score": 0.3 } }, "audits": { @@ -353009,53 +348280,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11066, + "numericValue": 4296, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5095, - "firstMeaningfulPaint": 6962, - "largestContentfulPaint": 11828, - "interactive": 11066, - "speedIndex": 7815, - "totalBlockingTime": 527, - "maxPotentialFID": 302, - "cumulativeLayoutShift": 0.6376253689659966, - "cumulativeLayoutShiftMainFrame": 0.6376253689659966, - "totalCumulativeLayoutShift": 0.6376253689659966, + "firstContentfulPaint": 1909, + "firstMeaningfulPaint": 1909, + "largestContentfulPaint": 2470, + "interactive": 4296, + "speedIndex": 1909, + "totalBlockingTime": 46, + "maxPotentialFID": 141, + "cumulativeLayoutShift": 0.01748149956597222, + "cumulativeLayoutShiftMainFrame": 0.01748149956597222, + "totalCumulativeLayoutShift": 0.01748149956597222, "observedTimeOrigin": 0, - "observedTimeOriginTs": 390093292, + "observedTimeOriginTs": 355028916, "observedNavigationStart": 0, - "observedNavigationStartTs": 390093292, - "observedFirstPaint": 1863, - "observedFirstPaintTs": 391955798, - "observedFirstContentfulPaint": 1863, - "observedFirstContentfulPaintTs": 391955798, - "observedFirstContentfulPaintAllFrames": 1863, - "observedFirstContentfulPaintAllFramesTs": 391955798, - "observedFirstMeaningfulPaint": 2472, - "observedFirstMeaningfulPaintTs": 392565650, - "observedLargestContentfulPaint": 2555, - "observedLargestContentfulPaintTs": 392647971, - "observedLargestContentfulPaintAllFrames": 2555, - "observedLargestContentfulPaintAllFramesTs": 392647971, - "observedTraceEnd": 5299, - "observedTraceEndTs": 395392460, - "observedLoad": 1797, - "observedLoadTs": 391890691, - "observedDomContentLoaded": 1797, - "observedDomContentLoadedTs": 391890031, - "observedCumulativeLayoutShift": 0.6376253689659966, - "observedCumulativeLayoutShiftMainFrame": 0.6376253689659966, - "observedTotalCumulativeLayoutShift": 0.6376253689659966, - "observedFirstVisualChange": 2091, - "observedFirstVisualChangeTs": 392184292, - "observedLastVisualChange": 2990, - "observedLastVisualChangeTs": 393083292, - "observedSpeedIndex": 2315, - "observedSpeedIndexTs": 392407970 + "observedNavigationStartTs": 355028916, + "observedFirstPaint": 447, + "observedFirstPaintTs": 355476278, + "observedFirstContentfulPaint": 447, + "observedFirstContentfulPaintTs": 355476278, + "observedFirstContentfulPaintAllFrames": 447, + "observedFirstContentfulPaintAllFramesTs": 355476278, + "observedFirstMeaningfulPaint": 447, + "observedFirstMeaningfulPaintTs": 355476278, + "observedLargestContentfulPaint": 447, + "observedLargestContentfulPaintTs": 355476278, + "observedLargestContentfulPaintAllFrames": 447, + "observedLargestContentfulPaintAllFramesTs": 355476278, + "observedTraceEnd": 3936, + "observedTraceEndTs": 358965055, + "observedLoad": 1539, + "observedLoadTs": 356567798, + "observedDomContentLoaded": 697, + "observedDomContentLoadedTs": 355726335, + "observedCumulativeLayoutShift": 0.01748149956597222, + "observedCumulativeLayoutShiftMainFrame": 0.01748149956597222, + "observedTotalCumulativeLayoutShift": 0.01748149956597222, + "observedFirstVisualChange": 456, + "observedFirstVisualChangeTs": 355484916, + "observedLastVisualChange": 1556, + "observedLastVisualChangeTs": 356584916, + "observedSpeedIndex": 476, + "observedSpeedIndexTs": 355505113 }, { "lcpInvalidated": false @@ -353073,23 +348344,23 @@ "type": "debugdata", "items": [ { - "numRequests": 55, - "numScripts": 17, - "numStylesheets": 8, - "numFonts": 7, - "numTasks": 1144, - "numTasksOver10ms": 14, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numRequests": 70, + "numScripts": 15, + "numStylesheets": 17, + "numFonts": 5, + "numTasks": 1515, + "numTasksOver10ms": 2, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6659999999999995, - "throughput": 6923204.1373471385, - "maxRtt": 111.201, - "maxServerLatency": 22.97, - "totalByteWeight": 1020875, - "totalTaskTime": 619.2979999999993, - "mainDocumentTransferSize": 1577 + "rtt": 6.322999999999999, + "throughput": 15305215.922564156, + "maxRtt": 84.461, + "maxServerLatency": 37.03299999999999, + "totalByteWeight": 1239624, + "totalTaskTime": 234.69599999999923, + "mainDocumentTransferSize": 2149 } ] } @@ -353108,73 +348379,80 @@ "grade": "F" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/mentionsLegales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [ + "googlefonts" + ], + "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/confidentialite" } ], "betagouv": { - "id": "mobiville", + "id": "homologation", "type": "startup", "attributes": { - "name": "Mobiville", - "pitch": "Diminuer le nombre d'emplois non pourvus en facilitant la mobilité géographique des actifs", - "stats_url": "https://candidat.francetravail.fr/mobiville//stats", - "link": "https://candidat.francetravail.fr/mobiville/", - "repository": "https://github.com/StartupsPoleEmploi/mobiville", - "contact": "mobiville@francetravail.fr", - "content_url_encoded_markdown": "%2A%2AProbl%C3%A8me%2A%2A%0A%0AVous%20connaissez%20le%20%2Ad%C3%A9sajustement%20g%C3%A9ographique%2A%20%3F%20Dans%20certains%20bassins%20d%27emploi%2C%20les%20recruteurs%20peinent%20%C3%A0%20trouver%20des%20talents%2C%20tandis%20que%20dans%20d%E2%80%99autres%20territoires%2C%20les%20personnes%20qui%20ont%20ces%20comp%C3%A9tences%20sont%20demandeurs%20d%27emploi.%20Et%20comme%20il%20est%20plus%20facile%20de%20faire%20bouger%20les%20personnes%20que%20les%20entreprises%2C%20nous%20allons%20essayer%20de%20faciliter%20la%20mobilit%C3%A9%20des%20candidats.%0A%0AComment%20r%C3%A9duire%20le%20d%C3%A9sajustement%20g%C3%A9ographique%20entre%20la%20localisation%20des%20comp%C3%A9tences%20candidats%20et%20les%20besoins%20des%20territoires%20%3F%0A%0A%2A%2AContexte%2A%2A%0A%0ALa%20mobilit%C3%A9%20reste%20synonyme%20de%20difficult%C3%A9%20pour%20les%20actifs%20%28demandeurs%20d%27emploi%20et%20salari%C3%A9s%29%20qui%20ne%20connaissent%20pas%20les%20dispositifs%20cr%C3%A9%C3%A9s%20pour%20les%20aider%20%28727M%20d%E2%80%99euros%20pr%C3%A9vus%20par%20Action%20logement%20chaque%20ann%C3%A9e%29.%20Les%20personnes%20qui%20envisagent%20de%20bouger%20passent%20%C3%A0%20l%27action%20pour%20supprimer%20une%20des%20motivations%20%C3%A0%20la%20fois%20professionnelles%20et%20personnelles%20%3B%20il%20faut%20donc%20trouver%20une%20approche%20qui%20englobe%20projet%20de%20vie%20et%20projet%20professionnel.%0A%0A%2A%2AProduit%2A%2A%0A%0AA%20l%27issue%20d%27une%20phase%20d%27investigation%20de%20plusieurs%20semaines%20et%20d%27une%20s%C3%A9rie%20d%27entretiens%20utilisateurs%2C%20nous%20faisons%20le%20choix%20de%20d%C3%A9velopper%20un%20premier%20produit%20qui%20aidera%20les%20actifs%20%C3%A0%20identifier%20les%20territoires%20les%20plus%20propices%20%C3%A0%20leur%20projet%20de%20vie%20et%20leur%20retour%20%C3%A0%20l%E2%80%99emploi%20%3A%20quelle%20est%20la%20%22ville%20id%C3%A9ale%22%20pour%20s%E2%80%99installer%2C%20devenir%20propri%C3%A9taire%20et%20construire%20sa%20carri%C3%A8re%20%3F%0A%0ACible%20prioritaire%20%3A%20l%E2%80%99ensemble%20des%20demandeurs%20d%E2%80%99emploi%20et%20salari%C3%A9s%20qui%20envisagent%20une%20mobilit%C3%A9%20r%C3%A9sidentielle%20et%20qui%20sont%20sans%20enfants%20et%20sans%20conjoints%20%28donc%20plus%20mobile%20et%20sur%20de%20plus%20longues%20distances%29%2C%20soit%20une%20population%20d%27environ%201%20024%20500%20personnes.%0A%0AUne%20%C3%A9volution%20majeure%20sur%20l%E2%80%99outil%2C%20car%20dor%C3%A9navant%2C%20Mobiville%20int%C3%A8gre%20tous%20les%20m%C3%A9tiers%20du%20ROME.%20Gr%C3%A2ce%20%C3%A0%20son%20moteur%20de%20recherche%2C%20la%20mobilit%C3%A9%20g%C3%A9ographique%20professionnelle%20n%27a%20jamais%20%C3%A9t%C3%A9%20aussi%20simple%20et%20facilit%C3%A9e%20%28infos%20sur%20le%20logement%2C%20le%20cadre%20de%20vie%20et%20les%20aides%20%C3%A0%20la%20mobilit%C3%A9%20pour%20chaque%20territoire%29.%0A", - "events": [], + "name": "MonServiceSécurisé", + "pitch": "Faciliter la sécurisation et l'homologation des services numériques", + "stats_url": "https://www.monservicesecurise.ssi.gouv.fr/statistiques", + "link": "https://www.monservicesecurise.ssi.gouv.fr", + "repository": "https://github.com/betagouv/mon-service-securise", + "contact": "contact@monservicesecurise.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20En%20phase%20d%27acc%C3%A9l%C3%A9ration%0A%0A-%20%2A%2AVous%20souhaitez%20d%C3%A9couvrir%20le%20produit%20ou%20un%20accompagnement%20dans%20sa%20prise%20en%20main%20%3F%20%5BContactez%20Antoine%20et%20Henri%20qui%20se%20feront%20un%20plaisir%20de%20vous%20accompagner%5D%28mailto%3Asupport%40monservicesecurise.beta.gouv.fr%29.%2A%2A%0A-%20%2A%2APour%20toute%20autre%20question%20sur%20le%20projet%2C%20propositions%20de%20partenariats%20%5Bcontactez-nous%20%C3%A0%20cette%20adresse%5D%28mailto%3Acontact%40monservicesecurise.beta.gouv.fr%29.%2A%2A%0A-%20%2A%2A%5BAcc%C3%A9der%20%C3%A0%20MonServiceS%C3%A9curis%C3%A9%5D%28https%3A%2F%2Fwww.monservicesecurise.ssi.gouv.fr%29%2A%2A%0A%0A%23%23%20L%27ENJEU%0A%0ALes%20collectivit%C3%A9s%20territoriales%2C%20administrations%20d%27%C3%89tat%2C%20%C3%A9tablissements%20et%0Aautres%20organismes%20publics%20mettent%20%C3%A0%20disposition%20des%20usagers%20de%20plus%20en%20plus%0Ade%20services%20publics%20num%C3%A9riques%20%3A%20m%C3%A9diath%C3%A8que%20permettant%20la%20r%C3%A9servation%20en%0Aligne%20de%20contenus%20multim%C3%A9dias%2C%20caisse%20des%20%C3%A9coles%20permettant%20le%20paiement%20de%20la%0Acantine%2C%20etc.%0A%0APlusieurs%20dizaines%20de%20milliers%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%0Aces%20services%20num%C3%A9riques%20sont%20r%C3%A9guli%C3%A8rement%20la%20cible%20de%20cyberattaques.%0ARenforcer%20leur%20s%C3%A9curit%C3%A9%20est%2C%20par%20cons%C3%A9quent%2C%0Aessentiel%20afin%20de%20les%20prot%C3%A9ger%20contre%20ces%20menaces.%0A%0AD%C3%A9sireuses%20de%20renforcer%20la%20s%C3%A9curit%C3%A9%20de%20leurs%20services%20num%C3%A9riques%20%28ou%20%C2%AB%20t%C3%A9l%C3%A9services%20%C2%BB%29%0Aet%20d%27homologuer%20leur%20s%C3%A9curit%C3%A9%2C%20conform%C3%A9ment%20%C3%A0%20la%20r%C3%A9glementation%20%28RGS%2C%20d%C3%A9cret%202022-513%2C%20RGPD%29%0Ade%20nombreuses%20entit%C3%A9s%20publiques%20et%20en%20particulier%20des%20collectivit%C3%A9s%2C%20sont%0Aaujourd%27hui%20en%20attente%20de%20davantage%20d%27accompagnement.%0A%0A%23%23%20LA%20SOLUTION%0A%0AMonServiceS%C3%A9curis%C3%A9%20est%20la%20solution%20de%20cybers%C3%A9curit%C3%A9%20de%20l%27ANSSI%0Apour%20aider%20les%20entit%C3%A9s%20publiques%20%C3%A0%20s%C3%A9curiser%20et%20%C3%A0%20homologuer%20rapidement%20leurs%20sites%20web%2C%20applications%20mobiles%20et%20API.%0A%0AGratuit%20et%20collaboratif%2C%20MonServiceS%C3%A9curis%C3%A9%20permet%20de%20r%C3%A9f%C3%A9rencer%20un%20service%20num%C3%A9rique%20en%20projet%2C%20en%20cours%20de%0Ad%C3%A9veloppement%20ou%20d%C3%A9j%C3%A0%20en%20ligne%20puis%20de%20le%20d%C3%A9crire%20en%20%3A%0A%0A-%20Acc%C3%A9dant%20%C3%A0%20une%20liste%20personnalis%C3%A9e%20de%20mesures%20de%20s%C3%A9curit%C3%A9%20%C3%A9labor%C3%A9e%20par%20l%27ANSSI%20et%20obtenir%20une%20%C3%A9valuation%0A%20%20indicative%20du%20niveau%20de%20s%C3%A9curit%C3%A9%20du%20service%20concern%C3%A9%20%28l%27indice%20cyber%29%2C%20sur%20la%20base%20des%20mesures%20de%20s%C3%A9curit%C3%A9%20d%C3%A9clar%C3%A9es%0A%20%20par%20l%27%C3%A9quipe%20comme%20ayant%20%C3%A9t%C3%A9%20mises%20en%20%C5%93uvre.%0A-%20G%C3%A9n%C3%A9rant%20en%20quelques%20%C3%A9tapes%20une%20d%C3%A9cision%20d%27homologation%20de%20s%C3%A9curit%C3%A9%20incluant%20un%20ou%20plusieurs%20avis%20des%20membres%0A%20%20de%20l%27%C3%A9quipe%20sur%20le%20projet%20de%20d%C3%A9cision%20d%27homologation%20et%20de%20soumettre%20cette%20d%C3%A9cision%20%C3%A0%20la%20signature%20de%20l%27autorit%C3%A9%20d%27homologation.%0A%0A%5BD%C3%A9couvrir%20MonServiceS%C3%A9curis%C3%A9%5D%28https%3A%2F%2Fwww.monservicesecurise.ssi.gouv.fr%2F%29%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 141000€ pour la promotion 14" + } + ], "phases": [ { "name": "investigation", - "start": "2020-04-01", - "end": "2020-06-04" + "start": "2021-01-04", + "end": "" }, { "name": "construction", - "start": "2020-06-04", + "start": "2022-01-01", "end": "" }, { "name": "acceleration", - "start": "2021-09-01", - "end": "" - }, - { - "name": "success", - "start": "2023-04-18", + "start": "2022-09-01", "end": "" } ], "sponsors": [ - "action-logement", - "francetravail" + "anssi" ], "thematiques": [ - "Travail / Emploi" - ] + "Sécurité informatique" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/www-monservicesecurise-ssi-gouv-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "francetravail" + "id": "lab-innov-anssi" } } } @@ -353183,16 +348461,16 @@ { "width": 1920, "height": 1080, - "url": "https://mobiville.pole-emploi.fr", - "size": 1173.6, - "nodes": 376, - "requests": 52, + "url": "https://monservicesecurise.cyber.gouv.fr", + "size": 1375.224, + "nodes": 340, + "requests": 89, "grade": "C", - "score": 66, - "ges": 1.68, - "water": 2.52, + "score": 59, + "ges": 1.82, + "water": 2.73, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:39:25.438886", + "date": "2024-12-01 14:56:42.469304", "page_type": null } ], @@ -353201,72 +348479,74 @@ "detected": false }, "summary": { - "httpGrade": "B-", - "apdex": 0.984, - "apdexGrade": "B", - "uptime": 99.907, + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-05-14T06:28:00.000Z", + "testsslExpireDate": "2025-03-20T22:59:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", "cookiesCount": 3, - "trackersGrade": "F", - "trackersCount": 48, - "lighthouse_performance": 0.23, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.96, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.95, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 0.98, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.5, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", "ecoindexGrade": "C", "dsfrGrade": "F" } }, { "404": null, - "url": "https://monservicesecurise.cyber.gouv.fr", - "category": "lab-innov-anssi", - "betaId": "homologation", + "url": "https://zerologementvacant.beta.gouv.fr", + "category": "mtes", + "betaId": "zero-logement-vacant", "repositories": [ - "betagouv/mon-service-securise" + "MTES-MCT/zero-logement-vacant" ], "http": { - "url": "https://monservicesecurise.cyber.gouv.fr", + "url": "https://zerologementvacant.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 10:49:48 GMT", + "end_time": "Sun, 20 Oct 2024 06:53:06 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "no-cache", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 10:49:48 GMT", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=63072000", + "Content-Language": "fr", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 06:53:05 GMT", + "Referrer-Policy": "same-origin", "Transfer-Encoding": "chunked", + "Vary": "Accept-Language, Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-XSS-Protection": "1; mode=block" + "X-Request-ID": "7adad63a-d7ec-487c-9d7c-73e64e582c03", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57059677, + "scan_id": 57053503, "score": 75, - "start_time": "Sun, 20 Oct 2024 10:49:47 GMT", + "start_time": "Sun, 20 Oct 2024 06:53:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -353319,11 +348599,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://monservicesecurise.cyber.gouv.fr/", + "destination": "https://zerologementvacant.beta.gouv.fr/", "redirects": true, "route": [ - "http://monservicesecurise.cyber.gouv.fr/", - "https://monservicesecurise.cyber.gouv.fr/" + "http://zerologementvacant.beta.gouv.fr/", + "https://zerologementvacant.beta.gouv.fr/" ], "status_code": 200 }, @@ -353336,7 +348616,7 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer", + "data": "same-origin", "http": true, "meta": false }, @@ -353349,9 +348629,9 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000", + "data": "max-age=31536000", "includeSubDomains": false, - "max-age": 63072000, + "max-age": 31536000, "preload": false, "preloaded": false }, @@ -353367,9 +348647,9 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "result": "sri-implemented-and-all-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", + "score_modifier": 5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -353397,24 +348677,24 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "uk3g", - "url": "https://monservicesecurise.cyber.gouv.fr", + "token": "e5kh", + "url": "https://zerologementvacant.beta.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T13:13:27Z", + "up_since": "2024-11-30T10:07:30Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -353423,39 +348703,38 @@ "published": true, "disabled_locations": [], "recipients": [ - "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:53:47Z", - "next_check_at": "2024-11-24T14:54:47Z", - "created_at": "2024-05-21T21:45:32Z", + "last_check_at": "2024-12-01T15:06:48Z", + "next_check_at": "2024-12-01T15:07:48Z", + "created_at": "2024-01-15T14:01:08Z", "mute_until": null, - "favicon_url": null, + "favicon_url": "https://zerologementvacant.beta.gouv.fr/static/dsfr/dist/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T14:50:47Z", - "expires_at": "2025-03-20T22:59:59Z", + "tested_at": "2024-12-01T15:01:53Z", + "expires_at": "2025-02-06T06:44:48Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.998, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 42, - "connection": 129, - "handshake": 93, - "response": 153, - "total": 440 + "namelookup": 288, + "connection": 140, + "handshake": 147, + "response": 285, + "total": 860 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "monservicesecurise.cyber.gouv.fr", + "host": "zerologementvacant.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -353481,77 +348760,77 @@ "testssl": [ { "id": "service", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -353559,7 +348838,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -353567,7 +348846,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -353575,7 +348854,7 @@ }, { "id": "cipherlist_LOW", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -353583,7 +348862,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -353591,491 +348870,477 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 60 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-03-20 23:00" + "finding": "2024-11-08 06:44" }, { "id": "cert_notAfter", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-03-20 22:59" + "finding": "2025-02-06 06:44" }, { "id": "cert_extlifeSpan", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "issue=certigna.fr, issue=letsencrypt.org" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA (DHIMYOTIS from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2015-11-25 11:33" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-11-22 11:33" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "Certigna Services CA <-- Certigna" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732459967" + "finding": "1733065397" }, { "id": "HSTS_time", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "X-XSS-Protection", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, { "id": "Referrer-Policy", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" - }, - { - "id": "Cache-Control", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -354083,7 +349348,7 @@ }, { "id": "heartbleed", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -354092,7 +349357,7 @@ }, { "id": "CCS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -354101,16 +349366,16 @@ }, { "id": "ticketbleed", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -354119,7 +349384,7 @@ }, { "id": "secure_renego", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -354127,7 +349392,7 @@ }, { "id": "secure_client_renego", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -354136,7 +349401,7 @@ }, { "id": "CRIME_TLS", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -354145,7 +349410,7 @@ }, { "id": "BREACH", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -354154,7 +349419,7 @@ }, { "id": "POODLE_SSL", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -354163,14 +349428,14 @@ }, { "id": "fallback_SCSV", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -354179,7 +349444,7 @@ }, { "id": "FREAK", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -354188,7 +349453,7 @@ }, { "id": "DROWN", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -354197,16 +349462,16 @@ }, { "id": "DROWN_hint", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=840F1F02564FE46BB897E4C459FDD1B06D1DF2FEA01489DCD055C82AF4925DCD" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=40087B0A4CAE7B5E9AEB2ADE300D27D362A4DAF158513B825CFB481E05F7E4AF" }, { "id": "LOGJAM", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -354215,7 +349480,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -354224,7 +349489,7 @@ }, { "id": "BEAST", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -354233,16 +349498,16 @@ }, { "id": "LUCKY13", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -354251,7 +349516,7 @@ }, { "id": "RC4", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -354260,1093 +349525,319 @@ }, { "id": "clientsimulation-android_60", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "monservicesecurise.cyber.gouv.fr/185.231.164.99", - "port": "443", - "severity": "INFO", - "finding": "57" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Roboto:wght@100;400;500&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.28.a0cf", - "value": "1", - "domain": "monservicesecurise.cyber.gouv.fr", - "path": "/", - "expires": 1732461692, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.28.a0cf", - "value": "b2808bec45ba8bc1.1732459893.", - "domain": "monservicesecurise.cyber.gouv.fr", - "path": "/", - "expires": 1766415093, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "bln_challengejs", - "value": "FSKpo_Pw-xr_wVwtuqJLG_LfDbTPScGV05iyV3LkMhkylSH2Stonx6BM5AbvFxqOm8K-csw_7jaBtQYIsFBuYZM-Qa2sgsyPam7Y1fuZwVDn_WgK-PBKECjIuyFxi0mQ9XzS014fImfJfWdoQMCpAMN0pIMp_NYcU8UCqGhCgojxeqBxzcwsqJH9mzXwJ3SFKmHR7YztWKN4jZTGyX9mRd5KxLH5oW8ycJUroJbJPZx8iyWw_posy1Y5-BJ3Eq-4_CT33bFjiUHvxsTiIXtp5Keb9HDlOjXN_BEHqGn_WCg", - "domain": ".cyber.gouv.fr", - "path": "/", - "expires": 1732460792.107293, - "size": 314, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "accept-ranges": "bytes", - "age": "0", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' https://storage.crisp.chat; media-src 'self' https://monservicesecurise-ressources.cellar-c2.services.clever-cloud.com; script-src 'self' ; frame-src https://metabase.monservicesecurise.cyber.gouv.fr/", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:51:32 GMT", - "etag": "W/\"639f-ICMdXPEosunyq9K/wr+D3RQpTLI\"", - "referrer-policy": "no-referrer", - "set-cookie": "token=eyJfY3NyZlNlY3JldCI6IkZnWW0vamI5aEFhTi9RPT0iLCJtYWludGVuYW50IjoyODg3NDMzMX0=; path=/; expires=Sun, 24 Nov 2024 15:51:32 GMT; samesite=strict; secure; httponly\ntoken.sig=AKJ0FniNAdDlX7UsOwiGKUpIjw8; path=/; expires=Sun, 24 Nov 2024 15:51:32 GMT; samesite=strict; secure; httponly", - "sozu-id": "01JDFAFHTD12EGZX8GJ98R92Q5", - "strict-transport-security": "max-age=63072000", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "deny", - "x-ratelimit-limit": "600", - "x-ratelimit-remaining": "595", - "x-ratelimit-reset": "1732459930", - "x-varnish": "5912331", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "monservicesecurise.cyber.gouv.fr", - "ip": "185.231.164.99", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "64.233.180.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://monservicesecurise.cyber.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://monservicesecurise.cyber.gouv.fr/", - "finalUrl": "https://monservicesecurise.cyber.gouv.fr/", - "fetchTime": "2024-11-24T14:51:06.639Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.95 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.98 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4345, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1915, - "firstMeaningfulPaint": 1915, - "largestContentfulPaint": 2483, - "interactive": 4345, - "speedIndex": 1915, - "totalBlockingTime": 54, - "maxPotentialFID": 158, - "cumulativeLayoutShift": 0.01748149956597222, - "cumulativeLayoutShiftMainFrame": 0.01748149956597222, - "totalCumulativeLayoutShift": 0.01748149956597222, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 349721116, - "observedNavigationStart": 0, - "observedNavigationStartTs": 349721116, - "observedFirstPaint": 468, - "observedFirstPaintTs": 350189602, - "observedFirstContentfulPaint": 468, - "observedFirstContentfulPaintTs": 350189602, - "observedFirstContentfulPaintAllFrames": 468, - "observedFirstContentfulPaintAllFramesTs": 350189602, - "observedFirstMeaningfulPaint": 468, - "observedFirstMeaningfulPaintTs": 350189602, - "observedLargestContentfulPaint": 468, - "observedLargestContentfulPaintTs": 350189602, - "observedLargestContentfulPaintAllFrames": 468, - "observedLargestContentfulPaintAllFramesTs": 350189602, - "observedTraceEnd": 3952, - "observedTraceEndTs": 353673046, - "observedLoad": 1536, - "observedLoadTs": 351257012, - "observedDomContentLoaded": 640, - "observedDomContentLoadedTs": 350361122, - "observedCumulativeLayoutShift": 0.01748149956597222, - "observedCumulativeLayoutShiftMainFrame": 0.01748149956597222, - "observedTotalCumulativeLayoutShift": 0.01748149956597222, - "observedFirstVisualChange": 481, - "observedFirstVisualChangeTs": 350202116, - "observedLastVisualChange": 1564, - "observedLastVisualChangeTs": 351285116, - "observedSpeedIndex": 500, - "observedSpeedIndexTs": 350221157 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 69, - "numScripts": 14, - "numStylesheets": 17, - "numFonts": 5, - "numTasks": 1467, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.944, - "throughput": 16259793.974175427, - "maxRtt": 82.592, - "maxServerLatency": 44.09200000000003, - "totalByteWeight": 1205677, - "totalTaskTime": 247.6349999999976, - "mainDocumentTransferSize": 2149 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/mentionsLegales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 4, - "missingWords": [], - "missingTrackers": [ - "googlefonts" - ], - "declarationUrl": "https://monservicesecurise.cyber.gouv.fr/confidentialite" - } - ], - "betagouv": { - "id": "homologation", - "type": "startup", - "attributes": { - "name": "MonServiceSécurisé", - "pitch": "Faciliter la sécurisation et l'homologation des services numériques", - "stats_url": "https://www.monservicesecurise.ssi.gouv.fr/statistiques", - "link": "https://www.monservicesecurise.ssi.gouv.fr", - "repository": "https://github.com/betagouv/mon-service-securise", - "contact": "contact@monservicesecurise.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20En%20phase%20d%27acc%C3%A9l%C3%A9ration%0A%0A-%20%2A%2AVous%20souhaitez%20d%C3%A9couvrir%20le%20produit%20ou%20un%20accompagnement%20dans%20sa%20prise%20en%20main%20%3F%20%5BContactez%20Antoine%20et%20Henri%20qui%20se%20feront%20un%20plaisir%20de%20vous%20accompagner%5D%28mailto%3Asupport%40monservicesecurise.beta.gouv.fr%29.%2A%2A%0A-%20%2A%2APour%20toute%20autre%20question%20sur%20le%20projet%2C%20propositions%20de%20partenariats%20%5Bcontactez-nous%20%C3%A0%20cette%20adresse%5D%28mailto%3Acontact%40monservicesecurise.beta.gouv.fr%29.%2A%2A%0A-%20%2A%2A%5BAcc%C3%A9der%20%C3%A0%20MonServiceS%C3%A9curis%C3%A9%5D%28https%3A%2F%2Fwww.monservicesecurise.ssi.gouv.fr%29%2A%2A%0A%0A%23%23%20L%27ENJEU%0A%0ALes%20collectivit%C3%A9s%20territoriales%2C%20administrations%20d%27%C3%89tat%2C%20%C3%A9tablissements%20et%0Aautres%20organismes%20publics%20mettent%20%C3%A0%20disposition%20des%20usagers%20de%20plus%20en%20plus%0Ade%20services%20publics%20num%C3%A9riques%20%3A%20m%C3%A9diath%C3%A8que%20permettant%20la%20r%C3%A9servation%20en%0Aligne%20de%20contenus%20multim%C3%A9dias%2C%20caisse%20des%20%C3%A9coles%20permettant%20le%20paiement%20de%20la%0Acantine%2C%20etc.%0A%0APlusieurs%20dizaines%20de%20milliers%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%0Aces%20services%20num%C3%A9riques%20sont%20r%C3%A9guli%C3%A8rement%20la%20cible%20de%20cyberattaques.%0ARenforcer%20leur%20s%C3%A9curit%C3%A9%20est%2C%20par%20cons%C3%A9quent%2C%0Aessentiel%20afin%20de%20les%20prot%C3%A9ger%20contre%20ces%20menaces.%0A%0AD%C3%A9sireuses%20de%20renforcer%20la%20s%C3%A9curit%C3%A9%20de%20leurs%20services%20num%C3%A9riques%20%28ou%20%C2%AB%20t%C3%A9l%C3%A9services%20%C2%BB%29%0Aet%20d%27homologuer%20leur%20s%C3%A9curit%C3%A9%2C%20conform%C3%A9ment%20%C3%A0%20la%20r%C3%A9glementation%20%28RGS%2C%20d%C3%A9cret%202022-513%2C%20RGPD%29%0Ade%20nombreuses%20entit%C3%A9s%20publiques%20et%20en%20particulier%20des%20collectivit%C3%A9s%2C%20sont%0Aaujourd%27hui%20en%20attente%20de%20davantage%20d%27accompagnement.%0A%0A%23%23%20LA%20SOLUTION%0A%0AMonServiceS%C3%A9curis%C3%A9%20est%20la%20solution%20de%20cybers%C3%A9curit%C3%A9%20de%20l%27ANSSI%0Apour%20aider%20les%20entit%C3%A9s%20publiques%20%C3%A0%20s%C3%A9curiser%20et%20%C3%A0%20homologuer%20rapidement%20leurs%20sites%20web%2C%20applications%20mobiles%20et%20API.%0A%0AGratuit%20et%20collaboratif%2C%20MonServiceS%C3%A9curis%C3%A9%20permet%20de%20r%C3%A9f%C3%A9rencer%20un%20service%20num%C3%A9rique%20en%20projet%2C%20en%20cours%20de%0Ad%C3%A9veloppement%20ou%20d%C3%A9j%C3%A0%20en%20ligne%20puis%20de%20le%20d%C3%A9crire%20en%20%3A%0A%0A-%20Acc%C3%A9dant%20%C3%A0%20une%20liste%20personnalis%C3%A9e%20de%20mesures%20de%20s%C3%A9curit%C3%A9%20%C3%A9labor%C3%A9e%20par%20l%27ANSSI%20et%20obtenir%20une%20%C3%A9valuation%0A%20%20indicative%20du%20niveau%20de%20s%C3%A9curit%C3%A9%20du%20service%20concern%C3%A9%20%28l%27indice%20cyber%29%2C%20sur%20la%20base%20des%20mesures%20de%20s%C3%A9curit%C3%A9%20d%C3%A9clar%C3%A9es%0A%20%20par%20l%27%C3%A9quipe%20comme%20ayant%20%C3%A9t%C3%A9%20mises%20en%20%C5%93uvre.%0A-%20G%C3%A9n%C3%A9rant%20en%20quelques%20%C3%A9tapes%20une%20d%C3%A9cision%20d%27homologation%20de%20s%C3%A9curit%C3%A9%20incluant%20un%20ou%20plusieurs%20avis%20des%20membres%0A%20%20de%20l%27%C3%A9quipe%20sur%20le%20projet%20de%20d%C3%A9cision%20d%27homologation%20et%20de%20soumettre%20cette%20d%C3%A9cision%20%C3%A0%20la%20signature%20de%20l%27autorit%C3%A9%20d%27homologation.%0A%0A%5BD%C3%A9couvrir%20MonServiceS%C3%A9curis%C3%A9%5D%28https%3A%2F%2Fwww.monservicesecurise.ssi.gouv.fr%2F%29%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 141000€ pour la promotion 14" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2021-01-04", - "end": "" - }, - { - "name": "construction", - "start": "2022-01-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-09-01", - "end": "" - } - ], - "sponsors": [ - "anssi" - ], - "thematiques": [ - "Sécurité informatique" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/www-monservicesecurise-ssi-gouv-fr/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "lab-innov-anssi" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://monservicesecurise.cyber.gouv.fr", - "size": 1374.424, - "nodes": 340, - "requests": 88, - "grade": "C", - "score": 59, - "ges": 1.82, - "water": 2.73, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:48:09.736758", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 0.998, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-03-20T22:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.95, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 0.98, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://zerologementvacant.beta.gouv.fr", - "category": "mtes", - "betaId": "zero-logement-vacant", - "repositories": [ - "MTES-MCT/zero-logement-vacant" - ], - "http": { - "url": "https://zerologementvacant.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:53:06 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Language": "fr", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 06:53:05 GMT", - "Referrer-Policy": "same-origin", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Language, Cookie", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "7adad63a-d7ec-487c-9d7c-73e64e582c03", - "strict-transport-security": "max-age=31536000" - }, - "scan_id": 57053503, - "score": 75, - "start_time": "Sun, 20 Oct 2024 06:53:04 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://zerologementvacant.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://zerologementvacant.beta.gouv.fr/", - "https://zerologementvacant.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-implemented-and-all-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) is implemented and all scripts are loaded from a similar origin", - "score_modifier": 5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "e5kh", - "url": "https://zerologementvacant.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T23:52:16Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T15:00:38Z", - "next_check_at": "2024-11-24T15:01:38Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://zerologementvacant.beta.gouv.fr/static/dsfr/dist/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:52:31Z", - "expires_at": "2025-02-06T06:44:48Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 258, - "connection": 144, - "handshake": 149, - "response": 253, - "total": 804 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "zerologementvacant.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", @@ -355694,7 +350185,7 @@ "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", @@ -355855,7 +350346,7 @@ "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732460100" + "finding": "1733065451" }, { "id": "HSTS_time", @@ -356774,7 +351265,7 @@ "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", @@ -356928,14 +351419,14 @@ "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732460196" + "finding": "1733065506" }, { "id": "HSTS_time", @@ -357714,7 +352205,7 @@ "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -357854,7 +352345,7 @@ "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", @@ -358008,14 +352499,14 @@ "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732460292" + "finding": "1733065559" }, { "id": "HSTS_time", @@ -358553,113 +353044,1824 @@ "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "id": "key_exchange_score_weighted", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "220" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/logo_ZLV_header-website.original.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=nM8K2OH9McFKVSoSHqW2RuUir6Q%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/photo_accueil_avant_apres.original_2_1.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=zKc%2BFOVN046uQmFu90SVUskOYnU%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/statistic_chart.3b2a717c3bc810228dfb5eb49dc33b.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=90bbZmlgWXfNzPuv64st7oO%2BG%2FI%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/location_review.3855ea620bd4c595a77d087ceaae6f.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=3PUHWwmB1dbtnXu9oS8Z11Zal7Q%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/collaboration.b7d540aec8cb66da8b0473eba30a6502.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=kZXR9q7wSh4VlO5RIkfZVcJv2oE%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/real_time_collaboration.9f1e4e6abe5ea6c9fd17f9.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=02C21zhg1DqvnVMLsUrlu%2FDndpU%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/antonin-carvalho-Jq1u4OOfI0M-unsplash_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=WwfiVZaUtmROWLgEv7s97iytXpA%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/cecile-musy-TTEkReP50x4-unsplash_2_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=fVVEDdLqJVz3O4I1p%2B2Eq3K5MMg%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/pedro-lastra-XlSgaYMWsZ8-unsplash_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=2UNiYH4HIBMR4hEwxCtxXNbvXco%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/LV_photo.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=gMFtAEPNgVYc2eSG%2Fxe%2FOFvJb30%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/roubaix_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=IaJkjLw0lo9p%2BGSPGKBLgtlDXho%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/strasbourg_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=KeDFtKJIfsDlkWmnUMVmaumc%2FOM%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/cahors_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=84fKeW9RUPYzz5WZRuZuhltBn80%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/rennes_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=DX7sFWSEgds%2F3E34KXTgmJknnqY%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/Logo_CA_Chateauroux_Metropole.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=7y83atNGcssEY%2BBMfe8QbymyYyQ%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/lyon_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=oclD7zSnq%2FYinSoE3BXqayW%2FY%2Fo%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/logo_saint_log_agglo.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=f3z4lkEFcsI%2FYZGfW24baplKfGw%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/Logo-CCKB-A.original.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=2qVy01wy%2BBLxkaq9pJ7ihytE8Ak%3D&Expires=1733068935" + }, + { + "type": "unknown", + "url": "https://eu-assets.i.posthog.com/static/array.js" + }, + { + "type": "unknown", + "url": "https://eu.i.posthog.com/decide/?v=3&ip=1&_=1733065335919&ver=1.194.0&compression=base64" + }, + { + "type": "unknown", + "url": "https://eu-assets.i.posthog.com/static/recorder.js?v=1.194.0" + }, + { + "type": "unknown", + "url": "https://eu-assets.i.posthog.com/static/dead-clicks-autocapture.js?v=1.194.0" + }, + { + "type": "unknown", + "url": "https://eu-assets.i.posthog.com/static/web-vitals.js?v=1.194.0" + } + ], + "cookies": [ + { + "name": "ph_phc_lit4tFUhTdSfhlHngsM8ih6grNtVmjECmzViBiPpwbT_posthog", + "value": "%7B%22distinct_id%22%3A%22019382be-646d-7b88-83c9-d26e7721c9ba%22%2C%22%24sesid%22%3A%5B1733065336221%2C%22019382be-646a-7523-9f44-e5ba8e244a3d%22%2C1733065335913%5D%7D", + "domain": ".beta.gouv.fr", + "path": "/", + "expires": 1764601336, + "size": 226, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-language": "fr", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 15:02:15 GMT", + "referrer-policy": "same-origin", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Language, Cookie", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "28b03227-aecf-464d-a61b-8ee34a197da9" + }, + "endpoints": [ + { + "hostname": "zerologementvacant.beta.gouv.fr", + "ip": "148.253.75.120", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "oos.cloudgouv-eu-west-1.outscale.com", + "ip": "148.253.96.5", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "eu-assets.i.posthog.com", + "ip": "104.22.58.181", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "eu.i.posthog.com", + "ip": "3.121.101.157", + "geoip": { + "city": { + "geoname_id": 2925533, + "names": { + "de": "Frankfurt am Main", + "en": "Frankfurt am Main", + "es": "Francfort", + "fr": "Francfort-sur-le-Main", + "ja": "フランクフルト・アム・マイン", + "pt-BR": "Frankfurt am Main", + "ru": "Франкфурт", + "zh-CN": "法兰克福" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2921044, + "is_in_european_union": true, + "iso_code": "DE", + "names": { + "de": "Deutschland", + "en": "Germany", + "es": "Alemania", + "fr": "Allemagne", + "ja": "ドイツ連邦共和国", + "pt-BR": "Alemanha", + "ru": "ФРГ", + "zh-CN": "德国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 50.1187, + "longitude": 8.6842, + "time_zone": "Europe/Berlin" + }, + "postal": { + "code": "60313" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 2905330, + "iso_code": "HE", + "names": { + "de": "Hessen", + "en": "Hesse", + "es": "Hessen", + "fr": "Hesse", + "ja": "ヘッセン州", + "pt-BR": "Hesse", + "ru": "Гессен", + "zh-CN": "黑森州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://zerologementvacant.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wagtail", + "name": "Wagtail", + "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "confidence": 100, + "version": null, + "icon": "Wagtail.svg", + "website": "https://wagtail.org", + "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", + "confidence": 100, + "version": null, + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "posthog", + "name": "PostHog", + "description": "PostHog is the open-source, all-in-one product analytics platform.", + "confidence": 100, + "version": null, + "icon": "PostHog.svg", + "website": "https://posthog.com", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://zerologementvacant.beta.gouv.fr/", + "finalUrl": "https://zerologementvacant.beta.gouv.fr/", + "fetchTime": "2024-12-01T15:01:49.468Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.94 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1919, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1919, + "firstMeaningfulPaint": 1919, + "largestContentfulPaint": 2850, + "interactive": 1919, + "speedIndex": 2187, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.026509315490722652, + "cumulativeLayoutShiftMainFrame": 0.026509315490722652, + "totalCumulativeLayoutShift": 0.026509315490722652, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 366102465, + "observedNavigationStart": 0, + "observedNavigationStartTs": 366102465, + "observedFirstPaint": 823, + "observedFirstPaintTs": 366925053, + "observedFirstContentfulPaint": 823, + "observedFirstContentfulPaintTs": 366925053, + "observedFirstContentfulPaintAllFrames": 823, + "observedFirstContentfulPaintAllFramesTs": 366925053, + "observedFirstMeaningfulPaint": 823, + "observedFirstMeaningfulPaintTs": 366925053, + "observedLargestContentfulPaint": 823, + "observedLargestContentfulPaintTs": 366925053, + "observedLargestContentfulPaintAllFrames": 823, + "observedLargestContentfulPaintAllFramesTs": 366925053, + "observedTraceEnd": 3791, + "observedTraceEndTs": 369893655, + "observedLoad": 1392, + "observedLoadTs": 367494077, + "observedDomContentLoaded": 813, + "observedDomContentLoadedTs": 366915128, + "observedCumulativeLayoutShift": 0.026509315490722652, + "observedCumulativeLayoutShiftMainFrame": 0.026509315490722652, + "observedTotalCumulativeLayoutShift": 0.026509315490722652, + "observedFirstVisualChange": 832, + "observedFirstVisualChangeTs": 366934465, + "observedLastVisualChange": 1449, + "observedLastVisualChangeTs": 367551465, + "observedSpeedIndex": 849, + "observedSpeedIndexTs": 366951821 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 50, + "numScripts": 5, + "numStylesheets": 4, + "numFonts": 3, + "numTasks": 33, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.775, + "throughput": 27768939.849275555, + "maxRtt": 91.13000000000001, + "maxServerLatency": 9.716000000000008, + "totalByteWeight": 2627688, + "totalTaskTime": 3.687999999999999, + "mainDocumentTransferSize": 9578 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://zerologementvacant.beta.gouv.fr/accessibilite/" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://zerologementvacant.beta.gouv.fr/mentions-legales/" }, { - "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "zero-logement-vacant", + "type": "startup", + "attributes": { + "name": "Zéro logement vacant", + "pitch": " Permettre aux collectivités de mobiliser les propriétaires de logements vacants pour les remettre sur le marché", + "stats_url": "https://zerologementvacant.beta.gouv.fr/statistiques", + "budget_url": "https://docs.google.com/spreadsheets/d/1rki0Wlrk4hCL0WC8mlHcRlj8rk7iCZ4ed3lyxSa_yec/edit#gid=300205456", + "link": "https://zerologementvacant.beta.gouv.fr/", + "repository": "https://github.com/MTES-MCT/zero-logement-vacant", + "contact": "contact@zerologementvacant.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Faire%20de%20la%20vacance%20structurelle%20une%20ressource%20pour%20les%20territoires%0A%0A1%2C1%20millions%20de%20logements%20sont%20vacants%20depuis%20au%20moins%20deux%20ans%20dans%20le%20parc%20priv%C3%A9%20en%20France%20%28source%20LOVAC%202022%29.%20Au-del%C3%A0%20de%20ces%20logements%20d%C3%A9j%C3%A0%20vacants%2C%201%2C6%20millions%20de%20passoires%20%C3%A9nerg%C3%A9tiques%20locatives%20du%20parc%20priv%C3%A9%20%28DPE%20F%20et%20G%29%20risquent%20de%20basculer%20dans%20la%20vacance%20avec%20l%27interdiction%20progressive%20%C3%A0%20la%20relocation%20%28la%20loi%20climat%20et%20r%C3%A9silence%29%20.%0A%0ACette%20vacance%20structurelle%20p%C3%A9nalise%20les%20personnes%20qui%20cherchent%20%C3%A0%20se%20loger%2C%20d%C3%A9grade%20le%20b%C3%A2ti%20et%20contribue%20%C3%A0%20la%20d%C3%A9saffection%20des%20centres-villes%0A%0AA%20contrario%2C%20la%20remise%20sur%20le%20march%C3%A9%20des%20logements%20vacants%20contribue%20%C3%A0%20constituer%20une%20offre%20de%20logement%20abordable%2C%20%C3%A0%20la%20redynamisation%20des%20centre-villes%2C%20alimente%20l%27activit%C3%A9%20%C3%A9conomique%20locale%20li%C3%A9e%20au%20b%C3%A2timent%20%28r%C3%A9novation%29%2C%20et%20r%C3%A9duit%20la%20construction%20neuve%20%28ZAN%2C%20%C3%A9conomie%20carbone%2C%20%C3%A9conomie%20mati%C3%A8re%29.%0A%0ALes%20aides%20et%20dispositifs%20d%E2%80%99accompagnement%20des%20propri%C3%A9taires%20sont%20nombreux%20pour%20la%20r%C3%A9novation%2C%20la%20mise%20en%20location%20ou%20la%20vente%20des%20logements.%20Leur%20complexit%C3%A9%20freine%20toutefois%20la%20capacit%C3%A9%20des%20acteurs%20du%20logement%20%C3%A0%20mener%20des%20actions%20conjointes%20et%2C%20de%20l%E2%80%99autre%2C%20la%20capacit%C3%A9%20des%20propri%C3%A9taires%20%C3%A0%20se%20mettre%20en%20mouvement.%20En%20outre%2C%20beaucoup%20de%20logements%20et%20leurs%20propri%C3%A9taires%20sont%20dans%20des%20situations%20qui%20ne%20d%C3%A9pendent%20pas%20seulement%20des%20aides%20%28succession%2C%20attachement%20au%20bien%2C%20risques...%29.%0A%0A%23%23%20Accompagner%20le%20charg%C3%A9%20d%27habitat%20en%20charge%20de%20la%20lutte%20contre%20la%20vacance%0A%0AQuand%20la%20lutte%20et%20la%20pr%C3%A9vention%20de%20la%20vacance%20devient%20un%20sujet%20de%20l%27action%20publique%20locale%2C%20ce%20sont%20les%20charg%C3%A9s%20d%27habitat%20des%20EPCI%2C%20ainsi%20que%20des%20communes%20fran%C3%A7aises%2C%20qui%20en%20sont%20les%20chevilles%20ouvri%C3%A8res%2C%20n%C3%A9anmoins%20ils%20%3A%0A%0A%2A%20ont%20en%20r%C3%A8gle%20g%C3%A9n%C3%A9rale%20peu%20de%20temps%20d%C3%A9di%C3%A9%20%C3%A0%20la%20vacance%20%280.5%20jour%20%2F%20semaine%20en%20moyenne%29%2C%20%0A%2A%20ont%20tendance%20%C3%A0%20privil%C3%A9gier%20les%20%C3%A9tudes%20pour%20qualifier%20la%20vacance%20du%20territoire%20notamment%20et%20ont%20besoin%20de%20donn%C3%A9es%20les%20plus%20%C3%A0%20jour%2C%0A%2A%20sont%20soumis%20%C3%A0%20la%20validation%20des%20%C3%A9lus%20car%20le%20sujet%20touche%20%C3%A0%20la%20propri%C3%A9t%C3%A9%20priv%C3%A9%20et%20%C3%A0%20la%20politique%20locale%2C%0A%2A%20Enfin%20sont%20plus%20ou%20moins%20agiles%20dans%20la%20manipulation%20de%20donn%C3%A9es%20brutes%20et%20plus%20ou%20moins%20bien%20outill%C3%A9s%20sur%20le%20plan%20num%C3%A9rique.%0A%0A%23%23%20La%20solution%20Z%C3%A9ro%20Logement%20Vacant%0A%0AZ%C3%A9ro%20Logement%20Vacant%20aide%20ces%20charg%C3%A9s%20d%27habitat%20%C3%A0%20identifier%20et%20mobiliser%20les%20propri%C3%A9taires%20de%20logements%20vacants%20et%20de%20passoires%20%C3%A9nerg%C3%A9tiques%20de%20leur%20territoire%20pour%20les%20remobilier%20et%20les%20faire%20entrer%20dans%20un%20programme%20de%20remise%20sur%20le%20march%C3%A9%20%3A%20financement%20de%20travaux%2C%20interm%C3%A9diation%20locative%2C%20aide%20juridique.%0A%0ALes%20principales%20fonctionnalit%C3%A9s%20de%20l%27outil%20%3A%0A-%20Avoir%20une%20vue%20d%27ensemble%20g%C3%A9olocalis%C3%A9e%20du%20parc%20vacant%20et%20des%20passoires%20%C3%A9nerg%C3%A9tiques%2C%20leurs%20caract%C3%A9ristiques%20et%20leurs%20propri%C3%A9taire%3B%0A-%20Filtrer%20les%20logements%20et%20cr%C3%A9er%20des%20groupes%20pour%20am%C3%A9liorer%20la%20connaissance%20et%20l%27impact%20des%20messages%20port%C3%A9s%20%3B%0A-%20R%C3%A9diger%20des%20courriers%20et%20organiser%20le%20publipostage%20pour%20envoyer%20une%20campagne%20de%20courriers%20postaux%20aux%20propri%C3%A9taires%20cibl%C3%A9s%20%3B%0A-%20Mettre%20%C3%A0%20jour%20les%20fiches%20logement%20et%20propri%C3%A9taires%20afin%20de%20fiabiliser%20la%20donn%C3%A9e%20partag%C3%A9e%20et%20d%27assurer%20une%20continuit%C3%A9%20de%20l%27information%20sur%20le%20territoire.%0A%0A%23%23%20Les%20grandes%20dates%0A%0A%2A%202021%20%3A%20premi%C3%A8re%20version%20prototyp%C3%A9e%20en%20no-code%20pour%20tester%20la%20proposition%20de%20valeur%20aupr%C3%A8s%20d%27une%20vingtaine%20de%20collectivit%C3%A9s%20laur%C3%A9ates%20d%27un%20AMI%0A%2A%202022%20%3A%20d%C3%A9veloppement%20de%20la%C2%A0solution%20open-source%20pour%20pr%C3%A9parer%20un%20d%C3%A9ploiement%20%C3%A0%20plus%20large%20%C3%A9chelle%20France%20enti%C3%A8re%20%28novembre%202022%29%20%0A%2A%202024%20%3A%20int%C3%A9gration%20des%20donn%C3%A9es%20passoires%20%C3%A9nerg%C3%A9tiques%20pour%20int%C3%A9grer%20la%20pr%C3%A9vention%20de%20la%20vacance%0A%0A%23%23%20Impact%20de%20la%20solution%0A%0AL%E2%80%99impact%20principal%20porte%20sur%20la%20remise%20sur%20le%20march%C3%A9%20des%20logements%20en%20situation%20de%20vacance%20structurelle.%C2%A0Le%20processus%20de%20remise%20sur%20le%20march%C3%A9%20%C3%A9tant%20long%20%281%20%C3%A0%204%20ans%29%2C%20nous%20suivons%20les%20logements%20sortis%20et%20en%20cours%20de%20sortis%20de%20la%20vacance.%0A%0AL%27outil%20a%20d%27autres%20externalit%C3%A9s%20positives%20sur%20la%20ZAN%20et%20les%20%C3%A9conomies%20carbone%20en%20particulier.%0A%0A%23%23%20Objectifs%20et%20indicateurs%20pour%20juillet%202024%0A%0A%23%20Objectif%201%20%3A%20renforcer%20la%20capacit%C3%A9%20op%C3%A9rationnelle%20des%20charg%C3%A9s%20d%27habitat%20utilisateurs%0A%2A%20Nombre%20de%20visites%20par%20mois%20%3B%0A%2A%20Nombre%20d%27exports%20r%C3%A9alis%C3%A9s.%0A%0A%23%23%20Objectif%202%20%3A%20ZLV%20comme%20outil%20d%27administration%20partag%C3%A9%20du%20parc%20priv%C3%A9%0A%2A%20Nombre%20de%20mises%20%C3%A0%20jour%20de%20fiches%20logement%20%26%20propri%C3%A9taire%0A%2A%20Bases%20de%20donn%C3%A9es%20int%C3%A9gr%C3%A9es%20%28Lovac%20mill%C3%A9sime%202024%2C%20DPE%2FBDNB%2C%20RNIC%2C%20CoproFF%2C%20etc.%29%0A%0A%23%23%20Objectif%203%20%3A%20engager%20des%20collectivit%C3%A9s%20dans%20la%20lutte%0A%2A%20Nombre%20d%27organisations%20inscrites%20%C3%A0%20ZLV%0A%2A%20Taux%20d%27utilisateurs%20qui%20se%20sont%20connect%C3%A9s%20%C3%A0%20ZLV%20dans%20les%203%20derniers%20mois", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-03-15", + "end": "2020-07-03" + }, + { + "name": "construction", + "start": "2020-07-03", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-07-01", + "end": "" + } + ], + "sponsors": [ + "agence-national-de-l-habitat", + "dgaln", + "dhup" + ], + "thematiques": [ + "Logement", + "Collectivités", + "Écologie" + ], + "dashlord_url": "https://dashlord.incubateur.net/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" + "width": 1920, + "height": 1080, + "url": "https://zerologementvacant.beta.gouv.fr", + "size": 2745.429, + "nodes": 321, + "requests": 47, + "grade": "C", + "score": 65, + "ges": 1.7, + "water": 2.55, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 14:58:50.625544", + "page_type": "article" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-06T06:44:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "F", + "trackersCount": 23, + "lighthouse_performance": 0.94, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://labonnealternance.apprentissage.beta.gouv.fr", + "category": "mission-apprentissage", + "betaId": "la-bonne-alternance", + "repositories": [ + "mission-apprentissage/labonnealternance" + ], + "http": { + "url": "https://labonnealternance.apprentissage.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 11:04:23 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 11:04:20 GMT", + "ETag": "\"w7q2qll1oj273y\"", + "Referrer-Policy": "unsafe-url, no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff, nosniff", + "X-Frame-Options": "SAMEORIGIN" }, - { - "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" + "scan_id": 57060713, + "score": 55, + "start_time": "Sun, 20 Oct 2024 11:04:18 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "https://stats.beta.gouv.fr", + "'self'" + ], + "block-all-mixed-content": [ + "'none'" + ], + "child-src": [ + "blob:", + "'self'" + ], + "connect-src": [ + "https://api.mapbox.com", + "https://stats.beta.gouv.fr", + "https://catalogue-apprentissage.intercariforef.org", + "https://sentry.apprentissage.beta.gouv.fr", + "https://stats.data.gouv.fr", + "https://exposition.inserjeunes.beta.gouv.fr", + "https://exposition-recette.inserjeunes.beta.gouv.fr", + "https://api-adresse.data.gouv.fr", + "https://plausible.io", + "http://localhost:5000", + "'self'", + "https://events.mapbox.com", + "https://recherche-entreprises.api.gouv.fr" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "frame-ancestors": [ + "'none'" + ], + "frame-src": [ + "https://plausible.io", + "'self'" + ], + "img-src": [ + "https://stats.beta.gouv.fr", + "blob:", + "https://www.google.fr", + "data:", + "'self'", + "https://www.google.com", + "https://www.notion.so" + ], + "object-src": [ + "data:", + "'self'" + ], + "script-src": [ + "https://stats.beta.gouv.fr", + "blob:", + "'unsafe-inline'", + "https://stats.data.gouv.fr", + "http://localhost:3000", + "https://plausible.io", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "https:", + "'unsafe-inline'", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": true, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://labonnealternance.apprentissage.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://labonnealternance.apprentissage.beta.gouv.fr/", + "https://labonnealternance.apprentissage.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "unsafe-url, no-referrer-when-downgrade", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-header-invalid", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff, nosniff" + }, + "pass": false, + "result": "x-content-type-options-header-invalid", + "score_description": "X-Content-Type-Options header cannot be recognized", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "5pmv", + "url": "https://labonnealternance.apprentissage.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-20T01:23:17Z", + "error": null, + "period": 3600, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T14:54:05Z", + "next_check_at": "2024-12-01T15:53:54Z", + "created_at": "2021-04-22T21:34:02Z", + "mute_until": "forever", + "favicon_url": "https://labonnealternance.apprentissage.beta.gouv.fr/favicon/favicon-16x16.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T05:56:31Z", + "expires_at": "2025-01-19T09:32:19Z", + "valid": true, + "error": null }, + "metrics": {}, + "uptimeGrade": "A" + }, + "nmap": { + "host": "labonnealternance.apprentissage.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "type": "githubexploit", + "cvss": "10.0", + "is_exploit": "true", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" + }, + { + "type": "githubexploit", + "cvss": "10.0", + "is_exploit": "true", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" + }, + { + "type": "cve", + "cvss": "9.8", + "is_exploit": "false", + "id": "CVE-2023-38408" + }, + { + "type": "cve", + "cvss": "9.8", + "is_exploit": "false", + "id": "CVE-2023-28531" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "type": "packetstorm", + "cvss": "8.1", + "is_exploit": "true", + "id": "PACKETSTORM:179290" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D1E049F1-393E-552D-80D1-675022B26911" + }, + { + "type": "cve", + "cvss": "8.1", + "is_exploit": "false", + "id": "CVE-2024-6387" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "6FD8F914-B663-533D-8866-23313FD37804" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "452ADB71-199C-561E-B949-FCDE6288B925" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" + }, + { + "type": "zdt", + "cvss": "8.1", + "is_exploit": "true", + "id": "1337DAY-ID-39674" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "11F020AC-F907-5606-8805-0516E06160EE" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" + }, + { + "type": "seebug", + "cvss": "7.5", + "is_exploit": "true", + "id": "SSV:92579" + }, + { + "type": "packetstorm", + "cvss": "7.5", + "is_exploit": "true", + "id": "PACKETSTORM:173661" + }, + { + "type": "githubexploit", + "cvss": "7.5", + "is_exploit": "true", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "type": "zdt", + "cvss": "7.5", + "is_exploit": "true", + "id": "1337DAY-ID-26576" + }, + { + "type": "cve", + "cvss": "6.5", + "is_exploit": "false", + "id": "CVE-2023-51385" + }, + { + "type": "cve", + "cvss": "5.9", + "is_exploit": "false", + "id": "CVE-2023-48795" + }, + { + "type": "cve", + "cvss": "5.5", + "is_exploit": "false", + "id": "CVE-2023-51384" + }, + { + "type": "packetstorm", + "cvss": "0.0", + "is_exploit": "true", + "id": "PACKETSTORM:140261" + }, + { + "type": "githubexploit", + "cvss": "0.0", + "is_exploit": "true", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" + }, + { + "type": "githubexploit", + "cvss": "0.0", + "is_exploit": "true", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358667,7 +354869,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358675,7 +354877,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358683,7 +354885,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358691,7 +354893,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -358699,7 +354901,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -358707,469 +354909,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc02c", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "id": "cipher-tls1_2_xc02b", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "48 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "2024-11-08 06:44" + "finding": "2024-10-21 09:32" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "2025-02-06 06:44" + "finding": "2025-01-19 09:32" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://e6.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "E6 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "76E9E288AAFC0E37F4390CBF946AAD997D5C1C901B3CE513D3D8FADBABE2AB85" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "E6 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "1732460387" + "finding": "1733065588" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "DENY" + "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "nosniff" }, + { + "id": "Content-Security-Policy", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';" + }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "no-referrer-when-downgrade" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -359177,7 +355400,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -359186,7 +355409,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -359195,16 +355418,16 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -359213,7 +355436,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -359221,7 +355444,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -359230,7 +355453,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -359239,16 +355462,16 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -359257,14 +355480,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -359273,7 +355496,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -359282,7 +355505,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -359291,16 +355514,16 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=40087B0A4CAE7B5E9AEB2ADE300D27D362A4DAF158513B825CFB481E05F7E4AF" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -359309,16 +355532,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -359327,7 +355550,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -359336,7 +355559,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -359345,7 +355568,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -359354,456 +355577,355 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "96" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "388" + "finding": "106" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/logo_ZLV_header-website.original.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=AbiAS2inTrpsfbQOHerxIKUDE6E%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/photo_accueil_avant_apres.original_2_1.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=AXg2lXxUNlSvHK4gFysf7sjL1GI%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/statistic_chart.3b2a717c3bc810228dfb5eb49dc33b.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=RHAUI3fEQJsZhlEzPMEWCqvVMAg%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/location_review.3855ea620bd4c595a77d087ceaae6f.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=U7aNExxacp2jZGeg7PiABnhI0v4%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/collaboration.b7d540aec8cb66da8b0473eba30a6502.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=kxt9mNnnou81P74yXYcOn7Xo2Ac%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/real_time_collaboration.9f1e4e6abe5ea6c9fd17f9.width-800.svg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=Q6sOCZt%2BdRVhlhOe8ZOFuWGFaY4%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/antonin-carvalho-Jq1u4OOfI0M-unsplash_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=jnqpTcL5s2z5iGo7tPmZMmXSpLc%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/cecile-musy-TTEkReP50x4-unsplash_2_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=LE%2FjNClZQchJI%2FR0r6j3V5ZJQU8%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/pedro-lastra-XlSgaYMWsZ8-unsplash_1.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=fURqYchbkqCuf0FWkOPvrZkLAeg%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/LV_photo.width-1200.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=bim4I2UtDFw2u7u42rrwkZBNNqA%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/roubaix_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=53%2FYsadNPjsiTUJr5eWhBx%2BWU%2FA%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/strasbourg_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=%2FoBAowPj6mE%2ByCbleRfNTRQvwGM%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/cahors_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=8kh1HtxRe4yu5L%2FNQ6c9N%2FX0BKU%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/rennes_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=2jsZzPZvIZE001c6b7%2BT1pd1sTc%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/Logo_CA_Chateauroux_Metropole.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=FeslyaLzzoj%2FeOhGOpUrkCL37IM%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/lyon_pp.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=bLYpYMCCM%2BRmG1z0WublhAThSdI%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/logo_saint_log_agglo.original.png?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=haH3DfFsyXiZEXc97rALvZIM2aA%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://oos.cloudgouv-eu-west-1.outscale.com/wagtail-zlv/images/Logo-CCKB-A.original.jpg?AWSAccessKeyId=IIABDQQ1TNOJM01L6ED9&Signature=yEBPWQVCuR0PFNbuZiIq3cwhfqw%3D&Expires=1732463600" - }, - { - "type": "unknown", - "url": "https://eu-assets.i.posthog.com/static/array.js" - }, - { - "type": "unknown", - "url": "https://eu.i.posthog.com/decide/?v=3&ip=1&_=1732460000858&ver=1.188.0&compression=base64" - }, - { - "type": "unknown", - "url": "https://eu-assets.i.posthog.com/static/recorder.js?v=1.188.0" - }, - { - "type": "unknown", - "url": "https://eu-assets.i.posthog.com/static/dead-clicks-autocapture.js?v=1.188.0" + "url": "https://plausible.io/js/script.local.outbound-links.js" }, { "type": "unknown", - "url": "https://eu-assets.i.posthog.com/static/web-vitals.js?v=1.188.0" - } - ], - "cookies": [ - { - "name": "ph_phc_lit4tFUhTdSfhlHngsM8ih6grNtVmjECmzViBiPpwbT_posthog", - "value": "%7B%22distinct_id%22%3A%2201935ea9-b658-7d4b-aca6-42296f2b4a51%22%2C%22%24sesid%22%3A%5B1732460001343%2C%2201935ea9-b657-7555-ae7b-b402bc8ae42a%22%2C1732460000855%5D%7D", - "domain": ".beta.gouv.fr", - "path": "/", - "expires": 1763996001, - "size": 226, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "url": "https://plausible.io/api/event" } ], + "cookies": [], "headers": { "content-encoding": "gzip", - "content-language": "fr", + "content-security-policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 14:53:20 GMT", - "referrer-policy": "same-origin", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Language, Cookie", + "date": "Sun, 01 Dec 2024 15:04:31 GMT", + "etag": "\"rph39otmy72743\"", + "referrer-policy": "no-referrer-when-downgrade", + "strict-transport-security": "max-age=31536000; includeSubdomains", + "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "8bda0bb7-4003-4f82-8fcf-b637598428cb" + "x-frame-options": "SAMEORIGIN" }, "endpoints": [ { - "hostname": "zerologementvacant.beta.gouv.fr", - "ip": "109.232.236.90", + "hostname": "labonnealternance.apprentissage.beta.gouv.fr", + "ip": "149.202.54.205", "geoip": { "continent": { "code": "EU", @@ -359858,66 +355980,37 @@ } }, { - "hostname": "oos.cloudgouv-eu-west-1.outscale.com", - "ip": "148.253.96.5", + "hostname": "plausible.io", + "ip": "138.199.9.104", "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, + "city": { + "geoname_id": 5368361, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "continent": { + "code": "NA", + "geoname_id": 6255149, "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" } }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "eu-assets.i.posthog.com", - "ip": "172.67.40.50", - "geoip": { - "registered_country": { + "country": { "geoname_id": 6252001, "iso_code": "US", "names": { @@ -359930,91 +356023,44 @@ "ru": "США", "zh-CN": "美国" } - } - } - }, - { - "hostname": "eu.i.posthog.com", - "ip": "3.124.29.205", - "geoip": { - "city": { - "geoname_id": 2925533, - "names": { - "de": "Frankfurt am Main", - "en": "Frankfurt am Main", - "es": "Francfort", - "fr": "Francfort-sur-le-Main", - "ja": "フランクフルト・アム・マイン", - "pt-BR": "Frankfurt am Main", - "ru": "Франкфурт", - "zh-CN": "法兰克福" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2921044, - "is_in_european_union": true, - "iso_code": "DE", - "names": { - "de": "Deutschland", - "en": "Germany", - "es": "Alemania", - "fr": "Allemagne", - "ja": "ドイツ連邦共和国", - "pt-BR": "Alemanha", - "ru": "ФРГ", - "zh-CN": "德国" - } }, "location": { - "accuracy_radius": 200, - "latitude": 50.1187, - "longitude": 8.6842, - "time_zone": "Europe/Berlin" + "accuracy_radius": 20, + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "60313" + "code": "90060" }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "subdivisions": [ { - "geoname_id": 2905330, - "iso_code": "HE", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "de": "Hessen", - "en": "Hesse", - "es": "Hessen", - "fr": "Hesse", - "ja": "ヘッセン州", - "pt-BR": "Hesse", - "ru": "Гессен", - "zh-CN": "黑森州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -360024,90 +356070,182 @@ }, "wappalyzer": { "urls": { - "https://zerologementvacant.beta.gouv.fr/": { + "https://labonnealternance.apprentissage.beta.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "chakra-ui", + "name": "Chakra UI", + "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", + "confidence": 100, + "version": null, + "icon": "Chakra UI.svg", + "website": "https://chakra-ui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.13", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } ], "rootPath": true }, { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", "confidence": 100, "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "icon": "Emotion.png", + "website": "https://emotion.sh", "cpe": null, "categories": [ { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" } ], "rootPath": true }, { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", "confidence": 100, "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 10, + "slug": "analytics", + "name": "Analytics" } - ] + ], + "rootPath": true }, { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", "confidence": 100, "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, "categories": [ { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" } - ] + ], + "rootPath": true }, { - "slug": "posthog", - "name": "PostHog", - "description": "PostHog is the open-source, all-in-one product analytics platform.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "PostHog.svg", - "website": "https://posthog.com", - "cpe": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { "id": 10, @@ -360118,24 +356256,19 @@ "rootPath": true }, { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", "categories": [ { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } ], "rootPath": true @@ -360158,6 +356291,23 @@ ], "rootPath": true }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, { "slug": "pwa", "name": "PWA", @@ -360193,6 +356343,23 @@ } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -360200,9 +356367,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://zerologementvacant.beta.gouv.fr/", - "finalUrl": "https://zerologementvacant.beta.gouv.fr/", - "fetchTime": "2024-11-24T14:52:51.214Z", + "requestedUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", + "finalUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", + "fetchTime": "2024-12-01T15:04:02.174Z", "runWarnings": [], "categories": { "performance": { @@ -360213,7 +356380,7 @@ "snapshot" ], "id": "performance", - "score": 0.97 + "score": 0.7 }, "accessibility": { "title": "Accessibility", @@ -360224,7 +356391,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 0.97 }, "best-practices": { "title": "Best Practices", @@ -360234,7 +356401,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -360245,7 +356412,7 @@ "snapshot" ], "id": "seo", - "score": 1 + "score": 0.98 }, "pwa": { "title": "PWA", @@ -360255,7 +356422,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.6 } }, "audits": { @@ -360265,53 +356432,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1960, + "numericValue": 11755, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1960, - "firstMeaningfulPaint": 1960, - "largestContentfulPaint": 2236, - "interactive": 1960, - "speedIndex": 2504, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.026509315490722652, - "cumulativeLayoutShiftMainFrame": 0.026509315490722652, - "totalCumulativeLayoutShift": 0.026509315490722652, + "firstContentfulPaint": 1730, + "firstMeaningfulPaint": 1730, + "largestContentfulPaint": 1730, + "interactive": 11755, + "speedIndex": 2239, + "totalBlockingTime": 888, + "maxPotentialFID": 768, + "cumulativeLayoutShift": 0.04263505225711399, + "cumulativeLayoutShiftMainFrame": 0.04263505225711399, + "totalCumulativeLayoutShift": 0.04263505225711399, "observedTimeOrigin": 0, - "observedTimeOriginTs": 427366571, + "observedTimeOriginTs": 475163029, "observedNavigationStart": 0, - "observedNavigationStartTs": 427366571, - "observedFirstPaint": 1021, - "observedFirstPaintTs": 428387222, - "observedFirstContentfulPaint": 1021, - "observedFirstContentfulPaintTs": 428387222, - "observedFirstContentfulPaintAllFrames": 1021, - "observedFirstContentfulPaintAllFramesTs": 428387222, - "observedFirstMeaningfulPaint": 1021, - "observedFirstMeaningfulPaintTs": 428387222, - "observedLargestContentfulPaint": 1021, - "observedLargestContentfulPaintTs": 428387222, - "observedLargestContentfulPaintAllFrames": 1021, - "observedLargestContentfulPaintAllFramesTs": 428387222, - "observedTraceEnd": 4431, - "observedTraceEndTs": 431797989, - "observedLoad": 1954, - "observedLoadTs": 429320768, - "observedDomContentLoaded": 1096, - "observedDomContentLoadedTs": 428462769, - "observedCumulativeLayoutShift": 0.026509315490722652, - "observedCumulativeLayoutShiftMainFrame": 0.026509315490722652, - "observedTotalCumulativeLayoutShift": 0.026509315490722652, - "observedFirstVisualChange": 1032, - "observedFirstVisualChangeTs": 428398571, - "observedLastVisualChange": 1649, - "observedLastVisualChangeTs": 429015571, - "observedSpeedIndex": 1057, - "observedSpeedIndexTs": 428423696 + "observedNavigationStartTs": 475163029, + "observedFirstPaint": 889, + "observedFirstPaintTs": 476051580, + "observedFirstContentfulPaint": 889, + "observedFirstContentfulPaintTs": 476051580, + "observedFirstContentfulPaintAllFrames": 889, + "observedFirstContentfulPaintAllFramesTs": 476051580, + "observedFirstMeaningfulPaint": 889, + "observedFirstMeaningfulPaintTs": 476051580, + "observedLargestContentfulPaint": 889, + "observedLargestContentfulPaintTs": 476051580, + "observedLargestContentfulPaintAllFrames": 889, + "observedLargestContentfulPaintAllFramesTs": 476051580, + "observedTraceEnd": 5170, + "observedTraceEndTs": 480333326, + "observedLoad": 2689, + "observedLoadTs": 477851888, + "observedDomContentLoaded": 1904, + "observedDomContentLoadedTs": 477067015, + "observedCumulativeLayoutShift": 0.04263505225711399, + "observedCumulativeLayoutShiftMainFrame": 0.04263505225711399, + "observedTotalCumulativeLayoutShift": 0.04263505225711399, + "observedFirstVisualChange": 901, + "observedFirstVisualChangeTs": 476064029, + "observedLastVisualChange": 2001, + "observedLastVisualChangeTs": 477164029, + "observedSpeedIndex": 975, + "observedSpeedIndexTs": 476138120 }, { "lcpInvalidated": false @@ -360329,23 +356496,23 @@ "type": "debugdata", "items": [ { - "numRequests": 50, - "numScripts": 5, - "numStylesheets": 4, - "numFonts": 3, - "numTasks": 26, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, + "numRequests": 63, + "numScripts": 36, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 1424, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 3, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 8.742, - "throughput": 16609656.081831768, - "maxRtt": 145.081, - "maxServerLatency": 11.938999999999993, - "totalByteWeight": 2626242, - "totalTaskTime": 8.472000000000003, - "mainDocumentTransferSize": 9542 + "rtt": 20.091000000000008, + "throughput": 11871333.95731535, + "maxRtt": 166.022, + "maxServerLatency": 181.875, + "totalByteWeight": 1667869, + "totalTaskTime": 548.9529999999982, + "mainDocumentTransferSize": 22413 } ] } @@ -360361,11 +356528,11 @@ "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://zerologementvacant.beta.gouv.fr/accessibilite/" + "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -360375,65 +356542,75 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://zerologementvacant.beta.gouv.fr/mentions-legales/" + "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 3, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/politique-de-confidentialite" } ], "betagouv": { - "id": "zero-logement-vacant", + "id": "la-bonne-alternance", "type": "startup", "attributes": { - "name": "Zéro logement vacant", - "pitch": " Permettre aux collectivités de mobiliser les propriétaires de logements vacants pour les remettre sur le marché", - "stats_url": "https://zerologementvacant.beta.gouv.fr/statistiques", - "budget_url": "https://docs.google.com/spreadsheets/d/1rki0Wlrk4hCL0WC8mlHcRlj8rk7iCZ4ed3lyxSa_yec/edit#gid=300205456", - "link": "https://zerologementvacant.beta.gouv.fr/", - "repository": "https://github.com/MTES-MCT/zero-logement-vacant", - "contact": "contact@zerologementvacant.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Faire%20de%20la%20vacance%20structurelle%20une%20ressource%20pour%20les%20territoires%0A%0A1%2C1%20millions%20de%20logements%20sont%20vacants%20depuis%20au%20moins%20deux%20ans%20dans%20le%20parc%20priv%C3%A9%20en%20France%20%28source%20LOVAC%202022%29.%20Au-del%C3%A0%20de%20ces%20logements%20d%C3%A9j%C3%A0%20vacants%2C%201%2C6%20millions%20de%20passoires%20%C3%A9nerg%C3%A9tiques%20locatives%20du%20parc%20priv%C3%A9%20%28DPE%20F%20et%20G%29%20risquent%20de%20basculer%20dans%20la%20vacance%20avec%20l%27interdiction%20progressive%20%C3%A0%20la%20relocation%20%28la%20loi%20climat%20et%20r%C3%A9silence%29%20.%0A%0ACette%20vacance%20structurelle%20p%C3%A9nalise%20les%20personnes%20qui%20cherchent%20%C3%A0%20se%20loger%2C%20d%C3%A9grade%20le%20b%C3%A2ti%20et%20contribue%20%C3%A0%20la%20d%C3%A9saffection%20des%20centres-villes%0A%0AA%20contrario%2C%20la%20remise%20sur%20le%20march%C3%A9%20des%20logements%20vacants%20contribue%20%C3%A0%20constituer%20une%20offre%20de%20logement%20abordable%2C%20%C3%A0%20la%20redynamisation%20des%20centre-villes%2C%20alimente%20l%27activit%C3%A9%20%C3%A9conomique%20locale%20li%C3%A9e%20au%20b%C3%A2timent%20%28r%C3%A9novation%29%2C%20et%20r%C3%A9duit%20la%20construction%20neuve%20%28ZAN%2C%20%C3%A9conomie%20carbone%2C%20%C3%A9conomie%20mati%C3%A8re%29.%0A%0ALes%20aides%20et%20dispositifs%20d%E2%80%99accompagnement%20des%20propri%C3%A9taires%20sont%20nombreux%20pour%20la%20r%C3%A9novation%2C%20la%20mise%20en%20location%20ou%20la%20vente%20des%20logements.%20Leur%20complexit%C3%A9%20freine%20toutefois%20la%20capacit%C3%A9%20des%20acteurs%20du%20logement%20%C3%A0%20mener%20des%20actions%20conjointes%20et%2C%20de%20l%E2%80%99autre%2C%20la%20capacit%C3%A9%20des%20propri%C3%A9taires%20%C3%A0%20se%20mettre%20en%20mouvement.%20En%20outre%2C%20beaucoup%20de%20logements%20et%20leurs%20propri%C3%A9taires%20sont%20dans%20des%20situations%20qui%20ne%20d%C3%A9pendent%20pas%20seulement%20des%20aides%20%28succession%2C%20attachement%20au%20bien%2C%20risques...%29.%0A%0A%23%23%20Accompagner%20le%20charg%C3%A9%20d%27habitat%20en%20charge%20de%20la%20lutte%20contre%20la%20vacance%0A%0AQuand%20la%20lutte%20et%20la%20pr%C3%A9vention%20de%20la%20vacance%20devient%20un%20sujet%20de%20l%27action%20publique%20locale%2C%20ce%20sont%20les%20charg%C3%A9s%20d%27habitat%20des%20EPCI%2C%20ainsi%20que%20des%20communes%20fran%C3%A7aises%2C%20qui%20en%20sont%20les%20chevilles%20ouvri%C3%A8res%2C%20n%C3%A9anmoins%20ils%20%3A%0A%0A%2A%20ont%20en%20r%C3%A8gle%20g%C3%A9n%C3%A9rale%20peu%20de%20temps%20d%C3%A9di%C3%A9%20%C3%A0%20la%20vacance%20%280.5%20jour%20%2F%20semaine%20en%20moyenne%29%2C%20%0A%2A%20ont%20tendance%20%C3%A0%20privil%C3%A9gier%20les%20%C3%A9tudes%20pour%20qualifier%20la%20vacance%20du%20territoire%20notamment%20et%20ont%20besoin%20de%20donn%C3%A9es%20les%20plus%20%C3%A0%20jour%2C%0A%2A%20sont%20soumis%20%C3%A0%20la%20validation%20des%20%C3%A9lus%20car%20le%20sujet%20touche%20%C3%A0%20la%20propri%C3%A9t%C3%A9%20priv%C3%A9%20et%20%C3%A0%20la%20politique%20locale%2C%0A%2A%20Enfin%20sont%20plus%20ou%20moins%20agiles%20dans%20la%20manipulation%20de%20donn%C3%A9es%20brutes%20et%20plus%20ou%20moins%20bien%20outill%C3%A9s%20sur%20le%20plan%20num%C3%A9rique.%0A%0A%23%23%20La%20solution%20Z%C3%A9ro%20Logement%20Vacant%0A%0AZ%C3%A9ro%20Logement%20Vacant%20aide%20ces%20charg%C3%A9s%20d%27habitat%20%C3%A0%20identifier%20et%20mobiliser%20les%20propri%C3%A9taires%20de%20logements%20vacants%20et%20de%20passoires%20%C3%A9nerg%C3%A9tiques%20de%20leur%20territoire%20pour%20les%20remobilier%20et%20les%20faire%20entrer%20dans%20un%20programme%20de%20remise%20sur%20le%20march%C3%A9%20%3A%20financement%20de%20travaux%2C%20interm%C3%A9diation%20locative%2C%20aide%20juridique.%0A%0ALes%20principales%20fonctionnalit%C3%A9s%20de%20l%27outil%20%3A%0A-%20Avoir%20une%20vue%20d%27ensemble%20g%C3%A9olocalis%C3%A9e%20du%20parc%20vacant%20et%20des%20passoires%20%C3%A9nerg%C3%A9tiques%2C%20leurs%20caract%C3%A9ristiques%20et%20leurs%20propri%C3%A9taire%3B%0A-%20Filtrer%20les%20logements%20et%20cr%C3%A9er%20des%20groupes%20pour%20am%C3%A9liorer%20la%20connaissance%20et%20l%27impact%20des%20messages%20port%C3%A9s%20%3B%0A-%20R%C3%A9diger%20des%20courriers%20et%20organiser%20le%20publipostage%20pour%20envoyer%20une%20campagne%20de%20courriers%20postaux%20aux%20propri%C3%A9taires%20cibl%C3%A9s%20%3B%0A-%20Mettre%20%C3%A0%20jour%20les%20fiches%20logement%20et%20propri%C3%A9taires%20afin%20de%20fiabiliser%20la%20donn%C3%A9e%20partag%C3%A9e%20et%20d%27assurer%20une%20continuit%C3%A9%20de%20l%27information%20sur%20le%20territoire.%0A%0A%23%23%20Les%20grandes%20dates%0A%0A%2A%202021%20%3A%20premi%C3%A8re%20version%20prototyp%C3%A9e%20en%20no-code%20pour%20tester%20la%20proposition%20de%20valeur%20aupr%C3%A8s%20d%27une%20vingtaine%20de%20collectivit%C3%A9s%20laur%C3%A9ates%20d%27un%20AMI%0A%2A%202022%20%3A%20d%C3%A9veloppement%20de%20la%C2%A0solution%20open-source%20pour%20pr%C3%A9parer%20un%20d%C3%A9ploiement%20%C3%A0%20plus%20large%20%C3%A9chelle%20France%20enti%C3%A8re%20%28novembre%202022%29%20%0A%2A%202024%20%3A%20int%C3%A9gration%20des%20donn%C3%A9es%20passoires%20%C3%A9nerg%C3%A9tiques%20pour%20int%C3%A9grer%20la%20pr%C3%A9vention%20de%20la%20vacance%0A%0A%23%23%20Impact%20de%20la%20solution%0A%0AL%E2%80%99impact%20principal%20porte%20sur%20la%20remise%20sur%20le%20march%C3%A9%20des%20logements%20en%20situation%20de%20vacance%20structurelle.%C2%A0Le%20processus%20de%20remise%20sur%20le%20march%C3%A9%20%C3%A9tant%20long%20%281%20%C3%A0%204%20ans%29%2C%20nous%20suivons%20les%20logements%20sortis%20et%20en%20cours%20de%20sortis%20de%20la%20vacance.%0A%0AL%27outil%20a%20d%27autres%20externalit%C3%A9s%20positives%20sur%20la%20ZAN%20et%20les%20%C3%A9conomies%20carbone%20en%20particulier.%0A%0A%23%23%20Objectifs%20et%20indicateurs%20pour%20juillet%202024%0A%0A%23%20Objectif%201%20%3A%20renforcer%20la%20capacit%C3%A9%20op%C3%A9rationnelle%20des%20charg%C3%A9s%20d%27habitat%20utilisateurs%0A%2A%20Nombre%20de%20visites%20par%20mois%20%3B%0A%2A%20Nombre%20d%27exports%20r%C3%A9alis%C3%A9s.%0A%0A%23%23%20Objectif%202%20%3A%20ZLV%20comme%20outil%20d%27administration%20partag%C3%A9%20du%20parc%20priv%C3%A9%0A%2A%20Nombre%20de%20mises%20%C3%A0%20jour%20de%20fiches%20logement%20%26%20propri%C3%A9taire%0A%2A%20Bases%20de%20donn%C3%A9es%20int%C3%A9gr%C3%A9es%20%28Lovac%20mill%C3%A9sime%202024%2C%20DPE%2FBDNB%2C%20RNIC%2C%20CoproFF%2C%20etc.%29%0A%0A%23%23%20Objectif%203%20%3A%20engager%20des%20collectivit%C3%A9s%20dans%20la%20lutte%0A%2A%20Nombre%20d%27organisations%20inscrites%20%C3%A0%20ZLV%0A%2A%20Taux%20d%27utilisateurs%20qui%20se%20sont%20connect%C3%A9s%20%C3%A0%20ZLV%20dans%20les%203%20derniers%20mois", - "events": [], + "name": "La bonne alternance", + "pitch": "Faciliter la mise en relation entre jeunes, entreprises et CFA", + "stats_url": "https://labonnealternance.apprentissage.beta.gouv.fr/stats", + "link": "https://labonnealternance.apprentissage.beta.gouv.fr", + "repository": "https://github.com/mission-apprentissage/labonnealternance", + "contact": "labonnealternance@apprentissage.beta.gouv.fr", + "content_url_encoded_markdown": "%5BLa%20bonne%20alternance%5D%28https%3A%2F%2Flabonnealternance.apprentissage.beta.gouv.fr%2F%29%20est%20un%20service%20destin%C3%A9%20%C3%A0%20faciliter%20la%20mise%20en%20relation%20des%20jeunes%2C%20des%20centres%20de%20formation%20d%E2%80%99apprentis%20%28CFA%29%20et%20des%20entreprises.%20D%E2%80%99abord%20d%C3%A9velopp%C3%A9%20par%20P%C3%B4le%20emploi%2C%20le%20service%20La%20bonne%20alternance%20a%20%C3%A9t%C3%A9%20repris%20en%202020%20par%20la%20Mission%20interminist%C3%A9rielle%20pour%20l%E2%80%99apprentissage%20dans%20l%E2%80%99objectif%20de%20renforcer%20l%27accompagnement%20des%20jeunes%20int%C3%A9ress%C3%A9s%20par%20l%27apprentissage%2C%20ainsi%20que%20des%20CFA%20et%20recruteurs%20accueillant%20des%20apprentis.%0A%0A%23%23%20Le%20constat%0A%0AUne%20entr%C3%A9e%20en%20alternance%20r%C3%A9sulte%20d%E2%80%99un%20accord%20entre%20un%20candidat%2C%20un%20employeur%20et%20un%20centre%20de%20formation%20d%E2%80%99apprentis%20%28CFA%29.%20Or%2C%20jusqu%E2%80%99%C3%A0%20pr%C3%A9sent%20%3A%0A-%20Les%20informations%20sur%20l%E2%80%99emploi%20et%20la%20formation%20n%E2%80%99%C3%A9taient%20pas%20r%C3%A9unies%2C%20ce%20qui%20compliquait%20les%20d%C3%A9marches%20et%20provoquait%20des%20pertes%20de%20temps%20voire%20des%20%C3%A9checs%20d%E2%80%99orientation%2C%20en%20particulier%20pour%20les%20jeunes%20les%20plus%20fragiles%20et%20les%20moins%20renseign%C3%A9s.%0A-%20Les%20candidats%20rencontraient%20des%20difficult%C3%A9s%20%C3%A0%20trouver%20les%20bons%20outils%20pour%20entrer%20en%20contact%20avec%20un%20CFA%20ou%20avec%20les%20employeurs.%0A-%20Les%20TPE%2C%20PME%20et%20les%20CFA%20qui%20sourcent%20des%20candidats%20pour%20le%20compte%20d%E2%80%99entreprise%20peinaient%20%C3%A0%20d%C3%A9poser%20leurs%20offres%20sur%20plusieurs%20jobboards%20co%C3%BBteux%20et%20chronophages.%0A%0A%23%23%20La%20solution%0A%0ALa%20plateforme%20La%20bonne%20alternance%20a%20%C3%A9t%C3%A9%20consolid%C3%A9e%20par%20diff%C3%A9rentes%20donn%C3%A9es%20et%20fonctionnalit%C3%A9s.%20%0AConcernant%20les%20donn%C3%A9es%2C%20sont%20maintenant%20expos%C3%A9s%20%3A%20%0A-%20Les%20offres%20de%20formation%20en%20apprentissage%2C%20issues%20du%20%5Bcatalogue%20des%20formations%20en%20apprentissage%5D%28https%3A%2F%2Fcatalogue.apprentissage.beta.gouv.fr%2F%29%20%3B%0A-%20Les%20besoins%20exprim%C3%A9s%20par%20de%20tr%C3%A8s%20petites%20entreprises%20%28TPE%29%20ou%20des%20petites%20et%20moyennes%20entreprises%20%28PME%29%20aupr%C3%A8s%20de%20leur%20op%C3%A9rateur%20de%20comp%C3%A9tences%20%28OPCO%29%20ou%20de%20sites%20partenaires%20gr%C3%A2ce%20%5Bau%20service%20de%20d%C3%A9p%C3%B4t%20d%27offres%20simplifi%C3%A9%20de%20La%20bonne%20alternance%5D%28https%3A%2F%2Flabonnealternance.apprentissage.beta.gouv.fr%2Facces-recruteur%29%20%3B%0A-%20Les%20offres%20d%E2%80%99emploi%20en%20alternance%2C%20issues%20de%20%5Bl%E2%80%99API%20%E2%80%9Coffres%20d%E2%80%99emploi%E2%80%9D%5D%28https%3A%2F%2Ffrancetravail.io%2Fdata%2Fapi%2Foffres-emploi%29%20de%20France%20travail%20%3B%0A-%20Les%20entreprises%20aupr%C3%A8s%20desquelles%20adresser%20une%20candidature%20spontan%C3%A9e%2C%20identifi%C3%A9es%20gr%C3%A2ce%20%C3%A0%20l%27analyse%20de%20diverses%20donn%C3%A9es%20publiques%2C%20rendant%20accessible%20le%20march%C3%A9%20cach%C3%A9%20de%20l%E2%80%99emploi%20en%20analysant%20les%20recrutements%20pass%C3%A9s%20pour%20pr%C3%A9dire%20ceux%20%C3%A0%20venir.%0A%0AConcernant%20les%20fonctionnalit%C3%A9s%2C%20sont%20d%C3%A9velopp%C3%A9s%20%3A%20%0A-%20%5BUn%20service%20de%20d%C3%A9p%C3%B4t%20d%E2%80%99offres%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Fmatcha%29%20accessible%20aux%20TPE%2C%20PME%20et%20aux%20CFA%20qui%20souhaitent%20rendre%20visibles%20leurs%20partenariats%20avec%20des%20entreprises%20%3A%20il%20permet%20d%E2%80%99exprimer%20un%20besoin%20en%20recrutement%20en%20quelques%20clics%2C%20de%20le%20multi-diffuser%20sur%20les%20plateformes%20les%20plus%20consult%C3%A9es%20par%20les%20candidats%20et%20de%20le%20g%C3%A9rer%20simplement%20%3B%0A-%20%5BUn%20service%20de%20mise%20relation%20des%20jeunes%20avec%20les%20CFA%20%E2%80%9CRDV%20Apprentissage%E2%80%9D%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Fprise-de-rendez-vous%29%20%3A%20%C3%A0%20travers%20un%20simple%20formulaire%2C%20les%20candidats%20peuvent%20demander%20aux%20CFA%20qui%20les%20int%C3%A9ressent%20de%20les%20recontacter%20par%20t%C3%A9l%C3%A9phone%20ou%20par%20mail%20%3B%0A-%20%5BUn%20service%20d%E2%80%99envoi%20de%20candidatures%20%E2%80%9CJe%20candidate%E2%80%9D%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Ffaciliter-et-simplifier-la-mise-en-relation-entre-candidats-et-entreprises%29%20%3A%20sans%20cr%C3%A9ation%20de%20compte%2C%20les%20candidats%20peuvent%20postuler%20aupr%C3%A8s%20des%20entreprises%20qui%20les%20int%C3%A9ressent%2C%20aussi%20bien%20sur%20les%20offres%20d%E2%80%99emploi%20que%20sur%20les%20entreprises%20cibl%C3%A9es%20par%20nos%20algorithmes%20et%20aupr%C3%A8s%20desquelles%20il%20est%20possible%20d%E2%80%99%C3%A9mettre%20une%20candidature%20spontan%C3%A9e%20-%20ce%20service%20offre%20ensuite%20aux%20recruteurs%20une%20solution%20de%20r%C3%A9ponse%20rapide%20aux%20candidats%20%3B%0A-%20%5BDes%20modules%20d%E2%80%99accompagnement%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Faccompagner-les-futurs-apprentis%29%20%C3%A0%20la%20prise%20de%20contact%20avec%20un%20CFA%2C%20la%20recherche%20d%E2%80%99une%20entreprise%20d%E2%80%99accueil%20ou%20encore%20la%20pr%C3%A9paration%20%C3%A0%20un%20entretien%20d%E2%80%99embauche%20sont%20propos%C3%A9s%20sur%20le%20parcours%20des%20jeunes%20pour%20les%20aider%20%C3%A0%20concr%C3%A9tiser%20leur%20envie%20d%E2%80%99entrer%20en%20alternance.%0A%0APar%20ailleurs%2C%20afin%20de%20faciliter%20l%E2%80%99accompagnement%20des%20parties%20prenantes%20de%20l%E2%80%99alternance%2C%20le%20service%20La%20bonne%20alternance%20existe%20sous%20forme%20d%E2%80%99API%20et%20de%20widget.%20Tout%20ou%20partie%20des%20donn%C3%A9es%20sont%20ainsi%20expos%C3%A9es%20sur%20les%20sites%20particuli%C3%A8rement%20consult%C3%A9s%20par%20les%20jeunes%20%28Parcoursup%2C%20Affelnet%2C%201%20jeune%201%20solution%2C%20ONISEP%2C%20...%29%20ou%20ceux%20utilis%C3%A9s%20par%20les%20entreprises%20%28le%20Portail%20de%20l%27alternance%2C%20sites%20des%20OPCO%2C%20de%20partenaires%20institutionnels%29.%20La%20documentation%20sur%20les%20API%20et%20widgets%20est%20%C3%A0%20retrouver%20%5Bici%5D%28https%3A%2F%2Fapi.gouv.fr%2Fles-api%2Fapi-la-bonne-alternance%29.%0A%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0APour%20les%20jeunes%20et%20les%20acteurs%20qui%20les%20accompagnent%20%3A%20%0A-%20Centraliser%20l%E2%80%99offre%20de%20formation%20et%20d%E2%80%99emploi%20en%20alternance%2C%20afin%20de%20faire%20gagner%20du%20temps%20%C3%A0%20l%E2%80%99utilisateur%20sur%20sa%20recherche%20d%E2%80%99information%3B%0A-%20Outiller%20les%20d%C3%A9marches%20de%20candidatures%20aupr%C3%A8s%20des%20CFA%20et%20des%20recruteurs%2C%20afin%20de%20faciliter%20le%20passage%20%C3%A0%20l%E2%80%99action%20%3B%0A%0APour%20les%20entreprises%20%3A%20%0A-%20Acc%C3%A9l%C3%A9rer%20l%E2%80%99expression%20des%20besoins%20de%20recrutement%2C%20l%E2%80%99objectif%20%C3%A9tant%20d%E2%80%99int%C3%A9grer%20le%20d%C3%A9p%C3%B4t%20d%27offres%20simplifi%C3%A9%20aux%20process%20des%20acteurs%20de%20l%E2%80%99apprentissage%20%28entreprises%2C%20op%C3%A9rateurs%20de%20comp%C3%A9tences%2C%20chambres%20consulaires%2C%20CFA%2C%20etc.%29%20pour%20rendre%20l%E2%80%99expression%20des%20besoins%20en%20recrutement%20plus%20simple%2C%20plus%20op%C3%A9rationnel%2C%20plus%20efficace%20%3B%0A-%20R%C3%A9v%C3%A9ler%20les%20besoins%20non%20visibles%2C%20l%E2%80%99objectif%20%C3%A9tant%20de%20participer%20au%20d%C3%A9veloppement%20du%20recours%20%C3%A0%20l%E2%80%99apprentissage%20en%20offrant%20une%20alternative%20simplifi%C3%A9e%20%C3%A0%20un%20d%C3%A9p%C3%B4t%20d%E2%80%99offre%20classique%2C%20en%20centralisant%20le%20d%C3%A9p%C3%B4t%20d%E2%80%99offres%20et%20en%20mettant%20en%20lumi%C3%A8re%20le%20march%C3%A9%20cach%C3%A9%20%28offres%20trait%C3%A9es%20par%20les%20CFA%2C%20offres%20diffus%C3%A9es%20uniquement%20par%20le%20bouche%20%C3%A0%20oreille%20ou%20selon%20opportunit%C3%A9s%20de%20recrutement%20direct%2C...%29%20%3B%0A-%20Pouvoir%20profiter%20d%E2%80%99un%20accompagnement%20sp%C3%A9cialis%C3%A9%20de%20CFA%2C%20gr%C3%A2ce%20%C3%A0%20un%20service%20de%20mise%20en%20relation%20avec%20des%20CFA%20de%20proximit%C3%A9%20et%20informer%20l%E2%80%99OPCO%20qui%20jouera%20aussi%20un%20r%C3%B4le%20de%20facilitateur%20%3B%0A%0APour%20les%20CFA%20%3A%0A-%20Valoriser%20leur%20offre%20de%20formation%20en%20apprentissage%20aupr%C3%A8s%20des%20jeunes%20%3B%0A-%20Diffuser%20les%20offres%20de%20leurs%20entreprises%20partenaires%20et%20ainsi%20faire%20gagner%20en%20visibilit%C3%A9%20leurs%20formations%20pour%20attirer%20de%20nouveaux%20candidats%20%3B%0A-%20Identifier%20des%20entreprises%20pouvant%20accueillir%20les%20apprentis%20de%20la%20formation%20%3B%0A-%20Recevoir%20les%20offres%20des%20entreprises%20qui%20recherchent%20des%20alternants%20et%20pouvoir%20accompagner%20celles-ci%20dans%20le%20sourcing%20de%20profils%20les%20plus%20int%C3%A9ressants%20%3B%0A-%20Simplifier%2C%20acc%C3%A9l%C3%A9rer%20et%20s%C3%A9curiser%20leur%20mise%20en%20relation%20avec%20les%20candidats%20%C3%A0%20une%20formation%20en%20apprentissage.", + "events": [ + { + "name": "national_impact", + "date": "2021-12-31", + "comment": "" + } + ], "phases": [ { "name": "investigation", - "start": "2020-03-15", - "end": "2020-07-03" + "start": "2018-03-19", + "end": "" }, { "name": "construction", - "start": "2020-07-03", + "start": "2018-09-01", "end": "" }, { "name": "acceleration", - "start": "2022-07-01", + "start": "2021-01-01", "end": "" } ], "sponsors": [ - "agence-national-de-l-habitat", - "dgaln", - "dhup" + "menjs", + "mesr", + "mtei", + "mtfp" ], "thematiques": [ - "Logement", - "Collectivités", - "Écologie" + "Travail / Emploi", + "Jeunesse", + "Education", + "Formation" ], - "dashlord_url": "https://dashlord.incubateur.net/", - "accessibility_status": "partiellement conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/labonnealternance-apprentissage-beta-gouv-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mtes" + "id": "mission-apprentissage" } } } @@ -360442,95 +356619,95 @@ { "width": 1920, "height": 1080, - "url": "https://zerologementvacant.beta.gouv.fr", - "size": 2748.262, - "nodes": 321, - "requests": 47, - "grade": "C", - "score": 65, - "ges": 1.7, - "water": 2.55, + "url": "https://labonnealternance.apprentissage.beta.gouv.fr", + "size": 1996.539, + "nodes": 474, + "requests": 83, + "grade": "D", + "score": 52, + "ges": 1.96, + "water": 2.94, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:49:47.832835", - "page_type": "article" + "date": "2024-12-01 15:00:46.484284", + "page_type": "site" } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "C", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-06T06:44:00.000Z", + "testsslExpireDate": "2025-01-19T09:32:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "F", - "trackersCount": 23, - "lighthouse_performance": 0.97, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.98, + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.7, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, + "lighthouse_seo": 0.98, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_pwa": 0.6, + "lighthouse_pwaGrade": "C", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", + "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "A" + "declaration-rgpd-pc": "D", + "ecoindexGrade": "D", + "dsfrGrade": "F" } }, { "404": null, - "url": "https://labonnealternance.apprentissage.beta.gouv.fr", - "category": "mission-apprentissage", - "betaId": "la-bonne-alternance", - "repositories": [ - "mission-apprentissage/labonnealternance" - ], + "url": "https://labonneboite.pole-emploi.fr", + "category": "pole-emploi", + "betaId": "la-bonne-boite", + "tools": { + "nmap": false + }, "http": { - "url": "https://labonnealternance.apprentissage.beta.gouv.fr", + "url": "https://labonneboite.pole-emploi.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:04:23 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 11:03:58 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", + "Content-Security-Policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.pole-emploi.fr cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr https://*.mopinion.com/ composants-pe-communs.pole-emploi.fr;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:04:20 GMT", - "ETag": "\"w7q2qll1oj273y\"", - "Referrer-Policy": "unsafe-url, no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", + "Date": "Sun, 20 Oct 2024 11:03:56 GMT", + "Etag": "W/\"1dc5f-CnQtHU9J/kn3dXOMTx7sPsbsjmk\"", + "Referrer-Policy": "strict-origin", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff, nosniff", - "X-Frame-Options": "SAMEORIGIN" + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Powered-By": "Express", + "X-Xss-Protection": "1; mode=block" }, - "scan_id": 57060713, - "score": 55, - "start_time": "Sun, 20 Oct 2024 11:04:18 GMT", + "scan_id": 57060703, + "score": 75, + "start_time": "Sun, 20 Oct 2024 11:03:53 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { @@ -360538,814 +356715,350 @@ "name": "content-security-policy", "output": { "data": { - "base-uri": [ - "https://stats.beta.gouv.fr", - "'self'" - ], - "block-all-mixed-content": [ - "'none'" - ], - "child-src": [ - "blob:", - "'self'" - ], - "connect-src": [ - "https://api.mapbox.com", - "https://stats.beta.gouv.fr", - "https://catalogue-apprentissage.intercariforef.org", - "https://sentry.apprentissage.beta.gouv.fr", - "https://stats.data.gouv.fr", - "https://exposition.inserjeunes.beta.gouv.fr", - "https://exposition-recette.inserjeunes.beta.gouv.fr", - "https://api-adresse.data.gouv.fr", - "https://plausible.io", - "http://localhost:5000", - "'self'", - "https://events.mapbox.com", - "https://recherche-entreprises.api.gouv.fr" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "frame-ancestors": [ - "'none'" - ], - "frame-src": [ - "https://plausible.io", - "'self'" - ], - "img-src": [ - "https://stats.beta.gouv.fr", - "blob:", - "https://www.google.fr", - "data:", - "'self'", - "https://www.google.com", - "https://www.notion.so" - ], - "object-src": [ - "data:", - "'self'" - ], "script-src": [ - "https://stats.beta.gouv.fr", + "cdn.trustcommander.net", + "guidances-applicatives.pole-emploi.fr", "blob:", + "'unsafe-eval'", + "https://*.mopinion.com/", + "cdn.tagcommander.com", "'unsafe-inline'", - "https://stats.data.gouv.fr", - "http://localhost:3000", - "https://plausible.io", - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "https:", - "'unsafe-inline'", + "maps.pole-emploi.fr", + "tag.aticdn.net", + "composants-pe-communs.pole-emploi.fr", "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": true, + "antiClickjacking": false, "defaultNone": false, - "insecureBaseUri": false, + "insecureBaseUri": true, "insecureFormAction": true, - "insecureSchemeActive": true, + "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, - "unsafeEval": false, + "unsafeEval": true, "unsafeInline": true, "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null + "unsafeObjects": true } }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://labonnealternance.apprentissage.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://labonnealternance.apprentissage.beta.gouv.fr/", - "https://labonnealternance.apprentissage.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "unsafe-url, no-referrer-when-downgrade", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-header-invalid", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff, nosniff" - }, - "pass": false, - "result": "x-content-type-options-header-invalid", - "score_description": "X-Content-Type-Options header cannot be recognized", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "5pmv", - "url": "https://labonnealternance.apprentissage.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-20T01:23:17Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T14:45:31Z", - "next_check_at": "2024-11-24T15:45:22Z", - "created_at": "2021-04-22T21:34:02Z", - "mute_until": "forever", - "favicon_url": "https://labonnealternance.apprentissage.beta.gouv.fr/favicon/favicon-16x16.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:45:32Z", - "expires_at": "2025-01-19T09:32:19Z", - "valid": true, - "error": null - }, - "metrics": {}, - "uptimeGrade": "A" - }, - "nmap": { - "host": "labonnealternance.apprentissage.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "is_exploit": "true", - "cvss": "10.0", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "10.0", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "type": "githubexploit" - }, - { - "is_exploit": "false", - "cvss": "9.8", - "id": "CVE-2023-38408", - "type": "cve" - }, - { - "is_exploit": "false", - "cvss": "9.8", - "id": "CVE-2023-28531", - "type": "cve" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "PACKETSTORM:179290", - "type": "packetstorm" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "type": "githubexploit" - }, - { - "is_exploit": "false", - "cvss": "8.1", - "id": "CVE-2024-6387", - "type": "cve" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "type": "githubexploit" - }, - { - "is_exploit": "true", - "cvss": "8.1", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "type": "githubexploit" - }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://labonneboite.francetravail.fr", + "redirects": true, + "route": [ + "http://labonneboite.pole-emploi.fr/", + "https://labonneboite.pole-emploi.fr/", + "https://labonneboite.francetravail.fr" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.tagcommander.com/5233/tc_lbb_31.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "0jnd", + "url": "https://labonneboite.pole-emploi.fr", + "alias": null, + "last_status": 200, + "uptime": 99.982, + "down": false, + "down_since": null, + "up_since": "2024-11-24T14:00:11Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-11-24T15:07:08Z", + "next_check_at": "2024-11-24T15:08:07Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://labonneboite.francetravail.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-11-24T14:59:09Z", + "expires_at": "2025-05-14T13:11:07Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 0.718, + "timings": { + "redirect": 591, + "namelookup": 2, + "connection": 421, + "handshake": 119, + "response": 532, + "total": 1927 + } + }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "labonneboite.pole-emploi.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ { - "is_exploit": "true", - "cvss": "8.1", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "type": "githubexploit" + "id": "CVE-2023-38408", + "cvss": "9.8", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "type": "githubexploit" + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "type": "githubexploit" + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "type": "githubexploit" + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "type": "githubexploit" + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "1337DAY-ID-39674", - "type": "zdt" + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "type": "githubexploit" + "id": "CVE-2020-15778", + "cvss": "7.8", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "type": "githubexploit" + "id": "SSV:92579", + "cvss": "7.5", + "type": "seebug", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "type": "githubexploit" + "id": "PACKETSTORM:173661", + "cvss": "7.5", + "type": "packetstorm", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "type": "githubexploit" + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "cvss": "7.5", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "type": "githubexploit" + "id": "CVE-2020-12062", + "cvss": "7.5", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "8.1", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "type": "githubexploit" + "id": "1337DAY-ID-26576", + "cvss": "7.5", + "type": "zdt", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "7.5", - "id": "SSV:92579", - "type": "seebug" + "id": "CVE-2021-28041", + "cvss": "7.1", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "type": "packetstorm" + "id": "CVE-2021-41617", + "cvss": "7.0", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit" + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "cvss": "6.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "true", - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "type": "zdt" + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "cvss": "6.8", + "type": "githubexploit", + "is_exploit": "true" }, { - "is_exploit": "false", - "cvss": "6.5", "id": "CVE-2023-51385", - "type": "cve" + "cvss": "6.5", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "false", - "cvss": "5.9", "id": "CVE-2023-48795", - "type": "cve" - }, - { - "is_exploit": "false", - "cvss": "5.5", - "id": "CVE-2023-51384", - "type": "cve" + "cvss": "5.9", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "type": "packetstorm" + "id": "CVE-2020-14145", + "cvss": "5.9", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", - "cvss": "0.0", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "type": "githubexploit" + "id": "CVE-2016-20012", + "cvss": "5.3", + "type": "cve", + "is_exploit": "false" }, { - "is_exploit": "true", + "id": "PACKETSTORM:140261", "cvss": "0.0", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "type": "githubexploit" + "type": "packetstorm", + "is_exploit": "true" } ] } @@ -361365,6 +357078,13 @@ "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } } ], "grade": "F" @@ -361374,77 +357094,70 @@ "testssl": [ { "id": "service", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -361452,7 +357165,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -361460,7 +357173,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -361468,7 +357181,7 @@ }, { "id": "cipherlist_LOW", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -361476,7 +357189,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -361484,519 +357197,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc02c", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02b", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "id": "cipherorder_TLSv1_2", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 86400 seconds only (= 30 days" + "finding": "163 >= 60 days" }, { "id": "cert_notBefore", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "2024-10-21 09:32" + "finding": "2024-05-14 13:11" }, { "id": "cert_notAfter", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", - "finding": "2025-01-19 09:32" + "finding": "2025-05-14 13:11" }, { "id": "cert_extlifeSpan", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.entrust.net/level1m.crl" }, { "id": "cert_ocspURL", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "http://e6.o.lencr.org" + "finding": "http://ocsp.entrust.net" }, { "id": "OCSP_stapling", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "E6 (Let's Encrypt from US)" + "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "76E9E288AAFC0E37F4390CBF946AAD997D5C1C901B3CE513D3D8FADBABE2AB85" + "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2014-12-15 15:25" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2030-10-15 15:55" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "E6 <-- ISRG Root X1" + "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" + }, + { + "id": "intermediate_cert <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "INFO", + "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "INFO", + "finding": "2009-07-07 17:25" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "OK", + "finding": "2030-12-07 17:55" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "port": "443", + "severity": "INFO", + "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { "id": "intermediate_cert_badOCSP", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "1732460341" - }, - { - "id": "HSTS_multiple", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000; includeSubDomains" + "finding": "1733066132" }, { "id": "HSTS_time", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options_multiple", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple X-Content-Type-Options headers. Using first header: nosniff" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "nosniff" }, - { - "id": "Content-Security-Policy", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "OK", - "finding": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';" - }, - { - "id": "Referrer-Policy_multiple", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple Referrer-Policy headers. Using first header: unsafe-url" - }, - { - "id": "Referrer-Policy", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", - "port": "443", - "severity": "INFO", - "finding": "unsafe-url" - }, { "id": "banner_reverseproxy", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -362004,7 +357703,7 @@ }, { "id": "heartbleed", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -362013,7 +357712,7 @@ }, { "id": "CCS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -362022,25 +357721,25 @@ }, { "id": "ticketbleed", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -362048,7 +357747,7 @@ }, { "id": "secure_client_renego", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -362057,7 +357756,7 @@ }, { "id": "CRIME_TLS", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -362066,16 +357765,16 @@ }, { "id": "BREACH", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -362084,14 +357783,14 @@ }, { "id": "fallback_SCSV", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -362100,7 +357799,7 @@ }, { "id": "FREAK", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -362109,7 +357808,7 @@ }, { "id": "DROWN", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -362118,16 +357817,16 @@ }, { "id": "DROWN_hint", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9F7E9F670A92B77879B36D2B841DA3017D397C75DC0D9EAD7C2DD43FC591E22E" }, { "id": "LOGJAM", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -362136,16 +357835,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -362154,16 +357853,16 @@ }, { "id": "LUCKY13", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -362172,7 +357871,7 @@ }, { "id": "RC4", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -362181,355 +357880,342 @@ }, { "id": "clientsimulation-android_60", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_81", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_90", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "96" + "finding": "81" }, { "id": "overall_grade", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", + "ip": "labonneboite.pole-emploi.fr/51.68.82.47", "port": "443", "severity": "INFO", - "finding": "92" + "finding": "141" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://plausible.io/js/script.local.outbound-links.js" - }, - { - "type": "unknown", - "url": "https://plausible.io/api/event" - } - ], + "trackers": [], "cookies": [], "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr https://recherche-entreprises.api.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 14:57:17 GMT", - "etag": "\"19b13h26ky2741\"", - "referrer-policy": "unsafe-url\nno-referrer-when-downgrade", - "strict-transport-security": "max-age=31536000; includeSubDomains\nmax-age=31536000; includeSubdomains", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff\nnosniff", - "x-frame-options": "SAMEORIGIN" + "connection": "keep-alive", + "content-length": "19", + "content-type": "text/plain; charset=utf-8", + "date": "Sun, 01 Dec 2024 15:14:06 GMT", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "x-content-type-options": "nosniff" }, "endpoints": [ { - "hostname": "labonnealternance.apprentissage.beta.gouv.fr", - "ip": "149.202.54.205", + "hostname": "labonneboite.pole-emploi.fr", + "ip": "51.68.82.47", "geoip": { "continent": { "code": "EU", @@ -362544,338 +358230,54 @@ "ru": "Европа", "zh-CN": "欧洲" } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "plausible.io", - "ip": "138.199.40.58", - "geoip": { - "city": { - "geoname_id": 5128581, - "names": { - "de": "New York City", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } }, "location": { - "accuracy_radius": 20, - "latitude": 40.7123, - "longitude": -74.0068, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "10118" + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - ] + } } } ] }, "wappalyzer": { "urls": { - "https://labonnealternance.apprentissage.beta.gouv.fr/": { - "status": 200 + "https://labonneboite.pole-emploi.fr/": { + "status": 404 } }, "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "chakra-ui", - "name": "Chakra UI", - "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", - "confidence": 100, - "version": null, - "icon": "Chakra UI.svg", - "website": "https://chakra-ui.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.13", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -362895,54 +358297,19 @@ "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true @@ -362953,10 +358320,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", - "finalUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", - "fetchTime": "2024-11-24T14:56:51.819Z", - "runWarnings": [], + "requestedUrl": "https://labonneboite.pole-emploi.fr/", + "finalUrl": "https://labonneboite.francetravail.fr/", + "fetchTime": "2024-11-24T15:04:33.817Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://labonneboite.pole-emploi.fr/) was redirected to https://labonneboite.francetravail.fr/. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -362966,7 +358335,7 @@ "snapshot" ], "id": "performance", - "score": 0.69 + "score": 0.57 }, "accessibility": { "title": "Accessibility", @@ -362977,7 +358346,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.97 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -362998,7 +358367,7 @@ "snapshot" ], "id": "seo", - "score": 0.98 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -363008,7 +358377,7 @@ "navigation" ], "id": "pwa", - "score": 0.6 + "score": 0.3 } }, "audits": { @@ -363018,53 +358387,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11004, + "numericValue": 12087, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1546, - "firstMeaningfulPaint": 1546, - "largestContentfulPaint": 1546, - "interactive": 11004, - "speedIndex": 1833, - "totalBlockingTime": 998, - "maxPotentialFID": 654, - "cumulativeLayoutShift": 0.04871626811557346, - "cumulativeLayoutShiftMainFrame": 0.04871626811557346, - "totalCumulativeLayoutShift": 0.04871626811557346, + "firstContentfulPaint": 2712, + "firstMeaningfulPaint": 8310, + "largestContentfulPaint": 5710, + "interactive": 12087, + "speedIndex": 6578, + "totalBlockingTime": 205, + "maxPotentialFID": 143, + "cumulativeLayoutShift": 0.018222459581163197, + "cumulativeLayoutShiftMainFrame": 0.018222459581163197, + "totalCumulativeLayoutShift": 0.018222459581163197, "observedTimeOrigin": 0, - "observedTimeOriginTs": 408508961, + "observedTimeOriginTs": 498831590, "observedNavigationStart": 0, - "observedNavigationStartTs": 408508961, - "observedFirstPaint": 619, - "observedFirstPaintTs": 409127612, - "observedFirstContentfulPaint": 619, - "observedFirstContentfulPaintTs": 409127612, - "observedFirstContentfulPaintAllFrames": 619, - "observedFirstContentfulPaintAllFramesTs": 409127612, - "observedFirstMeaningfulPaint": 619, - "observedFirstMeaningfulPaintTs": 409127612, - "observedLargestContentfulPaint": 619, - "observedLargestContentfulPaintTs": 409127612, - "observedLargestContentfulPaintAllFrames": 619, - "observedLargestContentfulPaintAllFramesTs": 409127612, - "observedTraceEnd": 4424, - "observedTraceEndTs": 412932542, - "observedLoad": 1995, - "observedLoadTs": 410503523, - "observedDomContentLoaded": 1348, - "observedDomContentLoadedTs": 409856762, - "observedCumulativeLayoutShift": 0.04871626811557346, - "observedCumulativeLayoutShiftMainFrame": 0.04871626811557346, - "observedTotalCumulativeLayoutShift": 0.04871626811557346, - "observedFirstVisualChange": 624, - "observedFirstVisualChangeTs": 409132961, - "observedLastVisualChange": 1441, - "observedLastVisualChangeTs": 409949961, - "observedSpeedIndex": 681, - "observedSpeedIndexTs": 409189798 + "observedNavigationStartTs": 498831590, + "observedFirstPaint": 1206, + "observedFirstPaintTs": 500037610, + "observedFirstContentfulPaint": 1206, + "observedFirstContentfulPaintTs": 500037610, + "observedFirstContentfulPaintAllFrames": 1206, + "observedFirstContentfulPaintAllFramesTs": 500037610, + "observedFirstMeaningfulPaint": 2024, + "observedFirstMeaningfulPaintTs": 500855116, + "observedLargestContentfulPaint": 1724, + "observedLargestContentfulPaintTs": 500555549, + "observedLargestContentfulPaintAllFrames": 1724, + "observedLargestContentfulPaintAllFramesTs": 500555549, + "observedTraceEnd": 5317, + "observedTraceEndTs": 504148478, + "observedLoad": 2425, + "observedLoadTs": 501257057, + "observedDomContentLoaded": 2161, + "observedDomContentLoadedTs": 500992513, + "observedCumulativeLayoutShift": 0.018222459581163197, + "observedCumulativeLayoutShiftMainFrame": 0.018222459581163197, + "observedTotalCumulativeLayoutShift": 0.018222459581163197, + "observedFirstVisualChange": 1381, + "observedFirstVisualChangeTs": 500212590, + "observedLastVisualChange": 2031, + "observedLastVisualChangeTs": 500862590, + "observedSpeedIndex": 1747, + "observedSpeedIndexTs": 500578309 }, { "lcpInvalidated": false @@ -363082,23 +358451,23 @@ "type": "debugdata", "items": [ { - "numRequests": 63, - "numScripts": 36, + "numRequests": 35, + "numScripts": 11, "numStylesheets": 2, - "numFonts": 4, - "numTasks": 1541, - "numTasksOver10ms": 8, + "numFonts": 6, + "numTasks": 1001, + "numTasksOver10ms": 12, "numTasksOver25ms": 4, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 22.820999999999998, - "throughput": 18162420.067396164, - "maxRtt": 112.82300000000001, - "maxServerLatency": 210.41, - "totalByteWeight": 1676825, - "totalTaskTime": 572.9459999999981, - "mainDocumentTransferSize": 22498 + "rtt": 0, + "throughput": 7508419.707639437, + "maxRtt": 160.70399999999998, + "maxServerLatency": 81.24100000000001, + "totalByteWeight": 1247997, + "totalTaskTime": 487.80399999999844, + "mainDocumentTransferSize": 22905 } ] } @@ -363117,86 +358486,75 @@ "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/accessibilite" + "mention": null }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/mentions-legales" + "missingTrackers": [] }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 3, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/politique-de-confidentialite" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] } ], "betagouv": { - "id": "la-bonne-alternance", + "id": "la-bonne-boite", "type": "startup", "attributes": { - "name": "La bonne alternance", - "pitch": "Faciliter la mise en relation entre jeunes, entreprises et CFA", - "stats_url": "https://labonnealternance.apprentissage.beta.gouv.fr/stats", - "link": "https://labonnealternance.apprentissage.beta.gouv.fr", - "repository": "https://github.com/mission-apprentissage/labonnealternance", - "contact": "labonnealternance@apprentissage.beta.gouv.fr", - "content_url_encoded_markdown": "%5BLa%20bonne%20alternance%5D%28https%3A%2F%2Flabonnealternance.apprentissage.beta.gouv.fr%2F%29%20est%20un%20service%20destin%C3%A9%20%C3%A0%20faciliter%20la%20mise%20en%20relation%20des%20jeunes%2C%20des%20centres%20de%20formation%20d%E2%80%99apprentis%20%28CFA%29%20et%20des%20entreprises.%20D%E2%80%99abord%20d%C3%A9velopp%C3%A9%20par%20P%C3%B4le%20emploi%2C%20le%20service%20La%20bonne%20alternance%20a%20%C3%A9t%C3%A9%20repris%20en%202020%20par%20la%20Mission%20interminist%C3%A9rielle%20pour%20l%E2%80%99apprentissage%20dans%20l%E2%80%99objectif%20de%20renforcer%20l%27accompagnement%20des%20jeunes%20int%C3%A9ress%C3%A9s%20par%20l%27apprentissage%2C%20ainsi%20que%20des%20CFA%20et%20recruteurs%20accueillant%20des%20apprentis.%0A%0A%23%23%20Le%20constat%0A%0AUne%20entr%C3%A9e%20en%20alternance%20r%C3%A9sulte%20d%E2%80%99un%20accord%20entre%20un%20candidat%2C%20un%20employeur%20et%20un%20centre%20de%20formation%20d%E2%80%99apprentis%20%28CFA%29.%20Or%2C%20jusqu%E2%80%99%C3%A0%20pr%C3%A9sent%20%3A%0A-%20Les%20informations%20sur%20l%E2%80%99emploi%20et%20la%20formation%20n%E2%80%99%C3%A9taient%20pas%20r%C3%A9unies%2C%20ce%20qui%20compliquait%20les%20d%C3%A9marches%20et%20provoquait%20des%20pertes%20de%20temps%20voire%20des%20%C3%A9checs%20d%E2%80%99orientation%2C%20en%20particulier%20pour%20les%20jeunes%20les%20plus%20fragiles%20et%20les%20moins%20renseign%C3%A9s.%0A-%20Les%20candidats%20rencontraient%20des%20difficult%C3%A9s%20%C3%A0%20trouver%20les%20bons%20outils%20pour%20entrer%20en%20contact%20avec%20un%20CFA%20ou%20avec%20les%20employeurs.%0A-%20Les%20TPE%2C%20PME%20et%20les%20CFA%20qui%20sourcent%20des%20candidats%20pour%20le%20compte%20d%E2%80%99entreprise%20peinaient%20%C3%A0%20d%C3%A9poser%20leurs%20offres%20sur%20plusieurs%20jobboards%20co%C3%BBteux%20et%20chronophages.%0A%0A%23%23%20La%20solution%0A%0ALa%20plateforme%20La%20bonne%20alternance%20a%20%C3%A9t%C3%A9%20consolid%C3%A9e%20par%20diff%C3%A9rentes%20donn%C3%A9es%20et%20fonctionnalit%C3%A9s.%20%0AConcernant%20les%20donn%C3%A9es%2C%20sont%20maintenant%20expos%C3%A9s%20%3A%20%0A-%20Les%20offres%20de%20formation%20en%20apprentissage%2C%20issues%20du%20%5Bcatalogue%20des%20formations%20en%20apprentissage%5D%28https%3A%2F%2Fcatalogue.apprentissage.beta.gouv.fr%2F%29%20%3B%0A-%20Les%20besoins%20exprim%C3%A9s%20par%20de%20tr%C3%A8s%20petites%20entreprises%20%28TPE%29%20ou%20des%20petites%20et%20moyennes%20entreprises%20%28PME%29%20aupr%C3%A8s%20de%20leur%20op%C3%A9rateur%20de%20comp%C3%A9tences%20%28OPCO%29%20ou%20de%20sites%20partenaires%20gr%C3%A2ce%20%5Bau%20service%20de%20d%C3%A9p%C3%B4t%20d%27offres%20simplifi%C3%A9%20de%20La%20bonne%20alternance%5D%28https%3A%2F%2Flabonnealternance.apprentissage.beta.gouv.fr%2Facces-recruteur%29%20%3B%0A-%20Les%20offres%20d%E2%80%99emploi%20en%20alternance%2C%20issues%20de%20%5Bl%E2%80%99API%20%E2%80%9Coffres%20d%E2%80%99emploi%E2%80%9D%5D%28https%3A%2F%2Ffrancetravail.io%2Fdata%2Fapi%2Foffres-emploi%29%20de%20France%20travail%20%3B%0A-%20Les%20entreprises%20aupr%C3%A8s%20desquelles%20adresser%20une%20candidature%20spontan%C3%A9e%2C%20identifi%C3%A9es%20gr%C3%A2ce%20%C3%A0%20l%27analyse%20de%20diverses%20donn%C3%A9es%20publiques%2C%20rendant%20accessible%20le%20march%C3%A9%20cach%C3%A9%20de%20l%E2%80%99emploi%20en%20analysant%20les%20recrutements%20pass%C3%A9s%20pour%20pr%C3%A9dire%20ceux%20%C3%A0%20venir.%0A%0AConcernant%20les%20fonctionnalit%C3%A9s%2C%20sont%20d%C3%A9velopp%C3%A9s%20%3A%20%0A-%20%5BUn%20service%20de%20d%C3%A9p%C3%B4t%20d%E2%80%99offres%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Fmatcha%29%20accessible%20aux%20TPE%2C%20PME%20et%20aux%20CFA%20qui%20souhaitent%20rendre%20visibles%20leurs%20partenariats%20avec%20des%20entreprises%20%3A%20il%20permet%20d%E2%80%99exprimer%20un%20besoin%20en%20recrutement%20en%20quelques%20clics%2C%20de%20le%20multi-diffuser%20sur%20les%20plateformes%20les%20plus%20consult%C3%A9es%20par%20les%20candidats%20et%20de%20le%20g%C3%A9rer%20simplement%20%3B%0A-%20%5BUn%20service%20de%20mise%20relation%20des%20jeunes%20avec%20les%20CFA%20%E2%80%9CRDV%20Apprentissage%E2%80%9D%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Fprise-de-rendez-vous%29%20%3A%20%C3%A0%20travers%20un%20simple%20formulaire%2C%20les%20candidats%20peuvent%20demander%20aux%20CFA%20qui%20les%20int%C3%A9ressent%20de%20les%20recontacter%20par%20t%C3%A9l%C3%A9phone%20ou%20par%20mail%20%3B%0A-%20%5BUn%20service%20d%E2%80%99envoi%20de%20candidatures%20%E2%80%9CJe%20candidate%E2%80%9D%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Ffaciliter-et-simplifier-la-mise-en-relation-entre-candidats-et-entreprises%29%20%3A%20sans%20cr%C3%A9ation%20de%20compte%2C%20les%20candidats%20peuvent%20postuler%20aupr%C3%A8s%20des%20entreprises%20qui%20les%20int%C3%A9ressent%2C%20aussi%20bien%20sur%20les%20offres%20d%E2%80%99emploi%20que%20sur%20les%20entreprises%20cibl%C3%A9es%20par%20nos%20algorithmes%20et%20aupr%C3%A8s%20desquelles%20il%20est%20possible%20d%E2%80%99%C3%A9mettre%20une%20candidature%20spontan%C3%A9e%20-%20ce%20service%20offre%20ensuite%20aux%20recruteurs%20une%20solution%20de%20r%C3%A9ponse%20rapide%20aux%20candidats%20%3B%0A-%20%5BDes%20modules%20d%E2%80%99accompagnement%5D%28https%3A%2F%2Fmission-apprentissage.gitbook.io%2Fgeneral%2Fles-services-en-devenir%2Fla-recherche-simultanee-dune-formation-et-dun-emploi-en-apprentissage%2Faccompagner-les-futurs-apprentis%29%20%C3%A0%20la%20prise%20de%20contact%20avec%20un%20CFA%2C%20la%20recherche%20d%E2%80%99une%20entreprise%20d%E2%80%99accueil%20ou%20encore%20la%20pr%C3%A9paration%20%C3%A0%20un%20entretien%20d%E2%80%99embauche%20sont%20propos%C3%A9s%20sur%20le%20parcours%20des%20jeunes%20pour%20les%20aider%20%C3%A0%20concr%C3%A9tiser%20leur%20envie%20d%E2%80%99entrer%20en%20alternance.%0A%0APar%20ailleurs%2C%20afin%20de%20faciliter%20l%E2%80%99accompagnement%20des%20parties%20prenantes%20de%20l%E2%80%99alternance%2C%20le%20service%20La%20bonne%20alternance%20existe%20sous%20forme%20d%E2%80%99API%20et%20de%20widget.%20Tout%20ou%20partie%20des%20donn%C3%A9es%20sont%20ainsi%20expos%C3%A9es%20sur%20les%20sites%20particuli%C3%A8rement%20consult%C3%A9s%20par%20les%20jeunes%20%28Parcoursup%2C%20Affelnet%2C%201%20jeune%201%20solution%2C%20ONISEP%2C%20...%29%20ou%20ceux%20utilis%C3%A9s%20par%20les%20entreprises%20%28le%20Portail%20de%20l%27alternance%2C%20sites%20des%20OPCO%2C%20de%20partenaires%20institutionnels%29.%20La%20documentation%20sur%20les%20API%20et%20widgets%20est%20%C3%A0%20retrouver%20%5Bici%5D%28https%3A%2F%2Fapi.gouv.fr%2Fles-api%2Fapi-la-bonne-alternance%29.%0A%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0APour%20les%20jeunes%20et%20les%20acteurs%20qui%20les%20accompagnent%20%3A%20%0A-%20Centraliser%20l%E2%80%99offre%20de%20formation%20et%20d%E2%80%99emploi%20en%20alternance%2C%20afin%20de%20faire%20gagner%20du%20temps%20%C3%A0%20l%E2%80%99utilisateur%20sur%20sa%20recherche%20d%E2%80%99information%3B%0A-%20Outiller%20les%20d%C3%A9marches%20de%20candidatures%20aupr%C3%A8s%20des%20CFA%20et%20des%20recruteurs%2C%20afin%20de%20faciliter%20le%20passage%20%C3%A0%20l%E2%80%99action%20%3B%0A%0APour%20les%20entreprises%20%3A%20%0A-%20Acc%C3%A9l%C3%A9rer%20l%E2%80%99expression%20des%20besoins%20de%20recrutement%2C%20l%E2%80%99objectif%20%C3%A9tant%20d%E2%80%99int%C3%A9grer%20le%20d%C3%A9p%C3%B4t%20d%27offres%20simplifi%C3%A9%20aux%20process%20des%20acteurs%20de%20l%E2%80%99apprentissage%20%28entreprises%2C%20op%C3%A9rateurs%20de%20comp%C3%A9tences%2C%20chambres%20consulaires%2C%20CFA%2C%20etc.%29%20pour%20rendre%20l%E2%80%99expression%20des%20besoins%20en%20recrutement%20plus%20simple%2C%20plus%20op%C3%A9rationnel%2C%20plus%20efficace%20%3B%0A-%20R%C3%A9v%C3%A9ler%20les%20besoins%20non%20visibles%2C%20l%E2%80%99objectif%20%C3%A9tant%20de%20participer%20au%20d%C3%A9veloppement%20du%20recours%20%C3%A0%20l%E2%80%99apprentissage%20en%20offrant%20une%20alternative%20simplifi%C3%A9e%20%C3%A0%20un%20d%C3%A9p%C3%B4t%20d%E2%80%99offre%20classique%2C%20en%20centralisant%20le%20d%C3%A9p%C3%B4t%20d%E2%80%99offres%20et%20en%20mettant%20en%20lumi%C3%A8re%20le%20march%C3%A9%20cach%C3%A9%20%28offres%20trait%C3%A9es%20par%20les%20CFA%2C%20offres%20diffus%C3%A9es%20uniquement%20par%20le%20bouche%20%C3%A0%20oreille%20ou%20selon%20opportunit%C3%A9s%20de%20recrutement%20direct%2C...%29%20%3B%0A-%20Pouvoir%20profiter%20d%E2%80%99un%20accompagnement%20sp%C3%A9cialis%C3%A9%20de%20CFA%2C%20gr%C3%A2ce%20%C3%A0%20un%20service%20de%20mise%20en%20relation%20avec%20des%20CFA%20de%20proximit%C3%A9%20et%20informer%20l%E2%80%99OPCO%20qui%20jouera%20aussi%20un%20r%C3%B4le%20de%20facilitateur%20%3B%0A%0APour%20les%20CFA%20%3A%0A-%20Valoriser%20leur%20offre%20de%20formation%20en%20apprentissage%20aupr%C3%A8s%20des%20jeunes%20%3B%0A-%20Diffuser%20les%20offres%20de%20leurs%20entreprises%20partenaires%20et%20ainsi%20faire%20gagner%20en%20visibilit%C3%A9%20leurs%20formations%20pour%20attirer%20de%20nouveaux%20candidats%20%3B%0A-%20Identifier%20des%20entreprises%20pouvant%20accueillir%20les%20apprentis%20de%20la%20formation%20%3B%0A-%20Recevoir%20les%20offres%20des%20entreprises%20qui%20recherchent%20des%20alternants%20et%20pouvoir%20accompagner%20celles-ci%20dans%20le%20sourcing%20de%20profils%20les%20plus%20int%C3%A9ressants%20%3B%0A-%20Simplifier%2C%20acc%C3%A9l%C3%A9rer%20et%20s%C3%A9curiser%20leur%20mise%20en%20relation%20avec%20les%20candidats%20%C3%A0%20une%20formation%20en%20apprentissage.", + "name": "La Bonne Boite", + "pitch": "Favoriser les candidature spontanées en suggérant les entreprises à fort potentiel d'embauche selon le lieu géographie choisi.", + "stats_url": "https://labonneboite.francetravail.fr/stats", + "link": "https://labonneboite.francetravail.fr/", + "repository": "https://github.com/StartupsPoleEmploi/labonneboite ", + "contact": "labonneboite@pole-emploi.fr", + "content_url_encoded_markdown": "%2A%2ALe%20saviez-vous%C2%A0%3F%2A%2A%0A%0ALe%20march%C3%A9%20cach%C3%A9%C2%A0de%20l%E2%80%99emploi%20repr%C3%A9sente%20%2A%2Aplus%C2%A0de%C2%A040%25%C2%A0des%20recrutements%2A%2A%C2%A0%28%20Sur%C2%A07%20millions%C2%A0de%20recrutement%20%2C%C2%A03%C2%A0millions%C2%A0s%27est%20fait%20via%20la%20march%C3%A9%20cach%C3%A9%C2%A0en%202020%29%21%0A%0A%2A%2ALe%20produit%20%3A%2A%2A%0A%0AAvec%20La%20Bonne%20Boite%2C%20ne%20cherchez%20plus%20une%20offre%20d%27emploi%2C%20trouvez%20plut%C3%B4t%20les%20entreprises%20qui%20vont%20recruter%20pr%C3%A8s%20d%27une%20adresse%C2%A0%21%0A%0AMieux%20qu%27un%20simple%20annuaire%2C%20La%20Bonne%20Boite%20cible%20les%20entreprises%20ayant%20des%20perspectives%20d%27embauches%20%C3%A9lev%C3%A9es.%20Ce%20ciblage%20est%20obtenu%20par%20l%27analyse%20de%20millions%20de%20recrutements%20sur%20toutes%20les%20entreprises.%20Pour%20chaque%20entreprise%20%C3%A0%20fort%20potentiel%20d%27embauche%2C%20des%20recommandations%20permettent%20de%20choisir%20le%20meilleur%20canal%20pour%20obtenir%20un%20rendez-vous.%0A%0ADepuis%20novembre%202022%2C%C2%A0int%C3%A9gration%20de%20La%20bonne%20boite%20dans%20l%27application%C2%A0%22Mes%C2%A0Offres%22%C2%A0de%20France%20Travail.%20L%27application%C2%A0identifie%20les%20int%C3%A9r%C3%AAts%20de%C2%A0l%27utilisateur%C2%A0en%C2%A0fonction%20des%C2%A0offres%C2%A0qu%27il%C2%A0a%20consult%C3%A9es%2C%20et%20propose%20un%20carrousel%C2%A0d%E2%80%99entreprises%20qui%C2%A0recrutent%20%28issues%20de%20La%20Bonne%20Boite%29.%0A", "events": [ { "name": "national_impact", - "date": "2021-12-31", + "date": "2017-01-01", "comment": "" } ], "phases": [ { "name": "investigation", - "start": "2018-03-19", + "start": "2015-05-01", "end": "" }, { "name": "construction", - "start": "2018-09-01", + "start": "2015-05-01", "end": "" }, { "name": "acceleration", - "start": "2021-01-01", + "start": "2023-01-19", "end": "" } ], "sponsors": [ - "menjs", - "mesr", - "mtei", - "mtfp" + "francetravail" ], "thematiques": [ - "Travail / Emploi", - "Jeunesse", - "Education", - "Formation" + "Travail / Emploi" ], - "dashlord_url": "https://dashlord.incubateur.net/url/labonnealternance-apprentissage-beta-gouv-fr/", + "dashlord_url": "https://dashlord.incubateur.net/url/labonneboite-pole-emploi-fr/", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mission-apprentissage" + "id": "francetravail" } } } @@ -363205,17 +358563,17 @@ { "width": 1920, "height": 1080, - "url": "https://labonnealternance.apprentissage.beta.gouv.fr", - "size": 2006.016, - "nodes": 474, - "requests": 83, - "grade": "D", - "score": 52, - "ges": 1.96, - "water": 2.94, + "url": "https://labonneboite.pole-emploi.fr", + "size": 1513.508, + "nodes": 327, + "requests": 34, + "grade": "B", + "score": 71, + "ges": 1.58, + "water": 2.37, "ecoindex_version": "5.4.2", - "date": "2024-11-24 14:53:48.650523", - "page_type": "site" + "date": "2024-11-24 15:01:31.275589", + "page_type": null } ], "sonarcloud": null, @@ -363223,77 +358581,78 @@ "detected": false }, "summary": { - "httpGrade": "C", - "uptime": 100, + "httpGrade": "B", + "apdex": 0.718, + "apdexGrade": "F", + "uptime": 99.982, "uptimeGrade": "A", "nmapGrade": "F", - "nmapOpenPortsCount": 3, + "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-19T09:32:00.000Z", + "testsslExpireDate": "2025-05-14T13:11:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.69, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.97, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.57, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.98, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.6, - "lighthouse_pwaGrade": "C", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "D", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", "dsfrGrade": "F" } }, { "404": null, - "url": "https://labonneboite.pole-emploi.fr", - "category": "pole-emploi", - "betaId": "la-bonne-boite", - "tools": { - "nmap": false - }, + "url": "https://cfas.apprentissage.beta.gouv.fr", + "category": "mission-apprentissage", + "betaId": "tdb-apprentissage", + "repositories": [ + "mission-apprentissage/flux-retour-cfas" + ], "http": { - "url": "https://labonneboite.pole-emploi.fr", + "url": "https://cfas.apprentissage.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:03:58 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 11:17:24 GMT", + "grade": "A+", "hidden": false, - "likelihood_indicator": "MEDIUM", + "likelihood_indicator": "LOW", "response_headers": { + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.pole-emploi.fr cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr https://*.mopinion.com/ composants-pe-communs.pole-emploi.fr;", + "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:03:56 GMT", - "Etag": "W/\"1dc5f-CnQtHU9J/kn3dXOMTx7sPsbsjmk\"", - "Referrer-Policy": "strict-origin", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", + "Date": "Sun, 20 Oct 2024 11:17:22 GMT", + "ETag": "\"kh839fbfp9r0w\"", + "Referrer-Policy": "no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-Powered-By": "Express", - "X-Xss-Protection": "1; mode=block" + "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 57060703, - "score": 75, - "start_time": "Sun, 20 Oct 2024 11:03:53 GMT", + "scan_id": 57061099, + "score": 105, + "start_time": "Sun, 20 Oct 2024 11:17:21 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, + "tests_failed": 0, + "tests_passed": 10, "tests_quantity": 10, "details": { "content-security-policy": { @@ -363301,41 +358660,89 @@ "name": "content-security-policy", "output": { "data": { + "base-uri": [ + "https://stats.beta.gouv.fr", + "'self'" + ], + "block-all-mixed-content": [ + "'none'" + ], + "connect-src": [ + "https://stats.beta.gouv.fr", + "https://sentry.apprentissage.beta.gouv.fr", + "https://plausible.io", + "'self'" + ], + "default-src": [ + "https://plausible.io", + "'self'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "frame-ancestors": [ + "https://cfas.apprentissage.beta.gouv.fr", + "'self'" + ], + "frame-src": [ + "https://cfas.apprentissage.beta.gouv.fr", + "https://cfas-recette.apprentissage.beta.gouv.fr", + "https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr", + "https://plausible.io", + "'self'" + ], + "img-src": [ + "https://stats.beta.gouv.fr", + "https://files.tableau-de-bord.apprentissage.beta.gouv.fr", + "data:", + "https://mission-apprentissage.notion.site", + "'self'", + "https://www.notion.so" + ], + "object-src": [ + "'none'" + ], "script-src": [ - "cdn.trustcommander.net", - "guidances-applicatives.pole-emploi.fr", - "blob:", - "'unsafe-eval'", - "https://*.mopinion.com/", - "cdn.tagcommander.com", + "https://stats.beta.gouv.fr", + "https://plausible.io", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "https:", "'unsafe-inline'", - "maps.pole-emploi.fr", - "tag.aticdn.net", - "composants-pe-communs.pole-emploi.fr", + "*.plausible.io", "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": false, + "antiClickjacking": true, "defaultNone": false, - "insecureBaseUri": true, + "insecureBaseUri": false, "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": true, + "unsafeEval": false, + "unsafeInline": false, "unsafeInlineStyle": true, - "unsafeObjects": true + "unsafeObjects": false } }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -363368,12 +358775,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://labonneboite.francetravail.fr", + "destination": "https://cfas.apprentissage.beta.gouv.fr/", "redirects": true, "route": [ - "http://labonneboite.pole-emploi.fr/", - "https://labonneboite.pole-emploi.fr/", - "https://labonneboite.francetravail.fr" + "http://cfas.apprentissage.beta.gouv.fr/", + "https://cfas.apprentissage.beta.gouv.fr/" ], "status_code": 200 }, @@ -363386,20 +358792,20 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin", + "data": "no-referrer-when-downgrade", "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000; includeSubDomains", + "data": "max-age=31536000; includeSubdomains", "includeSubDomains": true, "max-age": 31536000, "preload": false, @@ -363414,17 +358820,12 @@ "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://cdn.tagcommander.com/5233/tc_lbb_31.js": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -363444,207 +358845,622 @@ "data": "SAMEORIGIN" }, "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "0jnd", - "url": "https://labonneboite.pole-emploi.fr", + "token": "0dzj", + "url": "https://cfas.apprentissage.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.982, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T14:00:11Z", + "up_since": "2024-11-22T09:30:30Z", "error": null, - "period": 60, + "period": 3600, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, + "published": false, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T15:07:08Z", - "next_check_at": "2024-11-24T15:08:07Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://labonneboite.francetravail.fr/favicon.ico", + "last_check_at": "2024-12-01T14:23:13Z", + "next_check_at": "2024-12-01T15:22:53Z", + "created_at": "2021-04-22T21:33:48Z", + "mute_until": "forever", + "favicon_url": "https://cfas.apprentissage.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T14:59:09Z", - "expires_at": "2025-05-14T13:11:07Z", + "tested_at": "2024-12-01T13:23:30Z", + "expires_at": "2025-02-17T03:31:43Z", "valid": true, "error": null }, - "metrics": { - "apdex": 0.718, - "timings": { - "redirect": 591, - "namelookup": 2, - "connection": 421, - "handshake": 119, - "response": 532, - "total": 1927 - } - }, - "uptimeGrade": "A", - "apdexGrade": "F" + "metrics": {}, + "uptimeGrade": "A" }, "nmap": { - "host": "labonneboite.pole-emploi.fr", + "host": "cfas.apprentissage.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "997", "open_ports": [ { "service": { "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", + "version": "8.9p1 Ubuntu 3ubuntu0.10", "vulnerabilities": [ { - "id": "CVE-2023-38408", - "cvss": "9.8", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "10.0", + "is_exploit": "true", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" + }, + { + "type": "githubexploit", + "cvss": "10.0", + "is_exploit": "true", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" + }, + { + "type": "cve", + "cvss": "9.8", + "is_exploit": "false", + "id": "CVE-2023-38408" + }, + { + "type": "cve", + "cvss": "9.8", + "is_exploit": "false", + "id": "CVE-2023-28531" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" + }, + { + "type": "githubexploit", + "cvss": "9.8", + "is_exploit": "true", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "type": "packetstorm", + "cvss": "8.1", + "is_exploit": "true", + "id": "PACKETSTORM:179290" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "D1E049F1-393E-552D-80D1-675022B26911" + }, + { + "type": "cve", + "cvss": "8.1", + "is_exploit": "false", + "id": "CVE-2024-6387" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" }, { - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "cvss": "9.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "6FD8F914-B663-533D-8866-23313FD37804" }, { - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "cvss": "9.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" }, { - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "cvss": "9.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" }, { - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "cvss": "9.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" }, { - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "cvss": "9.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" }, { - "id": "CVE-2020-15778", - "cvss": "7.8", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" }, { - "id": "SSV:92579", - "cvss": "7.5", - "type": "seebug", - "is_exploit": "true" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" }, { - "id": "PACKETSTORM:173661", - "cvss": "7.5", - "type": "packetstorm", - "is_exploit": "true" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" }, { - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "cvss": "7.5", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" }, { - "id": "CVE-2020-12062", - "cvss": "7.5", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "452ADB71-199C-561E-B949-FCDE6288B925" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" }, { - "id": "1337DAY-ID-26576", - "cvss": "7.5", "type": "zdt", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "1337DAY-ID-39674" }, { - "id": "CVE-2021-28041", - "cvss": "7.1", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992" }, { - "id": "CVE-2021-41617", - "cvss": "7.0", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "11F020AC-F907-5606-8805-0516E06160EE" }, { - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "cvss": "6.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" }, { - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "cvss": "6.8", "type": "githubexploit", - "is_exploit": "true" + "cvss": "8.1", + "is_exploit": "true", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" }, { - "id": "CVE-2023-51385", - "cvss": "6.5", - "type": "cve", - "is_exploit": "false" + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" + }, + { + "type": "githubexploit", + "cvss": "8.1", + "is_exploit": "true", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" + }, + { + "type": "seebug", + "cvss": "7.5", + "is_exploit": "true", + "id": "SSV:92579" + }, + { + "type": "packetstorm", + "cvss": "7.5", + "is_exploit": "true", + "id": "PACKETSTORM:173661" + }, + { + "type": "githubexploit", + "cvss": "7.5", + "is_exploit": "true", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "type": "zdt", + "cvss": "7.5", + "is_exploit": "true", + "id": "1337DAY-ID-26576" }, { - "id": "CVE-2023-48795", - "cvss": "5.9", "type": "cve", - "is_exploit": "false" + "cvss": "6.5", + "is_exploit": "false", + "id": "CVE-2023-51385" }, { - "id": "CVE-2020-14145", - "cvss": "5.9", "type": "cve", - "is_exploit": "false" + "cvss": "5.9", + "is_exploit": "false", + "id": "CVE-2023-48795" }, { - "id": "CVE-2016-20012", - "cvss": "5.3", "type": "cve", - "is_exploit": "false" + "cvss": "5.5", + "is_exploit": "false", + "id": "CVE-2023-51384" }, { - "id": "PACKETSTORM:140261", - "cvss": "0.0", "type": "packetstorm", - "is_exploit": "true" + "cvss": "0.0", + "is_exploit": "true", + "id": "PACKETSTORM:140261" + }, + { + "type": "githubexploit", + "cvss": "0.0", + "is_exploit": "true", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" + }, + { + "type": "githubexploit", + "cvss": "0.0", + "is_exploit": "true", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" } ] } @@ -363664,13 +359480,6 @@ "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } } ], "grade": "F" @@ -363680,70 +359489,77 @@ "testssl": [ { "id": "service", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "INFO", - "finding": "not offered + downgraded to weaker protocol" + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "OK", + "finding": "h2" }, { "id": "ALPN", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363751,7 +359567,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363759,7 +359575,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363767,7 +359583,7 @@ }, { "id": "cipherlist_LOW", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363775,7 +359591,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -363783,533 +359599,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc02c", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "id": "cipher-tls1_2_xc02b", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "valid for 86400 seconds only (= 60 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "2024-05-14 13:11" + "finding": "2024-11-19 03:31" }, { "id": "cert_notAfter", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "2025-05-14 13:11" + "finding": "2025-02-17 03:31" }, { "id": "cert_extlifeSpan", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "http://crl.entrust.net/level1m.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "http://ocsp.entrust.net" + "finding": "http://e6.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" + "finding": "E6 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" + "finding": "76E9E288AAFC0E37F4390CBF946AAD997D5C1C901B3CE513D3D8FADBABE2AB85" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "2014-12-15 15:25" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "2030-10-15 15:55" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" - }, - { - "id": "intermediate_cert <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "2009-07-07 17:25" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "OK", - "finding": "2030-12-07 17:55" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" + "finding": "E6 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "1732460779" + "finding": "1733066430" }, { "id": "HSTS_time", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.labonneboite.pole-emploi.fr embed.doorbell.io labonnealternance.pole-emploi.fr memo.pole-emploi.fr www.google-analytics.com static.hotjar.com script.hotjar.com optimize.google.com www.googletagmanager.com cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr" + "finding": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr https://plugins.crisp.chat; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat https://plugins.crisp.chat https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;" }, { - "id": "X-XSS-Protection", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "id": "Referrer-Policy", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "no-referrer-when-downgrade" }, { - "id": "Referrer-Policy", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "id": "Cache-Control", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "strict-origin" + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -364317,7 +360105,7 @@ }, { "id": "heartbleed", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -364326,7 +360114,7 @@ }, { "id": "CCS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -364335,25 +360123,25 @@ }, { "id": "ticketbleed", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -364361,7 +360149,7 @@ }, { "id": "secure_client_renego", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -364370,7 +360158,7 @@ }, { "id": "CRIME_TLS", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -364379,16 +360167,16 @@ }, { "id": "BREACH", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -364397,14 +360185,14 @@ }, { "id": "fallback_SCSV", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -364413,7 +360201,7 @@ }, { "id": "FREAK", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -364422,7 +360210,7 @@ }, { "id": "DROWN", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -364431,16 +360219,16 @@ }, { "id": "DROWN_hint", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9F7E9F670A92B77879B36D2B841DA3017D397C75DC0D9EAD7C2DD43FC591E22E" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -364449,16 +360237,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -364467,16 +360255,16 @@ }, { "id": "LUCKY13", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -364485,7 +360273,7 @@ }, { "id": "RC4", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -364494,556 +360282,347 @@ }, { "id": "clientsimulation-android_60", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "labonneboite.pole-emploi.fr/51.68.82.47", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "INFO", - "finding": "129" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/assets/pics/header-logo.svg" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/assets/pics/faq.svg" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/runtime.d36feffd04f70d75.js" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/polyfills.b04a1af67c85ddbe.js" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/main.782d326674cd8ce1.js" - }, - { - "type": "unknown", - "url": "https://cdn.tagcommander.com/5233/tc_lbb_31.js" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/assets/pics/logo-ft-horizontal.svg" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/assets/pics/logo-ue.svg" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/assets/pics/footer_fonds_social_eu.avif" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/styles.fca7c94b5fac7ee1.css" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Regular.d0bc87a819730d23.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Bold.c36a3fe042b96dc3.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/icons.1fd92d8797dccd7f.ttf?kr6zn4" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Black.6ed32619a5671842.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Light.1ad50b89ab7c557e.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Regular.d0bc87a819730d23.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Bold.c36a3fe042b96dc3.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/icons.1fd92d8797dccd7f.ttf?kr6zn4" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Black.6ed32619a5671842.ttf" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/Roboto-Light.1ad50b89ab7c557e.ttf" - }, - { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vqdcwiyf6dg07f" - }, - { - "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=5233" - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=m3vqdcwiyf6dg07f" - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/common.e5876df44bc8f0ac.js" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/47.e78bad99779bab89.js" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/csrfToken" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/api/v2/data/granddomains/" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/api/v2/autocomplete/jobs/?q=&limit=5" - }, - { - "type": "unknown", - "url": "https://labonneboite.francetravail.fr/api/v2/autocomplete/location/?q=&limit=5" - } - ], - "cookies": [ - { - "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAFYBrAKyEwADngBfIA", - "domain": ".francetravail.fr", - "path": "/", - "expires": 1766588701, - "size": 94, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pcid", - "value": "%7B%22browserId%22%3A%22m3vqdcwiyf6dg07f%22%2C%22_t%22%3A%22mjk5au8q%22%7D", - "domain": ".francetravail.fr", - "path": "/", - "expires": 1766588701, - "size": 79, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "TCPID", - "value": "12411015523122692550", - "domain": ".francetravail.fr", - "path": "/", - "expires": 1766415902, - "size": 25, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "pa_privacy", - "value": "%22exempt%22", - "domain": ".francetravail.fr", - "path": "/", - "expires": 1766588701, - "size": 22, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], + "severity": "INFO", + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "INFO", + "finding": "96" + }, + { + "id": "overall_grade", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "port": "443", + "severity": "INFO", + "finding": "100" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], "headers": { - "connection": "keep-alive", + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", - "content-security-policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.pole-emploi.fr cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr https://*.mopinion.com/ composants-pe-communs.pole-emploi.fr;", + "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr https://plugins.crisp.chat; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat https://plugins.crisp.chat https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:05:01 GMT", - "etag": "W/\"1c10c-oQLHZtSHFNfGyyoB255j5OCtMlo\"", - "referrer-policy": "strict-origin", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "transfer-encoding": "chunked", + "date": "Sun, 01 Dec 2024 15:18:35 GMT", + "etag": "\"zeg5vbjhtxqwm\"", + "referrer-policy": "no-referrer-when-downgrade", + "strict-transport-security": "max-age=31536000; includeSubdomains", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-powered-by": "Express", - "x-xss-protection": "1; mode=block" + "x-frame-options": "SAMEORIGIN" }, "endpoints": [ { - "hostname": "labonneboite.pole-emploi.fr", - "ip": "51.68.82.47", + "hostname": "cfas.apprentissage.beta.gouv.fr", + "ip": "141.95.161.225", "geoip": { "continent": { "code": "EU", @@ -365096,434 +360675,196 @@ } } } + } + ] + }, + "wappalyzer": { + "urls": { + "https://cfas.apprentissage.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true }, { - "hostname": "labonneboite.francetravail.fr", - "ip": "51.68.82.47", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" } - } + ] }, { - "hostname": "cdn.tagcommander.com", - "ip": "192.229.163.55", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "de": "Texas", - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "pt-BR": "Texas", - "ru": "Техас", - "zh-CN": "得克萨斯州" - } - } - ] - } + "slug": "chakra-ui", + "name": "Chakra UI", + "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", + "confidence": 100, + "version": null, + "icon": "Chakra UI.svg", + "website": "https://chakra-ui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true }, { - "hostname": "tag.aticdn.net", - "ip": "65.8.161.43", - "geoip": { - "city": { - "geoname_id": 5511077, - "names": { - "de": "Reno", - "en": "Reno", - "es": "Reno", - "fr": "Reno", - "ja": "リノ", - "pt-BR": "Reno", - "ru": "Рино" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.3714, - "longitude": -119.6855, - "metro_code": 811, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "89521" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5509151, - "iso_code": "NV", - "names": { - "de": "Nevada", - "en": "Nevada", - "es": "Nevada", - "fr": "Nevada", - "ja": "ネバダ州", - "pt-BR": "Nevada", - "ru": "Невада", - "zh-CN": "内华达州" - } - } - ] - } + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] }, { - "hostname": "hd.pe.fr", - "ip": "18.173.121.122", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.5.7", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } - } + ], + "rootPath": true }, { - "hostname": "privacy.trustcommander.net", - "ip": "15.237.129.60", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true }, { - "hostname": "fonts.gstatic.com", - "ip": "172.217.164.99", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://labonneboite.pole-emploi.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://labonneboite.pole-emploi.fr/ (https://labonneboite.pole-emploi.fr/)" - } - }, - "technologies": [ + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, { "slug": "hsts", "name": "HSTS", @@ -365543,22 +360884,38 @@ "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ], - "rootPath": true + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -365566,12 +360923,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://labonneboite.pole-emploi.fr/", - "finalUrl": "https://labonneboite.francetravail.fr/", - "fetchTime": "2024-11-24T15:04:33.817Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://labonneboite.pole-emploi.fr/) was redirected to https://labonneboite.francetravail.fr/. Try testing the second URL directly." - ], + "requestedUrl": "https://cfas.apprentissage.beta.gouv.fr/", + "finalUrl": "https://cfas.apprentissage.beta.gouv.fr/", + "fetchTime": "2024-12-01T15:18:07.255Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -365581,7 +360936,7 @@ "snapshot" ], "id": "performance", - "score": 0.57 + "score": 0.34 }, "accessibility": { "title": "Accessibility", @@ -365592,7 +360947,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.98 }, "best-practices": { "title": "Best Practices", @@ -365602,7 +360957,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.83 }, "seo": { "title": "SEO", @@ -365613,7 +360968,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.87 }, "pwa": { "title": "PWA", @@ -365633,53 +360988,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12087, + "numericValue": 8173, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2712, - "firstMeaningfulPaint": 8310, - "largestContentfulPaint": 5710, - "interactive": 12087, - "speedIndex": 6578, - "totalBlockingTime": 205, - "maxPotentialFID": 143, - "cumulativeLayoutShift": 0.018222459581163197, - "cumulativeLayoutShiftMainFrame": 0.018222459581163197, - "totalCumulativeLayoutShift": 0.018222459581163197, + "firstContentfulPaint": 1385, + "firstMeaningfulPaint": 1385, + "largestContentfulPaint": 7851, + "interactive": 8173, + "speedIndex": 3643, + "totalBlockingTime": 1123, + "maxPotentialFID": 700, + "cumulativeLayoutShift": 0.4147530212402344, + "cumulativeLayoutShiftMainFrame": 0.4147530212402344, + "totalCumulativeLayoutShift": 0.4147530212402344, "observedTimeOrigin": 0, - "observedTimeOriginTs": 498831590, + "observedTimeOriginTs": 423261915, "observedNavigationStart": 0, - "observedNavigationStartTs": 498831590, - "observedFirstPaint": 1206, - "observedFirstPaintTs": 500037610, - "observedFirstContentfulPaint": 1206, - "observedFirstContentfulPaintTs": 500037610, - "observedFirstContentfulPaintAllFrames": 1206, - "observedFirstContentfulPaintAllFramesTs": 500037610, - "observedFirstMeaningfulPaint": 2024, - "observedFirstMeaningfulPaintTs": 500855116, - "observedLargestContentfulPaint": 1724, - "observedLargestContentfulPaintTs": 500555549, - "observedLargestContentfulPaintAllFrames": 1724, - "observedLargestContentfulPaintAllFramesTs": 500555549, - "observedTraceEnd": 5317, - "observedTraceEndTs": 504148478, - "observedLoad": 2425, - "observedLoadTs": 501257057, - "observedDomContentLoaded": 2161, - "observedDomContentLoadedTs": 500992513, - "observedCumulativeLayoutShift": 0.018222459581163197, - "observedCumulativeLayoutShiftMainFrame": 0.018222459581163197, - "observedTotalCumulativeLayoutShift": 0.018222459581163197, - "observedFirstVisualChange": 1381, - "observedFirstVisualChangeTs": 500212590, - "observedLastVisualChange": 2031, - "observedLastVisualChangeTs": 500862590, - "observedSpeedIndex": 1747, - "observedSpeedIndexTs": 500578309 + "observedNavigationStartTs": 423261915, + "observedFirstPaint": 864, + "observedFirstPaintTs": 424126190, + "observedFirstContentfulPaint": 2109, + "observedFirstContentfulPaintTs": 425371345, + "observedFirstContentfulPaintAllFrames": 2109, + "observedFirstContentfulPaintAllFramesTs": 425371345, + "observedFirstMeaningfulPaint": 2109, + "observedFirstMeaningfulPaintTs": 425371345, + "observedLargestContentfulPaint": 2274, + "observedLargestContentfulPaintTs": 425535987, + "observedLargestContentfulPaintAllFrames": 2274, + "observedLargestContentfulPaintAllFramesTs": 425535987, + "observedTraceEnd": 5234, + "observedTraceEndTs": 428495981, + "observedLoad": 2761, + "observedLoadTs": 426022770, + "observedDomContentLoaded": 1632, + "observedDomContentLoadedTs": 424893788, + "observedCumulativeLayoutShift": 0.4147530212402344, + "observedCumulativeLayoutShiftMainFrame": 0.4147530212402344, + "observedTotalCumulativeLayoutShift": 0.4147530212402344, + "observedFirstVisualChange": 2121, + "observedFirstVisualChangeTs": 425382915, + "observedLastVisualChange": 2287, + "observedLastVisualChangeTs": 425548915, + "observedSpeedIndex": 2138, + "observedSpeedIndexTs": 425399650 }, { "lcpInvalidated": false @@ -365697,23 +361052,23 @@ "type": "debugdata", "items": [ { - "numRequests": 35, - "numScripts": 11, - "numStylesheets": 2, - "numFonts": 6, - "numTasks": 1001, - "numTasksOver10ms": 12, - "numTasksOver25ms": 4, + "numRequests": 60, + "numScripts": 29, + "numStylesheets": 1, + "numFonts": 2, + "numTasks": 1421, + "numTasksOver10ms": 8, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 7508419.707639437, - "maxRtt": 160.70399999999998, - "maxServerLatency": 81.24100000000001, - "totalByteWeight": 1247997, - "totalTaskTime": 487.80399999999844, - "mainDocumentTransferSize": 22905 + "rtt": 150.93300000000002, + "throughput": 8428878.52997665, + "maxRtt": 157.325, + "maxServerLatency": 8.276999999999987, + "totalByteWeight": 1292199, + "totalTaskTime": 579.6650000000016, + "mainDocumentTransferSize": 9544 } ] } @@ -365726,81 +361081,88 @@ "grade": "A" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/politique-de-confidentialite" } ], "betagouv": { - "id": "la-bonne-boite", + "id": "tdb-apprentissage", "type": "startup", "attributes": { - "name": "La Bonne Boite", - "pitch": "Favoriser les candidature spontanées en suggérant les entreprises à fort potentiel d'embauche selon le lieu géographie choisi.", - "stats_url": "https://labonneboite.francetravail.fr/stats", - "link": "https://labonneboite.francetravail.fr/", - "repository": "https://github.com/StartupsPoleEmploi/labonneboite ", - "contact": "labonneboite@pole-emploi.fr", - "content_url_encoded_markdown": "%2A%2ALe%20saviez-vous%C2%A0%3F%2A%2A%0A%0ALe%20march%C3%A9%20cach%C3%A9%C2%A0de%20l%E2%80%99emploi%20repr%C3%A9sente%20%2A%2Aplus%C2%A0de%C2%A040%25%C2%A0des%20recrutements%2A%2A%C2%A0%28%20Sur%C2%A07%20millions%C2%A0de%20recrutement%20%2C%C2%A03%C2%A0millions%C2%A0s%27est%20fait%20via%20la%20march%C3%A9%20cach%C3%A9%C2%A0en%202020%29%21%0A%0A%2A%2ALe%20produit%20%3A%2A%2A%0A%0AAvec%20La%20Bonne%20Boite%2C%20ne%20cherchez%20plus%20une%20offre%20d%27emploi%2C%20trouvez%20plut%C3%B4t%20les%20entreprises%20qui%20vont%20recruter%20pr%C3%A8s%20d%27une%20adresse%C2%A0%21%0A%0AMieux%20qu%27un%20simple%20annuaire%2C%20La%20Bonne%20Boite%20cible%20les%20entreprises%20ayant%20des%20perspectives%20d%27embauches%20%C3%A9lev%C3%A9es.%20Ce%20ciblage%20est%20obtenu%20par%20l%27analyse%20de%20millions%20de%20recrutements%20sur%20toutes%20les%20entreprises.%20Pour%20chaque%20entreprise%20%C3%A0%20fort%20potentiel%20d%27embauche%2C%20des%20recommandations%20permettent%20de%20choisir%20le%20meilleur%20canal%20pour%20obtenir%20un%20rendez-vous.%0A%0ADepuis%20novembre%202022%2C%C2%A0int%C3%A9gration%20de%20La%20bonne%20boite%20dans%20l%27application%C2%A0%22Mes%C2%A0Offres%22%C2%A0de%20France%20Travail.%20L%27application%C2%A0identifie%20les%20int%C3%A9r%C3%AAts%20de%C2%A0l%27utilisateur%C2%A0en%C2%A0fonction%20des%C2%A0offres%C2%A0qu%27il%C2%A0a%20consult%C3%A9es%2C%20et%20propose%20un%20carrousel%C2%A0d%E2%80%99entreprises%20qui%C2%A0recrutent%20%28issues%20de%20La%20Bonne%20Boite%29.%0A", + "name": "Tableau de bord de l'apprentissage", + "pitch": "Permettre l’accès aux données clés de l’apprentissage en temps réel", + "stats_url": "https://cfas.apprentissage.beta.gouv.fr/stats", + "link": "https://cfas.apprentissage.beta.gouv.fr", + "contact": "tableau-de-bord@apprentissage.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Constat%0A%0AAu%20total%2C%20en%202020%2C%20environ%20250%20000%20candidats%20ont%20souhait%C3%A9%20une%20mise%20en%20relation%20avec%20un%20CFA%20par%20l%E2%80%99un%20des%20deux%20portails%20Affelnet%20ou%20Parcoursup.%20Or%2C%20une%20fois%20le%20v%C5%93u%20exprim%C3%A9%20et%20transmis%20au%20centre%20de%20formation%2C%20aucun%20suivi%20global%20n%27est%20assur%C3%A9%20%3A%20aucun%20syst%C3%A8me%20ne%20permet%20de%20savoir%20combien%20de%20v%C5%93ux%20se%20sont%20traduits%20en%20entr%C3%A9e%20en%20apprentissage%2C%20dans%20la%20sp%C3%A9cialit%C3%A9%20et%20le%20centre%20vis%C3%A9s%20ou%20dans%20une%20autre%20formation%20avec%20le%20m%C3%AAme%20statut.%0A%0AAucun%20indice%20ne%20permet%20non%20plus%20d%E2%80%99observer%20les%20%C3%A9tapes%20franchies%20ou%20non%20par%20les%20jeunes%2C%20en%20vue%20d%E2%80%99accompagner%20d%E2%80%99une%20fa%C3%A7on%20r%C3%A9active%20ceux%20qui%20d%C3%A9crochent%20et%20peuvent%20se%20retrouver%20en%20difficult%C3%A9.%0A%0APlus%20g%C3%A9n%C3%A9ralement%2C%20l%27%C3%A9cosyst%C3%A8me%20de%20l%27apprentissage%20manque%20d%27interconnexion%20pour%20simplifier%20les%20%C3%A9changes%2C%20favoriser%20un%20pilotage%20plus%20fin%20et%20r%C3%A9actif%2C%20simplifier%20les%20d%C3%A9marches%20des%20CFA%20et%20am%C3%A9liorer%20l%27accompagnement%20des%20jeunes%20et%20des%20employeurs.%0A%0A%0A%23%23%20La%20solution%0A%0ALe%20Tableau%20de%20bord%20de%20l%27apprentissage%20permet%20de%20visualiser%20en%20temps%20r%C3%A9el%20les%20effectifs%20d%E2%80%99apprentis%20dans%20les%20centres%20de%20formation%20et%20les%20organismes%20de%20formation.%20Comment%20%3F%20En%20se%20branchant%20sur%20les%20syst%C3%A8mes%20de%20gestion%20des%20centres%20de%20formation%20d%27apprentis%20%28CFA%29%20-%20via%20leur%20%C3%A9diteur%20de%20logiciel%20ERP%20%28cf.%20https%3A%2F%2Fcfas.apprentissage.beta.gouv.fr%2F%29%2C%20par%20consommation%20d%27une%20API%20ou%20par%20d%C3%A9p%C3%B4t%20de%20fichier%20sur%20un%20serveur%20%3A%20%20https%3A%2F%2Fcfas.apprentissage.beta.gouv.fr%2Fcomprendre-les-donnees%0A%0ADiff%C3%A9rentes%20institutions%20%28DREETS%2C%20Acad%C3%A9mies%2C%20DRAAF%2C%20Carif%20Oref%2C%20Conseil%20R%C3%A9gionaux%2C%20etc.%29%20consultent%20le%20tableau%20de%20bord%20de%20l%27apprentissage%20r%C3%A9guli%C3%A8rement%20pour%20suivre%20l%E2%80%99%C3%A9volution%20des%20effectifs.%20Ces%20donn%C3%A9es%20les%20%C3%A9clairent%20notamment%20dans%20la%20mise%20en%20place%20des%20plans%20d%E2%80%99actions%20d%E2%80%99accompagnement%20des%20jeunes%20sans%20contrat%20ou%20pour%20d%C3%A9finir%20les%20politiques%20publiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99apprentissage.%0ALe%20Tableau%20de%20bord%20sert%203%20finalit%C3%A9s%20%3A%0A-%20Piloter%20%3A%20permettre%20aux%20pouvoirs%20publics%20de%20piloter%20au%20mieux%20la%20politique%20de%20l%E2%80%99apprentissage%20nationalement%20et%20localement%20%3B%0A-%20Accompagner%20%3A%20utiliser%20la%20donn%C3%A9e%20pour%20aider%20ceux%20qui%20peuvent%20agir%20%C3%A0%20accompagner%20les%20apprentis%20en%20situation%20de%20rupture%20%3B%0A-%20Simplifier%20%3A%20exposer%20la%20donn%C3%A9e%20pour%20simplifier%20la%20d%C3%A9livrance%20ou%20la%20consommation%20d%E2%80%99informations%20%28enqu%C3%AAtes%2C%20communications%2C%20%E2%80%A6%29.%0APour%20les%20CFA%2C%20c%E2%80%99est%20une%20valeur%20ajout%C3%A9e%20qui%20permet%20de%20%3A%0A-%20Mettre%20en%20visibilit%C3%A9%20l%E2%80%99%C3%A9volution%20des%20effectifs%20et%20des%20formations%20en%20apprentissage%20%3B%0A-%20Simplifier%20les%20d%C3%A9marches%20administratives%20%3B%0A-%20R%C3%A9duire%20le%20nombre%20d%E2%80%99enqu%C3%AAtes%20administratives.%0A%0AL%E2%80%99op%C3%A9ration%20est%20conduite%20conform%C3%A9ment%20aux%20r%C3%A8glements%20g%C3%A9n%C3%A9raux%20relatifs%20%C3%A0%20la%20protection%20des%20donn%C3%A9es%20et%20%C3%A0%20la%20s%C3%A9curit%C3%A9%20informatique.%20Le%20traitement%20des%20donn%C3%A9es%20se%20fait%20sur%20la%20base%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20public.%20Conform%C3%A9ment%20%C3%A0%20la%20loi%20sur%20la%20R%C3%A9publique%20num%C3%A9rique%20et%20au%20motif%20de%20leur%20mission%20de%20service%20public%2C%20les%20CFA%20sont%20tenus%20de%20partager%20avec%20les%20administrations%20publiques%20les%20donn%C3%A9es%20dont%20l%E2%80%99utilisation%20sert%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20Cette%20op%C3%A9ration%20est%20conduite%20suivant%20les%20proc%C3%A9dures%20s%C3%A9curis%C3%A9es%20de%20l%E2%80%99%C3%89tat%20%3A%0A-%20Transmission%20s%C3%A9curis%C3%A9e%20et%20crypt%C3%A9e%20des%20donn%C3%A9es%20%3B%0A-%20Minimisation%20des%20donn%C3%A9es%20circulant%20pour%20ne%20traiter%20que%20celles%20strictement%20utiles%20%C3%A0%20la%20finalit%C3%A9%20de%20la%20mission%20%3B%0A-%20Minimisation%20et%20encadrement%20strict%20de%20l%E2%80%99acc%C3%A8s%20aux%20donn%C3%A9es%20et%20du%20nombre%20d%E2%80%99intervenants%20%3B%0A-%20Inscription%20de%20l%E2%80%99op%C3%A9ration%20au%20registre%20des%20traitements%20de%20donn%C3%A9es%20%3B%0A-%20Production%20d%E2%80%99une%20analyse%20d%E2%80%99impact%20et%20d%E2%80%99un%20plan%20de%20mise%20en%20s%C3%A9curit%C3%A9%20informatique.%0A%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20Permettre%20une%20am%C3%A9lioration%20sensible%20de%20la%20qualit%C3%A9%20de%20pilotage%20des%20formations%20en%20apprentissage%20%3B%0A-%20Observer%20les%20positionnements%20de%20jeunes%20sur%20Affelnet%20et%20Parcoursup%20et%20leur%20transformation%20en%20entr%C3%A9e%20en%20apprentissage%20%3B%0A-%20Identifier%20mieux%20et%20plus%20t%C3%B4t%20les%20jeunes%20en%20difficult%C3%A9%20qui%20sont%20en%20rupture%20de%20contact%20avec%20les%20CFA%2C%20pour%20que%20les%20conseillers%20sp%C3%A9cialis%C3%A9s%20les%20aident%20%C3%A0%20s%E2%80%99orienter.", "events": [ { - "name": "national_impact", - "date": "2017-01-01", - "comment": "" + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 30 000€ pour la promotion 14" } ], "phases": [ { "name": "investigation", - "start": "2015-05-01", - "end": "" + "start": "2020-07-01", + "end": "2021-01-01" }, { "name": "construction", - "start": "2015-05-01", + "start": "2021-01-01", "end": "" }, { "name": "acceleration", - "start": "2023-01-19", + "start": "2024-03-01", "end": "" } ], "sponsors": [ - "francetravail" + "menjs", + "mesr", + "mtei", + "mtfp" ], "thematiques": [ + "Jeunesse", + "Education", + "Formation", "Travail / Emploi" ], - "dashlord_url": "https://dashlord.incubateur.net/url/labonneboite-pole-emploi-fr/", - "accessibility_status": "non conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/cfas-apprentissage-beta-gouv-fr/" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "francetravail" + "id": "mission-apprentissage" } } } @@ -365809,16 +361171,16 @@ { "width": 1920, "height": 1080, - "url": "https://labonneboite.pole-emploi.fr", - "size": 1513.508, - "nodes": 327, - "requests": 34, - "grade": "B", - "score": 71, - "ges": 1.58, - "water": 2.37, + "url": "https://cfas.apprentissage.beta.gouv.fr", + "size": 1564.231, + "nodes": 351, + "requests": 68, + "grade": "C", + "score": 62, + "ges": 1.76, + "water": 2.64, "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:01:31.275589", + "date": "2024-12-01 15:14:59.194842", "page_type": null } ], @@ -365827,78 +361189,84 @@ "detected": false }, "summary": { - "httpGrade": "B", - "apdex": 0.718, - "apdexGrade": "F", - "uptime": 99.982, + "httpGrade": "A+", + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "F", - "nmapOpenPortsCount": 4, + "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-05-14T13:11:00.000Z", + "testsslExpireDate": "2025-02-17T03:31:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 4, - "trackersGrade": "F", - "trackersCount": 33, - "lighthouse_performance": 0.57, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 1, + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.34, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.87, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", "statsGrade": "A", - "githubRepositoryGrade": "A", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", - "declaration-a11y": "D", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", "dsfrGrade": "F" } }, { "404": null, - "url": "https://cfas.apprentissage.beta.gouv.fr", - "category": "mission-apprentissage", - "betaId": "tdb-apprentissage", + "url": "https://conseil-refondation.fr", + "category": "dinum", + "betaId": "cnr", "repositories": [ - "mission-apprentissage/flux-retour-cfas" + "betagouv/CNR" + ], + "tags": [ + "production" ], "http": { - "url": "https://cfas.apprentissage.beta.gouv.fr", + "url": "https://conseil-refondation.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:17:24 GMT", - "grade": "A+", + "end_time": "Sun, 20 Oct 2024 11:17:11 GMT", + "grade": "B+", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "CF-RAY": "8d58998f4c20a380-SEA", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", + "Content-Security-Policy": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:17:22 GMT", - "ETag": "\"kh839fbfp9r0w\"", - "Referrer-Policy": "no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", + "Date": "Sun, 20 Oct 2024 11:17:10 GMT", + "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", + "Referrer-Policy": "same-origin", + "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QOcJ1rnMiMcOu0Et9fabYlZoHZPhTjhhSFAzpZQFAET2toXHb3UFMCWjq5qQMzyraw9hQ2TskM0pGQ%2FvIoE2zRp8BrHWsghEU3pbnMuVemnTr%2FKGA7El7zeeZze4IWI08QSrK7igX9lb\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "Server": "cloudflare", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN" + "X-Frame-Options": "DENY", + "X-Request-ID": "561487b4-6f3c-4021-bddd-a3cda17d06d7", + "alt-svc": "h3=\":443\"; ma=86400", + "cf-cache-status": "DYNAMIC", + "server-timing": "cfL4;desc=\"?proto=TCP&rtt=7627&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2870&recv_bytes=849&delivery_rate=561403&cwnd=252&unsent_bytes=0&cid=2538de430b003ab8&ts=384&x=0\"", + "vary": "accept-encoding" }, - "scan_id": 57061099, - "score": 105, - "start_time": "Sun, 20 Oct 2024 11:17:21 GMT", + "scan_id": 57061094, + "score": 80, + "start_time": "Sun, 20 Oct 2024 11:17:08 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, + "tests_failed": 1, + "tests_passed": 9, "tests_quantity": 10, "details": { "content-security-policy": { @@ -365906,89 +361274,85 @@ "name": "content-security-policy", "output": { "data": { - "base-uri": [ - "https://stats.beta.gouv.fr", - "'self'" - ], - "block-all-mixed-content": [ - "'none'" - ], "connect-src": [ - "https://stats.beta.gouv.fr", - "https://sentry.apprentissage.beta.gouv.fr", - "https://plausible.io", - "'self'" + "*.facebook.com", + "'self'", + "connect.facebook.net", + "googleads.g.doubleclick.net/", + "form.typeform.com", + "googletagmanager.com", + "stats.conseil-refondation.fr", + "api.axept.io", + "client.axept.io", + "googleadservices.com" ], "default-src": [ - "https://plausible.io", - "'self'" - ], - "font-src": [ - "https:", "data:", - "'self'" - ], - "frame-ancestors": [ - "https://cfas.apprentissage.beta.gouv.fr", + "localhost:8000", "'self'" ], "frame-src": [ - "https://cfas.apprentissage.beta.gouv.fr", - "https://cfas-recette.apprentissage.beta.gouv.fr", - "https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr", - "https://plausible.io", - "'self'" + "*.youtube.com", + "*.facebook.com", + "form.typeform.com", + "*.vimeo.com", + "datawrapper.dwcdn.net" ], "img-src": [ - "https://stats.beta.gouv.fr", - "https://files.tableau-de-bord.apprentissage.beta.gouv.fr", - "data:", - "https://mission-apprentissage.notion.site", + "localhost:8000", + "*.facebook.com", "'self'", - "https://www.notion.so" - ], - "object-src": [ - "'none'" + "data:", + "*.google.com", + "*.gstatic.com", + "cellar-c2.services.clever-cloud.com", + "*.google.fr" ], "script-src": [ - "https://stats.beta.gouv.fr", - "https://plausible.io", - "'self'" - ], - "script-src-attr": [ - "'none'" + "googleads.g.doubleclick.net", + "www.googleadservices.com", + "embed.typeform.com", + "connect.facebook.net", + "'self'", + "static.axept.io", + "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", + "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='", + "stats.conseil-refondation.fr", + "www.googletagmanager.com" ], "style-src": [ - "https:", - "'unsafe-inline'", - "*.plausible.io", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" + "'sha256-ddzkvrijy1xyahb04e1npps7onjw3g8949x7gac/key='", + "'sha256-athis6ynuvjwfhehgese8wafj61fxmzxx7s/uwrv5dg='", + "'self'", + "'sha256-xhd5+zyamb/dmdyikywxmzaxokrsmrintdcso/s+hcc='", + "embed.typeform.com", + "'sha256-d//lck7pnf/oy9mpfgyaiotmqjezvwlsukk3uobi08a='", + "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", + "'unsafe-hashes'", + "'sha256-/68sznaqxdldug09n2c6rd/j5vwzefkxcrsvxk+bc7s='" ] }, "http": true, "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": true, + "antiClickjacking": false, "defaultNone": false, - "insecureBaseUri": false, + "insecureBaseUri": true, "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, "strictDynamic": false, "unsafeEval": false, "unsafeInline": false, - "unsafeInlineStyle": true, + "unsafeInlineStyle": false, "unsafeObjects": false } }, "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -366021,11 +361385,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://cfas.apprentissage.beta.gouv.fr/", + "destination": "https://conseil-refondation.fr/", "redirects": true, "route": [ - "http://cfas.apprentissage.beta.gouv.fr/", - "https://cfas.apprentissage.beta.gouv.fr/" + "http://conseil-refondation.fr/", + "https://conseil-refondation.fr/" ], "status_code": 200 }, @@ -366038,29 +361402,29 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer-when-downgrade", + "data": "same-origin", "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, + "data": null, + "includeSubDomains": false, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -366088,12 +361452,12 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": "DENY" }, "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -366109,697 +361473,168 @@ } }, "updownio": { - "token": "0dzj", - "url": "https://cfas.apprentissage.beta.gouv.fr", + "token": "216i", + "url": "https://conseil-refondation.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-22T09:30:30Z", + "up_since": "2024-11-28T16:22:50Z", "error": null, - "period": 3600, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T14:14:33Z", - "next_check_at": "2024-11-24T15:14:33Z", - "created_at": "2021-04-22T21:33:48Z", - "mute_until": "forever", - "favicon_url": "https://cfas.apprentissage.beta.gouv.fr/favicon.ico", + "last_check_at": "2024-12-01T15:21:02Z", + "next_check_at": "2024-12-01T15:22:02Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://conseil-refondation.fr/static/images/favico/favicon-16x16.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T12:15:13Z", - "expires_at": "2025-02-17T03:31:43Z", + "tested_at": "2024-12-01T15:19:05Z", + "expires_at": "2025-01-14T02:53:40Z", "valid": true, "error": null }, - "metrics": {}, - "uptimeGrade": "A" + "metrics": { + "apdex": 0.664, + "timings": { + "redirect": 0, + "namelookup": 15, + "connection": 17, + "handshake": 23, + "response": 1012, + "total": 1067 + } + }, + "uptimeGrade": "A", + "apdexGrade": "F" }, "nmap": { - "host": "cfas.apprentissage.beta.gouv.fr", + "host": "conseil-refondation.fr", "protocol": "tcp", - "closed_ports": "997", + "closed_ports": "996", "open_ports": [ { "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "type": "githubexploit", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "is_exploit": "true", - "cvss": "10.0" - }, - { - "type": "githubexploit", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "is_exploit": "true", - "cvss": "10.0" - }, - { - "type": "cve", - "id": "CVE-2023-38408", - "is_exploit": "false", - "cvss": "9.8" - }, - { - "type": "cve", - "id": "CVE-2023-28531", - "is_exploit": "false", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "is_exploit": "true", - "cvss": "9.8" - }, - { - "type": "packetstorm", - "id": "PACKETSTORM:179290", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "cve", - "id": "CVE-2024-6387", - "is_exploit": "false", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "zdt", - "id": "1337DAY-ID-39674", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "githubexploit", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "is_exploit": "true", - "cvss": "8.1" - }, - { - "type": "seebug", - "id": "SSV:92579", - "is_exploit": "true", - "cvss": "7.5" - }, - { - "type": "packetstorm", - "id": "PACKETSTORM:173661", - "is_exploit": "true", - "cvss": "7.5" - }, - { - "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true", - "cvss": "7.5" - }, - { - "type": "zdt", - "id": "1337DAY-ID-26576", - "is_exploit": "true", - "cvss": "7.5" - }, - { - "type": "cve", - "id": "CVE-2023-51385", - "is_exploit": "false", - "cvss": "6.5" - }, - { - "type": "cve", - "id": "CVE-2023-48795", - "is_exploit": "false", - "cvss": "5.9" - }, - { - "type": "cve", - "id": "CVE-2023-51384", - "is_exploit": "false", - "cvss": "5.5" - }, - { - "type": "packetstorm", - "id": "PACKETSTORM:140261", - "is_exploit": "true", - "cvss": "0.0" - }, - { - "type": "githubexploit", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "is_exploit": "true", - "cvss": "0.0" - }, - { - "type": "githubexploit", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "is_exploit": "true", - "cvss": "0.0" - } - ] + "name": "http", + "product": "Cloudflare http proxy", + "id": "80", + "vulnerabilities": [] } }, { "service": { "name": "http", - "product": "nginx", - "id": "80", + "product": "Cloudflare http proxy", + "id": "443", "vulnerabilities": [] } }, { "service": { "name": "http", - "product": "nginx", - "id": "443", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", "vulnerabilities": [] } } ], - "grade": "F" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366807,7 +361642,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366815,7 +361650,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366823,7 +361658,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366831,7 +361666,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -366839,505 +361674,547 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cipher_order-tls1_2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "cipher_order-tls1", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "ECDHE-ECDSA-AES128-SHA" }, { - "id": "cipher-tls1_2_xc02c", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "cipher_order-tls1_1", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" + "finding": "server" }, { - "id": "cipher-tls1_2_xc02b", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "cipherorder_TLSv1_1", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_2", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "cipherorder_TLSv1_2", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 64800 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (43)" }, { "id": "cert_notBefore", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "2024-11-19 03:31" + "finding": "2024-10-16 02:53" }, { "id": "cert_notAfter", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "OK", - "finding": "2025-02-17 03:31" + "severity": "MEDIUM", + "finding": "2025-01-14 02:53" }, { "id": "cert_extlifeSpan", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/peDXaqF3Tp8.crl" }, { "id": "cert_ocspURL", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "http://e6.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/L8A" }, { "id": "OCSP_stapling", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "E6 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "76E9E288AAFC0E37F4390CBF946AAD997D5C1C901B3CE513D3D8FADBABE2AB85" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "E6 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { - "id": "HTTP_clock_skew", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert_notBefore <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2023-11-15 03:43" }, { - "id": "HTTP_headerTime", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert_notAfter <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "INFO", - "finding": "1732461207" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "HSTS_time", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert_expiration <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "ok > 40 days" }, { - "id": "HSTS_subdomains", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "intermediate_cert_chain <#2>", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "includes subdomains" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HSTS_preload", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "id": "HTTP_status_code", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "1733066420" + }, + { + "id": "HSTS", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=2537&min_rtt=2263&rtt_var=799&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3030&recv_bytes=739&delivery_rate=1262041&cwnd=252&unsent_bytes=0&cid=78fac9d81ba61054&ts=292&x=0'" }, { "id": "banner_application", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr https://plugins.crisp.chat; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat https://plugins.crisp.chat https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;" + "finding": "style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com" }, { "id": "Referrer-Policy", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "no-referrer-when-downgrade" - }, - { - "id": "Cache-Control", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -367345,7 +362222,7 @@ }, { "id": "heartbleed", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -367354,7 +362231,7 @@ }, { "id": "CCS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -367363,16 +362240,16 @@ }, { "id": "ticketbleed", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -367381,7 +362258,7 @@ }, { "id": "secure_renego", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -367389,7 +362266,7 @@ }, { "id": "secure_client_renego", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -367398,7 +362275,7 @@ }, { "id": "CRIME_TLS", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -367407,16 +362284,16 @@ }, { "id": "BREACH", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -367425,14 +362302,14 @@ }, { "id": "fallback_SCSV", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -367441,7 +362318,7 @@ }, { "id": "FREAK", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -367450,7 +362327,7 @@ }, { "id": "DROWN", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -367459,7 +362336,7 @@ }, { "id": "DROWN_hint", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -367468,7 +362345,7 @@ }, { "id": "LOGJAM", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -367477,34 +362354,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, + { + "id": "BEAST_CBC_TLS1", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" + }, { "id": "BEAST", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -367513,7 +362399,7 @@ }, { "id": "RC4", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -367522,1286 +362408,340 @@ }, { "id": "clientsimulation-android_60", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "key_exchange_score_weighted", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "cipher_strength_score", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "96" - }, - { - "id": "overall_grade", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", - "port": "443", - "severity": "INFO", - "finding": "54" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self' https://stats.beta.gouv.fr; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr https://tableau-de-bord-preprod.apprentissage.beta.gouv.fr https://plugins.crisp.chat; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site https://stats.beta.gouv.fr data:; object-src 'none'; script-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://stats.beta.gouv.fr https://client.crisp.chat https://plugins.crisp.chat https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:12:12 GMT", - "etag": "\"iev9rlxe3qqwm\"", - "referrer-policy": "no-referrer-when-downgrade", - "strict-transport-security": "max-age=31536000; includeSubdomains", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" - }, - "endpoints": [ - { - "hostname": "cfas.apprentissage.beta.gouv.fr", - "ip": "141.95.161.225", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://cfas.apprentissage.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "chakra-ui", - "name": "Chakra UI", - "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", - "confidence": 100, - "version": null, - "icon": "Chakra UI.svg", - "website": "https://chakra-ui.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "13.5.7", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://cfas.apprentissage.beta.gouv.fr/", - "finalUrl": "https://cfas.apprentissage.beta.gouv.fr/", - "fetchTime": "2024-11-24T15:11:45.031Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.34 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.87 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 9066, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1383, - "firstMeaningfulPaint": 1383, - "largestContentfulPaint": 7866, - "interactive": 9066, - "speedIndex": 2553, - "totalBlockingTime": 1090, - "maxPotentialFID": 653, - "cumulativeLayoutShift": 0.45192704010009765, - "cumulativeLayoutShiftMainFrame": 0.45192704010009765, - "totalCumulativeLayoutShift": 0.45192704010009765, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 513263764, - "observedNavigationStart": 0, - "observedNavigationStartTs": 513263764, - "observedFirstPaint": 526, - "observedFirstPaintTs": 513789997, - "observedFirstContentfulPaint": 1336, - "observedFirstContentfulPaintTs": 514599739, - "observedFirstContentfulPaintAllFrames": 1336, - "observedFirstContentfulPaintAllFramesTs": 514599739, - "observedFirstMeaningfulPaint": 1336, - "observedFirstMeaningfulPaintTs": 514599739, - "observedLargestContentfulPaint": 1443, - "observedLargestContentfulPaintTs": 514706877, - "observedLargestContentfulPaintAllFrames": 1443, - "observedLargestContentfulPaintAllFramesTs": 514706877, - "observedTraceEnd": 5510, - "observedTraceEndTs": 518773288, - "observedLoad": 1587, - "observedLoadTs": 514850347, - "observedDomContentLoaded": 1002, - "observedDomContentLoadedTs": 514265613, - "observedCumulativeLayoutShift": 0.45192704010009765, - "observedCumulativeLayoutShiftMainFrame": 0.45192704010009765, - "observedTotalCumulativeLayoutShift": 0.45192704010009765, - "observedFirstVisualChange": 1348, - "observedFirstVisualChangeTs": 514611764, - "observedLastVisualChange": 1498, - "observedLastVisualChangeTs": 514761764, - "observedSpeedIndex": 1360, - "observedSpeedIndexTs": 514623748 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 60, - "numScripts": 29, - "numStylesheets": 1, - "numFonts": 2, - "numTasks": 1315, - "numTasksOver10ms": 8, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 85.01, - "throughput": 15712312.545127008, - "maxRtt": 87.875, - "maxServerLatency": 32.682, - "totalByteWeight": 1292244, - "totalTaskTime": 564.8479999999976, - "mainDocumentTransferSize": 9532 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "tdb-apprentissage", - "type": "startup", - "attributes": { - "name": "Tableau de bord de l'apprentissage", - "pitch": "Permettre l’accès aux données clés de l’apprentissage en temps réel", - "stats_url": "https://cfas.apprentissage.beta.gouv.fr/stats", - "link": "https://cfas.apprentissage.beta.gouv.fr", - "contact": "tableau-de-bord@apprentissage.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Constat%0A%0AAu%20total%2C%20en%202020%2C%20environ%20250%20000%20candidats%20ont%20souhait%C3%A9%20une%20mise%20en%20relation%20avec%20un%20CFA%20par%20l%E2%80%99un%20des%20deux%20portails%20Affelnet%20ou%20Parcoursup.%20Or%2C%20une%20fois%20le%20v%C5%93u%20exprim%C3%A9%20et%20transmis%20au%20centre%20de%20formation%2C%20aucun%20suivi%20global%20n%27est%20assur%C3%A9%20%3A%20aucun%20syst%C3%A8me%20ne%20permet%20de%20savoir%20combien%20de%20v%C5%93ux%20se%20sont%20traduits%20en%20entr%C3%A9e%20en%20apprentissage%2C%20dans%20la%20sp%C3%A9cialit%C3%A9%20et%20le%20centre%20vis%C3%A9s%20ou%20dans%20une%20autre%20formation%20avec%20le%20m%C3%AAme%20statut.%0A%0AAucun%20indice%20ne%20permet%20non%20plus%20d%E2%80%99observer%20les%20%C3%A9tapes%20franchies%20ou%20non%20par%20les%20jeunes%2C%20en%20vue%20d%E2%80%99accompagner%20d%E2%80%99une%20fa%C3%A7on%20r%C3%A9active%20ceux%20qui%20d%C3%A9crochent%20et%20peuvent%20se%20retrouver%20en%20difficult%C3%A9.%0A%0APlus%20g%C3%A9n%C3%A9ralement%2C%20l%27%C3%A9cosyst%C3%A8me%20de%20l%27apprentissage%20manque%20d%27interconnexion%20pour%20simplifier%20les%20%C3%A9changes%2C%20favoriser%20un%20pilotage%20plus%20fin%20et%20r%C3%A9actif%2C%20simplifier%20les%20d%C3%A9marches%20des%20CFA%20et%20am%C3%A9liorer%20l%27accompagnement%20des%20jeunes%20et%20des%20employeurs.%0A%0A%0A%23%23%20La%20solution%0A%0ALe%20Tableau%20de%20bord%20de%20l%27apprentissage%20permet%20de%20visualiser%20en%20temps%20r%C3%A9el%20les%20effectifs%20d%E2%80%99apprentis%20dans%20les%20centres%20de%20formation%20et%20les%20organismes%20de%20formation.%20Comment%20%3F%20En%20se%20branchant%20sur%20les%20syst%C3%A8mes%20de%20gestion%20des%20centres%20de%20formation%20d%27apprentis%20%28CFA%29%20-%20via%20leur%20%C3%A9diteur%20de%20logiciel%20ERP%20%28cf.%20https%3A%2F%2Fcfas.apprentissage.beta.gouv.fr%2F%29%2C%20par%20consommation%20d%27une%20API%20ou%20par%20d%C3%A9p%C3%B4t%20de%20fichier%20sur%20un%20serveur%20%3A%20%20https%3A%2F%2Fcfas.apprentissage.beta.gouv.fr%2Fcomprendre-les-donnees%0A%0ADiff%C3%A9rentes%20institutions%20%28DREETS%2C%20Acad%C3%A9mies%2C%20DRAAF%2C%20Carif%20Oref%2C%20Conseil%20R%C3%A9gionaux%2C%20etc.%29%20consultent%20le%20tableau%20de%20bord%20de%20l%27apprentissage%20r%C3%A9guli%C3%A8rement%20pour%20suivre%20l%E2%80%99%C3%A9volution%20des%20effectifs.%20Ces%20donn%C3%A9es%20les%20%C3%A9clairent%20notamment%20dans%20la%20mise%20en%20place%20des%20plans%20d%E2%80%99actions%20d%E2%80%99accompagnement%20des%20jeunes%20sans%20contrat%20ou%20pour%20d%C3%A9finir%20les%20politiques%20publiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99apprentissage.%0ALe%20Tableau%20de%20bord%20sert%203%20finalit%C3%A9s%20%3A%0A-%20Piloter%20%3A%20permettre%20aux%20pouvoirs%20publics%20de%20piloter%20au%20mieux%20la%20politique%20de%20l%E2%80%99apprentissage%20nationalement%20et%20localement%20%3B%0A-%20Accompagner%20%3A%20utiliser%20la%20donn%C3%A9e%20pour%20aider%20ceux%20qui%20peuvent%20agir%20%C3%A0%20accompagner%20les%20apprentis%20en%20situation%20de%20rupture%20%3B%0A-%20Simplifier%20%3A%20exposer%20la%20donn%C3%A9e%20pour%20simplifier%20la%20d%C3%A9livrance%20ou%20la%20consommation%20d%E2%80%99informations%20%28enqu%C3%AAtes%2C%20communications%2C%20%E2%80%A6%29.%0APour%20les%20CFA%2C%20c%E2%80%99est%20une%20valeur%20ajout%C3%A9e%20qui%20permet%20de%20%3A%0A-%20Mettre%20en%20visibilit%C3%A9%20l%E2%80%99%C3%A9volution%20des%20effectifs%20et%20des%20formations%20en%20apprentissage%20%3B%0A-%20Simplifier%20les%20d%C3%A9marches%20administratives%20%3B%0A-%20R%C3%A9duire%20le%20nombre%20d%E2%80%99enqu%C3%AAtes%20administratives.%0A%0AL%E2%80%99op%C3%A9ration%20est%20conduite%20conform%C3%A9ment%20aux%20r%C3%A8glements%20g%C3%A9n%C3%A9raux%20relatifs%20%C3%A0%20la%20protection%20des%20donn%C3%A9es%20et%20%C3%A0%20la%20s%C3%A9curit%C3%A9%20informatique.%20Le%20traitement%20des%20donn%C3%A9es%20se%20fait%20sur%20la%20base%20de%20l%E2%80%99int%C3%A9r%C3%AAt%20public.%20Conform%C3%A9ment%20%C3%A0%20la%20loi%20sur%20la%20R%C3%A9publique%20num%C3%A9rique%20et%20au%20motif%20de%20leur%20mission%20de%20service%20public%2C%20les%20CFA%20sont%20tenus%20de%20partager%20avec%20les%20administrations%20publiques%20les%20donn%C3%A9es%20dont%20l%E2%80%99utilisation%20sert%20l%E2%80%99int%C3%A9r%C3%AAt%20g%C3%A9n%C3%A9ral.%20Cette%20op%C3%A9ration%20est%20conduite%20suivant%20les%20proc%C3%A9dures%20s%C3%A9curis%C3%A9es%20de%20l%E2%80%99%C3%89tat%20%3A%0A-%20Transmission%20s%C3%A9curis%C3%A9e%20et%20crypt%C3%A9e%20des%20donn%C3%A9es%20%3B%0A-%20Minimisation%20des%20donn%C3%A9es%20circulant%20pour%20ne%20traiter%20que%20celles%20strictement%20utiles%20%C3%A0%20la%20finalit%C3%A9%20de%20la%20mission%20%3B%0A-%20Minimisation%20et%20encadrement%20strict%20de%20l%E2%80%99acc%C3%A8s%20aux%20donn%C3%A9es%20et%20du%20nombre%20d%E2%80%99intervenants%20%3B%0A-%20Inscription%20de%20l%E2%80%99op%C3%A9ration%20au%20registre%20des%20traitements%20de%20donn%C3%A9es%20%3B%0A-%20Production%20d%E2%80%99une%20analyse%20d%E2%80%99impact%20et%20d%E2%80%99un%20plan%20de%20mise%20en%20s%C3%A9curit%C3%A9%20informatique.%0A%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A-%20Permettre%20une%20am%C3%A9lioration%20sensible%20de%20la%20qualit%C3%A9%20de%20pilotage%20des%20formations%20en%20apprentissage%20%3B%0A-%20Observer%20les%20positionnements%20de%20jeunes%20sur%20Affelnet%20et%20Parcoursup%20et%20leur%20transformation%20en%20entr%C3%A9e%20en%20apprentissage%20%3B%0A-%20Identifier%20mieux%20et%20plus%20t%C3%B4t%20les%20jeunes%20en%20difficult%C3%A9%20qui%20sont%20en%20rupture%20de%20contact%20avec%20les%20CFA%2C%20pour%20que%20les%20conseillers%20sp%C3%A9cialis%C3%A9s%20les%20aident%20%C3%A0%20s%E2%80%99orienter.", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 30 000€ pour la promotion 14" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2020-07-01", - "end": "2021-01-01" - }, - { - "name": "construction", - "start": "2021-01-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-03-01", - "end": "" - } - ], - "sponsors": [ - "menjs", - "mesr", - "mtei", - "mtfp" - ], - "thematiques": [ - "Jeunesse", - "Education", - "Formation", - "Travail / Emploi" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/cfas-apprentissage-beta-gouv-fr/" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mission-apprentissage" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://cfas.apprentissage.beta.gouv.fr", - "size": 1564.569, - "nodes": 351, - "requests": 69, - "grade": "C", - "score": 62, - "ges": 1.76, - "water": 2.64, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:08:41.012952", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "A+", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-17T03:31:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.34, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.87, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://conseil-refondation.fr", - "category": "dinum", - "betaId": "cnr", - "repositories": [ - "betagouv/CNR" - ], - "tags": [ - "production" - ], - "http": { - "url": "https://conseil-refondation.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:17:11 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "CF-RAY": "8d58998f4c20a380-SEA", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:17:10 GMT", - "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "Referrer-Policy": "same-origin", - "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QOcJ1rnMiMcOu0Et9fabYlZoHZPhTjhhSFAzpZQFAET2toXHb3UFMCWjq5qQMzyraw9hQ2TskM0pGQ%2FvIoE2zRp8BrHWsghEU3pbnMuVemnTr%2FKGA7El7zeeZze4IWI08QSrK7igX9lb\"}],\"group\":\"cf-nel\",\"max_age\":604800}", - "Server": "cloudflare", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "561487b4-6f3c-4021-bddd-a3cda17d06d7", - "alt-svc": "h3=\":443\"; ma=86400", - "cf-cache-status": "DYNAMIC", - "server-timing": "cfL4;desc=\"?proto=TCP&rtt=7627&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2870&recv_bytes=849&delivery_rate=561403&cwnd=252&unsent_bytes=0&cid=2538de430b003ab8&ts=384&x=0\"", - "vary": "accept-encoding" - }, - "scan_id": 57061094, - "score": 80, - "start_time": "Sun, 20 Oct 2024 11:17:08 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "*.facebook.com", - "'self'", - "connect.facebook.net", - "googleads.g.doubleclick.net/", - "form.typeform.com", - "googletagmanager.com", - "stats.conseil-refondation.fr", - "api.axept.io", - "client.axept.io", - "googleadservices.com" - ], - "default-src": [ - "data:", - "localhost:8000", - "'self'" - ], - "frame-src": [ - "*.youtube.com", - "*.facebook.com", - "form.typeform.com", - "*.vimeo.com", - "datawrapper.dwcdn.net" - ], - "img-src": [ - "localhost:8000", - "*.facebook.com", - "'self'", - "data:", - "*.google.com", - "*.gstatic.com", - "cellar-c2.services.clever-cloud.com", - "*.google.fr" - ], - "script-src": [ - "googleads.g.doubleclick.net", - "www.googleadservices.com", - "embed.typeform.com", - "connect.facebook.net", - "'self'", - "static.axept.io", - "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", - "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='", - "stats.conseil-refondation.fr", - "www.googletagmanager.com" - ], - "style-src": [ - "'sha256-ddzkvrijy1xyahb04e1npps7onjw3g8949x7gac/key='", - "'sha256-athis6ynuvjwfhehgese8wafj61fxmzxx7s/uwrv5dg='", - "'self'", - "'sha256-xhd5+zyamb/dmdyikywxmzaxokrsmrintdcso/s+hcc='", - "embed.typeform.com", - "'sha256-d//lck7pnf/oy9mpfgyaiotmqjezvwlsukk3uobi08a='", - "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", - "'unsafe-hashes'", - "'sha256-/68sznaqxdldug09n2c6rd/j5vwzefkxcrsvxk+bc7s='" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-no-unsafe", - "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", - "score_modifier": 5 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://conseil-refondation.fr/", - "redirects": true, - "route": [ - "http://conseil-refondation.fr/", - "https://conseil-refondation.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "216i", - "url": "https://conseil-refondation.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T00:34:29Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T15:15:52Z", - "next_check_at": "2024-11-24T15:16:52Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://conseil-refondation.fr/static/images/favico/favicon-16x16.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T15:07:53Z", - "expires_at": "2025-01-14T02:53:40Z", - "valid": true, - "error": null + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "metrics": { - "apdex": 0.731, - "timings": { - "redirect": 0, - "namelookup": 13, - "connection": 10, - "handshake": 17, - "response": 529, - "total": 569 - } + { + "id": "protocol_support_score", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "95" + }, + { + "id": "protocol_support_score_weighted", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "28" + }, + { + "id": "key_exchange_score", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "key_exchange_score_weighted", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "82" + }, + { + "id": "overall_grade", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "grade_cap_reason_3", + "ip": "conseil-refondation.fr/104.21.7.98", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "conseil-refondation.fr", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "conseil-refondation.fr/172.67.130.24", @@ -369177,7 +363117,7 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (50)" + "finding": "expires < 60 days (43)" }, { "id": "cert_notBefore", @@ -369387,7 +363327,7 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "1732461282" + "finding": "1733066462" }, { "id": "HSTS", @@ -369408,7 +363348,7 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=1826&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3030&recv_bytes=739&delivery_rate=1826086&cwnd=252&unsent_bytes=0&cid=64c76759df6920fb&ts=391&x=0'" + "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=2305&min_rtt=2002&rtt_var=822&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3030&recv_bytes=739&delivery_rate=1389781&cwnd=252&unsent_bytes=0&cid=3a4415cfafc5a8ed&ts=319&x=0'" }, { "id": "banner_application", @@ -369982,79 +363922,1081 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, + { + "id": "scanTime", + "ip": "conseil-refondation.fr/172.67.130.24", + "port": "443", + "severity": "INFO", + "finding": "86" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://stats.conseil-refondation.fr/matomo.js" + }, + { + "type": "unknown", + "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=662327&h=15&m=19&s=15&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=bdc9d43a35909b68&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=QlKz8j&pf_net=25&pf_srv=510&pf_tfr=3&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" + } + ], + "cookies": [ + { + "name": "_pk_ses.1.474c", + "value": "1", + "domain": "conseil-refondation.fr", + "path": "/", + "expires": 1733068155, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.1.474c", + "value": "bdc9d43a35909b68.1733066356.", + "domain": "conseil-refondation.fr", + "path": "/", + "expires": 1767021556, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "alt-svc": "h3=\":443\"; ma=86400", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb40dee1ca12a48-ORD", + "content-encoding": "br", + "content-security-policy": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 15:19:15 GMT", + "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", + "referrer-policy": "same-origin", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Fkdv14PEM%2BmfZwy6AKqhtm3%2BD%2FnjFYUXZcRuSmxz3nY1bYCPhd2b%2B6aguxUIylE%2BQ6T%2B5hiD1M9PpoEl37iR3KefU1VaSrslDoFOTmfL61hWiyK%2BS%2B%2FdVrj7P09WUgOFVe7QYiQ%2BM8VM\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "server": "cloudflare", + "server-timing": "cfL4;desc=\"?proto=TCP&rtt=7991&min_rtt=2707&rtt_var=11016&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2866&recv_bytes=1064&delivery_rate=1055042&cwnd=253&unsent_bytes=0&cid=da4f449b4b7e713a&ts=518&x=0\"", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY", + "x-request-id": "aba4e8fc-48d4-4ea1-86ee-2f6806c76aec" + }, + "endpoints": [ + { + "hostname": "conseil-refondation.fr", + "ip": "172.67.130.24", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "stats.conseil-refondation.fr", + "ip": "172.67.130.24", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://conseil-refondation.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wagtail", + "name": "Wagtail", + "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "confidence": 100, + "version": null, + "icon": "Wagtail.svg", + "website": "https://wagtail.org", + "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "google-ads", + "name": "Google Ads", + "description": "Google Ads is an online advertising platform developed by Google.", + "confidence": 100, + "version": null, + "icon": "Google Ads.svg", + "website": "https://ads.google.com", + "cpe": null, + "categories": [ + { + "id": 36, + "slug": "advertising", + "name": "Advertising" + } + ] + }, + { + "slug": "google-ads-conversion-tracking", + "name": "Google Ads Conversion Tracking", + "description": "Google Ads Conversion Tracking is a free tool that shows you what happens after a customer interacts with your ads.", + "confidence": 100, + "version": null, + "icon": "Google.svg", + "website": "https://support.google.com/google-ads/answer/1722022", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://conseil-refondation.fr/", + "finalUrl": "https://conseil-refondation.fr/", + "fetchTime": "2024-12-01T15:18:48.690Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.64 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 3117, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3117, + "firstMeaningfulPaint": 3117, + "largestContentfulPaint": 5563, + "interactive": 3117, + "speedIndex": 3394, + "totalBlockingTime": 0, + "maxPotentialFID": 68, + "cumulativeLayoutShift": 0.26773677825927733, + "cumulativeLayoutShiftMainFrame": 0.26773677825927733, + "totalCumulativeLayoutShift": 0.26773677825927733, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 331653434, + "observedNavigationStart": 0, + "observedNavigationStartTs": 331653434, + "observedFirstPaint": 693, + "observedFirstPaintTs": 332346089, + "observedFirstContentfulPaint": 693, + "observedFirstContentfulPaintTs": 332346089, + "observedFirstContentfulPaintAllFrames": 693, + "observedFirstContentfulPaintAllFramesTs": 332346089, + "observedFirstMeaningfulPaint": 693, + "observedFirstMeaningfulPaintTs": 332346089, + "observedLargestContentfulPaint": 693, + "observedLargestContentfulPaintTs": 332346089, + "observedLargestContentfulPaintAllFrames": 693, + "observedLargestContentfulPaintAllFramesTs": 332346089, + "observedTraceEnd": 3536, + "observedTraceEndTs": 335189083, + "observedLoad": 1211, + "observedLoadTs": 332864750, + "observedDomContentLoaded": 575, + "observedDomContentLoadedTs": 332228378, + "observedCumulativeLayoutShift": 0.26773677825927733, + "observedCumulativeLayoutShiftMainFrame": 0.26773677825927733, + "observedTotalCumulativeLayoutShift": 0.26773677825927733, + "observedFirstVisualChange": 699, + "observedFirstVisualChangeTs": 332352434, + "observedLastVisualChange": 1316, + "observedLastVisualChangeTs": 332969434, + "observedSpeedIndex": 723, + "observedSpeedIndexTs": 332376538 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 47, + "numScripts": 3, + "numStylesheets": 4, + "numFonts": 3, + "numTasks": 1602, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 19733209.465911627, + "maxRtt": 103.578, + "maxServerLatency": 22.175, + "totalByteWeight": 892131, + "totalTaskTime": 222.75799999999677, + "mainDocumentTransferSize": 9406 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://conseil-refondation.fr/accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://conseil-refondation.fr/mentions-legales/" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://conseil-refondation.fr/confidentialite/" + } + ], + "betagouv": { + "id": "cnr", + "type": "startup", + "attributes": { + "name": "CNR", + "pitch": "Consulter citoyens, élus et corps intermédiaires sur les grandes thématiques du quinquennat. ", + "stats_url": "https://data.conseil-refondation.fr/public/dashboard/774242e4-290d-42a3-a444-ff0ce8c9b671", + "link": "https://conseil-refondation.fr/", + "repository": "https://github.com/betagouv/CNR", + "contact": "cnr@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20Pr%C3%A9sident%20de%20la%20R%C3%A9publique%20a%20lanc%C3%A9%20le%20jeudi%208%20septembre%202022%20le%20%C2%AB%20Conseil%20National%20de%20la%20Refondation%20%C2%BB%2C%20%C3%A0%20Marcoussis%2C%20dans%20l%27Essonne.%20Il%20a%20r%C3%A9uni%20%C3%A0%20cette%20occasion%20une%20quarantaine%20de%20repr%C3%A9sentants%20de%20forces%20politiques%2C%20des%20partenaires%20sociaux%2C%20des%20%C3%A9lus%20locaux%2C%20des%20repr%C3%A9sentants%20du%20monde%20%C3%A9conomique%20et%20du%20monde%20associatif.%20L%27objectif%20a%20notamment%20%C3%A9t%C3%A9%20de%20poser%20un%20constat%20commun%20%3A%20le%20besoin%20pour%20la%20nation%20de%20raviver%20et%20r%C3%A9inventer%20les%20processus%20d%C3%A9mocratiques%20autour%20des%20grands%20enjeux%20de%20transition%20du%20quinquennat.%0A%0A%23%23%20Probl%C3%A8me%0A%0A%C3%89lections%20apr%C3%A8s%20%C3%A9lections%2C%20le%20taux%20d%27abstention%20augmente%2C%20les%20d%C3%A9bats%20soci%C3%A9taux%20s%27enveniment%2C%20la%20fragilit%C3%A9%20%C3%A9cologique%20et%20l%27incertitude%20%C3%A9conomique%20imposent%20de%20repenser%20le%20dialogue%20national.%0A%0A%0A%23%23%20Solution%0A%0AAfin%20de%20toucher%20le%20plus%20de%20personnes%20possible%2C%20la%20cr%C3%A9ation%20d%27une%20plateforme%20en%20ligne%20a%20%C3%A9t%C3%A9%20identifi%C3%A9e%20comme%20la%20solution%20la%20plus%20pertinente.%20Le%20r%C3%B4le%20de%20la%20plateforme%20du%20Conseil%20national%20de%20Refondation%20est%20de%20cr%C3%A9er%20une%20nouvelle%20mani%C3%A8re%20de%20concerter%20et%20d%27agir%2C%20qui%20permette%20%C3%A0%20toutes%20et%20tous%20d%27%C3%A9changer%20de%20mani%C3%A8re%20constructive%20pour%20b%C3%A2tir%20des%20solutions%20appropri%C3%A9es%20aux%20grands%20d%C3%A9fis%20de%20l%27%C3%A9poque.%20Citoyen.ne.s%2C%20%C3%A9lu.e.s%2C%20parties%20prenantes%20peuvent%20participer%20aux%20concertations%20et%20%C3%AAtre%20inform%C3%A9.e.s%20des%20r%C3%A9unions%20publiques%20locales%20organis%C3%A9es%20partout%20en%20France.%0A%0A%23%23%20Strat%C3%A9gie%0A%0AEn%20%C3%A9troite%20collaboration%20avec%20le%20Haut%20Commissariat%20au%20Plan%2C%20l%27objectif%20pour%20l%27%C3%A9quipe%20est%20de%20comptabiliser%20100%20000%20participations%20aux%20consultations%20en%20ligne%20d%27ici%20la%20fin%20d%27ann%C3%A9e%202022%2C%20%C3%A0%20travers%20des%20campagnes%20d%27acquisition%20en%20ligne%20et%20des%20op%C3%A9rations%20de%20communication.", + "events": [], + "phases": [ + { + "name": "construction", + "start": "2022-10-27", + "end": "" + } + ], + "sponsors": [ + "hcp" + ], + "thematiques": [ + "Démocratie" + ], + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://conseil-refondation.fr", + "size": 1018.642, + "nodes": 414, + "requests": 44, + "grade": "C", + "score": 68, + "ges": 1.64, + "water": 2.46, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 15:15:50.791430", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B+", + "apdex": 0.664, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-14T02:53:00.000Z", + "testsslGrade": "B", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.64, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://donnees.incubateur.anct.gouv.fr", + "category": "anct", + "betaId": "données-et-territoires", + "http": { + "url": "https://donnees.incubateur.anct.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 01:00:34 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=600", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 01:00:33 GMT", + "Etag": "W/\"0832e4afd5792e0060f139f37f0a01eaa844106b2281189805c0fd2bc5ab6bed\"", + "Expires": "Sun, 20 Oct 2024 01:10:33 UTC", + "Last-Modified": "Mon, 29 Jul 2024 09:50:40 GMT", + "Server": "nginx/1.18.0 (Ubuntu)", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "Vary": "Origin" + }, + "scan_id": 57046300, + "score": 50, + "start_time": "Sun, 20 Oct 2024 01:00:32 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://donnees.incubateur.anct.gouv.fr/", + "redirects": true, + "route": [ + "http://donnees.incubateur.anct.gouv.fr/", + "https://donnees.incubateur.anct.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "v63d", + "url": "https://donnees.incubateur.anct.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.972, + "down": false, + "down_since": null, + "up_since": "2024-11-28T17:44:48Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T15:31:16Z", + "next_check_at": "2024-12-01T15:32:16Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://donnees.incubateur.anct.gouv.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T15:30:16Z", + "expires_at": "2025-02-09T21:04:29Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 0.983, + "timings": { + "redirect": 0, + "namelookup": 16, + "connection": 150, + "handshake": 158, + "response": 174, + "total": 498 + } + }, + "uptimeGrade": "A", + "apdexGrade": "B" + }, + "nmap": { + "host": "donnees.incubateur.anct.gouv.fr", + "protocol": "tcp", + "closed_ports": "994", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ + { + "cvss": "9.8", + "id": "CVE-2023-38408", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.8", + "id": "CVE-2020-15778", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.5", + "id": "SSV:92579", + "is_exploit": "true", + "type": "seebug" + }, + { + "cvss": "7.5", + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "CVE-2020-12062", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.5", + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "7.1", + "id": "CVE-2021-28041", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "7.0", + "id": "CVE-2021-41617", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "6.5", + "id": "CVE-2023-51385", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2023-48795", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2020-14145", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.3", + "id": "CVE-2016-20012", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "0.0", + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "type": "packetstorm" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "5050", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "postgresql", + "product": "PostgreSQL DB", + "id": "5432", + "version": "9.6.0 or later", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "8000", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370062,7 +365004,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370070,7 +365012,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370078,7 +365020,7 @@ }, { "id": "cipherlist_LOW", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370086,7 +365028,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -370094,7 +365036,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -370102,539 +365044,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CAMELLIA128-SHA256 ECDHE-ECDSA-CAMELLIA256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "2024-10-16 02:53" + "finding": "2024-11-11 21:04" }, { "id": "cert_notAfter", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-14 02:53" + "severity": "OK", + "finding": "2025-02-09 21:04" }, { "id": "cert_extlifeSpan", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/peDXaqF3Tp8.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/L8A" + "finding": "http://e5.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "E5 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIICnzCCAiWgAwIBAgIQf/MZd5csIkp2FV0TttaF4zAKBggqhkjOPQQDAzBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjQwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARvzTr+Z1dHTCEDhUDCR127WEcPQMFcF4XGGTfn1XzthkubgdnXGhOlCgP4mMTG6J7/EFmPLCaY9eYmJbsPAvpWo4H+MIH7MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUkHeSNWfE/6jMqeZ72YB5e8yT+TgwHwYDVR0jBBgwFoAUgEzW63T/STaj1dj8tT7FavCUHYwwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzAChhhodHRwOi8vaS5wa2kuZ29vZy9yNC5jcnQwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2MucGtpLmdvb2cvci9yNC5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwCgYIKoZIzj0EAwMDaAAwZQIxAOcCq1HW90OVznX+0RGU1cxAQXomvtgM8zItPZCuFQ8jSBJSjz5keROv9aYsAm5VsQIwJonMaAFi54mrfhfoFNZEfuNMSQ6/bIBiNLiyoX46FohQvKeIoJ99cx7sUkFN7uJW\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "E5 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "intermediate_cert_badOCSP", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HTTP_status_code", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HTTP_clock_skew", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HTTP_headerTime", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "1733067063" }, { - "id": "intermediate_cert_badOCSP", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HSTS_time", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HSTS_subdomains", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "HSTS_preload", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "1732461323" - }, - { - "id": "HSTS", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "cloudflareserver-timing: cfL4;desc='?proto=TCP&rtt=1704&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3030&recv_bytes=739&delivery_rate=1770613&cwnd=252&unsent_bytes=0&cid=beff23143f34d692&ts=389&x=0'" + "finding": "nginx/1.18.0 (Ubuntu)" }, { "id": "banner_application", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "OK", - "finding": "style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com" - }, - { - "id": "Referrer-Policy", - "ip": "conseil-refondation.fr/104.21.7.98", + "id": "Cache-Control", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -370642,7 +365500,7 @@ }, { "id": "heartbleed", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -370651,7 +365509,7 @@ }, { "id": "CCS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -370660,16 +365518,16 @@ }, { "id": "ticketbleed", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -370678,7 +365536,7 @@ }, { "id": "secure_renego", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -370686,7 +365544,7 @@ }, { "id": "secure_client_renego", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -370695,7 +365553,7 @@ }, { "id": "CRIME_TLS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -370704,16 +365562,16 @@ }, { "id": "BREACH", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -370722,14 +365580,14 @@ }, { "id": "fallback_SCSV", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -370738,7 +365596,7 @@ }, { "id": "FREAK", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -370747,7 +365605,7 @@ }, { "id": "DROWN", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -370756,7 +365614,7 @@ }, { "id": "DROWN_hint", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -370765,7 +365623,7 @@ }, { "id": "LOGJAM", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -370774,34 +365632,25 @@ }, { "id": "LOGJAM-common_primes", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", "finding": "no DH key with <= TLS 1.2" }, - { - "id": "BEAST_CBC_TLS1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA" - }, { "id": "BEAST", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -370810,7 +365659,7 @@ }, { "id": "winshock", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -370819,7 +365668,7 @@ }, { "id": "RC4", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -370828,367 +365677,337 @@ }, { "id": "clientsimulation-android_60", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" + "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "95" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "28" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "82" + "finding": "84" }, { "id": "overall_grade", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "MEDIUM", - "finding": "B" - }, - { - "id": "grade_cap_reason_1", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" - }, - { - "id": "grade_cap_reason_2", - "ip": "conseil-refondation.fr/104.21.7.98", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" - }, - { - "id": "grade_cap_reason_3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "83" + "finding": "82" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://stats.conseil-refondation.fr/matomo.js" - }, - { - "type": "unknown", - "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=664803&h=15&m=13&s=37&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=a4819c832ff38abd&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=w1E4Mv&pf_net=24&pf_srv=244&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" - } - ], + "trackers": [], "cookies": [ { - "name": "_pk_ses.1.474c", + "name": "_pk_ses.73.8572", "value": "1", - "domain": "conseil-refondation.fr", + "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1732463017, - "size": 15, + "expires": 1733068779, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -371198,12 +366017,12 @@ "sourcePort": 443 }, { - "name": "_pk_id.1.474c", - "value": "a4819c832ff38abd.1732461217.", - "domain": "conseil-refondation.fr", + "name": "_pk_id.73.8572", + "value": "c01eff7801309b33.1733066979.", + "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1766416417, - "size": 41, + "expires": 1767022179, + "size": 42, "httpOnly": false, "secure": false, "session": false, @@ -371214,156 +366033,231 @@ } ], "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e7a580d3c789e5e-SJC", - "content-encoding": "br", - "content-security-policy": "style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com", + "cache-control": "max-age=600", + "connection": "keep-alive", + "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:13:37 GMT", - "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "referrer-policy": "same-origin", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=UdmsgBuYYXEsV7lmkhNCYb5nR5jC9Uq%2FYPzOYZpLGtBdbe006dSJh2UXcejODZXWX3yR1Hwpy4wDVOTMu6XOYszhTQXE6H2v39vVWZ8DjImNGa8NiU8m5RVGBAYfZROO%2Bo0%2FhMG8aE8b\"}],\"group\":\"cf-nel\",\"max_age\":604800}", - "server": "cloudflare", - "server-timing": "cfL4;desc=\"?proto=TCP&rtt=2053&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2845&recv_bytes=1064&delivery_rate=1427286&cwnd=252&unsent_bytes=0&cid=23a573ec34e524ed&ts=251&x=0\"", - "vary": "accept-encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-request-id": "b3d8558c-16ea-48c9-8908-05abde3a4fd2" + "date": "Sun, 01 Dec 2024 15:29:36 GMT", + "etag": "W/\"0832e4afd5792e0060f139f37f0a01eaa844106b2281189805c0fd2bc5ab6bed\"", + "expires": "Sun, 01 Dec 2024 15:39:36 UTC", + "last-modified": "Mon, 29 Jul 2024 09:50:40 GMT", + "server": "nginx/1.18.0 (Ubuntu)", + "strict-transport-security": "max-age=63072000", + "transfer-encoding": "chunked", + "vary": "Origin" }, "endpoints": [ { - "hostname": "conseil-refondation.fr", - "ip": "104.21.7.98", + "hostname": "donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "city": { + "geoname_id": 2988507, "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" } - } - } - }, - { - "hostname": "stats.conseil-refondation.fr", - "ip": "172.67.130.24", - "geoip": { + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] } } ] }, "wappalyzer": { "urls": { - "https://conseil-refondation.fr/": { + "https://donnees.incubateur.anct.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" } - ], - "rootPath": true + ] }, { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", + "slug": "ubuntu", + "name": "Ubuntu", + "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", "confidence": 100, "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "icon": "Ubuntu.svg", + "website": "https://www.ubuntu.com/server", + "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 28, + "slug": "operating-systems", + "name": "Operating systems" } - ] + ], + "rootPath": true }, { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", "categories": [ { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" } ] }, { - "slug": "google-ads", - "name": "Google Ads", - "description": "Google Ads is an online advertising platform developed by Google.", + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": null, - "icon": "Google Ads.svg", - "website": "https://ads.google.com", - "cpe": null, + "version": "14.2.3", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ { - "id": 36, - "slug": "advertising", - "name": "Advertising" + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" } - ] + ], + "rootPath": true }, { - "slug": "google-ads-conversion-tracking", - "name": "Google Ads Conversion Tracking", - "description": "Google Ads Conversion Tracking is a free tool that shows you what happens after a customer interacts with your ads.", + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", "confidence": 100, - "version": null, - "icon": "Google.svg", - "website": "https://support.google.com/google-ads/answer/1722022", - "cpe": null, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ], "rootPath": true @@ -371387,72 +366281,49 @@ "rootPath": true }, { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 31, - "slug": "cdn", - "name": "CDN" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", "cpe": null, "categories": [ { @@ -371460,17 +366331,16 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ], - "rootPath": true + ] }, { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", "cpe": null, "categories": [ { @@ -371478,8 +366348,7 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ], - "rootPath": true + ] } ] }, @@ -371487,9 +366356,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://conseil-refondation.fr/", - "finalUrl": "https://conseil-refondation.fr/", - "fetchTime": "2024-11-24T15:13:12.494Z", + "requestedUrl": "https://donnees.incubateur.anct.gouv.fr/", + "finalUrl": "https://donnees.incubateur.anct.gouv.fr/", + "fetchTime": "2024-12-01T15:29:09.098Z", "runWarnings": [], "categories": { "performance": { @@ -371500,7 +366369,7 @@ "snapshot" ], "id": "performance", - "score": 0.77 + "score": 0.57 }, "accessibility": { "title": "Accessibility", @@ -371511,7 +366380,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.96 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -371521,7 +366390,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -371532,7 +366401,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 1 }, "pwa": { "title": "PWA", @@ -371552,53 +366421,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2285, + "numericValue": 12156, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2202, - "firstMeaningfulPaint": 2202, - "largestContentfulPaint": 5485, - "interactive": 2285, - "speedIndex": 2607, - "totalBlockingTime": 13, - "maxPotentialFID": 76, - "cumulativeLayoutShift": 0.00666650390625, - "cumulativeLayoutShiftMainFrame": 0.00666650390625, - "totalCumulativeLayoutShift": 0.00666650390625, + "firstContentfulPaint": 4939, + "firstMeaningfulPaint": 4939, + "largestContentfulPaint": 6102, + "interactive": 12156, + "speedIndex": 4939, + "totalBlockingTime": 35, + "maxPotentialFID": 119, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 376774891, + "observedTimeOriginTs": 465540714, "observedNavigationStart": 0, - "observedNavigationStartTs": 376774891, - "observedFirstPaint": 515, - "observedFirstPaintTs": 377289555, - "observedFirstContentfulPaint": 515, - "observedFirstContentfulPaintTs": 377289555, - "observedFirstContentfulPaintAllFrames": 515, - "observedFirstContentfulPaintAllFramesTs": 377289555, - "observedFirstMeaningfulPaint": 515, - "observedFirstMeaningfulPaintTs": 377289555, - "observedLargestContentfulPaint": 588, - "observedLargestContentfulPaintTs": 377363064, - "observedLargestContentfulPaintAllFrames": 588, - "observedLargestContentfulPaintAllFramesTs": 377363064, - "observedTraceEnd": 3785, - "observedTraceEndTs": 380559793, - "observedLoad": 1460, - "observedLoadTs": 378235202, - "observedDomContentLoaded": 540, - "observedDomContentLoadedTs": 377314675, - "observedCumulativeLayoutShift": 0.00666650390625, - "observedCumulativeLayoutShiftMainFrame": 0.00666650390625, - "observedTotalCumulativeLayoutShift": 0.00666650390625, - "observedFirstVisualChange": 526, - "observedFirstVisualChangeTs": 377300891, - "observedLastVisualChange": 1209, - "observedLastVisualChangeTs": 377983891, - "observedSpeedIndex": 598, - "observedSpeedIndexTs": 377372571 + "observedNavigationStartTs": 465540714, + "observedFirstPaint": 1141, + "observedFirstPaintTs": 466681670, + "observedFirstContentfulPaint": 1141, + "observedFirstContentfulPaintTs": 466681670, + "observedFirstContentfulPaintAllFrames": 1141, + "observedFirstContentfulPaintAllFramesTs": 466681670, + "observedFirstMeaningfulPaint": 1141, + "observedFirstMeaningfulPaintTs": 466681670, + "observedLargestContentfulPaint": 1141, + "observedLargestContentfulPaintTs": 466681670, + "observedLargestContentfulPaintAllFrames": 1141, + "observedLargestContentfulPaintAllFramesTs": 466681670, + "observedTraceEnd": 4606, + "observedTraceEndTs": 470146732, + "observedLoad": 2185, + "observedLoadTs": 467725315, + "observedDomContentLoaded": 1132, + "observedDomContentLoadedTs": 466672475, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1140, + "observedFirstVisualChangeTs": 466680714, + "observedLastVisualChange": 1340, + "observedLastVisualChangeTs": 466880714, + "observedSpeedIndex": 1147, + "observedSpeedIndexTs": 466687998 }, { "lcpInvalidated": false @@ -371616,23 +366485,23 @@ "type": "debugdata", "items": [ { - "numRequests": 47, - "numScripts": 3, + "numRequests": 45, + "numScripts": 15, "numStylesheets": 4, "numFonts": 3, - "numTasks": 1460, - "numTasksOver10ms": 5, + "numTasks": 1526, + "numTasksOver10ms": 7, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 12870311.28973607, - "maxRtt": 152.629, - "maxServerLatency": 28.137, - "totalByteWeight": 891039, - "totalTaskTime": 220.66399999999717, - "mainDocumentTransferSize": 9624 + "rtt": 102.31, + "throughput": 15753874.768970173, + "maxRtt": 107.17, + "maxServerLatency": 192.07100000000003, + "totalByteWeight": 2515561, + "totalTaskTime": 282.86799999999926, + "mainDocumentTransferSize": 11222 } ] } @@ -371651,8 +366520,8 @@ "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://conseil-refondation.fr/accessibilite/" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -371662,50 +366531,58 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://conseil-refondation.fr/mentions-legales/" + "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://conseil-refondation.fr/confidentialite/" + "missingTrackers": [] } ], "betagouv": { - "id": "cnr", + "id": "données-et-territoires", "type": "startup", "attributes": { - "name": "CNR", - "pitch": "Consulter citoyens, élus et corps intermédiaires sur les grandes thématiques du quinquennat. ", - "stats_url": "https://data.conseil-refondation.fr/public/dashboard/774242e4-290d-42a3-a444-ff0ce8c9b671", - "link": "https://conseil-refondation.fr/", - "repository": "https://github.com/betagouv/CNR", - "contact": "cnr@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20Pr%C3%A9sident%20de%20la%20R%C3%A9publique%20a%20lanc%C3%A9%20le%20jeudi%208%20septembre%202022%20le%20%C2%AB%20Conseil%20National%20de%20la%20Refondation%20%C2%BB%2C%20%C3%A0%20Marcoussis%2C%20dans%20l%27Essonne.%20Il%20a%20r%C3%A9uni%20%C3%A0%20cette%20occasion%20une%20quarantaine%20de%20repr%C3%A9sentants%20de%20forces%20politiques%2C%20des%20partenaires%20sociaux%2C%20des%20%C3%A9lus%20locaux%2C%20des%20repr%C3%A9sentants%20du%20monde%20%C3%A9conomique%20et%20du%20monde%20associatif.%20L%27objectif%20a%20notamment%20%C3%A9t%C3%A9%20de%20poser%20un%20constat%20commun%20%3A%20le%20besoin%20pour%20la%20nation%20de%20raviver%20et%20r%C3%A9inventer%20les%20processus%20d%C3%A9mocratiques%20autour%20des%20grands%20enjeux%20de%20transition%20du%20quinquennat.%0A%0A%23%23%20Probl%C3%A8me%0A%0A%C3%89lections%20apr%C3%A8s%20%C3%A9lections%2C%20le%20taux%20d%27abstention%20augmente%2C%20les%20d%C3%A9bats%20soci%C3%A9taux%20s%27enveniment%2C%20la%20fragilit%C3%A9%20%C3%A9cologique%20et%20l%27incertitude%20%C3%A9conomique%20imposent%20de%20repenser%20le%20dialogue%20national.%0A%0A%0A%23%23%20Solution%0A%0AAfin%20de%20toucher%20le%20plus%20de%20personnes%20possible%2C%20la%20cr%C3%A9ation%20d%27une%20plateforme%20en%20ligne%20a%20%C3%A9t%C3%A9%20identifi%C3%A9e%20comme%20la%20solution%20la%20plus%20pertinente.%20Le%20r%C3%B4le%20de%20la%20plateforme%20du%20Conseil%20national%20de%20Refondation%20est%20de%20cr%C3%A9er%20une%20nouvelle%20mani%C3%A8re%20de%20concerter%20et%20d%27agir%2C%20qui%20permette%20%C3%A0%20toutes%20et%20tous%20d%27%C3%A9changer%20de%20mani%C3%A8re%20constructive%20pour%20b%C3%A2tir%20des%20solutions%20appropri%C3%A9es%20aux%20grands%20d%C3%A9fis%20de%20l%27%C3%A9poque.%20Citoyen.ne.s%2C%20%C3%A9lu.e.s%2C%20parties%20prenantes%20peuvent%20participer%20aux%20concertations%20et%20%C3%AAtre%20inform%C3%A9.e.s%20des%20r%C3%A9unions%20publiques%20locales%20organis%C3%A9es%20partout%20en%20France.%0A%0A%23%23%20Strat%C3%A9gie%0A%0AEn%20%C3%A9troite%20collaboration%20avec%20le%20Haut%20Commissariat%20au%20Plan%2C%20l%27objectif%20pour%20l%27%C3%A9quipe%20est%20de%20comptabiliser%20100%20000%20participations%20aux%20consultations%20en%20ligne%20d%27ici%20la%20fin%20d%27ann%C3%A9e%202022%2C%20%C3%A0%20travers%20des%20campagnes%20d%27acquisition%20en%20ligne%20et%20des%20op%C3%A9rations%20de%20communication.", + "name": "Données et territoires", + "pitch": "Outiller et accompagner les agents publics dans leurs usages de la donnée", + "stats_url": "https://donnees.incubateur.anct.gouv.fr/stats", + "link": "https://donnees.incubateur.anct.gouv.fr", + "repository": "https://gitlab.donnees.incubateur.anct.gouv.fr/infrastructure/", + "contact": "donnees@anct.gouv.fr", + "content_url_encoded_markdown": "%23%23%20C%E2%80%99est%20quoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AUne%20%2A%2Amission%20de%20l%E2%80%99incubateur%20des%20territoires%20de%20l%E2%80%99ANCT%2A%2A%20%C3%A0%20destination%20des%20agents%2C%20des%20services%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0AL%27%C3%A9quipe%20de%20Donn%C3%A9es%20et%20Territoires%20con%C3%A7oit%2C%20d%C3%A9veloppe%2C%20maintient%20et%20contribue%20%C3%A0%20des%20outils%2C%20communs%20num%C3%A9riques%20dont%20l%E2%80%99objectif%20est%20de%20faciliter%20le%20quotidien%20des%20agents%20et%20de%20fluidifier%20la%20circulation%20de%20la%20donn%C3%A9e%20entre%20collectivit%C3%A9s%20et%20l%27%C3%89tat.%0A%0ASon%20%2A%2Aguichet%20Donn%C3%A9es%2A%2A%20accompagne%20les%20agents%20publics%20dans%20leurs%20besoins%20en%20manipulations%20de%20donn%C3%A9es.%20%0A%0A%5BContacter%20l%E2%80%99%C3%A9quipe%20par%20email%5D%28mailto%3Adonnees%40anct.gouv.fr%29.%0A%0A%23%23%20Pourquoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AL%E2%80%99ANCT%2C%20missionn%C3%A9e%20par%20le%20rapport%20Bothorel%20pour%20%C2%AB%20accompagner%20les%20collectivit%C3%A9s%20territoriales%20dans%20la%20publication%20des%20donn%C3%A9es%20%C2%BB%2C%20au%20cours%20de%20ses%20diff%C3%A9rentes%20investigations%2C%20a%20rencontr%C3%A9%20de%20nombreuses%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99utilisation%20des%20donn%C3%A9es%20%3A%0A%0AIl%20y%20a%20une%20forte%20attente%20vis-%C3%A0-vis%20des%20collectivit%C3%A9s%20territoriales%20pour%20ouvrir%20et%20partager%20les%20donn%C3%A9es%20li%C3%A9es%20%C3%A0%20leurs%20activit%C3%A9s%2C%20mais%20souvent%20un%20manque%20de%20moyen%20humain%20et%20technique%20pour%20y%20r%C3%A9pondre%20au%20sein%20des%20collectivit%C3%A9s%0A%0ADe%20m%C3%AAme%2C%20les%20collectivit%C3%A9s%20territoriales%20elles-m%C3%AAmes%20sont%20demandeuses%20d%E2%80%99utilisation%20des%20donn%C3%A9es%20pour%20mieux%20r%C3%A9pondre%20%C3%A0%20leurs%20missions%2C%20sans%20avoir%20l%C3%A0%20non%20plus%20toujours%20les%20moyens%20humains%20et%20techniques%20pour%20le%20faire%0A%0ALa%20manipulation%20de%20donn%C3%A9es%20se%20fait%20souvent%20aujourd%E2%80%99hui%20de%20fa%C3%A7on%20isol%C3%A9e%20%28fichiers%20Excel%20sur%20le%20poste%20d%E2%80%99un%20agent%29%2C%20ayant%20pour%20cons%C3%A9quence%20une%20grande%20perte%20de%20temps%20dans%20le%20traitement%20de%20ces%20donn%C3%A9es%20%3A%20fichiers%20non%20normalis%C3%A9s%20donc%20beaucoup%20d%E2%80%99erreurs%2C%20difficile%20%C3%A0%20partager%2C%20%C3%A0%20corriger%2C%20%C3%A0%20tenir%20%C3%A0%20jour%2C%20etc.%0A%0ATr%C3%A8s%20souvent%2C%20les%20agents%20doivent%20saisir%20de%20la%20donn%C3%A9e%20pour%20un%20autre%20usage%20que%20le%20leur%2C%20ce%20qui%20est%20une%20perte%20de%20temps%20et%20un%20motif%20de%20frustration%2C%20par%20ailleurs%20la%20donn%C3%A9e%20qu%E2%80%99on%20saisit%20sans%20en%20comprendre%20la%20finalit%C3%A9%20est%20souvent%20mal%20saisie%0A%0ADonn%C3%A9es%20et%20Territoires%20intervient%20dans%20le%20but%20d%27aider%20%C3%A0%20faciliter%20la%20remont%C3%A9e%20d%27information%20et%20%C3%A0%20rendre%20les%20donn%C3%A9es%20publiques.%20Cela%20permet%20de%20soulager%20les%20personnes%20devant%20saisir%20ou%20collecter%20les%20informations%2C%20leur%20laissant%20la%20possibilit%C3%A9%20de%20se%20concentrer%20sur%20des%20questions%20au%20c%C5%93ur%20de%20leur%20m%C3%A9tier%2C%20et%20%C3%A0%20n%27importe%20qui%20d%27obtenir%20rapidement%20les%20donn%C3%A9es%20publiques%20les%20plus%20fra%C3%AEches.%0A%0A%3Cimg%20width%3D%22700%22%20alt%3D%22Image%20d%27illustration%20de%20l%27apport%20de%20Donn%C3%A9es%20et%20Territoires%20pr%C3%A9sentant%202%20organisations.%20Dans%20l%27organisation%20de%20gauche%20l%27illustration%2C%20une%20demande%20de%20chiffres%20descend%20du%20cabinet%20jusqu%27aux%20agents%20de%20terrain%2C%20avec%20plusieurs%20personnes%20m%C3%A9contentes%20%C3%A0%20cause%20de%20la%20latence%20ou%20des%20courtes%20%C3%A9ch%C3%A9ances%20et%20de%20la%20n%C3%A9cessit%C3%A9%20d%27aggr%C3%A9ger%20des%20donn%C3%A9es%20%28un%20travail%20fastidieux%29.%20Dans%20l%27organisation%20de%20droite%2C%20une%20personne%20tout%20en%20bas%20est%20%C3%A0%20l%27aise%20pour%20produire%20des%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20engineers%2C%20eux%20aussi%20%C3%A0%20l%27aise%20pour%20les%20injecter%20dans%20diff%C3%A9rentes%20plateformes%20%28ex.%20sur%20data.gouv.fr%29%2C%20et%20%C3%A0%20leur%20tour%20remontent%20les%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20analystes%2C%20eux%20aussi%20%C3%A0%20l%27aise%2C%20qui%20aggr%C3%A8gent%20et%20publient%20des%20catalogues%20d%27indicateurs%20%C3%A0%20destination%20de%20diff%C3%A9rents%20publics%20%28cabinets%2C%20pr%C3%A9fets%2C%20journalistes%2C%20citoyens%2C%20directeur%20de%20programmes%2C%20...%29%20et%20%C3%A0%20travers%20diff%C3%A9rents%20supports%20%28API%2C%20tableaux%20de%20bord%2C%20fiches%20de%20synth%C3%A8ses%2C%20visualisation%2C%20...%29%22%20src%3D%22https%3A%2F%2Fgithub.com%2Fbetagouv%2Fbeta.gouv.fr%2Fassets%2F371705%2Fccb0a93f-7dc1-4b03-a678-007c8edd6272%22%3E%0A%0A%23%23%20Quels%20sont%20les%20outils%20mis%20%C3%A0%20disposition%20par%20Donn%C3%A9es%20et%20Territoires%C2%A0%3F%0A%0ACes%20outils%20sont%20assez%20nombreux%20mais%20nous%20en%20d%C3%A9gageons%204%20principaux%C2%A0%3A%0A-%20%5B%2A%2AGrist%2A%2A%5D%28https%3A%2F%2Fgetgrist.com%29%20%3A%20il%20s%27agit%20non%20seulement%20d%27un%20puissant%20tableur%20collaboratif%20en%20ligne%20et%20open-source%2C%20mais%20%C3%A9galement%20d%27un%20outil%20de%20%5Bno-code%5D%28https%3A%2F%2Ffr.wikipedia.org%2Fwiki%2FD%25C3%25A9veloppement_No_code%29%20mettant%20%C3%A0%20disposition%20une%20palette%20de%20widgets%20%28calendrier%2C%20carte%20avec%20emplacements%2C%20wiki%2C%20...%29%20simples%20%C3%A0%20mettre%20en%20place.%20L%27incubateur%20propose%202%20instances%20auto-heberg%C3%A9es%20en%20France%20de%20ce%20service%2C%20%C3%A0%20destination%20des%20agents%20publics%20%3B%0A%20-%20%2A%2AinSITu%2A%2A%20%3A%20il%20s%27agit%20d%27un%20ETL%20r%C3%A9cup%C3%A9rant%20les%20donn%C3%A9es%20de%20diff%C3%A9rentes%20sources%20pour%20les%20normaliser%20et%20les%20agr%C3%A9ger%20dans%20sa%20base%20de%20donn%C3%A9es%C2%A0%3B%0A%20-%20%5B%2A%2ALe%20catalogue%20d%27indicateurs%2A%2A%5D%28https%3A%2F%2Fcatalogue-indicateurs.donnees.incubateur.anct.gouv.fr%2F%29%C2%A0%3A%20qui%20vous%20permet%20en%20quelques%20clics%20d%27afficher%20les%20indicateurs%20pour%20tous%20les%20programmes%20de%20l%27ANCT%20et%20de%20les%20comparer%20entre%20territoires%2C%20et%20ce%20que%20vous%20soyez%20agent%20de%20la%20fonction%20publique%20ou%20non%C2%A0%3B%0A%20-%20%5B%2A%2ALes%20fiches%20territoriales%2A%2A%5D%28https%3A%2F%2Ffiches.incubateur.anct.gouv.fr%2F%29%20%3A%20qui%20vous%20affiche%20sur%20une%20m%C3%AAme%20plateforme%20les%20indicateurs%20cl%C3%A9s%20de%20l%E2%80%99ANCT%20par%20territoire%C2%A0%3B", "events": [], "phases": [ + { + "name": "investigation", + "start": "2021-07-01", + "end": "2022-01-01" + }, { "name": "construction", - "start": "2022-10-27", + "start": "2022-01-01", "end": "" } ], "sponsors": [ - "hcp" + "anct" ], "thematiques": [ - "Démocratie" + "Territoires", + "Open-Data", + "Collectivités", + "Outil technique" ], - "accessibility_status": "partiellement conforme" + "dashlord_url": "http://dashlord.incubateur.net/url/donnees-incubateur-anct-gouv-fr-toolbox/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "dinum" + "id": "anct" } } } @@ -371714,17 +366591,17 @@ { "width": 1920, "height": 1080, - "url": "https://conseil-refondation.fr", - "size": 1017.459, - "nodes": 414, - "requests": 44, + "url": "https://donnees.incubateur.anct.gouv.fr", + "size": 2987.135, + "nodes": 238, + "requests": 48, "grade": "C", - "score": 68, - "ges": 1.64, - "water": 2.46, + "score": 67, + "ges": 1.66, + "water": 2.49, "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:10:09.875937", - "page_type": "website" + "date": "2024-12-01 15:26:06.177182", + "page_type": null } ], "sonarcloud": null, @@ -371732,70 +366609,74 @@ "detected": true }, "summary": { - "httpGrade": "B+", - "apdex": 0.731, - "apdexGrade": "F", - "uptime": 100, + "httpGrade": "C", + "apdex": 0.983, + "apdexGrade": "B", + "uptime": 99.972, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, + "nmapGrade": "F", + "nmapOpenPortsCount": 6, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-14T02:53:00.000Z", - "testsslGrade": "B", + "testsslExpireDate": "2025-02-09T21:04:00.000Z", + "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.77, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.96, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.57, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "B", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", + "declaration-rgpd-pc": "F", "ecoindexGrade": "C", "dsfrGrade": "A" } }, { "404": null, - "url": "https://donnees.incubateur.anct.gouv.fr", - "category": "anct", - "betaId": "données-et-territoires", + "url": "https://mes-aides.pole-emploi.fr", + "category": "pole-emploi", + "betaId": "mes.aides", + "tools": { + "nmap": false + }, "http": { - "url": "https://donnees.incubateur.anct.gouv.fr", + "url": "https://mes-aides.pole-emploi.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 01:00:34 GMT", + "end_time": "Sun, 20 Oct 2024 11:31:12 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self' 'unsafe-eval'; img-src 'self' https://privacy.trustcommander.net https://privacy.commander1.com https://www.francetravail.fr https://www.pole-emploi.fr data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://*.mopinion.com/ http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://composants-pe-communs.pole-emploi.fr/ https://composants-pe-communs.pe-qvr.fr/; connect-src 'self' https://*.mopinion.com/ https://privacy.trustcommander.net https://privacy.commander1.com https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://www.1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/; object-src 'self' data; worker-src 'self' blob:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 01:00:33 GMT", - "Etag": "W/\"0832e4afd5792e0060f139f37f0a01eaa844106b2281189805c0fd2bc5ab6bed\"", - "Expires": "Sun, 20 Oct 2024 01:10:33 UTC", - "Last-Modified": "Mon, 29 Jul 2024 09:50:40 GMT", - "Server": "nginx/1.18.0 (Ubuntu)", - "Strict-Transport-Security": "max-age=63072000", + "Date": "Sun, 20 Oct 2024 11:31:08 GMT", + "Permissions-Policy": "web-share=self", + "Referrer-Policy": "strict-origin", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", "Transfer-Encoding": "chunked", - "Vary": "Origin" + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "on", + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 57046300, - "score": 50, - "start_time": "Sun, 20 Oct 2024 01:00:32 GMT", + "scan_id": 57061497, + "score": 55, + "start_time": "Sun, 20 Oct 2024 11:31:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -371806,16 +366687,88 @@ "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "connect-src": [ + "https://geo.api.gouv.fr/", + "'self'", + "https://*.mopinion.com/", + "https://privacy.trustcommander.net", + "https://hd.pe.fr/", + "https://*.mapbox.com/", + "https://privacy.commander1.com" + ], + "default-src": [ + "'unsafe-eval'", + "'self'" + ], + "font-src": [ + "'self'" + ], + "frame-ancestors": [ + "https://www.1jeune1solution.gouv.fr/", + "https://recette.1jeune1solution.gouv.fr/", + "https://1jeune1solution.gouv.fr/", + "'self'" + ], + "frame-src": [ + "https://www.youtube-nocookie.com/", + "'self'" + ], + "img-src": [ + "https://manager.tagcommander.com/", + "'self'", + "data:", + "https://privacy.trustcommander.net", + "https://www.francetravail.fr", + "https://www.pole-emploi.fr", + "https://privacy.commander1.com" + ], + "object-src": [ + "data", + "'self'" + ], + "script-src-elem": [ + "https://tag.aticdn.net/", + "http://cdn.tagcommander.com/", + "'unsafe-inline'", + "https://*.mopinion.com/", + "'self'", + "https://cdn.trustcommander.net/", + "https://composants-pe-communs.pe-qvr.fr/", + "https://privacy.trustcommander.net/", + "https://composants-pe-communs.pole-emploi.fr/", + "https://*.mapbox.com/" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ], + "worker-src": [ + "blob:", + "'self'" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": true, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-insecure-scheme", + "score_description": "Content Security Policy (CSP) implemented, but secure site allows resources to be loaded over HTTP", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -371834,60 +366787,60 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "*", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://donnees.incubateur.anct.gouv.fr/", + "destination": "https://mes-aides.francetravail.fr/", "redirects": true, "route": [ - "http://donnees.incubateur.anct.gouv.fr/", - "https://donnees.incubateur.anct.gouv.fr/" + "http://mes-aides.pole-emploi.fr/", + "https://mes-aides.francetravail.fr/" ], - "status_code": 200 + "status_code": 301 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "strict-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000", + "data": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", "includeSubDomains": false, - "max-age": 63072000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-header-invalid", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -371904,12 +366857,12 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", @@ -371917,33 +366870,33 @@ "output": { "data": null }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", "score_modifier": 0 } } }, "updownio": { - "token": "v63d", - "url": "https://donnees.incubateur.anct.gouv.fr", + "token": "h9wk", + "url": "https://mes-aides.pole-emploi.fr", "alias": null, "last_status": 200, - "uptime": 99.971, + "uptime": 99.689, "down": false, "down_since": null, - "up_since": "2024-11-22T22:00:12Z", + "up_since": "2024-12-01T13:37:43Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -371954,36 +366907,36 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T15:21:46Z", - "next_check_at": "2024-11-24T15:22:45Z", + "last_check_at": "2024-12-01T15:35:27Z", + "next_check_at": "2024-12-01T15:36:26Z", "created_at": "2024-01-15T14:01:08Z", "mute_until": null, - "favicon_url": "https://donnees.incubateur.anct.gouv.fr/_next/static/media/favicon.8c087985.ico", + "favicon_url": "https://mes-aides.francetravail.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T15:12:47Z", - "expires_at": "2025-02-09T21:04:29Z", + "tested_at": "2024-12-01T15:33:28Z", + "expires_at": "2025-05-14T06:28:47Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.995, + "apdex": 0.492, "timings": { - "redirect": 0, - "namelookup": 36, - "connection": 121, - "handshake": 134, - "response": 127, - "total": 418 + "redirect": 507, + "namelookup": 11, + "connection": 125, + "handshake": 256, + "response": 1146, + "total": 2046 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { - "host": "donnees.incubateur.anct.gouv.fr", + "host": "mes-aides.pole-emploi.fr", "protocol": "tcp", "closed_ports": "994", "open_ports": [ @@ -371992,133 +366945,553 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", + "version": "8.9p1 Ubuntu 3ubuntu0.10", "vulnerabilities": [ { - "cvss": "9.8", + "type": "githubexploit", + "is_exploit": "true", + "cvss": "10.0", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "10.0", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" + }, + { "type": "cve", "is_exploit": "false", + "cvss": "9.8", "id": "CVE-2023-38408" }, { + "type": "cve", + "is_exploit": "false", "cvss": "9.8", + "id": "CVE-2023-28531" + }, + { "type": "githubexploit", "is_exploit": "true", + "cvss": "9.8", "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" }, { - "cvss": "9.8", "type": "githubexploit", "is_exploit": "true", + "cvss": "9.8", "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" }, { - "cvss": "9.8", "type": "githubexploit", "is_exploit": "true", + "cvss": "9.8", "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" }, { - "cvss": "9.8", "type": "githubexploit", "is_exploit": "true", + "cvss": "9.8", "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" }, { + "type": "githubexploit", + "is_exploit": "true", "cvss": "9.8", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" + }, + { "type": "githubexploit", "is_exploit": "true", + "cvss": "9.8", "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" }, { - "cvss": "7.8", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2020-15778" + "type": "packetstorm", + "is_exploit": "true", + "cvss": "8.1", + "id": "PACKETSTORM:179290" }, { - "cvss": "7.5", - "type": "seebug", + "type": "githubexploit", "is_exploit": "true", - "id": "SSV:92579" + "cvss": "8.1", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" }, { - "cvss": "7.5", - "type": "packetstorm", + "type": "githubexploit", "is_exploit": "true", - "id": "PACKETSTORM:173661" + "cvss": "8.1", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" }, { - "cvss": "7.5", "type": "githubexploit", "is_exploit": "true", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + "cvss": "8.1", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "D1E049F1-393E-552D-80D1-675022B26911" }, { - "cvss": "7.5", "type": "cve", "is_exploit": "false", - "id": "CVE-2020-12062" + "cvss": "8.1", + "id": "CVE-2024-6387" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "6FD8F914-B663-533D-8866-23313FD37804" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "452ADB71-199C-561E-B949-FCDE6288B925" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" }, { - "cvss": "7.5", "type": "zdt", "is_exploit": "true", - "id": "1337DAY-ID-26576" + "cvss": "8.1", + "id": "1337DAY-ID-39674" }, { - "cvss": "7.1", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2021-28041" + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "11F020AC-F907-5606-8805-0516E06160EE" }, { - "cvss": "7.0", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2021-41617" + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" }, { - "cvss": "6.8", "type": "githubexploit", "is_exploit": "true", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" + "cvss": "8.1", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" }, { - "cvss": "6.8", "type": "githubexploit", "is_exploit": "true", - "id": "10213DBE-F683-58BB-B6D3-353173626207" + "cvss": "8.1", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "8.1", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" + }, + { + "type": "seebug", + "is_exploit": "true", + "cvss": "7.5", + "id": "SSV:92579" + }, + { + "type": "packetstorm", + "is_exploit": "true", + "cvss": "7.5", + "id": "PACKETSTORM:173661" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "type": "zdt", + "is_exploit": "true", + "cvss": "7.5", + "id": "1337DAY-ID-26576" }, { - "cvss": "6.5", "type": "cve", "is_exploit": "false", + "cvss": "6.5", "id": "CVE-2023-51385" }, { - "cvss": "5.9", "type": "cve", "is_exploit": "false", + "cvss": "5.9", "id": "CVE-2023-48795" }, { - "cvss": "5.9", "type": "cve", "is_exploit": "false", - "id": "CVE-2020-14145" + "cvss": "5.5", + "id": "CVE-2023-51384" }, { - "cvss": "5.3", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2016-20012" + "type": "packetstorm", + "is_exploit": "true", + "cvss": "0.0", + "id": "PACKETSTORM:140261" }, { + "type": "githubexploit", + "is_exploit": "true", "cvss": "0.0", - "type": "packetstorm", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" + }, + { + "type": "githubexploit", "is_exploit": "true", - "id": "PACKETSTORM:140261" + "cvss": "0.0", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" } ] } @@ -372128,7 +367501,6 @@ "name": "http", "product": "nginx", "id": "80", - "version": "1.18.0", "vulnerabilities": [] } }, @@ -372136,25 +367508,44 @@ "service": { "name": "http", "product": "nginx", - "id": "443", - "version": "1.18.0", + "id": "81", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", - "id": "5050", - "vulnerabilities": [] + "name": "rpcbind", + "id": "111", + "version": "2-4", + "vulnerabilities": [ + { + "port": "111", + "addr": "::", + "owner": "superuser" + }, + { + "port": "111", + "addr": "0.0.0.0", + "owner": "superuser" + }, + { + "port": "111", + "addr": "0.0.0.0", + "owner": "superuser" + }, + { + "port": "111", + "addr": "::", + "owner": "superuser" + } + ] } }, { "service": { - "name": "postgresql", - "product": "PostgreSQL DB", - "id": "5432", - "version": "9.6.0 or later", + "name": "http", + "product": "nginx", + "id": "443", "vulnerabilities": [] } }, @@ -372162,7 +367553,7 @@ "service": { "name": "http", "product": "nginx", - "id": "8000", + "id": "444", "vulnerabilities": [] } } @@ -372174,70 +367565,77 @@ "testssl": [ { "id": "service", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "INFO", + "finding": "not offered + downgraded to weaker protocol" + }, + { + "id": "ALPN_HTTP2", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "offered with final" + "finding": "h2" }, { "id": "ALPN", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372245,7 +367643,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372253,7 +367651,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372261,7 +367659,7 @@ }, { "id": "cipherlist_LOW", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372269,7 +367667,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -372277,7 +367675,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -372285,455 +367683,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CAMELLIA128-SHA256 ECDHE-ECDSA-CAMELLIA256-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 86400 seconds only (= 30 days" + "finding": "163 >= 60 days" }, { "id": "cert_notBefore", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "2024-11-11 21:04" + "finding": "2024-05-14 06:28" }, { "id": "cert_notAfter", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "2025-02-09 21:04" + "finding": "2025-05-14 06:28" }, { "id": "cert_extlifeSpan", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.entrust.net/level1m.crl" }, { "id": "cert_ocspURL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "http://e5.o.lencr.org" + "finding": "http://ocsp.entrust.net" }, { "id": "OCSP_stapling", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "E5 (Let's Encrypt from US)" + "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" + "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2014-12-15 15:25" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2030-10-15 15:55" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "E5 <-- ISRG Root X1" + "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" }, { - "id": "intermediate_cert_badOCSP", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "intermediate_cert <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIEPjCCAyagAwIBAgIESlOMKDANBgkqhkiG9w0BAQsFADCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwHhcNMDkwNzA3MTcyNTU0WhcNMzAxMjA3MTc1NTU0WjCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hLZy254Ma+KZ6TABp3bqMriVQRrJ2mFOWHLP/vaCeb9zYQYKpSfYs1/TRU4cctZOMvJyig/3gxnQaoCAAEUesMfnmr8SVycco2gvCoe9amsOXmXzHHfV1IWNcCG0szLni6LVhjkCsbjSR87kyUnEO6fe+1R9V77w6G7CebI6C1XiUJgWMhNcL3hWwcKUs/Ja5CeanyTXxuzQmyWC48zCxEXFjJd6BmsqEZ+pCm5IO2/b1BEZQvePB7/1U1+cPvQXLOZprE4yTGJ36rfo5bs0vBmLrpxR57d+tVOxMyLlbc9wPBr64ptntoP0jaWvYkxN4FisZDQSA/i2jZRjJKRxAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRqciZ60B7vfec7aVHUbI2fkBJmqzANBgkqhkiG9w0BAQsFAAOCAQEAeZ8dlsa2eT8ijYfThwMEYGprmi5ZiXMRrEPR9RP/jTkrwPK9T3CMqS/qF8QLVJ7UG5aYMzyorWKiAHarWWluBh1+xLlEjZivEtRh2woZRkfz6/djwUAFQKXSt/S1mja/qYh2iARVBCuch38aNzx+LaUa2NSJXsq9rD1s2G2v1fN2D807iDginWyTmsQ9v4IbZT+mD12q/OWyFcq1rca8PdCE6OoGcrBNOTJ4vz4RnAuknZoh8/CbCzB428Hch0P+vGOaysXCHMnHjf87ElgI5rY97HosTvuDls4MPGmHVHOkc8KT/1EQrBVUAdj8BbGJoX90g5pJ19xOe4pIb4tF9g==\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" }, { - "id": "HTTP_clock_skew", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "intermediate_cert_notBefore <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "2009-07-07 17:25" }, { - "id": "HTTP_headerTime", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "intermediate_cert_notAfter <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "OK", + "finding": "2030-12-07 17:55" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "1732461689" + "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" }, { - "id": "HSTS_time", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "intermediate_cert_badOCSP", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HSTS_subdomains", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "HTTP_status_code", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "301 Moved Permanently ('/')" }, { - "id": "HSTS_preload", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "HTTP_clock_skew", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "INFO", + "finding": "1733067288" + }, + { + "id": "HSTS", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "nginx/1.18.0 (Ubuntu)" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "id": "security_headers", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", - "severity": "INFO", - "finding": "max-age=600" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -372741,7 +368167,7 @@ }, { "id": "heartbleed", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -372750,7 +368176,7 @@ }, { "id": "CCS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -372759,25 +368185,25 @@ }, { "id": "ticketbleed", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -372785,7 +368211,7 @@ }, { "id": "secure_client_renego", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -372794,7 +368220,7 @@ }, { "id": "CRIME_TLS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -372803,16 +368229,16 @@ }, { "id": "BREACH", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -372821,14 +368247,14 @@ }, { "id": "fallback_SCSV", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -372837,7 +368263,7 @@ }, { "id": "FREAK", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -372846,7 +368272,7 @@ }, { "id": "DROWN", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -372855,16 +368281,16 @@ }, { "id": "DROWN_hint", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=594A86E95CA4CD8582EEABC72593677EB7844502C59506D636DED99EAD1CAF54" }, { "id": "LOGJAM", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -372873,16 +368299,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -372891,7 +368317,7 @@ }, { "id": "LUCKY13", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -372900,7 +368326,7 @@ }, { "id": "winshock", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -372909,7 +368335,7 @@ }, { "id": "RC4", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -372918,379 +368344,1141 @@ }, { "id": "clientsimulation-android_60", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_90", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_X", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_11", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_12", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-ie_6_xp", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-java_7u25", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1703", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-go_1178", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-libressl_283", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_303", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "rating_spec", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "84" + "finding": "81" }, { "id": "overall_grade", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", + "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "97" + "finding": "119" } ], "thirdparties": { - "trackers": [], - "cookies": [ + "trackers": [ { - "name": "_pk_ses.73.8572", - "value": "1", - "domain": "donnees.incubateur.anct.gouv.fr", - "path": "/", - "expires": 1732463392, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/252b7ffb1229ac64.css" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/97323c974f857a80.css" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/c85de16a9e51ab6a.css" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/233205ef4b7f3d0b.css" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/39d07439246ce432.css" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/css/2e57bccb39f5a3ac.css" + }, + { + "type": "unknown", + "url": "https://cdn.tagcommander.com/5894/tc_StartUp_34.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/webpack-aa56eab35276c33e.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/fd9d1056-31486103e46186c5.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7023-cd4b4726ea2cc097.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/main-app-55bbd77d79f9187f.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/1877-0a0de91621963f96.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/layout-08aeb9e9b56f076d.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/error-529dd200daf653f4.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/231-7543774a9870e551.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/8173-063959529f4740ca.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/layout-58263d2632b6338f.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/3671-01334fafa11c8bd5.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7209-6ae558a3411169b4.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7364-10d338abc0d9b031.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/2455-789606d1f68f938f.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/9862-235c040f23bc286c.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/page-32762ff3d8614b62.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/medium.2d445cdf.woff" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/map-cover.ac63a2e0.webp" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/bold.3fbc8d31.woff" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/regular.41efefa2.woff" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Frf.png&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fmes-aides.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fall-needs-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Flicense-pieces-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Frepair-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fbike-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fcar-key-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fbus-shadowed.png&w=96&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fopening-accommodation.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fopening-ft.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-hauts-de-france.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-bretagne.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-auvergne-rhone-alpes.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fagiless.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fsolidarauto.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Favise.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Frenault.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fnorauto.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-occitanie.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fdepartement-eure.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-ile-de-france.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fetat.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fmistral.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fbibus.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Ffil-bleu.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fimages%2Fdacia-sandero.png&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fl-adie-et-l-etat.jpg&w=256&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fauvergne-rhone-alpes.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fbourgogne-franche-comte.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fbretagne.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fcentre-val-de-loire.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fcorse.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fgrand-est.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fhauts-de-france.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2File-de-france.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fnormandie.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fnouvelle-aquitaine.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Foccitanie.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fpays-de-la-loire.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fla-reunion.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fprovence-alpes-cote-d-azur.jpg&w=64&q=75" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/medium.2d445cdf.woff" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/bold.3fbc8d31.woff" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/media/regular.41efefa2.woff" + }, + { + "type": "at-internet", + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", + "details": { + "id": "at-internet", + "message": "Ensure your TOS notify the AT internet usage" + } + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/financer-mon-permis?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/reparer-mon-vehicule?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/acheter-ou-louer-un-velo?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/acheter-ou-louer-une-voiture?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/me-deplacer-autrement?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=624858&idclient=m45rgkdqcirbzs66" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/logements-saisonniers?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/france-travail?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/region-hauts-de-france/aide-au-permis-de-conduire-pour-l-insertion-professionnelle-des-jeunes-hauts-de-france?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/region-bretagne/aide-regionale-au-permis-de-conduire-bretagne?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/region-auvergne-rhone-alpes/aide-regionale-au-permis-de-conduire-auvergne-rhone-alpes?_rsc=1wtp7" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/logements-saisonniers/page-81bba2b43497ac2b.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/%5Borganism%5D/page-573b34410345ccb7.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/852-d1e54661b3112e17.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/3346-743ab4df785c6aac.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/8140-b3017ec73a5276a3.js" + }, + { + "type": "unknown", + "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/%5Borganism%5D/%5Baid%5D/page-9177a5a5ee5b53ce.js" + }, + { + "type": "unknown", + "url": "https://privacy.trustcommander.net/privacy-consent?site=5894" + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=624858&idclient=m45rgkdqcirbzs66" + }, + { + "type": "unknown", + "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + } + ], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'self' 'unsafe-eval'; img-src 'self' https://privacy.trustcommander.net https://privacy.commander1.com https://www.francetravail.fr https://www.pole-emploi.fr data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://*.mopinion.com/ http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://composants-pe-communs.pole-emploi.fr/ https://composants-pe-communs.pe-qvr.fr/; connect-src 'self' https://*.mopinion.com/ https://privacy.trustcommander.net https://privacy.commander1.com https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://www.1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/; object-src 'self' data; worker-src 'self' blob:", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 15:33:11 GMT", + "permissions-policy": "web-share=self", + "referrer-policy": "strict-origin", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload\nmax-age=15768000\nmax-age=63072000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "on", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "mes-aides.pole-emploi.fr", + "ip": "51.83.34.111", + "geoip": { + "city": { + "geoname_id": 2972284, + "names": { + "de": "Tourcoing", + "en": "Tourcoing", + "fr": "Tourcoing", + "ja": "トゥールコワン", + "ru": "Туркуэн", + "zh-CN": "图尔宽" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 50, + "latitude": 50.7236, + "longitude": 3.1616, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "59200" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 11071624, + "iso_code": "HDF", + "names": { + "de": "Hauts-de-France", + "en": "Hauts-de-France", + "es": "Alta Francia", + "fr": "Hauts-de-France", + "ja": "オー=ド=フランス地域圏", + "pt-BR": "Altos da França", + "ru": "О-де-Франс", + "zh-CN": "上法兰西大区" + } + }, + { + "geoname_id": 2990129, + "iso_code": "59", + "names": { + "de": "Nord", + "en": "North", + "es": "Norte", + "fr": "Nord", + "ja": "ノール県", + "pt-BR": "Nord", + "ru": "Нор", + "zh-CN": "北部省" + } + } + ] + } + }, + { + "hostname": "mes-aides.francetravail.fr", + "ip": "51.83.34.111", + "geoip": { + "city": { + "geoname_id": 2972284, + "names": { + "de": "Tourcoing", + "en": "Tourcoing", + "fr": "Tourcoing", + "ja": "トゥールコワン", + "ru": "Туркуэн", + "zh-CN": "图尔宽" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 50, + "latitude": 50.7236, + "longitude": 3.1616, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "59200" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 11071624, + "iso_code": "HDF", + "names": { + "de": "Hauts-de-France", + "en": "Hauts-de-France", + "es": "Alta Francia", + "fr": "Hauts-de-France", + "ja": "オー=ド=フランス地域圏", + "pt-BR": "Altos da França", + "ru": "О-де-Франс", + "zh-CN": "上法兰西大区" + } + }, + { + "geoname_id": 2990129, + "iso_code": "59", + "names": { + "de": "Nord", + "en": "North", + "es": "Norte", + "fr": "Nord", + "ja": "ノール県", + "pt-BR": "Nord", + "ru": "Нор", + "zh-CN": "北部省" + } + } + ] + } + }, + { + "hostname": "cdn.tagcommander.com", + "ip": "192.229.163.55", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 32.7797, + "longitude": -96.8022, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4736286, + "iso_code": "TX", + "names": { + "de": "Texas", + "en": "Texas", + "es": "Texas", + "fr": "Texas", + "ja": "テキサス州", + "pt-BR": "Texas", + "ru": "Техас", + "zh-CN": "得克萨斯州" + } + } + ] + } + }, + { + "hostname": "tag.aticdn.net", + "ip": "108.156.91.114", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } }, { - "name": "_pk_id.73.8572", - "value": "2944a483d88e22ca.1732461592.", - "domain": "donnees.incubateur.anct.gouv.fr", - "path": "/", - "expires": 1766416792, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=600", - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:19:49 GMT", - "etag": "W/\"0832e4afd5792e0060f139f37f0a01eaa844106b2281189805c0fd2bc5ab6bed\"", - "expires": "Sun, 24 Nov 2024 15:29:49 UTC", - "last-modified": "Mon, 29 Jul 2024 09:50:40 GMT", - "server": "nginx/1.18.0 (Ubuntu)", - "strict-transport-security": "max-age=63072000", - "transfer-encoding": "chunked", - "vary": "Origin" - }, - "endpoints": [ + "hostname": "hd.pe.fr", + "ip": "18.160.213.125", + "geoip": { + "city": { + "geoname_id": 5809844, + "names": { + "de": "Seattle", + "en": "Seattle", + "es": "Seattle", + "fr": "Seattle", + "ja": "シアトル", + "pt-BR": "Seattle", + "ru": "Сиэтл" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 47.6109, + "longitude": -122.3303, + "metro_code": 819, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "98101" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5815135, + "iso_code": "WA", + "names": { + "de": "Washington", + "en": "Washington", + "es": "Washington", + "fr": "Washington", + "ja": "ワシントン州", + "pt-BR": "Washington", + "ru": "Вашингтон", + "zh-CN": "华盛顿州" + } + } + ] + } + }, { - "hostname": "donnees.incubateur.anct.gouv.fr", - "ip": "51.159.153.132", + "hostname": "privacy.trustcommander.net", + "ip": "15.188.101.226", "geoip": { "city": { "geoname_id": 2988507, @@ -373343,6 +369531,96 @@ "postal": { "code": "75001" }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + }, + { + "hostname": "www.francetravail.fr", + "ip": "185.215.64.79", + "geoip": { + "city": { + "geoname_id": 2992287, + "names": { + "en": "Montmagny" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 48.9704, + "longitude": 2.345, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "95360" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -373374,13 +369652,17 @@ } }, { - "geoname_id": 2968815, - "iso_code": "75", + "geoname_id": 2971071, + "iso_code": "95", "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" + "de": "Val d'Oise", + "en": "Val d'Oise", + "es": "Valle de Oise", + "fr": "Val-d'Oise", + "ja": "ヴァル=ドワーズ県", + "pt-BR": "Val-d'Oise", + "ru": "Валь-д’Уаз", + "zh-CN": "瓦兹河谷省" } } ] @@ -373390,155 +369672,787 @@ }, "wappalyzer": { "urls": { - "https://donnees.incubateur.anct.gouv.fr/": { - "status": 200 + "https://mes-aides.pole-emploi.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://mes-aides.pole-emploi.fr/ (https://mes-aides.pole-emploi.fr/)" } }, "technologies": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", "confidence": 100, "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ubuntu", - "name": "Ubuntu", - "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", - "confidence": 100, - "version": null, - "icon": "Ubuntu.svg", - "website": "https://www.ubuntu.com/server", - "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", - "categories": [ + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, { - "id": 28, - "slug": "operating-systems", - "name": "Operating systems" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.3", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mes-aides.pole-emploi.fr/", + "finalUrl": "https://mes-aides.francetravail.fr/", + "fetchTime": "2024-12-01T15:32:43.838Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://mes-aides.pole-emploi.fr/) was redirected to https://mes-aides.francetravail.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.61 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 7244, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3091, + "firstMeaningfulPaint": 3091, + "largestContentfulPaint": 8698, + "interactive": 7244, + "speedIndex": 5196, + "totalBlockingTime": 84, + "maxPotentialFID": 185, + "cumulativeLayoutShift": 0.025005859375, + "cumulativeLayoutShiftMainFrame": 0.025005859375, + "totalCumulativeLayoutShift": 0.025005859375, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 419702859, + "observedNavigationStart": 0, + "observedNavigationStartTs": 419702859, + "observedFirstPaint": 1985, + "observedFirstPaintTs": 421687474, + "observedFirstContentfulPaint": 1985, + "observedFirstContentfulPaintTs": 421687474, + "observedFirstContentfulPaintAllFrames": 1985, + "observedFirstContentfulPaintAllFramesTs": 421687474, + "observedFirstMeaningfulPaint": 1985, + "observedFirstMeaningfulPaintTs": 421687474, + "observedLargestContentfulPaint": 2584, + "observedLargestContentfulPaintTs": 422286466, + "observedLargestContentfulPaintAllFrames": 2584, + "observedLargestContentfulPaintAllFramesTs": 422286466, + "observedTraceEnd": 6197, + "observedTraceEndTs": 425900314, + "observedLoad": 3238, + "observedLoadTs": 422941335, + "observedDomContentLoaded": 1985, + "observedDomContentLoadedTs": 421687752, + "observedCumulativeLayoutShift": 0.025005859375, + "observedCumulativeLayoutShiftMainFrame": 0.025005859375, + "observedTotalCumulativeLayoutShift": 0.025005859375, + "observedFirstVisualChange": 1980, + "observedFirstVisualChangeTs": 421682859, + "observedLastVisualChange": 3263, + "observedLastVisualChangeTs": 422965859, + "observedSpeedIndex": 2455, + "observedSpeedIndexTs": 422157946 + }, + { + "lcpInvalidated": false + } + ] } - ], - "rootPath": true + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 75, + "numScripts": 26, + "numStylesheets": 6, + "numFonts": 3, + "numTasks": 1204, + "numTasksOver10ms": 5, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.9109999999999996, + "throughput": 20545671.994167846, + "maxRtt": 109.58200000000001, + "maxServerLatency": 171.06500000000005, + "totalByteWeight": 827022, + "totalTaskTime": 374.2379999999996, + "mainDocumentTransferSize": 28426 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://www.francetravail.fr/informations/aide-et-accessibilite.html" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://mes-aides.pole-emploi.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 5, + "score": 2, + "missingWords": [ + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [ + "at-internet" + ], + "declarationUrl": "https://mes-aides.pole-emploi.fr/confidentialite" + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mes-aides.pole-emploi.fr", + "size": 1953.813, + "nodes": 1110, + "requests": 159, + "grade": "F", + "score": 24, + "ges": 2.52, + "water": 3.78, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 15:29:43.654835", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 0.492, + "apdexGrade": "F", + "uptime": 99.689, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 6, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-05-14T06:28:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 93, + "lighthouse_performance": 0.61, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://mon.franceconnect.gouv.fr", + "category": "startup", + "http": { + "url": "https://mon.franceconnect.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:25:09 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 03:25:09 GMT", + "ETag": "W/\"670ce91c-409\"", + "Last-Modified": "Mon, 14 Oct 2024 09:49:16 GMT", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Request-ID": "9b6e2bec366390d21190017a7e489871" + }, + "scan_id": 57049091, + "score": 50, + "start_time": "Sun, 20 Oct 2024 03:25:06 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null } - ], - "rootPath": true + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://tableaudebord.franceconnect.gouv.fr", + "redirects": true, + "route": [ + "http://mon.franceconnect.gouv.fr/", + "https://mon.franceconnect.gouv.fr/", + "https://tableaudebord.franceconnect.gouv.fr" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "h3b0", + "url": "https://mon.franceconnect.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 99.984, + "down": false, + "down_since": null, + "up_since": "2024-12-01T12:33:01Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T15:36:25Z", + "next_check_at": "2024-12-01T15:37:25Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://tableaudebord.franceconnect.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T15:33:29Z", + "expires_at": "2025-02-20T10:08:06Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 497, + "namelookup": 7, + "connection": 117, + "handshake": 254, + "response": 125, + "total": 1000 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "mon.franceconnect.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } }, { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "optimal_proto", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "mon.franceconnect.gouv.fr:443 appears to support TLS 1.3 ONLY, switching from /home/testssl/bin/openssl.Linux.x86_64 to /usr/bin/openssl automagically" + }, + { + "id": "service", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_3", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "MEDIUM", + "finding": "not offered" + }, + { + "id": "cipher_order", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "INFO", + "finding": "server (TLS 1.3)" + }, + { + "id": "scanProblem", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "FATAL", + "finding": "repeated openssl s_client connect problem, doesn't make sense to continue" + }, + { + "id": "scanTime", + "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "port": "443", + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "connection": "keep-alive", + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 15:33:42 GMT", + "etag": "W/\"6746dbde-409\"", + "last-modified": "Wed, 27 Nov 2024 08:44:14 GMT", + "strict-transport-security": "max-age=31536000", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding", + "x-request-id": "76436da2a316fba830d04836f063614d" + }, + "endpoints": [ + { + "hostname": "mon.franceconnect.gouv.fr", + "ip": "148.253.96.161", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } } - ], - "rootPath": true - }, + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mon.franceconnect.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://mon.franceconnect.gouv.fr/ (https://mon.franceconnect.gouv.fr/)" + } + }, + "technologies": [ { "slug": "hsts", "name": "HSTS", @@ -373556,40 +370470,6 @@ } ], "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -373597,10 +370477,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://donnees.incubateur.anct.gouv.fr/", - "finalUrl": "https://donnees.incubateur.anct.gouv.fr/", - "fetchTime": "2024-11-24T15:19:19.943Z", - "runWarnings": [], + "requestedUrl": "https://mon.franceconnect.gouv.fr/", + "finalUrl": "https://tableaudebord.franceconnect.gouv.fr/", + "fetchTime": "2024-12-01T15:33:16.445Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://mon.franceconnect.gouv.fr/) was redirected to https://tableaudebord.franceconnect.gouv.fr/. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -373610,7 +370492,7 @@ "snapshot" ], "id": "performance", - "score": 0.57 + "score": 0.61 }, "accessibility": { "title": "Accessibility", @@ -373621,7 +370503,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.88 }, "best-practices": { "title": "Best Practices", @@ -373631,7 +370513,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -373642,7 +370524,7 @@ "snapshot" ], "id": "seo", - "score": 1 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -373652,7 +370534,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.8 } }, "audits": { @@ -373662,53 +370544,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12027, + "numericValue": 3845, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4945, - "firstMeaningfulPaint": 4945, - "largestContentfulPaint": 6033, - "interactive": 12027, - "speedIndex": 5045, - "totalBlockingTime": 64, - "maxPotentialFID": 150, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, + "firstContentfulPaint": 3830, + "firstMeaningfulPaint": 3845, + "largestContentfulPaint": 4188, + "interactive": 3845, + "speedIndex": 4893, + "totalBlockingTime": 0, + "maxPotentialFID": 31, + "cumulativeLayoutShift": 0.571886472913954, + "cumulativeLayoutShiftMainFrame": 0.571886472913954, + "totalCumulativeLayoutShift": 0.571886472913954, "observedTimeOrigin": 0, - "observedTimeOriginTs": 620198199, + "observedTimeOriginTs": 410664616, "observedNavigationStart": 0, - "observedNavigationStartTs": 620198199, - "observedFirstPaint": 1476, - "observedFirstPaintTs": 621674664, - "observedFirstContentfulPaint": 1476, - "observedFirstContentfulPaintTs": 621674664, - "observedFirstContentfulPaintAllFrames": 1476, - "observedFirstContentfulPaintAllFramesTs": 621674664, - "observedFirstMeaningfulPaint": 1476, - "observedFirstMeaningfulPaintTs": 621674664, - "observedLargestContentfulPaint": 1476, - "observedLargestContentfulPaintTs": 621674664, - "observedLargestContentfulPaintAllFrames": 1476, - "observedLargestContentfulPaintAllFramesTs": 621674664, - "observedTraceEnd": 5934, - "observedTraceEndTs": 626131747, - "observedLoad": 2789, - "observedLoadTs": 622987079, - "observedDomContentLoaded": 1467, - "observedDomContentLoadedTs": 621665023, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1476, - "observedFirstVisualChangeTs": 621674199, - "observedLastVisualChange": 1743, - "observedLastVisualChangeTs": 621941199, - "observedSpeedIndex": 1485, - "observedSpeedIndexTs": 621683132 + "observedNavigationStartTs": 410664616, + "observedFirstPaint": 1755, + "observedFirstPaintTs": 412420109, + "observedFirstContentfulPaint": 1755, + "observedFirstContentfulPaintTs": 412420109, + "observedFirstContentfulPaintAllFrames": 1755, + "observedFirstContentfulPaintAllFramesTs": 412420109, + "observedFirstMeaningfulPaint": 1755, + "observedFirstMeaningfulPaintTs": 412420109, + "observedLargestContentfulPaint": 1889, + "observedLargestContentfulPaintTs": 412553443, + "observedLargestContentfulPaintAllFrames": 1889, + "observedLargestContentfulPaintAllFramesTs": 412553443, + "observedTraceEnd": 4584, + "observedTraceEndTs": 415248409, + "observedLoad": 1712, + "observedLoadTs": 412376942, + "observedDomContentLoaded": 1712, + "observedDomContentLoadedTs": 412376816, + "observedCumulativeLayoutShift": 0.571886472913954, + "observedCumulativeLayoutShiftMainFrame": 0.571886472913954, + "observedTotalCumulativeLayoutShift": 0.571886472913954, + "observedFirstVisualChange": 1768, + "observedFirstVisualChangeTs": 412432616, + "observedLastVisualChange": 2085, + "observedLastVisualChangeTs": 412749616, + "observedSpeedIndex": 1843, + "observedSpeedIndexTs": 412507332 }, { "lcpInvalidated": false @@ -373726,23 +370608,23 @@ "type": "debugdata", "items": [ { - "numRequests": 45, - "numScripts": 15, + "numRequests": 18, + "numScripts": 2, "numStylesheets": 4, - "numFonts": 3, - "numTasks": 1660, - "numTasksOver10ms": 6, - "numTasksOver25ms": 1, + "numFonts": 2, + "numTasks": 422, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 135.374, - "throughput": 9576504.77655325, - "maxRtt": 139.966, - "maxServerLatency": 1043.68, - "totalByteWeight": 2673407, - "totalTaskTime": 286.34299999999763, - "mainDocumentTransferSize": 11222 + "rtt": 102.30000000000001, + "throughput": 7514343.437838046, + "maxRtt": 104.033, + "maxServerLatency": 2.665999999999997, + "totalByteWeight": 435801, + "totalTaskTime": 156.84099999999953, + "mainDocumentTransferSize": 833 } ] } @@ -373752,17 +370634,17 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/accessibilite" + "declarationUrl": "https://franceconnect.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -373772,76 +370654,37 @@ "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/mentions-legales" + "declarationUrl": "https://franceconnect.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "données-et-territoires", - "type": "startup", - "attributes": { - "name": "Données et territoires", - "pitch": "Outiller et accompagner les agents publics dans leurs usages de la donnée", - "stats_url": "https://donnees.incubateur.anct.gouv.fr/stats", - "link": "https://donnees.incubateur.anct.gouv.fr", - "repository": "https://gitlab.donnees.incubateur.anct.gouv.fr/infrastructure/", - "contact": "donnees@anct.gouv.fr", - "content_url_encoded_markdown": "%23%23%20C%E2%80%99est%20quoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AUne%20%2A%2Amission%20de%20l%E2%80%99incubateur%20des%20territoires%20de%20l%E2%80%99ANCT%2A%2A%20%C3%A0%20destination%20des%20agents%2C%20des%20services%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0AL%27%C3%A9quipe%20de%20Donn%C3%A9es%20et%20Territoires%20con%C3%A7oit%2C%20d%C3%A9veloppe%2C%20maintient%20et%20contribue%20%C3%A0%20des%20outils%2C%20communs%20num%C3%A9riques%20dont%20l%E2%80%99objectif%20est%20de%20faciliter%20le%20quotidien%20des%20agents%20et%20de%20fluidifier%20la%20circulation%20de%20la%20donn%C3%A9e%20entre%20collectivit%C3%A9s%20et%20l%27%C3%89tat.%0A%0ASon%20%2A%2Aguichet%20Donn%C3%A9es%2A%2A%20accompagne%20les%20agents%20publics%20dans%20leurs%20besoins%20en%20manipulations%20de%20donn%C3%A9es.%20%0A%0A%5BContacter%20l%E2%80%99%C3%A9quipe%20par%20email%5D%28mailto%3Adonnees%40anct.gouv.fr%29.%0A%0A%23%23%20Pourquoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AL%E2%80%99ANCT%2C%20missionn%C3%A9e%20par%20le%20rapport%20Bothorel%20pour%20%C2%AB%20accompagner%20les%20collectivit%C3%A9s%20territoriales%20dans%20la%20publication%20des%20donn%C3%A9es%20%C2%BB%2C%20au%20cours%20de%20ses%20diff%C3%A9rentes%20investigations%2C%20a%20rencontr%C3%A9%20de%20nombreuses%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99utilisation%20des%20donn%C3%A9es%20%3A%0A%0AIl%20y%20a%20une%20forte%20attente%20vis-%C3%A0-vis%20des%20collectivit%C3%A9s%20territoriales%20pour%20ouvrir%20et%20partager%20les%20donn%C3%A9es%20li%C3%A9es%20%C3%A0%20leurs%20activit%C3%A9s%2C%20mais%20souvent%20un%20manque%20de%20moyen%20humain%20et%20technique%20pour%20y%20r%C3%A9pondre%20au%20sein%20des%20collectivit%C3%A9s%0A%0ADe%20m%C3%AAme%2C%20les%20collectivit%C3%A9s%20territoriales%20elles-m%C3%AAmes%20sont%20demandeuses%20d%E2%80%99utilisation%20des%20donn%C3%A9es%20pour%20mieux%20r%C3%A9pondre%20%C3%A0%20leurs%20missions%2C%20sans%20avoir%20l%C3%A0%20non%20plus%20toujours%20les%20moyens%20humains%20et%20techniques%20pour%20le%20faire%0A%0ALa%20manipulation%20de%20donn%C3%A9es%20se%20fait%20souvent%20aujourd%E2%80%99hui%20de%20fa%C3%A7on%20isol%C3%A9e%20%28fichiers%20Excel%20sur%20le%20poste%20d%E2%80%99un%20agent%29%2C%20ayant%20pour%20cons%C3%A9quence%20une%20grande%20perte%20de%20temps%20dans%20le%20traitement%20de%20ces%20donn%C3%A9es%20%3A%20fichiers%20non%20normalis%C3%A9s%20donc%20beaucoup%20d%E2%80%99erreurs%2C%20difficile%20%C3%A0%20partager%2C%20%C3%A0%20corriger%2C%20%C3%A0%20tenir%20%C3%A0%20jour%2C%20etc.%0A%0ATr%C3%A8s%20souvent%2C%20les%20agents%20doivent%20saisir%20de%20la%20donn%C3%A9e%20pour%20un%20autre%20usage%20que%20le%20leur%2C%20ce%20qui%20est%20une%20perte%20de%20temps%20et%20un%20motif%20de%20frustration%2C%20par%20ailleurs%20la%20donn%C3%A9e%20qu%E2%80%99on%20saisit%20sans%20en%20comprendre%20la%20finalit%C3%A9%20est%20souvent%20mal%20saisie%0A%0ADonn%C3%A9es%20et%20Territoires%20intervient%20dans%20le%20but%20d%27aider%20%C3%A0%20faciliter%20la%20remont%C3%A9e%20d%27information%20et%20%C3%A0%20rendre%20les%20donn%C3%A9es%20publiques.%20Cela%20permet%20de%20soulager%20les%20personnes%20devant%20saisir%20ou%20collecter%20les%20informations%2C%20leur%20laissant%20la%20possibilit%C3%A9%20de%20se%20concentrer%20sur%20des%20questions%20au%20c%C5%93ur%20de%20leur%20m%C3%A9tier%2C%20et%20%C3%A0%20n%27importe%20qui%20d%27obtenir%20rapidement%20les%20donn%C3%A9es%20publiques%20les%20plus%20fra%C3%AEches.%0A%0A%3Cimg%20width%3D%22700%22%20alt%3D%22Image%20d%27illustration%20de%20l%27apport%20de%20Donn%C3%A9es%20et%20Territoires%20pr%C3%A9sentant%202%20organisations.%20Dans%20l%27organisation%20de%20gauche%20l%27illustration%2C%20une%20demande%20de%20chiffres%20descend%20du%20cabinet%20jusqu%27aux%20agents%20de%20terrain%2C%20avec%20plusieurs%20personnes%20m%C3%A9contentes%20%C3%A0%20cause%20de%20la%20latence%20ou%20des%20courtes%20%C3%A9ch%C3%A9ances%20et%20de%20la%20n%C3%A9cessit%C3%A9%20d%27aggr%C3%A9ger%20des%20donn%C3%A9es%20%28un%20travail%20fastidieux%29.%20Dans%20l%27organisation%20de%20droite%2C%20une%20personne%20tout%20en%20bas%20est%20%C3%A0%20l%27aise%20pour%20produire%20des%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20engineers%2C%20eux%20aussi%20%C3%A0%20l%27aise%20pour%20les%20injecter%20dans%20diff%C3%A9rentes%20plateformes%20%28ex.%20sur%20data.gouv.fr%29%2C%20et%20%C3%A0%20leur%20tour%20remontent%20les%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20analystes%2C%20eux%20aussi%20%C3%A0%20l%27aise%2C%20qui%20aggr%C3%A8gent%20et%20publient%20des%20catalogues%20d%27indicateurs%20%C3%A0%20destination%20de%20diff%C3%A9rents%20publics%20%28cabinets%2C%20pr%C3%A9fets%2C%20journalistes%2C%20citoyens%2C%20directeur%20de%20programmes%2C%20...%29%20et%20%C3%A0%20travers%20diff%C3%A9rents%20supports%20%28API%2C%20tableaux%20de%20bord%2C%20fiches%20de%20synth%C3%A8ses%2C%20visualisation%2C%20...%29%22%20src%3D%22https%3A%2F%2Fgithub.com%2Fbetagouv%2Fbeta.gouv.fr%2Fassets%2F371705%2Fccb0a93f-7dc1-4b03-a678-007c8edd6272%22%3E%0A%0A%23%23%20Quels%20sont%20les%20outils%20mis%20%C3%A0%20disposition%20par%20Donn%C3%A9es%20et%20Territoires%C2%A0%3F%0A%0ACes%20outils%20sont%20assez%20nombreux%20mais%20nous%20en%20d%C3%A9gageons%204%20principaux%C2%A0%3A%0A-%20%5B%2A%2AGrist%2A%2A%5D%28https%3A%2F%2Fgetgrist.com%29%20%3A%20il%20s%27agit%20non%20seulement%20d%27un%20puissant%20tableur%20collaboratif%20en%20ligne%20et%20open-source%2C%20mais%20%C3%A9galement%20d%27un%20outil%20de%20%5Bno-code%5D%28https%3A%2F%2Ffr.wikipedia.org%2Fwiki%2FD%25C3%25A9veloppement_No_code%29%20mettant%20%C3%A0%20disposition%20une%20palette%20de%20widgets%20%28calendrier%2C%20carte%20avec%20emplacements%2C%20wiki%2C%20...%29%20simples%20%C3%A0%20mettre%20en%20place.%20L%27incubateur%20propose%202%20instances%20auto-heberg%C3%A9es%20en%20France%20de%20ce%20service%2C%20%C3%A0%20destination%20des%20agents%20publics%20%3B%0A%20-%20%2A%2AinSITu%2A%2A%20%3A%20il%20s%27agit%20d%27un%20ETL%20r%C3%A9cup%C3%A9rant%20les%20donn%C3%A9es%20de%20diff%C3%A9rentes%20sources%20pour%20les%20normaliser%20et%20les%20agr%C3%A9ger%20dans%20sa%20base%20de%20donn%C3%A9es%C2%A0%3B%0A%20-%20%5B%2A%2ALe%20catalogue%20d%27indicateurs%2A%2A%5D%28https%3A%2F%2Fcatalogue-indicateurs.donnees.incubateur.anct.gouv.fr%2F%29%C2%A0%3A%20qui%20vous%20permet%20en%20quelques%20clics%20d%27afficher%20les%20indicateurs%20pour%20tous%20les%20programmes%20de%20l%27ANCT%20et%20de%20les%20comparer%20entre%20territoires%2C%20et%20ce%20que%20vous%20soyez%20agent%20de%20la%20fonction%20publique%20ou%20non%C2%A0%3B%0A%20-%20%5B%2A%2ALes%20fiches%20territoriales%2A%2A%5D%28https%3A%2F%2Ffiches.incubateur.anct.gouv.fr%2F%29%20%3A%20qui%20vous%20affiche%20sur%20une%20m%C3%AAme%20plateforme%20les%20indicateurs%20cl%C3%A9s%20de%20l%E2%80%99ANCT%20par%20territoire%C2%A0%3B", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-07-01", - "end": "2022-01-01" - }, - { - "name": "construction", - "start": "2022-01-01", - "end": "" - } - ], - "sponsors": [ - "anct" - ], - "thematiques": [ - "Territoires", - "Open-Data", - "Collectivités", - "Outil technique" + "mention": "Données personnelles", + "maxScore": 4, + "score": 1, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" ], - "dashlord_url": "http://dashlord.incubateur.net/url/donnees-incubateur-anct-gouv-fr-toolbox/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "anct" - } - } + "missingTrackers": [], + "declarationUrl": "https://franceconnect.gouv.fr/cgu" } - }, + ], + "betagouv": null, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://donnees.incubateur.anct.gouv.fr", - "size": 3145.161, - "nodes": 240, - "requests": 48, - "grade": "C", - "score": 67, - "ges": 1.66, - "water": 2.49, + "url": "https://mon.franceconnect.gouv.fr", + "size": 445.346, + "nodes": 74, + "requests": 14, + "grade": "A", + "score": 89, + "ges": 1.22, + "water": 1.83, "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:16:15.298056", + "date": "2024-12-01 15:30:08.970541", "page_type": null } ], @@ -373851,75 +370694,62 @@ }, "summary": { "httpGrade": "C", - "apdex": 0.995, + "apdex": 1, "apdexGrade": "A", - "uptime": 99.971, + "uptime": 99.984, "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 6, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-09T21:04:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.57, + "lighthouse_performance": 0.61, "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.88, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", + "lighthouse_pwa": 0.8, + "lighthouse_pwaGrade": "B", + "statsGrade": "F", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "A", "dsfrGrade": "A" } }, { "404": null, - "url": "https://mes-aides.pole-emploi.fr", - "category": "pole-emploi", - "betaId": "mes.aides", - "tools": { - "nmap": false - }, + "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "category": "startup", "http": { - "url": "https://mes-aides.pole-emploi.fr", + "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:31:12 GMT", + "end_time": "Sun, 20 Oct 2024 03:21:16 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' 'unsafe-eval'; img-src 'self' https://privacy.trustcommander.net https://privacy.commander1.com https://www.francetravail.fr https://www.pole-emploi.fr data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://*.mopinion.com/ http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://composants-pe-communs.pole-emploi.fr/ https://composants-pe-communs.pe-qvr.fr/; connect-src 'self' https://*.mopinion.com/ https://privacy.trustcommander.net https://privacy.commander1.com https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://www.1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/; object-src 'self' data; worker-src 'self' blob:", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:31:08 GMT", - "Permissions-Policy": "web-share=self", - "Referrer-Policy": "strict-origin", - "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", + "Content-Encoding": "identity", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 03:21:15 GMT", "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "on", - "X-XSS-Protection": "1; mode=block" + "X-Request-ID": "cbac560a-a481-4c10-8aec-da8f6cf7f004", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57061497, - "score": 55, - "start_time": "Sun, 20 Oct 2024 11:31:03 GMT", + "scan_id": 57049041, + "score": 50, + "start_time": "Sun, 20 Oct 2024 03:21:14 GMT", "state": "FINISHED", - "status_code": 200, + "status_code": 503, "tests_failed": 3, "tests_passed": 7, "tests_quantity": 10, @@ -373928,88 +370758,16 @@ "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "connect-src": [ - "https://geo.api.gouv.fr/", - "'self'", - "https://*.mopinion.com/", - "https://privacy.trustcommander.net", - "https://hd.pe.fr/", - "https://*.mapbox.com/", - "https://privacy.commander1.com" - ], - "default-src": [ - "'unsafe-eval'", - "'self'" - ], - "font-src": [ - "'self'" - ], - "frame-ancestors": [ - "https://www.1jeune1solution.gouv.fr/", - "https://recette.1jeune1solution.gouv.fr/", - "https://1jeune1solution.gouv.fr/", - "'self'" - ], - "frame-src": [ - "https://www.youtube-nocookie.com/", - "'self'" - ], - "img-src": [ - "https://manager.tagcommander.com/", - "'self'", - "data:", - "https://privacy.trustcommander.net", - "https://www.francetravail.fr", - "https://www.pole-emploi.fr", - "https://privacy.commander1.com" - ], - "object-src": [ - "data", - "'self'" - ], - "script-src-elem": [ - "https://tag.aticdn.net/", - "http://cdn.tagcommander.com/", - "'unsafe-inline'", - "https://*.mopinion.com/", - "'self'", - "https://cdn.trustcommander.net/", - "https://composants-pe-communs.pe-qvr.fr/", - "https://privacy.trustcommander.net/", - "https://composants-pe-communs.pole-emploi.fr/", - "https://*.mapbox.com/" - ], - "style-src": [ - "'unsafe-inline'", - "'self'" - ], - "worker-src": [ - "blob:", - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": true, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, "pass": false, - "result": "csp-implemented-with-insecure-scheme", - "score_description": "Content Security Policy (CSP) implemented, but secure site allows resources to be loaded over HTTP", - "score_modifier": -20 + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -374042,46 +370800,46 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://mes-aides.francetravail.fr/", + "destination": null, "redirects": true, "route": [ - "http://mes-aides.pole-emploi.fr/", - "https://mes-aides.francetravail.fr/" + "http://mfc-web-dev.osc-secnum-fr1.scalingo.io/", + "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/" ], - "status_code": 301 + "status_code": null }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "strict-origin", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", + "data": "max-age=31536000", "includeSubDomains": false, - "max-age": null, + "max-age": 31536000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-header-invalid", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -374090,20 +370848,20 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "result": "sri-not-implemented-but-no-scripts-loaded", + "score_description": "Subresource Integrity (SRI) is not needed since site contains no script tags", "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", @@ -374111,33 +370869,33 @@ "output": { "data": null }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", "score_modifier": 0 } } }, "updownio": { - "token": "h9wk", - "url": "https://mes-aides.pole-emploi.fr", + "token": "usat", + "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "alias": null, "last_status": 200, - "uptime": 99.703, + "uptime": 99.818, "down": false, "down_since": null, - "up_since": "2024-11-24T06:11:44Z", + "up_since": "2024-09-08T04:37:26Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -374148,735 +370906,132 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T15:27:38Z", - "next_check_at": "2024-11-24T15:28:38Z", - "created_at": "2024-01-15T14:01:08Z", + "last_check_at": "2024-09-08T11:33:05Z", + "next_check_at": "2024-09-08T11:34:04Z", + "created_at": "2024-01-15T14:02:08Z", "mute_until": null, - "favicon_url": "https://mes-aides.francetravail.fr/favicon.ico", + "favicon_url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/_next/static/media/favicon.8c087985.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T15:19:43Z", - "expires_at": "2025-05-14T06:28:47Z", + "tested_at": "2024-09-08T11:24:11Z", + "expires_at": "2025-01-12T23:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.5, + "apdex": 0.983, "timings": { - "redirect": 635, - "namelookup": 3, - "connection": 154, - "handshake": 321, - "response": 1161, - "total": 2274 - } - }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "mes-aides.pole-emploi.fr", - "protocol": "tcp", - "closed_ports": "994", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "10.0", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "10.0", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "9.8", - "id": "CVE-2023-38408" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "9.8", - "id": "CVE-2023-28531" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" - }, - { - "type": "packetstorm", - "is_exploit": "true", - "cvss": "8.1", - "id": "PACKETSTORM:179290" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "D1E049F1-393E-552D-80D1-675022B26911" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "8.1", - "id": "CVE-2024-6387" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "6FD8F914-B663-533D-8866-23313FD37804" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "452ADB71-199C-561E-B949-FCDE6288B925" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" - }, - { - "type": "zdt", - "is_exploit": "true", - "cvss": "8.1", - "id": "1337DAY-ID-39674" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "11F020AC-F907-5606-8805-0516E06160EE" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "8.1", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" - }, - { - "type": "seebug", - "is_exploit": "true", - "cvss": "7.5", - "id": "SSV:92579" - }, - { - "type": "packetstorm", - "is_exploit": "true", - "cvss": "7.5", - "id": "PACKETSTORM:173661" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" - }, - { - "type": "zdt", - "is_exploit": "true", - "cvss": "7.5", - "id": "1337DAY-ID-26576" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "6.5", - "id": "CVE-2023-51385" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "5.9", - "id": "CVE-2023-48795" - }, - { - "type": "cve", - "is_exploit": "false", - "cvss": "5.5", - "id": "CVE-2023-51384" - }, - { - "type": "packetstorm", - "is_exploit": "true", - "cvss": "0.0", - "id": "PACKETSTORM:140261" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "0.0", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" - }, - { - "type": "githubexploit", - "is_exploit": "true", - "cvss": "0.0", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" - } - ] - } - }, + "redirect": 0, + "namelookup": 15, + "connection": 171, + "handshake": 172, + "response": 213, + "total": 570 + } + }, + "uptimeGrade": "A", + "apdexGrade": "B" + }, + "nmap": { + "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ { "service": { "name": "http", - "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", - "id": "81", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "rpcbind", - "id": "111", - "version": "2-4", - "vulnerabilities": [ - { - "port": "111", - "addr": "::", - "owner": "superuser" - }, - { - "port": "111", - "addr": "0.0.0.0", - "owner": "superuser" - }, - { - "port": "111", - "addr": "0.0.0.0", - "owner": "superuser" - }, - { - "port": "111", - "addr": "::", - "owner": "superuser" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", + "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "444", - "vulnerabilities": [] - } } ], - "grade": "F" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "not offered + downgraded to weaker protocol" + "severity": "OK", + "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -374884,7 +371039,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -374892,7 +371047,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -374900,7 +371055,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -374908,7 +371063,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -374916,491 +371071,470 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "valid for 86400 seconds only (= 60 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-05-14 06:28" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "2025-05-14 06:28" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://crl.entrust.net/level1m.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://ocsp.entrust.net" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M (Entrust, Inc. from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "75C5B3F01FD1F51A2C447AB7C785D72E69FA9C472C08571E7EADF3B8EABAE70C" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2014-12-15 15:25" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2030-10-15 15:55" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Entrust Certification Authority - L1M <-- Entrust Root Certification Authority - G2" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { - "id": "intermediate_cert <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "intermediate_cert_badOCSP", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIEPjCCAyagAwIBAgIESlOMKDANBgkqhkiG9w0BAQsFADCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwHhcNMDkwNzA3MTcyNTU0WhcNMzAxMjA3MTc1NTU0WjCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hLZy254Ma+KZ6TABp3bqMriVQRrJ2mFOWHLP/vaCeb9zYQYKpSfYs1/TRU4cctZOMvJyig/3gxnQaoCAAEUesMfnmr8SVycco2gvCoe9amsOXmXzHHfV1IWNcCG0szLni6LVhjkCsbjSR87kyUnEO6fe+1R9V77w6G7CebI6C1XiUJgWMhNcL3hWwcKUs/Ja5CeanyTXxuzQmyWC48zCxEXFjJd6BmsqEZ+pCm5IO2/b1BEZQvePB7/1U1+cPvQXLOZprE4yTGJ36rfo5bs0vBmLrpxR57d+tVOxMyLlbc9wPBr64ptntoP0jaWvYkxN4FisZDQSA/i2jZRjJKRxAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRqciZ60B7vfec7aVHUbI2fkBJmqzANBgkqhkiG9w0BAQsFAAOCAQEAeZ8dlsa2eT8ijYfThwMEYGprmi5ZiXMRrEPR9RP/jTkrwPK9T3CMqS/qF8QLVJ7UG5aYMzyorWKiAHarWWluBh1+xLlEjZivEtRh2woZRkfz6/djwUAFQKXSt/S1mja/qYh2iARVBCuch38aNzx+LaUa2NSJXsq9rD1s2G2v1fN2D807iDginWyTmsQ9v4IbZT+mD12q/OWyFcq1rca8PdCE6OoGcrBNOTJ4vz4RnAuknZoh8/CbCzB428Hch0P+vGOaysXCHMnHjf87ElgI5rY97HosTvuDls4MPGmHVHOkc8KT/1EQrBVUAdj8BbGJoX90g5pJ19xOe4pIb4tF9g==\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HTTP_status_code", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HTTP_clock_skew", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2009-07-07 17:25" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "OK", - "finding": "2030-12-07 17:55" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HTTP_headerTime", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Entrust Root Certification Authority - G2 <-- Entrust Root Certification Authority - G2" + "finding": "1733067830" }, { - "id": "intermediate_cert_badOCSP", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HSTS_time", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HSTS_subdomains", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "id": "HSTS_preload", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732462018" - }, - { - "id": "HSTS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -375408,7 +371542,7 @@ }, { "id": "heartbleed", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -375417,7 +371551,7 @@ }, { "id": "CCS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -375426,7 +371560,7 @@ }, { "id": "ticketbleed", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -375435,16 +371569,16 @@ }, { "id": "ROBOT", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -375452,7 +371586,7 @@ }, { "id": "secure_client_renego", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -375461,7 +371595,7 @@ }, { "id": "CRIME_TLS", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -375470,16 +371604,16 @@ }, { "id": "BREACH", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -375488,14 +371622,14 @@ }, { "id": "fallback_SCSV", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -375504,7 +371638,7 @@ }, { "id": "FREAK", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -375513,7 +371647,7 @@ }, { "id": "DROWN", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -375522,16 +371656,16 @@ }, { "id": "DROWN_hint", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=594A86E95CA4CD8582EEABC72593677EB7844502C59506D636DED99EAD1CAF54" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -375540,7 +371674,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -375549,7 +371683,7 @@ }, { "id": "BEAST", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -375558,16 +371692,16 @@ }, { "id": "LUCKY13", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -375576,7 +371710,7 @@ }, { "id": "RC4", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -375585,2754 +371719,1392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "mes-aides.pole-emploi.fr/51.83.34.111", - "port": "443", - "severity": "INFO", - "finding": "70" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/252b7ffb1229ac64.css" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/97323c974f857a80.css" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/c85de16a9e51ab6a.css" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/233205ef4b7f3d0b.css" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/39d07439246ce432.css" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/css/2e57bccb39f5a3ac.css" - }, - { - "type": "unknown", - "url": "https://cdn.tagcommander.com/5894/tc_StartUp_34.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/webpack-aa56eab35276c33e.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/fd9d1056-31486103e46186c5.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7023-cd4b4726ea2cc097.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/main-app-55bbd77d79f9187f.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/1877-0a0de91621963f96.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/layout-08aeb9e9b56f076d.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/error-529dd200daf653f4.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/231-7543774a9870e551.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/8173-063959529f4740ca.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/layout-58263d2632b6338f.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/3671-01334fafa11c8bd5.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7209-6ae558a3411169b4.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/7364-10d338abc0d9b031.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/2455-789606d1f68f938f.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/9862-235c040f23bc286c.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/page-32762ff3d8614b62.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/medium.2d445cdf.woff" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/map-cover.ac63a2e0.webp" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/bold.3fbc8d31.woff" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/regular.41efefa2.woff" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Frf.png&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fmes-aides.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fall-needs-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Flicense-pieces-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Frepair-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fbike-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fcar-key-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fbus-shadowed.png&w=96&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fopening-accommodation.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fillustrations%2Fopening-ft.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-hauts-de-france.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-bretagne.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-auvergne-rhone-alpes.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fagiless.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fsolidarauto.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Favise.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Frenault.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fnorauto.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-occitanie.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fdepartement-eure.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fregion-ile-de-france.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fetat.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fmistral.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fbibus.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Ffil-bleu.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fimages%2Fdacia-sandero.png&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Flogos%2Fstructures%2Fl-adie-et-l-etat.jpg&w=256&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fauvergne-rhone-alpes.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fbourgogne-franche-comte.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fbretagne.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fcentre-val-de-loire.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fcorse.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fgrand-est.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fhauts-de-france.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2File-de-france.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fnormandie.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fnouvelle-aquitaine.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Foccitanie.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fpays-de-la-loire.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fla-reunion.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/image?url=%2Fregions%2Fcovers%2Fprovence-alpes-cote-d-azur.jpg&w=64&q=75" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/medium.2d445cdf.woff" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/bold.3fbc8d31.woff" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/media/regular.41efefa2.woff" - }, - { - "type": "at-internet", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js", - "details": { - "id": "at-internet", - "message": "Ensure your TOS notify the AT internet usage" - } - }, - { - "type": "unknown", - "url": "https://manager.tagcommander.com/utils/hit.php?id=34&site=5894&version=21.02&frequency=10&position=1&rand=0.629986378958661" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/logements-saisonniers?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/france-travail?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/region-hauts-de-france/aide-au-permis-de-conduire-pour-l-insertion-professionnelle-des-jeunes-hauts-de-france?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/region-bretagne/aide-regionale-au-permis-de-conduire-bretagne?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/region-auvergne-rhone-alpes/aide-regionale-au-permis-de-conduire-auvergne-rhone-alpes?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=m3vr3zqrli3dzk6g" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/852-d1e54661b3112e17.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/3346-743ab4df785c6aac.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/8140-b3017ec73a5276a3.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/%5Borganism%5D/%5Baid%5D/page-9177a5a5ee5b53ce.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/financer-mon-permis?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/logements-saisonniers/page-81bba2b43497ac2b.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/reparer-mon-vehicule?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/acheter-ou-louer-un-velo?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/_next/static/chunks/app/(main)/%5Borganism%5D/page-573b34410345ccb7.js" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/acheter-ou-louer-une-voiture?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://mes-aides.francetravail.fr/transport-et-mobilite/me-deplacer-autrement?_rsc=1wtp7" - }, - { - "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent?site=5894" - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=m3vr3zqrli3dzk6g" - }, - { - "type": "unknown", - "url": "https://www.francetravail.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" - } - ], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'self' 'unsafe-eval'; img-src 'self' https://privacy.trustcommander.net https://privacy.commander1.com https://www.francetravail.fr https://www.pole-emploi.fr data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://*.mopinion.com/ http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://composants-pe-communs.pole-emploi.fr/ https://composants-pe-communs.pe-qvr.fr/; connect-src 'self' https://*.mopinion.com/ https://privacy.trustcommander.net https://privacy.commander1.com https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://www.1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/; object-src 'self' data; worker-src 'self' blob:", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:25:43 GMT", - "permissions-policy": "web-share=self", - "referrer-policy": "strict-origin", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload\nmax-age=15768000\nmax-age=63072000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "on", - "x-xss-protection": "1; mode=block" + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "endpoints": [ - { - "hostname": "mes-aides.pole-emploi.fr", - "ip": "51.83.34.111", - "geoip": { - "city": { - "geoname_id": 2972284, - "names": { - "de": "Tourcoing", - "en": "Tourcoing", - "fr": "Tourcoing", - "ja": "トゥールコワン", - "ru": "Туркуэн", - "zh-CN": "图尔宽" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 50, - "latitude": 50.7236, - "longitude": 3.1616, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "59200" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 11071624, - "iso_code": "HDF", - "names": { - "de": "Hauts-de-France", - "en": "Hauts-de-France", - "es": "Alta Francia", - "fr": "Hauts-de-France", - "ja": "オー=ド=フランス地域圏", - "pt-BR": "Altos da França", - "ru": "О-де-Франс", - "zh-CN": "上法兰西大区" - } - }, - { - "geoname_id": 2990129, - "iso_code": "59", - "names": { - "de": "Nord", - "en": "North", - "es": "Norte", - "fr": "Nord", - "ja": "ノール県", - "pt-BR": "Nord", - "ru": "Нор", - "zh-CN": "北部省" - } - } - ] - } - }, - { - "hostname": "mes-aides.francetravail.fr", - "ip": "51.83.34.111", - "geoip": { - "city": { - "geoname_id": 2972284, - "names": { - "de": "Tourcoing", - "en": "Tourcoing", - "fr": "Tourcoing", - "ja": "トゥールコワン", - "ru": "Туркуэн", - "zh-CN": "图尔宽" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 50, - "latitude": 50.7236, - "longitude": 3.1616, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "59200" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 11071624, - "iso_code": "HDF", - "names": { - "de": "Hauts-de-France", - "en": "Hauts-de-France", - "es": "Alta Francia", - "fr": "Hauts-de-France", - "ja": "オー=ド=フランス地域圏", - "pt-BR": "Altos da França", - "ru": "О-де-Франс", - "zh-CN": "上法兰西大区" - } - }, - { - "geoname_id": 2990129, - "iso_code": "59", - "names": { - "de": "Nord", - "en": "North", - "es": "Norte", - "fr": "Nord", - "ja": "ノール県", - "pt-BR": "Nord", - "ru": "Нор", - "zh-CN": "北部省" - } - } - ] - } - }, - { - "hostname": "cdn.tagcommander.com", - "ip": "192.229.163.55", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "de": "Texas", - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "pt-BR": "Texas", - "ru": "Техас", - "zh-CN": "得克萨斯州" - } - } - ] - } - }, - { - "hostname": "tag.aticdn.net", - "ip": "18.160.18.104", - "geoip": { - "city": { - "geoname_id": 5809844, - "names": { - "de": "Seattle", - "en": "Seattle", - "es": "Seattle", - "fr": "Seattle", - "ja": "シアトル", - "pt-BR": "Seattle", - "ru": "Сиэтл" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 47.6109, - "longitude": -122.3303, - "metro_code": 819, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "98101" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5815135, - "iso_code": "WA", - "names": { - "de": "Washington", - "en": "Washington", - "es": "Washington", - "fr": "Washington", - "ja": "ワシントン州", - "pt-BR": "Washington", - "ru": "Вашингтон", - "zh-CN": "华盛顿州" - } - } - ] - } - }, - { - "hostname": "manager.tagcommander.com", - "ip": "35.181.77.138", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - }, - { - "hostname": "hd.pe.fr", - "ip": "18.160.18.3", - "geoip": { - "city": { - "geoname_id": 5809844, - "names": { - "de": "Seattle", - "en": "Seattle", - "es": "Seattle", - "fr": "Seattle", - "ja": "シアトル", - "pt-BR": "Seattle", - "ru": "Сиэтл" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 47.6109, - "longitude": -122.3303, - "metro_code": 819, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "98101" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5815135, - "iso_code": "WA", - "names": { - "de": "Washington", - "en": "Washington", - "es": "Washington", - "fr": "Washington", - "ja": "ワシントン州", - "pt-BR": "Washington", - "ru": "Вашингтон", - "zh-CN": "华盛顿州" - } - } - ] - } - }, - { - "hostname": "privacy.trustcommander.net", - "ip": "15.237.129.60", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - }, - { - "hostname": "www.francetravail.fr", - "ip": "185.215.64.79", - "geoip": { - "city": { - "geoname_id": 2992287, - "names": { - "en": "Montmagny" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 48.9704, - "longitude": 2.345, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "95360" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise", - "ja": "ヴァル=ドワーズ県", - "pt-BR": "Val-d'Oise", - "ru": "Валь-д’Уаз", - "zh-CN": "瓦兹河谷省" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mes-aides.pole-emploi.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://mes-aides.pole-emploi.fr/ (https://mes-aides.pole-emploi.fr/)" - } + { + "id": "protocol_support_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2023-08-02 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2033-08-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" + }, + { + "id": "HTTP_clock_skew", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "1733067885" + }, + { + "id": "HSTS_time", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "security_headers", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "MEDIUM", + "finding": "--" + }, + { + "id": "banner_reverseproxy", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + }, + { + "id": "LOGJAM", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 0.992, - "timings": { - "redirect": 630, - "namelookup": 8, - "connection": 166, - "handshake": 387, - "response": 418, - "total": 1610 - } + { + "id": "clientsimulation-firefox_100_win10", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "mon.franceconnect.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "optimal_proto", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_6_xp", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "mon.franceconnect.gouv.fr:443 appears to support TLS 1.3 ONLY, switching from /home/testssl/bin/openssl.Linux.x86_64 to /usr/bin/openssl automagically" + "finding": "No connection" }, { - "id": "service", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_8_win7", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "HTTP" + "finding": "No connection" }, { - "id": "pre_128cipher", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_8_xp", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" + "finding": "No connection" }, { - "id": "SSLv2", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_11_win7", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "SSLv3", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_11_win81", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "TLS1", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_11_winphone81", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "No connection" }, { - "id": "TLS1_1", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-ie_11_win10", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "TLS1_2", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-edge_15_win10", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "TLS1_3", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered with final" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "ALPN", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-safari_121_ios_122", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_NULL", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-safari_130_osx_10146", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_aNULL", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-safari_154_osx_1231", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_EXPORT", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-java_7u25", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_LOW", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-java_8u161", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-java1102", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_OBSOLETED", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-java1703", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-go_1178", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherlist_STRONG_FS", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-libressl_283", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipher_order", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-openssl_102e", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "server (TLS 1.3)" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "scanProblem", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-openssl_110l", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "FATAL", - "finding": "repeated openssl s_client connect problem, doesn't make sense to continue" + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "scanTime", - "ip": "mon.franceconnect.gouv.fr/148.253.96.161", + "id": "clientsimulation-openssl_111d", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 15:27:07 GMT", - "etag": "W/\"673c74d5-409\"", - "last-modified": "Tue, 19 Nov 2024 11:21:57 GMT", - "strict-transport-security": "max-age=31536000", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding", - "x-request-id": "6aa21d9c7303cc377fa629d84e240071" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "endpoints": [ - { - "hostname": "mon.franceconnect.gouv.fr", - "ip": "148.253.96.161", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mon.franceconnect.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://mon.franceconnect.gouv.fr/ (https://mon.franceconnect.gouv.fr/)" - } + { + "id": "clientsimulation-openssl_303", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://mon.franceconnect.gouv.fr/", - "finalUrl": "https://tableaudebord.franceconnect.gouv.fr/", - "fetchTime": "2024-11-24T15:26:41.430Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://mon.franceconnect.gouv.fr/) was redirected to https://tableaudebord.franceconnect.gouv.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.6 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.88 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.8 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 3855, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3838, - "firstMeaningfulPaint": 3855, - "largestContentfulPaint": 4509, - "interactive": 3855, - "speedIndex": 4483, - "totalBlockingTime": 0, - "maxPotentialFID": 33, - "cumulativeLayoutShift": 0.5715677473280164, - "cumulativeLayoutShiftMainFrame": 0.5715677473280164, - "totalCumulativeLayoutShift": 0.5715677473280164, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 421921445, - "observedNavigationStart": 0, - "observedNavigationStartTs": 421921445, - "observedFirstPaint": 1454, - "observedFirstPaintTs": 423375701, - "observedFirstContentfulPaint": 1454, - "observedFirstContentfulPaintTs": 423375701, - "observedFirstContentfulPaintAllFrames": 1454, - "observedFirstContentfulPaintAllFramesTs": 423375701, - "observedFirstMeaningfulPaint": 1454, - "observedFirstMeaningfulPaintTs": 423375701, - "observedLargestContentfulPaint": 1615, - "observedLargestContentfulPaintTs": 423536898, - "observedLargestContentfulPaintAllFrames": 1615, - "observedLargestContentfulPaintAllFramesTs": 423536898, - "observedTraceEnd": 4184, - "observedTraceEndTs": 426105836, - "observedLoad": 1414, - "observedLoadTs": 423335690, - "observedDomContentLoaded": 1414, - "observedDomContentLoadedTs": 423335546, - "observedCumulativeLayoutShift": 0.5715677473280164, - "observedCumulativeLayoutShiftMainFrame": 0.5715677473280164, - "observedTotalCumulativeLayoutShift": 0.5715677473280164, - "observedFirstVisualChange": 1461, - "observedFirstVisualChangeTs": 423382445, - "observedLastVisualChange": 1828, - "observedLastVisualChangeTs": 423749445, - "observedSpeedIndex": 1545, - "observedSpeedIndexTs": 423466394 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 18, - "numScripts": 2, - "numStylesheets": 4, - "numFonts": 2, - "numTasks": 423, - "numTasksOver10ms": 4, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 81.687, - "throughput": 8629102.29022802, - "maxRtt": 82.711, - "maxServerLatency": 5.702999999999989, - "totalByteWeight": 435798, - "totalTaskTime": 170.43799999999982, - "mainDocumentTransferSize": 833 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://franceconnect.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-apple_mail_16_0", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://franceconnect.gouv.fr/mentions-legales" + "id": "clientsimulation-thunderbird_91_9", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 1, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://franceconnect.gouv.fr/cgu" - } - ], - "betagouv": null, - "ecoindex": [ + "id": "rating_spec", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, { - "width": 1920, - "height": 1080, - "url": "https://mon.franceconnect.gouv.fr", - "size": 445.347, - "nodes": 74, - "requests": 14, - "grade": "A", - "score": 89, - "ges": 1.22, - "water": 1.83, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:23:42.917871", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "C", - "apdex": 0.992, - "apdexGrade": "A", - "uptime": 99.984, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.6, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.88, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.8, - "lighthouse_pwaGrade": "B", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "A", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "category": "startup", - "http": { - "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:21:16 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "identity", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 03:21:15 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "cbac560a-a481-4c10-8aec-da8f6cf7f004", - "strict-transport-security": "max-age=31536000" + "id": "rating_doc", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "scan_id": 57049041, - "score": 50, - "start_time": "Sun, 20 Oct 2024 03:21:14 GMT", - "state": "FINISHED", - "status_code": 503, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": true, - "route": [ - "http://mfc-web-dev.osc-secnum-fr1.scalingo.io/", - "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/" - ], - "status_code": null - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-no-scripts-loaded", - "score_description": "Subresource Integrity (SRI) is not needed since site contains no script tags", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "usat", - "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "alias": null, - "last_status": 200, - "uptime": 99.818, - "down": false, - "down_since": null, - "up_since": "2024-09-08T04:37:26Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-09-08T11:33:05Z", - "next_check_at": "2024-09-08T11:34:04Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/_next/static/media/favicon.8c087985.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-09-08T11:24:11Z", - "expires_at": "2025-01-12T23:59:59Z", - "valid": true, - "error": null + { + "id": "protocol_support_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "metrics": { - "apdex": 0.983, - "timings": { - "redirect": 0, - "namelookup": 15, - "connection": 171, - "handshake": 172, - "response": 213, - "total": 570 - } + { + "id": "protocol_support_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "B" - }, - "nmap": { - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", @@ -378533,7 +373305,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -378687,7 +373459,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (49)" + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", @@ -378841,14 +373613,14 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732462476" + "finding": "1733067940" }, { "id": "HSTS_time", @@ -379408,77 +374180,77 @@ }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -379486,7 +374258,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -379494,7 +374266,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -379502,7 +374274,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -379510,7 +374282,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -379518,7 +374290,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -379526,462 +374298,462 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732462534" + "finding": "1733067996" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -379989,7 +374761,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -379998,7 +374770,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -380007,7 +374779,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -380016,7 +374788,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -380025,7 +374797,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -380033,7 +374805,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -380042,7 +374814,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -380051,7 +374823,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -380060,7 +374832,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -380069,14 +374841,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -380085,7 +374857,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -380094,7 +374866,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -380103,7 +374875,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -380112,7 +374884,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -380121,7 +374893,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -380130,7 +374902,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -380139,7 +374911,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -380148,7 +374920,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -380157,7 +374929,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -380166,392 +374938,984 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { - "id": "service", + "id": "scanTime", "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", + "finding": "224" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "content-encoding": "identity", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 15:43:04 GMT", + "strict-transport-security": "max-age=31536000", + "x-request-id": "23078b09-feb1-49cf-9e80-fd4c028115a8" + }, + "endpoints": [ + { + "hostname": "mfc-web-dev.osc-secnum-fr1.scalingo.io", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/": { + "status": 503 + } + }, + "technologies": [ + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", + "finalUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", + "fetchTime": "2024-09-08T11:29:11.078Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.93 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 3226, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1375, + "firstMeaningfulPaint": 1375, + "largestContentfulPaint": 3076, + "interactive": 3226, + "speedIndex": 1555, + "totalBlockingTime": 1, + "maxPotentialFID": 51, + "cumulativeLayoutShift": 0.0018484700520833334, + "cumulativeLayoutShiftMainFrame": 0.0018484700520833334, + "totalCumulativeLayoutShift": 0.0018484700520833334, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 347699158, + "observedNavigationStart": 0, + "observedNavigationStartTs": 347699158, + "observedFirstPaint": 601, + "observedFirstPaintTs": 348300224, + "observedFirstContentfulPaint": 601, + "observedFirstContentfulPaintTs": 348300224, + "observedFirstContentfulPaintAllFrames": 601, + "observedFirstContentfulPaintAllFramesTs": 348300224, + "observedFirstMeaningfulPaint": 601, + "observedFirstMeaningfulPaintTs": 348300224, + "observedLargestContentfulPaint": 733, + "observedLargestContentfulPaintTs": 348432116, + "observedLargestContentfulPaintAllFrames": 733, + "observedLargestContentfulPaintAllFramesTs": 348432116, + "observedTraceEnd": 3231, + "observedTraceEndTs": 350930654, + "observedLoad": 833, + "observedLoadTs": 348532634, + "observedDomContentLoaded": 587, + "observedDomContentLoadedTs": 348285957, + "observedCumulativeLayoutShift": 0.0018484700520833334, + "observedCumulativeLayoutShiftMainFrame": 0.0018484700520833334, + "observedTotalCumulativeLayoutShift": 0.0018484700520833334, + "observedFirstVisualChange": 603, + "observedFirstVisualChangeTs": 348302158, + "observedLastVisualChange": 3136, + "observedLastVisualChangeTs": 350835158, + "observedSpeedIndex": 651, + "observedSpeedIndexTs": 348349732 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 35, + "numScripts": 16, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 1015, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 82.891, + "throughput": 11326082.947152331, + "maxRtt": 82.891, + "maxServerLatency": 25.17, + "totalByteWeight": 483611, + "totalTaskTime": 303.6599999999976, + "mainDocumentTransferSize": 9650 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "size": 507.635, + "nodes": 124, + "requests": 33, + "grade": "A", + "score": 84, + "ges": 1.32, + "water": 1.98, + "ecoindex_version": "5.4.2", + "date": "2024-09-08 11:26:05.201740", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 0.983, + "apdexGrade": "B", + "uptime": 99.818, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-12T23:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.93, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://collectivite.fr", + "category": "startup", + "repositories": [ + "https://gitlab.com/incubateur-territoires/startups/annuaire-des-collectivites" + ], + "tags": [ + "production", + "annuaire-collectivites", + "anct" + ], + "http": { + "url": "https://collectivite.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 00:53:47 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "content-type": "text/html", + "date": "Sun, 20 Oct 2024 00:53:46 GMT", + "keep-alive": "timeout=5", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=31536000", + "transfer-encoding": "chunked", + "x-frame-options": "SAMEORIGIN" + }, + "scan_id": 57046066, + "score": 70, + "start_time": "Sun, 20 Oct 2024 00:53:44 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://collectivite.fr:443/", + "redirects": true, + "route": [ + "http://collectivite.fr/", + "https://collectivite.fr:443/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "ljpj", + "url": "https://collectivite.fr", + "alias": "", + "last_status": 200, + "uptime": 99.925, + "down": false, + "down_since": null, + "up_since": "2024-11-29T09:10:41Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T15:51:52Z", + "next_check_at": "2024-12-01T15:56:50Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T15:51:55Z", + "expires_at": "2025-02-03T17:28:23Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 59, + "connection": 107, + "handshake": 111, + "response": 169, + "total": 446 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "collectivite.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "collectivite.fr/185.21.194.105", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -380559,7 +375923,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -380567,7 +375931,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -380575,7 +375939,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -380583,7 +375947,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -380591,7 +375955,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -380599,462 +375963,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-11-05 17:28" }, { "id": "cert_notAfter", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-02-03 17:28" }, { "id": "cert_extlifeSpan", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1732462595" - }, - { - "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733068099" }, { - "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "id": "HSTS", + "ip": "collectivite.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -381062,7 +376405,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -381071,7 +376414,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -381080,7 +376423,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -381089,7 +376432,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -381098,7 +376441,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -381106,7 +376449,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -381115,7 +376458,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -381124,16 +376467,16 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -381142,14 +376485,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -381158,7 +376501,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -381167,7 +376510,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -381176,16 +376519,16 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26B9E39535491A4EC854128B140B731212E40F67C85C5625A25D235AF5260496" }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -381194,7 +376537,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -381203,7 +376546,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -381212,7 +376555,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -381221,7 +376564,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -381230,7 +376573,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -381239,392 +376582,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "collectivite.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "collectivite.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -381632,7 +376982,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -381640,7 +376990,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -381648,7 +376998,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -381656,7 +377006,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -381664,7 +377014,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -381672,462 +377022,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-11-05 17:28" }, { "id": "cert_notAfter", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-02-03 17:28" }, { "id": "cert_extlifeSpan", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "1732462653" - }, - { - "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733068151" }, { - "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "id": "HSTS", + "ip": "collectivite.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -382135,7 +377464,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -382144,7 +377473,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -382153,7 +377482,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -382162,7 +377491,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -382171,7 +377500,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -382179,7 +377508,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -382188,7 +377517,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -382197,16 +377526,16 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -382215,14 +377544,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -382231,7 +377560,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -382240,7 +377569,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -382249,16 +377578,16 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26B9E39535491A4EC854128B140B731212E40F67C85C5625A25D235AF5260496" }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -382267,7 +377596,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -382276,7 +377605,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -382285,7 +377614,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -382294,7 +377623,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -382303,7 +377632,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -382312,984 +377641,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" }, { - "id": "scanTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "id": "grade_cap_reason_1", + "ip": "collectivite.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "241" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "content-encoding": "identity", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 15:33:47 GMT", - "strict-transport-security": "max-age=31536000", - "x-request-id": "ec18c7dc-606d-40f1-b6f0-82cccb3145c2" - }, - "endpoints": [ - { - "hostname": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/": { - "status": 503 - } - }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", - "finalUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-09-08T11:29:11.078Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.93 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 3226, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1375, - "firstMeaningfulPaint": 1375, - "largestContentfulPaint": 3076, - "interactive": 3226, - "speedIndex": 1555, - "totalBlockingTime": 1, - "maxPotentialFID": 51, - "cumulativeLayoutShift": 0.0018484700520833334, - "cumulativeLayoutShiftMainFrame": 0.0018484700520833334, - "totalCumulativeLayoutShift": 0.0018484700520833334, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 347699158, - "observedNavigationStart": 0, - "observedNavigationStartTs": 347699158, - "observedFirstPaint": 601, - "observedFirstPaintTs": 348300224, - "observedFirstContentfulPaint": 601, - "observedFirstContentfulPaintTs": 348300224, - "observedFirstContentfulPaintAllFrames": 601, - "observedFirstContentfulPaintAllFramesTs": 348300224, - "observedFirstMeaningfulPaint": 601, - "observedFirstMeaningfulPaintTs": 348300224, - "observedLargestContentfulPaint": 733, - "observedLargestContentfulPaintTs": 348432116, - "observedLargestContentfulPaintAllFrames": 733, - "observedLargestContentfulPaintAllFramesTs": 348432116, - "observedTraceEnd": 3231, - "observedTraceEndTs": 350930654, - "observedLoad": 833, - "observedLoadTs": 348532634, - "observedDomContentLoaded": 587, - "observedDomContentLoadedTs": 348285957, - "observedCumulativeLayoutShift": 0.0018484700520833334, - "observedCumulativeLayoutShiftMainFrame": 0.0018484700520833334, - "observedTotalCumulativeLayoutShift": 0.0018484700520833334, - "observedFirstVisualChange": 603, - "observedFirstVisualChangeTs": 348302158, - "observedLastVisualChange": 3136, - "observedLastVisualChangeTs": 350835158, - "observedSpeedIndex": 651, - "observedSpeedIndexTs": 348349732 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 35, - "numScripts": 16, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 1015, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 82.891, - "throughput": 11326082.947152331, - "maxRtt": 82.891, - "maxServerLatency": 25.17, - "totalByteWeight": 483611, - "totalTaskTime": 303.6599999999976, - "mainDocumentTransferSize": 9650 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "size": 507.635, - "nodes": 124, - "requests": 33, - "grade": "A", - "score": 84, - "ges": 1.32, - "water": 1.98, - "ecoindex_version": "5.4.2", - "date": "2024-09-08 11:26:05.201740", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 0.983, - "apdexGrade": "B", - "uptime": 99.818, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T23:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.93, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "A", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://collectivite.fr", - "category": "startup", - "repositories": [ - "https://gitlab.com/incubateur-territoires/startups/annuaire-des-collectivites" - ], - "tags": [ - "production", - "annuaire-collectivites", - "anct" - ], - "http": { - "url": "https://collectivite.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 00:53:47 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "content-type": "text/html", - "date": "Sun, 20 Oct 2024 00:53:46 GMT", - "keep-alive": "timeout=5", - "referrer-policy": "no-referrer", - "strict-transport-security": "max-age=31536000", - "transfer-encoding": "chunked", - "x-frame-options": "SAMEORIGIN" - }, - "scan_id": 57046066, - "score": 70, - "start_time": "Sun, 20 Oct 2024 00:53:44 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://collectivite.fr:443/", - "redirects": true, - "route": [ - "http://collectivite.fr/", - "https://collectivite.fr:443/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "ljpj", - "url": "https://collectivite.fr", - "alias": "", - "last_status": 200, - "uptime": 99.928, - "down": false, - "down_since": null, - "up_since": "2024-11-24T09:21:13Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T15:39:43Z", - "next_check_at": "2024-11-24T15:44:40Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": null, - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T15:34:45Z", - "expires_at": "2025-02-03T17:28:23Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 40, - "connection": 171, - "handshake": 175, - "response": 233, - "total": 618 - } + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "collectivite.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383297,7 +378041,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383305,7 +378049,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383313,7 +378057,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383321,7 +378065,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -383329,7 +378073,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -383337,441 +378081,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-11-05 17:28" }, { "id": "cert_notAfter", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-02-03 17:28" }, { "id": "cert_extlifeSpan", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732462791" + "finding": "1733068205" }, { "id": "HSTS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -383779,7 +378523,7 @@ }, { "id": "heartbleed", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -383788,7 +378532,7 @@ }, { "id": "CCS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -383797,7 +378541,7 @@ }, { "id": "ticketbleed", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -383806,7 +378550,7 @@ }, { "id": "ROBOT", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -383815,7 +378559,7 @@ }, { "id": "secure_renego", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -383823,7 +378567,7 @@ }, { "id": "secure_client_renego", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -383832,7 +378576,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -383841,7 +378585,7 @@ }, { "id": "BREACH", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -383850,7 +378594,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -383859,14 +378603,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -383875,7 +378619,7 @@ }, { "id": "FREAK", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -383884,7 +378628,7 @@ }, { "id": "DROWN", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -383893,7 +378637,7 @@ }, { "id": "DROWN_hint", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -383902,7 +378646,7 @@ }, { "id": "LOGJAM", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -383911,7 +378655,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -383920,7 +378664,7 @@ }, { "id": "BEAST", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -383929,7 +378673,7 @@ }, { "id": "LUCKY13", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -383938,7 +378682,7 @@ }, { "id": "winshock", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -383947,7 +378691,7 @@ }, { "id": "RC4", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -383956,399 +378700,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "collectivite.fr/80.247.12.255", + "ip": "collectivite.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384356,7 +379100,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384364,7 +379108,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384372,7 +379116,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384380,7 +379124,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384388,7 +379132,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384396,441 +379140,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-11-05 17:28" }, { "id": "cert_notAfter", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-02-03 17:28" }, { "id": "cert_extlifeSpan", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732462843" + "finding": "1733068258" }, { "id": "HSTS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -384838,7 +379582,7 @@ }, { "id": "heartbleed", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -384847,7 +379591,7 @@ }, { "id": "CCS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -384856,7 +379600,7 @@ }, { "id": "ticketbleed", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -384865,7 +379609,7 @@ }, { "id": "ROBOT", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -384874,7 +379618,7 @@ }, { "id": "secure_renego", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -384882,7 +379626,7 @@ }, { "id": "secure_client_renego", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -384891,7 +379635,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -384900,7 +379644,7 @@ }, { "id": "BREACH", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -384909,7 +379653,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -384918,14 +379662,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -384934,7 +379678,7 @@ }, { "id": "FREAK", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -384943,7 +379687,7 @@ }, { "id": "DROWN", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384952,7 +379696,7 @@ }, { "id": "DROWN_hint", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384961,7 +379705,7 @@ }, { "id": "LOGJAM", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384970,7 +379714,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384979,7 +379723,7 @@ }, { "id": "BEAST", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -384988,7 +379732,7 @@ }, { "id": "LUCKY13", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -384997,7 +379741,7 @@ }, { "id": "winshock", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -385006,7 +379750,7 @@ }, { "id": "RC4", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -385015,399 +379759,1764 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectivite.fr/185.21.194.105", + "ip": "collectivite.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "rating_doc", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, + "id": "rating_doc", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "collectivite.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "217" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/technical_error_8594bf81a7.svg" + }, + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/document_add_a703beb833.svg" + }, + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/coding_5021407b46.svg" + }, + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/add_line_f899d2f269.svg" + }, + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/file_text_line_4631092e65.svg" + }, + { + "type": "unknown", + "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/verified_badge_line_98e614e870.svg" + }, + { + "type": "unknown", + "url": "https://sentry.anct.cloud-ed.fr/api/10/envelope/?sentry_key=1617453a3c8412511a677cb699a44f5c&sentry_version=7&sentry_client=sentry.javascript.astro%2F8.34.0" + } + ], + "cookies": [ + { + "name": "_pk_ses.118.88ba", + "value": "1", + "domain": "collectivite.fr", + "path": "/", + "expires": 1733069825, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.118.88ba", + "value": "88acbd6307094f82.1733068025.", + "domain": "collectivite.fr", + "path": "/", + "expires": 1767023225, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 15:47:03 GMT", + "x-request-id": "444910fa-d6f7-46d6-9d5b-332033af79bf" + }, + "endpoints": [ + { + "hostname": "collectivite.fr", + "ip": "148.253.96.193", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud", + "ip": "51.159.62.20", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + }, + { + "hostname": "sentry.anct.cloud-ed.fr", + "ip": "154.41.70.33", + "geoip": { + "city": { + "geoname_id": 2972191, + "names": { + "de": "Tours", + "en": "Tours", + "es": "Tours", + "fr": "Tours", + "ja": "トゥール", + "pt-BR": "Tours", + "ru": "Тур", + "zh-CN": "图尔" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 47.3983, + "longitude": 0.7037, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3027939, + "iso_code": "CVL", + "names": { + "de": "Centre-Val de Loire", + "en": "Centre-Val de Loire", + "es": "Centro-Valle de Loira", + "fr": "Centre-Val de Loire", + "ja": "サントル=ヴァル・ド・ロワール地域圏", + "pt-BR": "Centro", + "ru": "Центр — Долина Луары" + } + }, + { + "geoname_id": 3012804, + "iso_code": "37", + "names": { + "de": "Indre-et-Loire", + "en": "Indre-et-Loire", + "es": "Indre y Loira", + "fr": "Indre-et-Loire", + "ja": "アンドル=エ=ロワール県", + "pt-BR": "Indre-et-Loire", + "ru": "Эндр и Луара", + "zh-CN": "安德尔-卢瓦尔省" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://collectivite.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "magento", + "name": "Magento", + "description": "Magento is an open-source ecommerce platform written in PHP.", + "confidence": 100, + "version": null, + "icon": "Magento.svg", + "website": "https://magento.com", + "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "astro", + "name": "Astro", + "description": "Astro is a new JavaScript-based static site builder.", + "confidence": 100, + "version": "4.16.5", + "icon": "Astro.svg", + "website": "https://astro.build", + "cpe": null, + "categories": [ + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + }, + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "confidence": 100, + "version": null, + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, + "categories": [ + { + "id": 73, + "slug": "surveys", + "name": "Surveys" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://collectivite.fr/", + "finalUrl": "https://collectivite.fr/", + "fetchTime": "2024-12-01T15:46:37.233Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.75 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.89 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 5720, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1956, + "firstMeaningfulPaint": 1956, + "largestContentfulPaint": 4063, + "interactive": 5720, + "speedIndex": 2140, + "totalBlockingTime": 336, + "maxPotentialFID": 290, + "cumulativeLayoutShift": 0.00885101318359375, + "cumulativeLayoutShiftMainFrame": 0.00885101318359375, + "totalCumulativeLayoutShift": 0.00885101318359375, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 326067702, + "observedNavigationStart": 0, + "observedNavigationStartTs": 326067702, + "observedFirstPaint": 646, + "observedFirstPaintTs": 326714141, + "observedFirstContentfulPaint": 646, + "observedFirstContentfulPaintTs": 326714141, + "observedFirstContentfulPaintAllFrames": 646, + "observedFirstContentfulPaintAllFramesTs": 326714141, + "observedFirstMeaningfulPaint": 646, + "observedFirstMeaningfulPaintTs": 326714141, + "observedLargestContentfulPaint": 783, + "observedLargestContentfulPaintTs": 326850385, + "observedLargestContentfulPaintAllFrames": 783, + "observedLargestContentfulPaintAllFramesTs": 326850385, + "observedTraceEnd": 4867, + "observedTraceEndTs": 330934664, + "observedLoad": 1098, + "observedLoadTs": 327165380, + "observedDomContentLoaded": 781, + "observedDomContentLoadedTs": 326848989, + "observedCumulativeLayoutShift": 0.00885101318359375, + "observedCumulativeLayoutShiftMainFrame": 0.00885101318359375, + "observedTotalCumulativeLayoutShift": 0.00885101318359375, + "observedFirstVisualChange": 652, + "observedFirstVisualChangeTs": 326719702, + "observedLastVisualChange": 919, + "observedLastVisualChangeTs": 326986702, + "observedSpeedIndex": 799, + "observedSpeedIndexTs": 326866925 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 48, + "numScripts": 16, + "numStylesheets": 4, + "numFonts": 4, + "numTasks": 1643, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 82.50099999999999, + "throughput": 13485816.251418566, + "maxRtt": 93.04899999999999, + "maxServerLatency": 128.37400000000002, + "totalByteWeight": 755762, + "totalTaskTime": 368.8179999999972, + "mainDocumentTransferSize": 9167 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "protocol_support_score", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "100" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://collectivite.fr/mentions-legales" }, { - "id": "protocol_support_score_weighted", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "30" - }, + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 1, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://collectivite.fr/donnees-personnelles" + } + ], + "betagouv": null, + "ecoindex": [ { - "id": "key_exchange_score", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" + "width": 1920, + "height": 1080, + "url": "https://collectivite.fr", + "size": 834.84, + "nodes": 371, + "requests": 48, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 15:43:38.869689", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.925, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-03T17:28:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "C", + "trackersCount": 7, + "lighthouse_performance": 0.75, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.89, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://marcenais-33620.collectivite.fr", + "category": "startup", + "repositories": [ + "https://gitlab.com/incubateur-territoires/startups/annuaire-des-collectivites" + ], + "tags": [ + "production", + "annuaire-collectivites", + "anct" + ], + "http": { + "url": "https://marcenais-33620.collectivite.fr", + "algorithm_version": 3, + "end_time": "Sun, 08 Sep 2024 11:47:17 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "content-length": "9", + "content-type": "text/plain; charset=utf-8", + "date": "Sun, 08 Sep 2024 11:47:15 GMT" }, + "scan_id": 55406743, + "score": 10, + "start_time": "Sun, 08 Sep 2024 11:47:15 GMT", + "state": "FINISHED", + "status_code": 404, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": false, + "route": [ + "http://marcenais-33620.collectivite.fr/" + ], + "status_code": null + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": null, + "nmap": { + "host": "marcenais-33620.collectivite.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "key_exchange_score_weighted", - "ip": "collectivite.fr/185.21.194.105", + "id": "scanProblem", + "ip": "marcenais-33620.collectivite.fr/", "port": "443", - "severity": "INFO", - "finding": "27" + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'marcenais-33620.collectivite.fr' available" }, { - "id": "cipher_strength_score", - "ip": "collectivite.fr/185.21.194.105", + "id": "scanTime", + "ip": "marcenais-33620.collectivite.fr/", "port": "443", - "severity": "INFO", - "finding": "60" + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://marcenais-33620.collectivite.fr/": { + "status": 0, + "error": "Hostname could not be resolved (marcenais-33620.collectivite.fr)" + } }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score_weighted", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "final_score", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": null, + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "F", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://a-just.beta.gouv.fr", + "category": "justice", + "betaId": "a-just", + "http": { + "url": "https://a-just.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 11:51:31 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt379801622056' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 11:51:30 GMT", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding, Origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-RateLimit-Limit": "1000", + "X-RateLimit-Remaining": "996", + "X-RateLimit-Reset": "1729425213", + "X-Request-ID": "08f409b5-8869-4b16-b71b-0bf2b4d7d79d", + "x-xss-protection": "1" }, - { - "id": "overall_grade", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57061971, + "score": 115, + "start_time": "Sun, 20 Oct 2024 11:51:29 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://events.mapbox.com", + "https://*.hotjar.io", + "https://stats.beta.gouv.fr", + "https://*.hotjar.com", + "https://api.mapbox.com", + "https://www.google-analytics.com/j/collect", + "https://forms-eu1.hsforms.com", + "https://hubspot-forms-static-embed-eu1.s3.amazonaws.com", + "https://api.gitbook.com", + "https://stats.beta-gouv.cloud-ed.fr", + "'self'", + "wss://*.hotjar.com", + "*.justice.gouv.fr" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "https://fonts.gstatic.com", + "data:", + "https://*.hotjar.com", + "'self'" + ], + "form-action": [ + "*.hsforms.com", + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "frame-src": [ + "https://forms-eu1.hsforms.com/", + "https://app.videas.fr/", + "https://meta.a-just.beta.gouv.fr", + "https://calendly.com", + "https://docs.a-just.beta.gouv.fr" + ], + "img-src": [ + "https://api.hubspot.com", + "https://js-eu1.hsforms.net", + "'self'", + "https://image.noelshack.com", + "https://forms-eu1.hsforms.com", + "https://img.freepik.com", + "https://forms.hsforms.com", + "data:", + "https://www.ionos.fr", + "https://i.goopics.net/" + ], + "media-src": [ + "'self'" + ], + "object-src": [ + "'self'" + ], + "script-src": [ + "*.calendly.com", + "'sha256-92tnq2axm9gjijetcb7r4qpdc3jjxquyf1fkong4mvg='", + "'sha256-tbblgys6fvyemoy9hpbgu6tiijnpdizpugpdxkhgtvw='", + "*.beta.gouv.fr", + "https://*.hsforms.net", + "*.google-analytics.com", + "'sha256-jq7vwlk1r1bayng3rh3wi3uxjc6evrsm19ho/viohce='", + "*.hotjar.com", + "'sha256-9jsqnckysdu3te2wujv9qxv1dkxi1vt9hz3g7nnens8='", + "'sha256-z/i+tlsqfcdh08e3fvi/f+qninxe6tm+kmcxnmrcaaw='", + "'sha256-wxdheuxhrthqwktucbtuckcv5wn4y9jqwkzrgjfqr40='", + "'self'", + "*.a-just.incubateur.net", + "'sha256-hvge3cnzeh/uztmz65oo81f6fb06/nftnyudqka58ae='" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898'", + "'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1'", + "'self'", + "cdnjs.cloudflare.com", + "'nonce-dt379801622056'" + ], + "upgrade-insecure-requests": [ + "'none'" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": true, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe-default-src-none", + "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", + "score_modifier": 10 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://a-just.beta.gouv.fr", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://a-just.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://a-just.beta.gouv.fr/", + "https://a-just.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1" + }, + "pass": true, + "result": "x-xss-protection-enabled", + "score_description": "Deprecated X-XSS-Protection header set to \"1\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "2uyb", + "url": "https://a-just.beta.gouv.fr/", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T17:51:25Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "email:3205808100", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:06:28Z", + "next_check_at": "2024-12-01T16:11:28Z", + "created_at": "2023-01-30T16:32:40Z", + "mute_until": null, + "favicon_url": "https://a-just.beta.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:01:31Z", + "expires_at": "2025-01-30T10:57:00Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "collectivite.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 270, + "connection": 131, + "handshake": 135, + "response": 138, + "total": 673 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "a-just.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385415,7 +381524,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385423,7 +381532,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385431,7 +381540,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385439,7 +381548,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -385447,7 +381556,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -385455,441 +381564,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-11-05 17:28" + "finding": "2024-11-01 10:57" }, { "id": "cert_notAfter", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-02-03 17:28" + "finding": "2025-01-30 10:57" }, { "id": "cert_extlifeSpan", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "403 Forbidden ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732462895" + "finding": "1733068833" }, { "id": "HSTS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -385897,7 +382006,7 @@ }, { "id": "heartbleed", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -385906,7 +382015,7 @@ }, { "id": "CCS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -385915,7 +382024,7 @@ }, { "id": "ticketbleed", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -385924,7 +382033,7 @@ }, { "id": "ROBOT", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -385933,7 +382042,7 @@ }, { "id": "secure_renego", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -385941,7 +382050,7 @@ }, { "id": "secure_client_renego", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -385950,7 +382059,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -385959,16 +382068,16 @@ }, { "id": "BREACH", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -385977,14 +382086,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -385993,7 +382102,7 @@ }, { "id": "FREAK", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -386002,7 +382111,7 @@ }, { "id": "DROWN", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -386011,16 +382120,16 @@ }, { "id": "DROWN_hint", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26B9E39535491A4EC854128B140B731212E40F67C85C5625A25D235AF5260496" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A78EEE9912081DCA644FF19329245AABADEA78695D43A9EBDA8B5CDA219D71E7" }, { "id": "LOGJAM", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -386029,7 +382138,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -386038,7 +382147,7 @@ }, { "id": "BEAST", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -386047,7 +382156,7 @@ }, { "id": "LUCKY13", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -386056,7 +382165,7 @@ }, { "id": "winshock", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -386065,7 +382174,7 @@ }, { "id": "RC4", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -386074,399 +382183,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "collectivite.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386474,7 +382583,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386482,7 +382591,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386490,7 +382599,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386498,7 +382607,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -386506,7 +382615,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -386514,441 +382623,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-05 17:28" + "finding": "2024-11-01 10:57" }, { "id": "cert_notAfter", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-03 17:28" + "finding": "2025-01-30 10:57" }, { "id": "cert_extlifeSpan", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "403 Forbidden ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732462948" + "finding": "1733068927" }, { "id": "HSTS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -386956,7 +383065,7 @@ }, { "id": "heartbleed", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -386965,7 +383074,7 @@ }, { "id": "CCS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -386974,7 +383083,7 @@ }, { "id": "ticketbleed", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -386983,7 +383092,7 @@ }, { "id": "ROBOT", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -386992,7 +383101,7 @@ }, { "id": "secure_renego", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -387000,7 +383109,7 @@ }, { "id": "secure_client_renego", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -387009,7 +383118,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -387018,16 +383127,16 @@ }, { "id": "BREACH", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -387036,14 +383145,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -387052,7 +383161,7 @@ }, { "id": "FREAK", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -387061,7 +383170,7 @@ }, { "id": "DROWN", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -387070,16 +383179,16 @@ }, { "id": "DROWN_hint", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=26B9E39535491A4EC854128B140B731212E40F67C85C5625A25D235AF5260496" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A78EEE9912081DCA644FF19329245AABADEA78695D43A9EBDA8B5CDA219D71E7" }, { "id": "LOGJAM", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -387088,7 +383197,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -387097,7 +383206,7 @@ }, { "id": "BEAST", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -387106,7 +383215,7 @@ }, { "id": "LUCKY13", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -387115,7 +383224,7 @@ }, { "id": "winshock", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -387124,7 +383233,7 @@ }, { "id": "RC4", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -387133,1764 +383242,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectivite.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "collectivite.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "213" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/technical_error_8594bf81a7.svg" - }, - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/document_add_a703beb833.svg" - }, - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/coding_5021407b46.svg" - }, - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/add_line_f899d2f269.svg" - }, - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/file_text_line_4631092e65.svg" - }, - { - "type": "unknown", - "url": "https://annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud/verified_badge_line_98e614e870.svg" - }, - { - "type": "unknown", - "url": "https://sentry.anct.cloud-ed.fr/api/10/envelope/?sentry_key=1617453a3c8412511a677cb699a44f5c&sentry_version=7&sentry_client=sentry.javascript.astro%2F8.34.0" - } - ], - "cookies": [ - { - "name": "_pk_ses.118.88ba", - "value": "1", - "domain": "collectivite.fr", - "path": "/", - "expires": 1732464518, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.118.88ba", - "value": "5f5c20f94a787a1a.1732462719.", - "domain": "collectivite.fr", - "path": "/", - "expires": 1766417919, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 15:38:37 GMT", - "x-request-id": "cae3ee12-07bf-4740-b1c0-154d40b1f256" - }, - "endpoints": [ - { - "hostname": "collectivite.fr", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "annuaire-des-collectivites-production-storage.s3.fr-par.scw.cloud", - "ip": "51.159.62.18", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - }, - { - "hostname": "sentry.anct.cloud-ed.fr", - "ip": "154.41.70.33", - "geoip": { - "city": { - "geoname_id": 2972191, - "names": { - "de": "Tours", - "en": "Tours", - "es": "Tours", - "fr": "Tours", - "ja": "トゥール", - "pt-BR": "Tours", - "ru": "Тур", - "zh-CN": "图尔" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 47.3983, - "longitude": 0.7037, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3027939, - "iso_code": "CVL", - "names": { - "de": "Centre-Val de Loire", - "en": "Centre-Val de Loire", - "es": "Centro-Valle de Loira", - "fr": "Centre-Val de Loire", - "ja": "サントル=ヴァル・ド・ロワール地域圏", - "pt-BR": "Centro", - "ru": "Центр — Долина Луары" - } - }, - { - "geoname_id": 3012804, - "iso_code": "37", - "names": { - "de": "Indre-et-Loire", - "en": "Indre-et-Loire", - "es": "Indre y Loira", - "fr": "Indre-et-Loire", - "ja": "アンドル=エ=ロワール県", - "pt-BR": "Indre-et-Loire", - "ru": "Эндр и Луара", - "zh-CN": "安德尔-卢瓦尔省" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://collectivite.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "magento", - "name": "Magento", - "description": "Magento is an open-source ecommerce platform written in PHP.", - "confidence": 100, - "version": null, - "icon": "Magento.svg", - "website": "https://magento.com", - "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "astro", - "name": "Astro", - "description": "Astro is a new JavaScript-based static site builder.", - "confidence": 100, - "version": "4.16.5", - "icon": "Astro.svg", - "website": "https://astro.build", - "cpe": null, - "categories": [ - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - }, - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", - "confidence": 100, - "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", - "cpe": null, - "categories": [ - { - "id": 73, - "slug": "surveys", - "name": "Surveys" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://collectivite.fr/", - "finalUrl": "https://collectivite.fr/", - "fetchTime": "2024-11-24T15:38:12.020Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.76 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.86 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.89 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4665, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1958, - "firstMeaningfulPaint": 1958, - "largestContentfulPaint": 3833, - "interactive": 4665, - "speedIndex": 2146, - "totalBlockingTime": 376, - "maxPotentialFID": 357, - "cumulativeLayoutShift": 0.008571533203125, - "cumulativeLayoutShiftMainFrame": 0.008571533203125, - "totalCumulativeLayoutShift": 0.008571533203125, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 520397884, - "observedNavigationStart": 0, - "observedNavigationStartTs": 520397884, - "observedFirstPaint": 639, - "observedFirstPaintTs": 521037210, - "observedFirstContentfulPaint": 639, - "observedFirstContentfulPaintTs": 521037210, - "observedFirstContentfulPaintAllFrames": 639, - "observedFirstContentfulPaintAllFramesTs": 521037210, - "observedFirstMeaningfulPaint": 639, - "observedFirstMeaningfulPaintTs": 521037210, - "observedLargestContentfulPaint": 773, - "observedLargestContentfulPaintTs": 521170813, - "observedLargestContentfulPaintAllFrames": 773, - "observedLargestContentfulPaintAllFramesTs": 521170813, - "observedTraceEnd": 4852, - "observedTraceEndTs": 525250314, - "observedLoad": 1113, - "observedLoadTs": 521510675, - "observedDomContentLoaded": 745, - "observedDomContentLoadedTs": 521143130, - "observedCumulativeLayoutShift": 0.008571533203125, - "observedCumulativeLayoutShiftMainFrame": 0.008571533203125, - "observedTotalCumulativeLayoutShift": 0.008571533203125, - "observedFirstVisualChange": 647, - "observedFirstVisualChangeTs": 521044884, - "observedLastVisualChange": 931, - "observedLastVisualChangeTs": 521328884, - "observedSpeedIndex": 802, - "observedSpeedIndexTs": 521200318 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 48, - "numScripts": 16, - "numStylesheets": 4, - "numFonts": 4, - "numTasks": 1610, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 81.506, - "throughput": 12365792.325136084, - "maxRtt": 87.26400000000001, - "maxServerLatency": 89.10500000000002, - "totalByteWeight": 756060, - "totalTaskTime": 369.0609999999988, - "mainDocumentTransferSize": 9121 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "clientsimulation-ie_11_winphone81", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://collectivite.fr/mentions-legales" + "id": "clientsimulation-ie_11_win10", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 1, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://collectivite.fr/donnees-personnelles" - } - ], - "betagouv": null, - "ecoindex": [ + "id": "clientsimulation-edge_15_win10", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "width": 1920, - "height": 1080, - "url": "https://collectivite.fr", - "size": 834.59, - "nodes": 371, - "requests": 48, - "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:35:10.119791", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.928, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-03T17:28:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 7, - "lighthouse_performance": 0.76, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.86, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.89, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://marcenais-33620.collectivite.fr", - "category": "startup", - "repositories": [ - "https://gitlab.com/incubateur-territoires/startups/annuaire-des-collectivites" - ], - "tags": [ - "production", - "annuaire-collectivites", - "anct" - ], - "http": { - "url": "https://marcenais-33620.collectivite.fr", - "algorithm_version": 3, - "end_time": "Sun, 08 Sep 2024 11:47:17 GMT", - "grade": "F", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "content-length": "9", - "content-type": "text/plain; charset=utf-8", - "date": "Sun, 08 Sep 2024 11:47:15 GMT" + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 55406743, - "score": 10, - "start_time": "Sun, 08 Sep 2024 11:47:15 GMT", - "state": "FINISHED", - "status_code": 404, - "tests_failed": 5, - "tests_passed": 5, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": false, - "route": [ - "http://marcenais-33620.collectivite.fr/" - ], - "status_code": null - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-invalid-cert", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": null, - "nmap": { - "host": "marcenais-33620.collectivite.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "scanProblem", - "ip": "marcenais-33620.collectivite.fr/", + "id": "clientsimulation-safari_121_ios_122", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'marcenais-33620.collectivite.fr' available" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanTime", - "ip": "marcenais-33620.collectivite.fr/", + "id": "clientsimulation-safari_130_osx_10146", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://marcenais-33620.collectivite.fr/": { - "status": 0, - "error": "Hostname could not be resolved (marcenais-33620.collectivite.fr)" - } + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-safari_154_osx_1231", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "F", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://a-just.beta.gouv.fr", - "category": "justice", - "betaId": "a-just", - "http": { - "url": "https://a-just.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 11:51:31 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt379801622056' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 11:51:30 GMT", - "Strict-Transport-Security": "max-age=31536000", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding, Origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-RateLimit-Limit": "1000", - "X-RateLimit-Remaining": "996", - "X-RateLimit-Reset": "1729425213", - "X-Request-ID": "08f409b5-8869-4b16-b71b-0bf2b4d7d79d", - "x-xss-protection": "1" + "id": "clientsimulation-java_7u25", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" }, - "scan_id": 57061971, - "score": 115, - "start_time": "Sun, 20 Oct 2024 11:51:29 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://events.mapbox.com", - "https://*.hotjar.io", - "https://stats.beta.gouv.fr", - "https://*.hotjar.com", - "https://api.mapbox.com", - "https://www.google-analytics.com/j/collect", - "https://forms-eu1.hsforms.com", - "https://hubspot-forms-static-embed-eu1.s3.amazonaws.com", - "https://api.gitbook.com", - "https://stats.beta-gouv.cloud-ed.fr", - "'self'", - "wss://*.hotjar.com", - "*.justice.gouv.fr" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "https://fonts.gstatic.com", - "data:", - "https://*.hotjar.com", - "'self'" - ], - "form-action": [ - "*.hsforms.com", - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "https://forms-eu1.hsforms.com/", - "https://app.videas.fr/", - "https://meta.a-just.beta.gouv.fr", - "https://calendly.com", - "https://docs.a-just.beta.gouv.fr" - ], - "img-src": [ - "https://api.hubspot.com", - "https://js-eu1.hsforms.net", - "'self'", - "https://image.noelshack.com", - "https://forms-eu1.hsforms.com", - "https://img.freepik.com", - "https://forms.hsforms.com", - "data:", - "https://www.ionos.fr", - "https://i.goopics.net/" - ], - "media-src": [ - "'self'" - ], - "object-src": [ - "'self'" - ], - "script-src": [ - "*.calendly.com", - "'sha256-92tnq2axm9gjijetcb7r4qpdc3jjxquyf1fkong4mvg='", - "'sha256-tbblgys6fvyemoy9hpbgu6tiijnpdizpugpdxkhgtvw='", - "*.beta.gouv.fr", - "https://*.hsforms.net", - "*.google-analytics.com", - "'sha256-jq7vwlk1r1bayng3rh3wi3uxjc6evrsm19ho/viohce='", - "*.hotjar.com", - "'sha256-9jsqnckysdu3te2wujv9qxv1dkxi1vt9hz3g7nnens8='", - "'sha256-z/i+tlsqfcdh08e3fvi/f+qninxe6tm+kmcxnmrcaaw='", - "'sha256-wxdheuxhrthqwktucbtuckcv5wn4y9jqwkzrgjfqr40='", - "'self'", - "*.a-just.incubateur.net", - "'sha256-hvge3cnzeh/uztmz65oo81f6fb06/nftnyudqka58ae='" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898'", - "'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1'", - "'self'", - "cdnjs.cloudflare.com", - "'nonce-dt379801622056'" - ], - "upgrade-insecure-requests": [ - "'none'" - ], - "worker-src": [ - "blob:" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": true, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-no-unsafe-default-src-none", - "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", - "score_modifier": 10 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "https://a-just.beta.gouv.fr", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://a-just.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://a-just.beta.gouv.fr/", - "https://a-just.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "DENY" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1" - }, - "pass": true, - "result": "x-xss-protection-enabled", - "score_description": "Deprecated X-XSS-Protection header set to \"1\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "2uyb", - "url": "https://a-just.beta.gouv.fr/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T01:27:31Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3205808100", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T15:53:57Z", - "next_check_at": "2024-11-24T15:58:54Z", - "created_at": "2023-01-30T16:32:40Z", - "mute_until": null, - "favicon_url": "https://a-just.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T15:44:02Z", - "expires_at": "2025-01-30T10:57:00Z", - "valid": true, - "error": null + { + "id": "clientsimulation-java_8u161", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 301, - "connection": 130, - "handshake": 136, - "response": 136, - "total": 702 - } + { + "id": "rating_spec", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "a-just.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "a-just.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -388898,7 +383642,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -388906,7 +383650,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -388914,7 +383658,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -388922,7 +383666,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -388930,7 +383674,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -388938,476 +383682,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-11-01 10:57" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-30 10:57" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "403 Forbidden ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "1732463535" - }, - { - "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733069023" }, { - "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "id": "HSTS", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt138233652894' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "id": "security_headers", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -389415,7 +384124,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -389424,7 +384133,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -389433,7 +384142,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -389442,7 +384151,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -389451,7 +384160,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -389459,7 +384168,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -389468,7 +384177,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -389477,16 +384186,16 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -389495,14 +384204,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -389511,7 +384220,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -389520,7 +384229,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -389529,7 +384238,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -389538,7 +384247,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -389547,7 +384256,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -389556,7 +384265,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -389565,7 +384274,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -389574,7 +384283,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -389583,7 +384292,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -389592,392 +384301,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" }, { - "id": "service", + "id": "grade_cap_reason_1", "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "service", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -389985,7 +384701,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -389993,7 +384709,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -390001,7 +384717,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -390009,7 +384725,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -390017,7 +384733,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -390025,476 +384741,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-11-01 10:57" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-30 10:57" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "403 Forbidden ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1732463629" - }, - { - "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733069118" }, { - "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "id": "HSTS", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt138233652894' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "id": "security_headers", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -390502,7 +385183,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -390511,7 +385192,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -390520,7 +385201,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -390529,7 +385210,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -390538,7 +385219,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -390546,7 +385227,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -390555,7 +385236,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -390564,16 +385245,16 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -390582,14 +385263,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -390598,7 +385279,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -390607,7 +385288,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -390616,7 +385297,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -390625,7 +385306,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -390634,7 +385315,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -390643,7 +385324,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -390652,7 +385333,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -390661,7 +385342,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -390670,7 +385351,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -390679,392 +385360,1364 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "a-just.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "386" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "date": "Sun, 01 Dec 2024 15:59:12 GMT", + "x-request-id": "bfada7c5-a445-4489-a1ec-6705dd1dffba" + }, + "endpoints": [ + { + "hostname": "a-just.beta.gouv.fr", + "ip": "80.247.12.255", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://a-just.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "typescript", + "name": "TypeScript", + "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", + "confidence": 100, + "version": null, + "icon": "TypeScript.svg", + "website": "https://www.typescriptlang.org", + "cpe": null, + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "quill", + "name": "Quill", + "description": "Quill is a free open-source WYSIWYG editor.", + "confidence": 100, + "version": null, + "icon": "Quill.svg", + "website": "https://quilljs.com", + "cpe": null, + "categories": [ + { + "id": 24, + "slug": "rich-text-editors", + "name": "Rich text editors" + } + ], + "rootPath": true + }, + { + "slug": "mapbox-gl-js", + "name": "Mapbox GL JS", + "description": "Mapbox GL JS is a JavaScript library that uses WebGL to render interactive maps from vector tiles and Mapbox styles.", + "confidence": 0, + "version": "2.15.0", + "icon": "Mapbox.svg", + "website": "https://github.com/mapbox/mapbox-gl-js", + "cpe": null, + "categories": [ + { + "id": 35, + "slug": "maps", + "name": "Maps" + } + ], + "rootPath": true + }, + { + "slug": "amazon-web-services", + "name": "Amazon Web Services", + "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", + "confidence": 100, + "version": null, + "icon": "Amazon Web Services.svg", + "website": "https://aws.amazon.com/", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + } + ] + }, + { + "slug": "zone-js", + "name": "Zone.js", + "description": null, + "confidence": 100, + "version": null, + "icon": "Angular.svg", + "website": "https://github.com/angular/angular/tree/master/packages/zone.js", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "toastr", + "name": "toastr", + "description": "toastr is a Javascript library for non-blocking notifications. The goal is to create a simple core library that can be customized and extended.", + "confidence": 100, + "version": "2.1.4", + "icon": "toastr.png", + "website": "https://github.com/CodeSeven/toastr", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "angular", + "name": "Angular", + "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", + "confidence": 100, + "version": "16.1.8", + "icon": "Angular.svg", + "website": "https://angular.io", + "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.7.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.6.5", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "google-font-api", + "name": "Google Font API", + "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", + "confidence": 100, + "version": null, + "icon": "Google Font API.svg", + "website": "https://google.com/fonts", + "cpe": null, + "categories": [ + { + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "amazon-s3", + "name": "Amazon S3", + "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", + "confidence": 100, + "version": null, + "icon": "Amazon S3.svg", + "website": "https://aws.amazon.com/s3/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://a-just.beta.gouv.fr/", + "finalUrl": "https://a-just.beta.gouv.fr/", + "fetchTime": "2024-11-24T15:49:42.582Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.35 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.63 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.7 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 10396, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 6751, + "firstMeaningfulPaint": 6751, + "largestContentfulPaint": 10663, + "interactive": 10396, + "speedIndex": 7635, + "totalBlockingTime": 623, + "maxPotentialFID": 877, + "cumulativeLayoutShift": 0.026318473709954156, + "cumulativeLayoutShiftMainFrame": 0.026318473709954156, + "totalCumulativeLayoutShift": 0.026318473709954156, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 366540080, + "observedNavigationStart": 0, + "observedNavigationStartTs": 366540080, + "observedFirstPaint": 882, + "observedFirstPaintTs": 367421965, + "observedFirstContentfulPaint": 2132, + "observedFirstContentfulPaintTs": 368671782, + "observedFirstContentfulPaintAllFrames": 2132, + "observedFirstContentfulPaintAllFramesTs": 368671782, + "observedFirstMeaningfulPaint": 2132, + "observedFirstMeaningfulPaintTs": 368671782, + "observedLargestContentfulPaint": 2283, + "observedLargestContentfulPaintTs": 368822739, + "observedLargestContentfulPaintAllFrames": 2283, + "observedLargestContentfulPaintAllFramesTs": 368822739, + "observedTraceEnd": 4863, + "observedTraceEndTs": 371402932, + "observedLoad": 2406, + "observedLoadTs": 368946381, + "observedDomContentLoaded": 1570, + "observedDomContentLoadedTs": 368109618, + "observedCumulativeLayoutShift": 0.026318473709954156, + "observedCumulativeLayoutShiftMainFrame": 0.026318473709954156, + "observedTotalCumulativeLayoutShift": 0.026318473709954156, + "observedFirstVisualChange": 2145, + "observedFirstVisualChangeTs": 368685080, + "observedLastVisualChange": 2328, + "observedLastVisualChangeTs": 368868080, + "observedSpeedIndex": 2294, + "observedSpeedIndexTs": 368834079 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 24, + "numScripts": 8, + "numStylesheets": 1, + "numFonts": 3, + "numTasks": 561, + "numTasksOver10ms": 8, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 133.36399999999998, + "throughput": 14575275.16267819, + "maxRtt": 133.822, + "maxServerLatency": 14.432999999999993, + "totalByteWeight": 1972789, + "totalTaskTime": 488.2349999999995, + "mainDocumentTransferSize": 3375 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://a-just.beta.gouv.fr/declaration-accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "a-just", + "type": "startup", + "attributes": { + "name": "A-JUST", + "pitch": "Aider les juridictions dans l'affectation de leurs ressources humaines pour réduire les délais de justice.", + "stats_url": "https://a-just.beta.gouv.fr/stats", + "link": "https://a-just.beta.gouv.fr", + "repository": "https://github.com/betagouv/a-just", + "contact": "contact@a-just.fr", + "content_url_encoded_markdown": "%3C%21--StartFragment--%3E%0A%0A%23%23%20%2A%2AContexte%2A%2A%0A%0A%5BVoir%20la%20vid%C3%A9o%20de%20pr%C3%A9sentation%20de%20la%20d%C3%A9marche%5D%28https%3A%2F%2Fvimeo.com%2F788314426%29%0A%0ALa%20derni%C3%A8re%20enqu%C3%AAte%20minist%C3%A9rielle%20sur%20le%20fonctionnement%20de%20la%20Justice%20et%20la%20satisfaction%20des%20personnes%20ayant%20eu%20un%20contact%20direct%20avec%20elle%20a%20r%C3%A9v%C3%A9l%C3%A9%20que%20%2A%2A95%25%20des%20fran%C3%A7ais%20la%20consid%C3%A9raient%20trop%20lente%2A%2A.%0A%0ACette%20appr%C3%A9ciation%20est%20confirm%C3%A9e%20par%20le%20barom%C3%A8tre%20annuel%20de%20satisfaction%20des%20usagers%20des%20services%20publics%2C%20publi%C3%A9%20en%20novembre%202019%20par%20l%E2%80%99Institut%20Paul%20Delouvrier%20en%20partenariat%20avec%20la%20DITP%2C%20selon%20%2A%2Alequel%20la%20priorit%C3%A9%20aux%20yeux%20des%20usagers%20du%20service%20public%20de%20la%20Justice%20est%20la%20rapidit%C3%A9%20de%20jugement%20des%20affaires%2A%2A.%0A%0ASelon%20les%20chiffres%20cl%C3%A9s%20de%20la%20Justice%20publi%C3%A9s%20le%2026%20novembre%202020%2C%20il%20s%E2%80%99%C3%A9coule%20en%20moyenne%2C%20%2A%2Aentre%20la%20commission%20d%E2%80%99une%20infraction%20et%20la%20condamnation%2A%2A%20%3A%0A%0A%2A%2042%2C2%20mois%20pour%20des%20crimes%20%3B%0A%2A%2011%2C7%20mois%20pour%20des%20d%C3%A9lits%20%3B%0A%2A%2012%2C8%20mois%20pour%20des%20contraventions%20de%205%C3%A8me%20classe.%0A%0AEn%20appel%2C%20il%20se%20passe%2C%20%2A%2Aentre%20la%20premi%C3%A8re%20d%C3%A9cision%20et%20l%E2%80%99appel%2A%2A%20%3A%0A%0A%2A%2020%2C4%20mois%20pour%20les%20crimes%20%3B%0A%2A%2015%2C7%20mois%20pour%20les%20d%C3%A9lits%20%3B%0A%2A%2011%2C9%20mois%20pour%20les%20contraventions%20de%205%C3%A8me%20classe.%0A%0A%2A%2AEn%20mati%C3%A8re%20civile%2A%2A%2C%20la%20dur%C3%A9e%20moyenne%20de%20traitement%20des%20affaires%20termin%C3%A9es%20en%202019%20%C3%A9tait%20de%C2%A0%3A%0A%0A%2A%2014%20mois%20en%20cour%20d%E2%80%99appel%C2%A0%3B%0A%2A%209%2C4%20mois%20devant%20les%20tribunaux%20de%20grande%20instance%C2%A0%3B%0A%2A%2014%2C5%20mois%20devant%20les%20conseils%20de%20prud%E2%80%99hommes.%0A%0ACes%20d%C3%A9lais%20de%20traitement%20%2A%2Avarient%2A%2A%20de%20surcro%C3%AEt%20de%20fa%C3%A7on%20significative%20%2A%2Aselon%20les%20ressorts%2A%2A%20et%20leur%20%2A%2Aorigine%2A%2A%20est%20assur%C3%A9ment%20%2A%2Amultifactorielle%2A%2A.%0A%0A%23%23%20%2A%2ALe%20Probl%C3%A8me%2A%2A%0A%0A%2A%2A%2ALes%20d%C3%A9lais%20de%20la%20Justice%2A%C2%A0%3A%20un%20probl%C3%A8me%20majeur%20pour%20les%20justiciables%2A%2A%0A%0ALa%20dur%C3%A9e%C2%A0des%20contentieux%20d%C3%A9grade%20consid%C3%A9rablement%20l%E2%80%99efficacit%C3%A9%C2%A0et%20l%E2%80%99image%20du%20service%20public%20de%20la%20Justice.%0A%0AAinsi%20que%20le%20rappellent%20r%C3%A9guli%C3%A8rement%20les%20parlementaires%2C%20il%20est%20attendu%20par%20nos%20concitoyens%20que%20les%20budgets%20vot%C3%A9s%20soient%20directement%2C%20rapidement%20et%20efficacement%20mobilis%C3%A9s%20au%20soutien%20des%20actions%20n%C3%A9cessaires%20%C3%A0%20l%E2%80%99am%C3%A9lioration%20de%20la%20qualit%C3%A9%20du%20service%20rendu%2C%20notamment%20en%20termes%20de%20d%C3%A9lais.%0A%0AEn%20effet%2C%20m%C3%AAme%20si%20la%20dur%C3%A9e%20globale%20d%E2%80%99une%20affaire%20d%C3%A9pend%20significativement%20des%20parties%2C%20elle%20est%20%C3%A9galement%20li%C3%A9e%20%C3%A0%20la%20capacit%C3%A9%20de%20traitement%20des%20juridictions%20%28moyens%20mat%C3%A9riels%20et%20humains%20disponibles%29.%0A%0ALa%20diminution%20de%20la%20dur%C3%A9e%20des%20proc%C3%A9dures%20n%C3%A9cessite%20donc%C2%A0l%E2%80%99adaptation%20des%20moyens%20affect%C3%A9s%C2%A0%C3%A0%20leur%20traitement%20aux%20besoins%20de%20justice%20locaux.%0A%0A%2A%2A%2ALe%20probl%C3%A8me%20des%20juridictions%2A%C2%A0%3A%20comment%20r%C3%A9pondre%20au%20mieux%20aux%20besoins%20de%20justice%20locaux%C2%A0%3F%2A%2A%C2%A0%C2%A0%0A%0ALes%20tribunaux%20sont%20des%20organisations%20complexes%2C%20devant%20traiter%20un%20volume%20et%20une%20diversit%C3%A9%20consid%C3%A9rables%20de%20contentieux%C2%B9%2C%20en%20mobilisant%20des%20effectifs%20nombreux%20et%20diversifi%C3%A9s%C2%B2.%0A%0APour%20ce%20faire%2C%20ils%20doivent%2C%20d%E2%80%99une%20part%2C%20disposer%20de%20ressources%20humaines%2C%20mat%C3%A9rielles%2C%20budg%C3%A9taires%20ainsi%20que%20de%20locaux%20adapt%C3%A9s%20aux%20caract%C3%A9ristiques%20et%20%C3%A0%20la%20structuration%20de%20leur%20activit%C3%A9%20et%2C%20d%E2%80%99autre%20part%2C%20%C3%AAtre%20en%20capacit%C3%A9%20de%20les%20affecter%20selon%20les%20priorit%C3%A9s%20qu%E2%80%99ils%20auront%20d%C3%A9finies%20en%20fonction%20des%20besoins%20de%20justice%20locaux.%0A%0AL%E2%80%99affectation%20des%20moyens%20influe%20sur%20la%20qualit%C3%A9%20et%20la%20c%C3%A9l%C3%A9rit%C3%A9%20du%20traitement%20des%20contentieux.%20Les%20magistrats%2C%20fonctionnaires%20et%20contractuels%20disponibles%C2%A0doivent%20%C3%AAtre%20mobilis%C3%A9s%20en%20fonction%20des%20composantes%20de%20l%E2%80%99activit%C3%A9%20judiciaire%20locale%2C%20actuelle%20et%20%C3%A0%20venir%2C%20afin%20d%E2%80%98%C3%AAtre%20en%20capacit%C3%A9%20de%20r%C3%A9pondre%20au%20mieux%20aux%20besoins%20des%20justiciables.%0A%0AOr%2C%20si%20la%20dur%C3%A9e%20de%20traitement%20des%20proc%C3%A9dures%20est%20particuli%C3%A8rement%20suivie%20par%20des%20indicateurs%C2%A0fins%20%28nationaux%20et%20locaux%29%2C%20les%20juridictions%C2%A0ne%20disposent%20pas%20de%20moyen%20simple%20pour%20corr%C3%A9ler%2C%20en%20temps%20r%C3%A9el%20ou%20par%20anticipation%2C%C2%A0leurs%20volumes%20de%20contentieux%20%C3%A0%20traiter%20avec%20les%20effectifs%20de%20%20magistrats%2C%20fonctionnaires%20et%20contractuels%20disponibles.%0A%0A%23%23%20%2A%2ALa%20solution%20en%20construction%2A%2A%0A%0A%5BVoir%20la%20vid%C3%A9o%20de%20pr%C3%A9sentation%20du%20produit%5D%28https%3A%2F%2Fvimeo.com%2F788716513%29%0A%0A%2A%2A%2ALancement%20de%20la%20phase%20d%27acc%C3%A9l%C3%A9ration%2A%2A%2A%0A%0ASuite%20%C3%A0%20l%E2%80%99investigation%20men%C3%A9e%20d%C3%A9but%202021%2C%20la%20construction%20a%20d%C3%A9marr%C3%A9%20le%201er%20septembre%202021.%20Le%20sponsor%20est%20le%20chef%20de%20l%E2%80%99Inspection%20G%C3%A9n%C3%A9rale%20de%20la%20Justice.%0A%0AUne%20deuxi%C3%A8me%20phase%20d%27acc%C3%A9l%C3%A9ration%20a%20%C3%A9t%C3%A9%20valid%C3%A9e%20le%2013%20juillet%202023%2C%20accompagn%C3%A9e%20par%20le%20%5BFAST.%5D%28https%3A%2F%2Fbeta.gouv.fr%2Ffast%2F%29%0A%0A%2A%2A%2AL%E2%80%99objectif%2A%2A%2A%0A%0AA-JUST%20vise%20%C3%A0%20offrir%20aux%20justiciables%20des%20d%C3%A9lais%20plus%20courts%20de%20prise%20en%20charge%20de%20leurs%20dossiers%20en%20permettant%20une%20mobilisation%20%20des%20ressources%20humaines%20des%20juridictions%20adapt%C3%A9e%20aux%20besoins%20de%20justice%20locaux.%0A%0APour%20cela%2C%20A-JUST%20a%20pour%20objectif%20de%20permettre%20aux%20juridictions%20de%20visualiser%20et%20d%E2%80%99anticiper%20l%E2%80%99impact%20de%20leurs%20affectations%20d%E2%80%99effectifs%20sur%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20contentieux.%0A%0AVisualisation%2C%20corr%C3%A9lation%2C%20simulation%E2%80%A6%20A-JUST%20se%20d%C3%A9finit%20comme%20un%20outil%C2%A0%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision%20et%20de%20prospective.%0A%0A%0A%C2%B9%20P%C3%A9nal%2C%20civil%2C%20social%2C%20commercial%0A%0A%C2%B2%20Magistrats%2C%20greffiers%2C%20fonctionnaires%2C%20agents%20administratifs%2C%20vacataires%2C%20assistants%20de%20justice%2C%20magistrats%20honoraires%2C%20juristes%20assistants%E2%80%A6%0A%0A%3C%21--EndFragment--%3E", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 300000€ pour la promotion 13" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2021-02-01", + "end": "2021-05-26" + }, + { + "name": "construction", + "start": "2021-09-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2022-11-30", + "end": "" + } + ], + "sponsors": [ + "igj", + "mj" + ], + "thematiques": [ + "Justice" + ], + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/a-just-beta-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "justice" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://a-just.beta.gouv.fr", + "size": 2043.998, + "nodes": 113, + "requests": 23, + "grade": "B", + "score": 79, + "ges": 1.42, + "water": 2.13, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 15:55:33.504009", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-30T10:57:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.35, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.63, + "lighthouse_accessibilityGrade": "C", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.7, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://dotations.incubateur.anct.gouv.fr", + "category": "anct", + "betaId": "dotations-locales", + "repositories": [ + "https://gitlab.com/incubateur-territoires/startups/dotations-locales" + ], + "tags": [ + "anct", + "dotations-locales", + "production" + ], + "http": { + "url": "https://dotations.incubateur.anct.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 01:02:42 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 01:02:41 GMT", + "ETag": "\"onywqj55lh1nr\"", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Powered-By": "Next.js", + "X-Request-ID": "f708e808-c82a-4baf-95da-7c4e8f850462" }, - { - "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57046340, + "score": 10, + "start_time": "Sun, 20 Oct 2024 01:02:41 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://dotations.incubateur.anct.gouv.fr/", + "redirects": false, + "route": [ + "http://dotations.incubateur.anct.gouv.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "7dri", + "url": "https://dotations.incubateur.anct.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T20:29:44Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:07:36Z", + "next_check_at": "2024-12-01T16:08:36Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://dotations.incubateur.anct.gouv.fr/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:04:36Z", + "expires_at": "2025-02-02T15:53:50Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.993, + "timings": { + "redirect": 0, + "namelookup": 49, + "connection": 123, + "handshake": 129, + "response": 135, + "total": 436 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "dotations.incubateur.anct.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -391072,7 +386725,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -391080,7 +386733,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -391088,7 +386741,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -391096,7 +386749,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -391104,7 +386757,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -391112,476 +386765,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-11-01 10:57" + "finding": "2024-11-04 15:53" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-01-30 10:57" + "finding": "2025-02-02 15:53" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1732463723" - }, - { - "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733069066" }, { - "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "id": "HSTS", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt138233652894' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "id": "security_headers", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -391589,7 +387207,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -391598,7 +387216,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -391607,7 +387225,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -391616,7 +387234,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -391625,7 +387243,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -391633,7 +387251,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -391642,7 +387260,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -391651,7 +387269,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -391660,7 +387278,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -391669,14 +387287,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -391685,7 +387303,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -391694,7 +387312,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -391703,16 +387321,16 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A78EEE9912081DCA644FF19329245AABADEA78695D43A9EBDA8B5CDA219D71E7" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B2EF22ED648A10E3EDA22C814A0523E7DDC559CE2EB565C238A4FBC29AD0BC40" }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -391721,7 +387339,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -391730,7 +387348,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -391739,7 +387357,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -391748,7 +387366,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -391757,7 +387375,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -391766,392 +387384,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -392159,7 +387784,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -392167,7 +387792,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -392175,7 +387800,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -392183,7 +387808,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -392191,7 +387816,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -392199,476 +387824,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-11-01 10:57" + "finding": "2024-11-04 15:53" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-30 10:57" + "finding": "2025-02-02 15:53" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732463818" - }, - { - "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733069120" }, { - "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt138233652894' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -392676,7 +388266,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -392685,7 +388275,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -392694,7 +388284,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -392703,7 +388293,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -392712,7 +388302,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -392720,7 +388310,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -392729,7 +388319,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -392738,7 +388328,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -392747,7 +388337,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -392756,14 +388346,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -392772,7 +388362,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -392781,7 +388371,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -392790,16 +388380,16 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A78EEE9912081DCA644FF19329245AABADEA78695D43A9EBDA8B5CDA219D71E7" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B2EF22ED648A10E3EDA22C814A0523E7DDC559CE2EB565C238A4FBC29AD0BC40" }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -392808,7 +388398,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -392817,7 +388407,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -392826,7 +388416,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -392835,7 +388425,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -392844,7 +388434,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -392853,1401 +388443,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "381" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.65.6e7b", - "value": "1", - "domain": "a-just.beta.gouv.fr", - "path": "/", - "expires": 1732465214, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.65.6e7b", - "value": "b8cdd7f44e4ee467.1732463414.", - "domain": "a-just.beta.gouv.fr", - "path": "/", - "expires": 1766418614, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "media-src 'self';connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com https://stats.beta-gouv.cloud-ed.fr https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com *.justice.gouv.fr;font-src 'self' https://fonts.gstatic.com data: https://*.hotjar.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com https://i.goopics.net/;script-src 'self' https://*.hsforms.net *.beta.gouv.fr *.a-just.incubateur.net *.calendly.com *.google-analytics.com *.hotjar.com 'sha256-jq7VWlK1R1baYNg3rH3wI3uXJc6evRSm19ho/ViohcE=' 'sha256-92TNq2Axm9gJIJETcB7r4qpDc3JjxqUYF1fKonG4mvg=' 'sha256-WXdHEUxHRTHqWKtUCBtUckcV5wN4y9jQwkZrGjfqr40=' 'sha256-9jsqNCkYsDU3te2WUjv9qXV1DKXI1vT9hz3g7nNens8=' 'sha256-Z/I+tLSqFCDH08E3fvI/F+QNinxE6TM+KmCxNmRcAAw=' 'sha256-tBBLGYs6fvYemOy9hpbgu6tIIJNpdIZpuGpDXkhGTVw=' 'sha256-HVge3cnZEH/UZtmZ65oo81F6FB06/nfTNYudQkA58AE=';default-src 'none';style-src 'self' 'nonce-dt138233652894' 'sha256-e6ebe741519a11d4b75e56deb80e5a7b34871898' 'sha256-55dc92f38a82c90ef5fcdb74a5049b96dfdba8a1' cdnjs.cloudflare.com;worker-src blob:;frame-src https://app.videas.fr/ https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;object-src 'self';base-uri 'self';form-action 'self' *.hsforms.com;upgrade-insecure-requests;frame-ancestors 'self';script-src-attr 'none'", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:50:11 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding, Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY", - "x-ratelimit-limit": "1000", - "x-ratelimit-remaining": "999", - "x-ratelimit-reset": "1732463712", - "x-request-id": "e87edff7-9351-47d1-8c5c-659c733950ee", - "x-xss-protection": "1" - }, - "endpoints": [ - { - "hostname": "a-just.beta.gouv.fr", - "ip": "148.253.96.193", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://a-just.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "typescript", - "name": "TypeScript", - "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", - "confidence": 100, - "version": null, - "icon": "TypeScript.svg", - "website": "https://www.typescriptlang.org", - "cpe": null, - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "quill", - "name": "Quill", - "description": "Quill is a free open-source WYSIWYG editor.", - "confidence": 100, - "version": null, - "icon": "Quill.svg", - "website": "https://quilljs.com", - "cpe": null, - "categories": [ - { - "id": 24, - "slug": "rich-text-editors", - "name": "Rich text editors" - } - ], - "rootPath": true - }, - { - "slug": "mapbox-gl-js", - "name": "Mapbox GL JS", - "description": "Mapbox GL JS is a JavaScript library that uses WebGL to render interactive maps from vector tiles and Mapbox styles.", - "confidence": 0, - "version": "2.15.0", - "icon": "Mapbox.svg", - "website": "https://github.com/mapbox/mapbox-gl-js", - "cpe": null, - "categories": [ - { - "id": 35, - "slug": "maps", - "name": "Maps" - } - ], - "rootPath": true - }, - { - "slug": "amazon-web-services", - "name": "Amazon Web Services", - "description": "Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.", - "confidence": 100, - "version": null, - "icon": "Amazon Web Services.svg", - "website": "https://aws.amazon.com/", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - } - ] - }, - { - "slug": "zone-js", - "name": "Zone.js", - "description": null, - "confidence": 100, - "version": null, - "icon": "Angular.svg", - "website": "https://github.com/angular/angular/tree/master/packages/zone.js", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "toastr", - "name": "toastr", - "description": "toastr is a Javascript library for non-blocking notifications. The goal is to create a simple core library that can be customized and extended.", - "confidence": 100, - "version": "2.1.4", - "icon": "toastr.png", - "website": "https://github.com/CodeSeven/toastr", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "angular", - "name": "Angular", - "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", - "confidence": 100, - "version": "16.1.8", - "icon": "Angular.svg", - "website": "https://angular.io", - "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.7.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.6.5", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "google-font-api", - "name": "Google Font API", - "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", - "confidence": 100, - "version": null, - "icon": "Google Font API.svg", - "website": "https://google.com/fonts", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "amazon-s3", - "name": "Amazon S3", - "description": "Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.", - "confidence": 100, - "version": null, - "icon": "Amazon S3.svg", - "website": "https://aws.amazon.com/s3/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "requestedUrl": "https://a-just.beta.gouv.fr/", - "finalUrl": "https://a-just.beta.gouv.fr/", - "fetchTime": "2024-11-24T15:49:42.582Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.35 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.63 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.7 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 10396, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 6751, - "firstMeaningfulPaint": 6751, - "largestContentfulPaint": 10663, - "interactive": 10396, - "speedIndex": 7635, - "totalBlockingTime": 623, - "maxPotentialFID": 877, - "cumulativeLayoutShift": 0.026318473709954156, - "cumulativeLayoutShiftMainFrame": 0.026318473709954156, - "totalCumulativeLayoutShift": 0.026318473709954156, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 366540080, - "observedNavigationStart": 0, - "observedNavigationStartTs": 366540080, - "observedFirstPaint": 882, - "observedFirstPaintTs": 367421965, - "observedFirstContentfulPaint": 2132, - "observedFirstContentfulPaintTs": 368671782, - "observedFirstContentfulPaintAllFrames": 2132, - "observedFirstContentfulPaintAllFramesTs": 368671782, - "observedFirstMeaningfulPaint": 2132, - "observedFirstMeaningfulPaintTs": 368671782, - "observedLargestContentfulPaint": 2283, - "observedLargestContentfulPaintTs": 368822739, - "observedLargestContentfulPaintAllFrames": 2283, - "observedLargestContentfulPaintAllFramesTs": 368822739, - "observedTraceEnd": 4863, - "observedTraceEndTs": 371402932, - "observedLoad": 2406, - "observedLoadTs": 368946381, - "observedDomContentLoaded": 1570, - "observedDomContentLoadedTs": 368109618, - "observedCumulativeLayoutShift": 0.026318473709954156, - "observedCumulativeLayoutShiftMainFrame": 0.026318473709954156, - "observedTotalCumulativeLayoutShift": 0.026318473709954156, - "observedFirstVisualChange": 2145, - "observedFirstVisualChangeTs": 368685080, - "observedLastVisualChange": 2328, - "observedLastVisualChangeTs": 368868080, - "observedSpeedIndex": 2294, - "observedSpeedIndexTs": 368834079 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 24, - "numScripts": 8, - "numStylesheets": 1, - "numFonts": 3, - "numTasks": 561, - "numTasksOver10ms": 8, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 133.36399999999998, - "throughput": 14575275.16267819, - "maxRtt": 133.822, - "maxServerLatency": 14.432999999999993, - "totalByteWeight": 1972789, - "totalTaskTime": 488.2349999999995, - "mainDocumentTransferSize": 3375 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://a-just.beta.gouv.fr/declaration-accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-openssl_303", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://a-just.beta.gouv.fr/mentions-legales" + "id": "clientsimulation-apple_mail_16_0", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://a-just.beta.gouv.fr/donnees-personnelles" - } - ], - "betagouv": { - "id": "a-just", - "type": "startup", - "attributes": { - "name": "A-JUST", - "pitch": "Aider les juridictions dans l'affectation de leurs ressources humaines pour réduire les délais de justice.", - "stats_url": "https://a-just.beta.gouv.fr/stats", - "link": "https://a-just.beta.gouv.fr", - "repository": "https://github.com/betagouv/a-just", - "contact": "contact@a-just.fr", - "content_url_encoded_markdown": "%3C%21--StartFragment--%3E%0A%0A%23%23%20%2A%2AContexte%2A%2A%0A%0A%5BVoir%20la%20vid%C3%A9o%20de%20pr%C3%A9sentation%20de%20la%20d%C3%A9marche%5D%28https%3A%2F%2Fvimeo.com%2F788314426%29%0A%0ALa%20derni%C3%A8re%20enqu%C3%AAte%20minist%C3%A9rielle%20sur%20le%20fonctionnement%20de%20la%20Justice%20et%20la%20satisfaction%20des%20personnes%20ayant%20eu%20un%20contact%20direct%20avec%20elle%20a%20r%C3%A9v%C3%A9l%C3%A9%20que%20%2A%2A95%25%20des%20fran%C3%A7ais%20la%20consid%C3%A9raient%20trop%20lente%2A%2A.%0A%0ACette%20appr%C3%A9ciation%20est%20confirm%C3%A9e%20par%20le%20barom%C3%A8tre%20annuel%20de%20satisfaction%20des%20usagers%20des%20services%20publics%2C%20publi%C3%A9%20en%20novembre%202019%20par%20l%E2%80%99Institut%20Paul%20Delouvrier%20en%20partenariat%20avec%20la%20DITP%2C%20selon%20%2A%2Alequel%20la%20priorit%C3%A9%20aux%20yeux%20des%20usagers%20du%20service%20public%20de%20la%20Justice%20est%20la%20rapidit%C3%A9%20de%20jugement%20des%20affaires%2A%2A.%0A%0ASelon%20les%20chiffres%20cl%C3%A9s%20de%20la%20Justice%20publi%C3%A9s%20le%2026%20novembre%202020%2C%20il%20s%E2%80%99%C3%A9coule%20en%20moyenne%2C%20%2A%2Aentre%20la%20commission%20d%E2%80%99une%20infraction%20et%20la%20condamnation%2A%2A%20%3A%0A%0A%2A%2042%2C2%20mois%20pour%20des%20crimes%20%3B%0A%2A%2011%2C7%20mois%20pour%20des%20d%C3%A9lits%20%3B%0A%2A%2012%2C8%20mois%20pour%20des%20contraventions%20de%205%C3%A8me%20classe.%0A%0AEn%20appel%2C%20il%20se%20passe%2C%20%2A%2Aentre%20la%20premi%C3%A8re%20d%C3%A9cision%20et%20l%E2%80%99appel%2A%2A%20%3A%0A%0A%2A%2020%2C4%20mois%20pour%20les%20crimes%20%3B%0A%2A%2015%2C7%20mois%20pour%20les%20d%C3%A9lits%20%3B%0A%2A%2011%2C9%20mois%20pour%20les%20contraventions%20de%205%C3%A8me%20classe.%0A%0A%2A%2AEn%20mati%C3%A8re%20civile%2A%2A%2C%20la%20dur%C3%A9e%20moyenne%20de%20traitement%20des%20affaires%20termin%C3%A9es%20en%202019%20%C3%A9tait%20de%C2%A0%3A%0A%0A%2A%2014%20mois%20en%20cour%20d%E2%80%99appel%C2%A0%3B%0A%2A%209%2C4%20mois%20devant%20les%20tribunaux%20de%20grande%20instance%C2%A0%3B%0A%2A%2014%2C5%20mois%20devant%20les%20conseils%20de%20prud%E2%80%99hommes.%0A%0ACes%20d%C3%A9lais%20de%20traitement%20%2A%2Avarient%2A%2A%20de%20surcro%C3%AEt%20de%20fa%C3%A7on%20significative%20%2A%2Aselon%20les%20ressorts%2A%2A%20et%20leur%20%2A%2Aorigine%2A%2A%20est%20assur%C3%A9ment%20%2A%2Amultifactorielle%2A%2A.%0A%0A%23%23%20%2A%2ALe%20Probl%C3%A8me%2A%2A%0A%0A%2A%2A%2ALes%20d%C3%A9lais%20de%20la%20Justice%2A%C2%A0%3A%20un%20probl%C3%A8me%20majeur%20pour%20les%20justiciables%2A%2A%0A%0ALa%20dur%C3%A9e%C2%A0des%20contentieux%20d%C3%A9grade%20consid%C3%A9rablement%20l%E2%80%99efficacit%C3%A9%C2%A0et%20l%E2%80%99image%20du%20service%20public%20de%20la%20Justice.%0A%0AAinsi%20que%20le%20rappellent%20r%C3%A9guli%C3%A8rement%20les%20parlementaires%2C%20il%20est%20attendu%20par%20nos%20concitoyens%20que%20les%20budgets%20vot%C3%A9s%20soient%20directement%2C%20rapidement%20et%20efficacement%20mobilis%C3%A9s%20au%20soutien%20des%20actions%20n%C3%A9cessaires%20%C3%A0%20l%E2%80%99am%C3%A9lioration%20de%20la%20qualit%C3%A9%20du%20service%20rendu%2C%20notamment%20en%20termes%20de%20d%C3%A9lais.%0A%0AEn%20effet%2C%20m%C3%AAme%20si%20la%20dur%C3%A9e%20globale%20d%E2%80%99une%20affaire%20d%C3%A9pend%20significativement%20des%20parties%2C%20elle%20est%20%C3%A9galement%20li%C3%A9e%20%C3%A0%20la%20capacit%C3%A9%20de%20traitement%20des%20juridictions%20%28moyens%20mat%C3%A9riels%20et%20humains%20disponibles%29.%0A%0ALa%20diminution%20de%20la%20dur%C3%A9e%20des%20proc%C3%A9dures%20n%C3%A9cessite%20donc%C2%A0l%E2%80%99adaptation%20des%20moyens%20affect%C3%A9s%C2%A0%C3%A0%20leur%20traitement%20aux%20besoins%20de%20justice%20locaux.%0A%0A%2A%2A%2ALe%20probl%C3%A8me%20des%20juridictions%2A%C2%A0%3A%20comment%20r%C3%A9pondre%20au%20mieux%20aux%20besoins%20de%20justice%20locaux%C2%A0%3F%2A%2A%C2%A0%C2%A0%0A%0ALes%20tribunaux%20sont%20des%20organisations%20complexes%2C%20devant%20traiter%20un%20volume%20et%20une%20diversit%C3%A9%20consid%C3%A9rables%20de%20contentieux%C2%B9%2C%20en%20mobilisant%20des%20effectifs%20nombreux%20et%20diversifi%C3%A9s%C2%B2.%0A%0APour%20ce%20faire%2C%20ils%20doivent%2C%20d%E2%80%99une%20part%2C%20disposer%20de%20ressources%20humaines%2C%20mat%C3%A9rielles%2C%20budg%C3%A9taires%20ainsi%20que%20de%20locaux%20adapt%C3%A9s%20aux%20caract%C3%A9ristiques%20et%20%C3%A0%20la%20structuration%20de%20leur%20activit%C3%A9%20et%2C%20d%E2%80%99autre%20part%2C%20%C3%AAtre%20en%20capacit%C3%A9%20de%20les%20affecter%20selon%20les%20priorit%C3%A9s%20qu%E2%80%99ils%20auront%20d%C3%A9finies%20en%20fonction%20des%20besoins%20de%20justice%20locaux.%0A%0AL%E2%80%99affectation%20des%20moyens%20influe%20sur%20la%20qualit%C3%A9%20et%20la%20c%C3%A9l%C3%A9rit%C3%A9%20du%20traitement%20des%20contentieux.%20Les%20magistrats%2C%20fonctionnaires%20et%20contractuels%20disponibles%C2%A0doivent%20%C3%AAtre%20mobilis%C3%A9s%20en%20fonction%20des%20composantes%20de%20l%E2%80%99activit%C3%A9%20judiciaire%20locale%2C%20actuelle%20et%20%C3%A0%20venir%2C%20afin%20d%E2%80%98%C3%AAtre%20en%20capacit%C3%A9%20de%20r%C3%A9pondre%20au%20mieux%20aux%20besoins%20des%20justiciables.%0A%0AOr%2C%20si%20la%20dur%C3%A9e%20de%20traitement%20des%20proc%C3%A9dures%20est%20particuli%C3%A8rement%20suivie%20par%20des%20indicateurs%C2%A0fins%20%28nationaux%20et%20locaux%29%2C%20les%20juridictions%C2%A0ne%20disposent%20pas%20de%20moyen%20simple%20pour%20corr%C3%A9ler%2C%20en%20temps%20r%C3%A9el%20ou%20par%20anticipation%2C%C2%A0leurs%20volumes%20de%20contentieux%20%C3%A0%20traiter%20avec%20les%20effectifs%20de%20%20magistrats%2C%20fonctionnaires%20et%20contractuels%20disponibles.%0A%0A%23%23%20%2A%2ALa%20solution%20en%20construction%2A%2A%0A%0A%5BVoir%20la%20vid%C3%A9o%20de%20pr%C3%A9sentation%20du%20produit%5D%28https%3A%2F%2Fvimeo.com%2F788716513%29%0A%0A%2A%2A%2ALancement%20de%20la%20phase%20d%27acc%C3%A9l%C3%A9ration%2A%2A%2A%0A%0ASuite%20%C3%A0%20l%E2%80%99investigation%20men%C3%A9e%20d%C3%A9but%202021%2C%20la%20construction%20a%20d%C3%A9marr%C3%A9%20le%201er%20septembre%202021.%20Le%20sponsor%20est%20le%20chef%20de%20l%E2%80%99Inspection%20G%C3%A9n%C3%A9rale%20de%20la%20Justice.%0A%0AUne%20deuxi%C3%A8me%20phase%20d%27acc%C3%A9l%C3%A9ration%20a%20%C3%A9t%C3%A9%20valid%C3%A9e%20le%2013%20juillet%202023%2C%20accompagn%C3%A9e%20par%20le%20%5BFAST.%5D%28https%3A%2F%2Fbeta.gouv.fr%2Ffast%2F%29%0A%0A%2A%2A%2AL%E2%80%99objectif%2A%2A%2A%0A%0AA-JUST%20vise%20%C3%A0%20offrir%20aux%20justiciables%20des%20d%C3%A9lais%20plus%20courts%20de%20prise%20en%20charge%20de%20leurs%20dossiers%20en%20permettant%20une%20mobilisation%20%20des%20ressources%20humaines%20des%20juridictions%20adapt%C3%A9e%20aux%20besoins%20de%20justice%20locaux.%0A%0APour%20cela%2C%20A-JUST%20a%20pour%20objectif%20de%20permettre%20aux%20juridictions%20de%20visualiser%20et%20d%E2%80%99anticiper%20l%E2%80%99impact%20de%20leurs%20affectations%20d%E2%80%99effectifs%20sur%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20contentieux.%0A%0AVisualisation%2C%20corr%C3%A9lation%2C%20simulation%E2%80%A6%20A-JUST%20se%20d%C3%A9finit%20comme%20un%20outil%C2%A0%20d%E2%80%99aide%20%C3%A0%20la%20d%C3%A9cision%20et%20de%20prospective.%0A%0A%0A%C2%B9%20P%C3%A9nal%2C%20civil%2C%20social%2C%20commercial%0A%0A%C2%B2%20Magistrats%2C%20greffiers%2C%20fonctionnaires%2C%20agents%20administratifs%2C%20vacataires%2C%20assistants%20de%20justice%2C%20magistrats%20honoraires%2C%20juristes%20assistants%E2%80%A6%0A%0A%3C%21--EndFragment--%3E", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 300000€ pour la promotion 13" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2021-02-01", - "end": "2021-05-26" - }, - { - "name": "construction", - "start": "2021-09-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2022-11-30", - "end": "" - } - ], - "sponsors": [ - "igj", - "mj" - ], - "thematiques": [ - "Justice" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/a-just-beta-gouv-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-thunderbird_91_9", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "justice" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://a-just.beta.gouv.fr", - "size": 2014.387, - "nodes": 113, - "requests": 23, - "grade": "B", - "score": 79, - "ges": 1.42, - "water": 2.13, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:46:32.406833", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-30T10:57:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.35, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.63, - "lighthouse_accessibilityGrade": "C", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.7, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://dotations.incubateur.anct.gouv.fr", - "category": "anct", - "betaId": "dotations-locales", - "repositories": [ - "https://gitlab.com/incubateur-territoires/startups/dotations-locales" - ], - "tags": [ - "anct", - "dotations-locales", - "production" - ], - "http": { - "url": "https://dotations.incubateur.anct.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 01:02:42 GMT", - "grade": "F", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 01:02:41 GMT", - "ETag": "\"onywqj55lh1nr\"", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Powered-By": "Next.js", - "X-Request-ID": "f708e808-c82a-4baf-95da-7c4e8f850462" + "id": "rating_spec", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "scan_id": 57046340, - "score": 10, - "start_time": "Sun, 20 Oct 2024 01:02:41 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "http://dotations.incubateur.anct.gouv.fr/", - "redirects": false, - "route": [ - "http://dotations.incubateur.anct.gouv.fr/" - ], - "status_code": 200 - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "7dri", - "url": "https://dotations.incubateur.anct.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T05:16:22Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:03:44Z", - "next_check_at": "2024-11-24T16:04:44Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://dotations.incubateur.anct.gouv.fr/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:03:45Z", - "expires_at": "2025-02-02T15:53:50Z", - "valid": true, - "error": null + { + "id": "rating_doc", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 38, - "connection": 135, - "handshake": 140, - "response": 146, - "total": 460 - } + { + "id": "protocol_support_score", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "dotations.incubateur.anct.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -394255,7 +388843,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -394263,7 +388851,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -394271,7 +388859,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -394279,7 +388867,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -394287,7 +388875,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -394295,441 +388883,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-11-04 15:53" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-02-02 15:53" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732463848" + "finding": "1733069174" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -394737,7 +389325,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -394746,7 +389334,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -394755,7 +389343,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -394764,7 +389352,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -394773,7 +389361,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -394781,7 +389369,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -394790,7 +389378,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -394799,7 +389387,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -394808,7 +389396,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -394817,14 +389405,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -394833,7 +389421,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -394842,7 +389430,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -394851,7 +389439,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -394860,7 +389448,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -394869,7 +389457,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -394878,7 +389466,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -394887,7 +389475,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -394896,7 +389484,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -394905,7 +389493,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -394914,399 +389502,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -395314,7 +389902,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -395322,7 +389910,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -395330,7 +389918,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -395338,7 +389926,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -395346,7 +389934,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -395354,441 +389942,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-11-04 15:53" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-02-02 15:53" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732463945" + "finding": "1733069229" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -395796,7 +390384,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -395805,7 +390393,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -395814,7 +390402,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -395823,7 +390411,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -395832,7 +390420,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -395840,7 +390428,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -395849,7 +390437,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -395858,7 +390446,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -395867,7 +390455,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -395876,14 +390464,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -395892,7 +390480,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -395901,7 +390489,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -395910,7 +390498,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -395919,7 +390507,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -395928,7 +390516,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -395937,7 +390525,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -395946,7 +390534,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -395955,7 +390543,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -395964,7 +390552,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -395973,399 +390561,1407 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, - { - "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + { + "id": "grade_cap_reason_1", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "223" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://dotations-locales-back.osc-fr1.scalingo.io/init/" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://dotations-locales-back.osc-fr1.scalingo.io/init" + } + ], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 16:03:21 GMT", + "etag": "\"onywqj55lh1nr\"", + "vary": "Accept-Encoding", + "x-powered-by": "Next.js", + "x-request-id": "f376015c-5aea-4554-88c5-86611d827f52" + }, + "endpoints": [ + { + "hostname": "dotations.incubateur.anct.gouv.fr", + "ip": "109.232.233.130", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "104.18.187.31", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "dotations-locales-back.osc-fr1.scalingo.io", + "ip": "5.104.101.30", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://dotations.incubateur.anct.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "styled-components", + "name": "styled-components", + "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "confidence": 100, + "version": "5.3.8", + "icon": "styled-components.svg", + "website": "https://styled-components.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.2.4", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://dotations.incubateur.anct.gouv.fr/", + "finalUrl": "https://dotations.incubateur.anct.gouv.fr/", + "fetchTime": "2024-12-01T16:02:56.163Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.75 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.97 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.99 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 5839, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1901, + "firstMeaningfulPaint": 2669, + "largestContentfulPaint": 3685, + "interactive": 5839, + "speedIndex": 3281, + "totalBlockingTime": 374, + "maxPotentialFID": 302, + "cumulativeLayoutShift": 0.0024839909871419274, + "cumulativeLayoutShiftMainFrame": 0.0024839909871419274, + "totalCumulativeLayoutShift": 0.0024839909871419274, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 483321432, + "observedNavigationStart": 0, + "observedNavigationStartTs": 483321432, + "observedFirstPaint": 850, + "observedFirstPaintTs": 484171195, + "observedFirstContentfulPaint": 850, + "observedFirstContentfulPaintTs": 484171195, + "observedFirstContentfulPaintAllFrames": 850, + "observedFirstContentfulPaintAllFramesTs": 484171195, + "observedFirstMeaningfulPaint": 850, + "observedFirstMeaningfulPaintTs": 484171195, + "observedLargestContentfulPaint": 850, + "observedLargestContentfulPaintTs": 484171195, + "observedLargestContentfulPaintAllFrames": 850, + "observedLargestContentfulPaintAllFramesTs": 484171195, + "observedTraceEnd": 3509, + "observedTraceEndTs": 486830772, + "observedLoad": 783, + "observedLoadTs": 484104182, + "observedDomContentLoaded": 778, + "observedDomContentLoadedTs": 484098941, + "observedCumulativeLayoutShift": 0.0024839909871419274, + "observedCumulativeLayoutShiftMainFrame": 0.0024839909871419274, + "observedTotalCumulativeLayoutShift": 0.0024839909871419274, + "observedFirstVisualChange": 859, + "observedFirstVisualChangeTs": 484180432, + "observedLastVisualChange": 1559, + "observedLastVisualChangeTs": 484880432, + "observedSpeedIndex": 881, + "observedSpeedIndexTs": 484202464 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 25, + "numScripts": 8, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 600, + "numTasksOver10ms": 4, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 5.223, + "throughput": 11625688.073393317, + "maxRtt": 85.992, + "maxServerLatency": 13.781000000000002, + "totalByteWeight": 617903, + "totalTaskTime": 252.15699999999902, + "mainDocumentTransferSize": 1146 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://dotations.incubateur.anct.gouv.fr/declaration-accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://dotations.incubateur.anct.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "dotations-locales", + "type": "startup", + "attributes": { + "name": "Dotations locales", + "pitch": "Évaluer le montant des dotations locales de son territoire", + "stats_url": "", + "link": "https://dotations.incubateur.anct.gouv.fr/", + "repository": "https://git.leximpact.dev/openfisca/openfisca-france-dotations-locales", + "contact": "contact-dotations-locales@anct.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20%5Bdotations%20financi%C3%A8res%20de%20l%E2%80%99%C3%89tat%5D%28https%3A%2F%2Fwww.vie-publique.fr%2Ffiches%2F21932-quelles-sont-les-dotations-de-letat-aux-collectivites%29%20aux%20collectivit%C3%A9s%20repr%C3%A9sentent%20pr%C3%A8s%20d%E2%80%99%5Bun%20tiers%20de%20leurs%20ressources%5D%28https%3A%2F%2Fwww.cohesion-territoires.gouv.fr%2Fbudget-et-dotations-des-collectivites-locales%29%2C%20mais%20elles%20sont%20d%C3%A9licates%20%C3%A0%20estimer%20%3A%20complexes%20%C3%A0%20calculer%2C%20notifi%C3%A9es%20en%20cours%20d%E2%80%99exercice%20et%20toute%20projection%20au-del%C3%A0%20de%20l%E2%80%99ann%C3%A9e%20en%20cours%20peut%20%C3%AAtre%20co%C3%BBteuse.%20Ceci%20dans%20un%20contexte%20d%27%C3%A9volution%20des%20concours%20financiers%20aux%20budgets%20des%20territoires%20%28voici%20%5Bce%20qui%20change%20en%202022%5D%28https%3A%2F%2Fwww.cohesion-territoires.gouv.fr%2Fterritoires-et-collectivites-territoriales-ce-qui-change-au-1er-janvier-2022%29%29.%0A%0APourtant%2C%20des%20%5Bdonn%C3%A9es%20ouvertes%20sur%20les%20territoires%5D%28http%3A%2F%2Fwww.dotations-dgcl.interieur.gouv.fr%2Fconsultation%2Fdotations_en_ligne.php%29%20existent%20et%20une%20%5Bpartie%20de%20la%20r%C3%A9glementation%5D%28https%3A%2F%2Fgit.leximpact.dev%2Fleximpact%2Fopenfisca-france-dotations-locales%29%20est%20d%C3%A9j%C3%A0%20mod%C3%A9lis%C3%A9e.%20Mais%20ces%20%C3%A9l%C3%A9ments%20techniques%20sont-ils%20accessibles%20%3F%0A%0A%23%23%20La%20phase%20d%27investigation%0A%0AUne%20premi%C3%A8re%20phase%20de%20recherche%20va%20permettre%20de%20d%C3%A9tecter%20les%20besoins%20r%C3%A9els%20des%20utilisateurs%20et%2C%20dans%20un%20second%20temps%2C%20d%E2%80%99identifier%20les%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20la%20prise%20de%20connaissance%20des%20montants%20de%20dotations%20et%20%C3%A0%20la%20compr%C3%A9hension%20des%20m%C3%A9thodes%20de%20calcul.%0A%0A%2A%2APlusieurs%20typologies%20de%20collectivit%C3%A9s%20sont%20concern%C3%A9es%20par%20l%E2%80%99%C3%A9tude%20%20%3A%2A%2A%0A%2A%20Communes%20rurales%20de%20moins%20de%203500%20habitants%2C%0A%2A%20Communes%20de%20montagne%2C%0A%2A%20Communes%20bourgs-centres%2C%0A%2A%20EPCI%20et%20Communaut%C3%A9s%20d%E2%80%99agglom%C3%A9rations%2C%0A%2A%20D%C3%A9partements%20et%20R%C3%A9gions.%0A%0A%23%23%20Les%20hypoth%C3%A8ses%20d%E2%80%99am%C3%A9lioration%0A%0AConstruire%20avec%20les%20territoires%20un%20moyen%20d%27%C3%A9valuer%20le%20montant%20de%20dotations%20de%20l%27%C3%89tat%20en%20associant%20la%20connaissance%20que%20chaque%20territoire%20a%20de%20lui-m%C3%AAme%2C%20les%20textes%20r%C3%A9glementaires%20ainsi%20que%20les%20donn%C3%A9es%20du%20calcul%20des%20dotations%20locales%20publi%C3%A9es%20en%20open%20data%20par%20la%20%5BDirection%20R%C3%A9gionale%20des%20Collectivit%C3%A9s%20Locales%5D%28http%3A%2F%2Fwww.dotations-dgcl.interieur.gouv.fr%2Fconsultation%2Faccueil.php%29.%0A%0A%2A%2APlusieurs%20axes%20d%E2%80%99am%C3%A9lioration%20sont%20%C3%A9tudi%C3%A9s%20pour%20permettre%20aux%20collectivit%C3%A9s%20de%20%3A%2A%2A%0A%2A%20Mieux%20comprendre%20les%20m%C3%A9canismes%20des%20composantes%20de%20la%20dotation%20globale%20de%20fonctionnement%2C%0A%2A%20Suivre%20l%E2%80%99historique%20et%20l%E2%80%99%C3%A9volution%20de%20leurs%20dotations%2C%0A%2A%20Comprendre%20des%20crit%C3%A8res%20qui%20interviennent%20dans%20le%20calcul%2C%0A%2A%20Visualiser%20et%20identifier%20les%20seuils%20qui%20ont%20un%20impact%20sur%20le%20calcul%2C%0A%2A%20Se%20comparer%20facilement%20avec%20d%E2%80%99autres%20collectivit%C3%A9s.%0A%0ALa%20solution%20contribuera%20%C3%A9galement%20%C3%A0%20la%20poursuite%20de%20l%E2%80%99ouverture%20et%20de%20la%20publication%20du%20mod%C3%A8le%20de%20calcul%20des%20dotations%20locales.%0A", + "events": [], + "phases": [ + { + "name": "construction", + "start": "2022-01-01", + "end": "2022-07-01" + }, + { + "name": "acceleration", + "start": "2022-07-01", + "end": "" + }, + { + "name": "alumni", + "start": "2024-01-01", + "end": "" + } + ], + "sponsors": [ + "anct" + ], + "thematiques": [], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "anct" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://dotations.incubateur.anct.gouv.fr", + "size": 1618.14, + "nodes": 191, + "requests": 23, + "grade": "B", + "score": 78, + "ges": 1.44, + "water": 2.16, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 15:59:46.278875", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "F", + "apdex": 0.993, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-02T15:53:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 5, + "lighthouse_performance": 0.75, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.97, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "title": "Frontend data-subvention (préprod)", + "category": "dinum", + "repositories": [ + "betagouv/api-subventions-asso" + ], + "tags": [ + "data-subvention", + "staging" + ], + "betaId": "data-subvention", + "http": { + "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:05:23 GMT", + "grade": "A", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 12:05:21 GMT", + "Transfer-Encoding": "chunked", + "X-Request-ID": "a1030c19-ddb9-4eab-9302-e4e610344e81", + "access-control-allow-origin": "*", + "cache-control": "max-age 1800", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-aZ3YD0D2j1Nzl8BdYACI1g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "etag": "W/\"1ypb0cz\"", + "link": "<./_app/immutable/entry/start.bb9b2523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.bc882566.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.ab1795d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.4cd083e0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2c151fd8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.8c4b9623.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.999b05bc.js>; rel=\"modulepreload\"; nopush", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-sveltekit-page": "true" + }, + "scan_id": 57062621, + "score": 90, + "start_time": "Sun, 20 Oct 2024 12:05:20 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "wss://client.relay.crisp.chat", + "https://geo.api.gouv.fr", + "'self'", + "https://client.crisp.chat", + "https://sentry.incubateur.net", + "https://storage.crisp.chat", + "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "wss://stream.relay.crisp.chat", + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://client.crisp.chat", + "'self'" + ], + "frame-src": [ + "https://game.crisp.chat", + "https://datasubvention.crisp.help", + "'self'" + ], + "img-src": [ + "'self'", + "data:", + "https://client.crisp.chat", + "https://image.crisp.chat", + "https://storage.crisp.chat" + ], + "report-to": [ + "'csp-endpoint'" + ], + "report-uri": [ + "https://sentry.incubateur.net" + ], + "script-src": [ + "'self'", + "https://client.crisp.chat", + "'unsafe-eval'", + "https://sentry.incubateur.net", + "'nonce-az3yd0d2j1nzl8bdyaci1g=='", + "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", + "https://settings.crisp.chat", + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io" + ], + "style-src": [ + "'unsafe-inline'", + "https://client.crisp.chat", + "'self'" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-eval", + "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", + "score_modifier": -10 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "redirects": true, + "route": [ + "http://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "1fh1", + "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T23:20:41Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:15:05Z", + "next_check_at": "2024-12-01T16:16:05Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/dsfr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:11:07Z", + "expires_at": "2025-01-12T23:59:59Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 11, + "connection": 123, + "handshake": 128, + "response": 129, + "total": 390 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -396373,7 +391969,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -396381,7 +391977,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -396389,7 +391985,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -396397,7 +391993,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -396405,7 +392001,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -396413,441 +392009,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-11-04 15:53" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "2025-02-02 15:53" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732464045" + "finding": "1733069336" }, { - "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "id": "HSTS_time", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "id": "X-Frame-Options", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-8/FGeBQGDy+UplS4UMEUpQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -396855,7 +392500,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -396864,7 +392509,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -396873,7 +392518,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -396882,7 +392527,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -396891,7 +392536,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -396899,7 +392544,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -396908,7 +392553,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -396917,16 +392562,16 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -396935,14 +392580,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -396951,7 +392596,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -396960,7 +392605,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -396969,16 +392614,16 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B2EF22ED648A10E3EDA22C814A0523E7DDC559CE2EB565C238A4FBC29AD0BC40" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -396987,7 +392632,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -396996,7 +392641,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -397005,7 +392650,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -397014,7 +392659,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -397023,7 +392668,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -397032,399 +392677,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -397432,7 +393070,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -397440,7 +393078,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -397448,7 +393086,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -397456,7 +393094,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -397464,7 +393102,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -397472,441 +393110,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-04 15:53" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "2025-02-02 15:53" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732464144" + "finding": "1733069432" }, { - "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "id": "HSTS_time", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "id": "X-Frame-Options", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-WoIDsokhHSEVMwtVUobWiw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -397914,7 +393601,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -397923,7 +393610,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -397932,7 +393619,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -397941,7 +393628,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -397950,7 +393637,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -397958,7 +393645,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -397967,7 +393654,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -397976,16 +393663,16 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -397994,14 +393681,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -398010,7 +393697,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -398019,7 +393706,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -398028,16 +393715,16 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B2EF22ED648A10E3EDA22C814A0523E7DDC559CE2EB565C238A4FBC29AD0BC40" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -398046,7 +393733,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -398055,7 +393742,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -398064,7 +393751,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -398073,7 +393760,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -398082,7 +393769,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -398091,1473 +393778,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "401" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://dotations-locales-back.osc-fr1.scalingo.io/init/" - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://dotations-locales-back.osc-fr1.scalingo.io/init" - } - ], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 15:55:48 GMT", - "etag": "\"onywqj55lh1nr\"", - "vary": "Accept-Encoding", - "x-powered-by": "Next.js", - "x-request-id": "2bd37192-dfba-43ff-a3a5-5eed1562ebad" + "id": "rating_doc", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "endpoints": [ - { - "hostname": "dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", - "geoip": { - "city": { - "geoname_id": 5392171, - "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "95141" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "dotations-locales-back.osc-fr1.scalingo.io", - "ip": "5.104.101.30", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://dotations.incubateur.anct.gouv.fr/": { - "status": 200 - } + { + "id": "protocol_support_score", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "styled-components", - "name": "styled-components", - "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", - "confidence": 100, - "version": "5.3.8", - "icon": "styled-components.svg", - "website": "https://styled-components.com", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "13.2.4", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", - "confidence": 100, - "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://dotations.incubateur.anct.gouv.fr/", - "finalUrl": "https://dotations.incubateur.anct.gouv.fr/", - "fetchTime": "2024-11-24T15:55:22.699Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.66 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.97 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.99 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 6710, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2712, - "firstMeaningfulPaint": 3562, - "largestContentfulPaint": 4614, - "interactive": 6710, - "speedIndex": 4628, - "totalBlockingTime": 279, - "maxPotentialFID": 253, - "cumulativeLayoutShift": 0.002888572692871094, - "cumulativeLayoutShiftMainFrame": 0.002888572692871094, - "totalCumulativeLayoutShift": 0.002888572692871094, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 446748725, - "observedNavigationStart": 0, - "observedNavigationStartTs": 446748725, - "observedFirstPaint": 1408, - "observedFirstPaintTs": 448156585, - "observedFirstContentfulPaint": 1408, - "observedFirstContentfulPaintTs": 448156585, - "observedFirstContentfulPaintAllFrames": 1408, - "observedFirstContentfulPaintAllFramesTs": 448156585, - "observedFirstMeaningfulPaint": 1408, - "observedFirstMeaningfulPaintTs": 448156585, - "observedLargestContentfulPaint": 1408, - "observedLargestContentfulPaintTs": 448156585, - "observedLargestContentfulPaintAllFrames": 1408, - "observedLargestContentfulPaintAllFramesTs": 448156585, - "observedTraceEnd": 4338, - "observedTraceEndTs": 451086388, - "observedLoad": 1341, - "observedLoadTs": 448089683, - "observedDomContentLoaded": 1337, - "observedDomContentLoadedTs": 448085267, - "observedCumulativeLayoutShift": 0.002888572692871094, - "observedCumulativeLayoutShiftMainFrame": 0.002888572692871094, - "observedTotalCumulativeLayoutShift": 0.002888572692871094, - "observedFirstVisualChange": 1416, - "observedFirstVisualChangeTs": 448164725, - "observedLastVisualChange": 2183, - "observedLastVisualChangeTs": 448931725, - "observedSpeedIndex": 1452, - "observedSpeedIndexTs": 448200738 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 25, - "numScripts": 8, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 623, - "numTasksOver10ms": 5, - "numTasksOver25ms": 2, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0.7749999999999995, - "throughput": 7897380.785603975, - "maxRtt": 152.719, - "maxServerLatency": 5.307999999999993, - "totalByteWeight": 617425, - "totalTaskTime": 234.54899999999932, - "mainDocumentTransferSize": 1137 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://dotations.incubateur.anct.gouv.fr/declaration-accessibilite" - }, - "declaration-rgpd": [ + "id": "protocol_support_score_weighted", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://dotations.incubateur.anct.gouv.fr/mentions-legales" + "id": "key_exchange_score", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "dotations-locales", - "type": "startup", - "attributes": { - "name": "Dotations locales", - "pitch": "Évaluer le montant des dotations locales de son territoire", - "stats_url": "", - "link": "https://dotations.incubateur.anct.gouv.fr/", - "repository": "https://git.leximpact.dev/openfisca/openfisca-france-dotations-locales", - "contact": "contact-dotations-locales@anct.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20%5Bdotations%20financi%C3%A8res%20de%20l%E2%80%99%C3%89tat%5D%28https%3A%2F%2Fwww.vie-publique.fr%2Ffiches%2F21932-quelles-sont-les-dotations-de-letat-aux-collectivites%29%20aux%20collectivit%C3%A9s%20repr%C3%A9sentent%20pr%C3%A8s%20d%E2%80%99%5Bun%20tiers%20de%20leurs%20ressources%5D%28https%3A%2F%2Fwww.cohesion-territoires.gouv.fr%2Fbudget-et-dotations-des-collectivites-locales%29%2C%20mais%20elles%20sont%20d%C3%A9licates%20%C3%A0%20estimer%20%3A%20complexes%20%C3%A0%20calculer%2C%20notifi%C3%A9es%20en%20cours%20d%E2%80%99exercice%20et%20toute%20projection%20au-del%C3%A0%20de%20l%E2%80%99ann%C3%A9e%20en%20cours%20peut%20%C3%AAtre%20co%C3%BBteuse.%20Ceci%20dans%20un%20contexte%20d%27%C3%A9volution%20des%20concours%20financiers%20aux%20budgets%20des%20territoires%20%28voici%20%5Bce%20qui%20change%20en%202022%5D%28https%3A%2F%2Fwww.cohesion-territoires.gouv.fr%2Fterritoires-et-collectivites-territoriales-ce-qui-change-au-1er-janvier-2022%29%29.%0A%0APourtant%2C%20des%20%5Bdonn%C3%A9es%20ouvertes%20sur%20les%20territoires%5D%28http%3A%2F%2Fwww.dotations-dgcl.interieur.gouv.fr%2Fconsultation%2Fdotations_en_ligne.php%29%20existent%20et%20une%20%5Bpartie%20de%20la%20r%C3%A9glementation%5D%28https%3A%2F%2Fgit.leximpact.dev%2Fleximpact%2Fopenfisca-france-dotations-locales%29%20est%20d%C3%A9j%C3%A0%20mod%C3%A9lis%C3%A9e.%20Mais%20ces%20%C3%A9l%C3%A9ments%20techniques%20sont-ils%20accessibles%20%3F%0A%0A%23%23%20La%20phase%20d%27investigation%0A%0AUne%20premi%C3%A8re%20phase%20de%20recherche%20va%20permettre%20de%20d%C3%A9tecter%20les%20besoins%20r%C3%A9els%20des%20utilisateurs%20et%2C%20dans%20un%20second%20temps%2C%20d%E2%80%99identifier%20les%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20la%20prise%20de%20connaissance%20des%20montants%20de%20dotations%20et%20%C3%A0%20la%20compr%C3%A9hension%20des%20m%C3%A9thodes%20de%20calcul.%0A%0A%2A%2APlusieurs%20typologies%20de%20collectivit%C3%A9s%20sont%20concern%C3%A9es%20par%20l%E2%80%99%C3%A9tude%20%20%3A%2A%2A%0A%2A%20Communes%20rurales%20de%20moins%20de%203500%20habitants%2C%0A%2A%20Communes%20de%20montagne%2C%0A%2A%20Communes%20bourgs-centres%2C%0A%2A%20EPCI%20et%20Communaut%C3%A9s%20d%E2%80%99agglom%C3%A9rations%2C%0A%2A%20D%C3%A9partements%20et%20R%C3%A9gions.%0A%0A%23%23%20Les%20hypoth%C3%A8ses%20d%E2%80%99am%C3%A9lioration%0A%0AConstruire%20avec%20les%20territoires%20un%20moyen%20d%27%C3%A9valuer%20le%20montant%20de%20dotations%20de%20l%27%C3%89tat%20en%20associant%20la%20connaissance%20que%20chaque%20territoire%20a%20de%20lui-m%C3%AAme%2C%20les%20textes%20r%C3%A9glementaires%20ainsi%20que%20les%20donn%C3%A9es%20du%20calcul%20des%20dotations%20locales%20publi%C3%A9es%20en%20open%20data%20par%20la%20%5BDirection%20R%C3%A9gionale%20des%20Collectivit%C3%A9s%20Locales%5D%28http%3A%2F%2Fwww.dotations-dgcl.interieur.gouv.fr%2Fconsultation%2Faccueil.php%29.%0A%0A%2A%2APlusieurs%20axes%20d%E2%80%99am%C3%A9lioration%20sont%20%C3%A9tudi%C3%A9s%20pour%20permettre%20aux%20collectivit%C3%A9s%20de%20%3A%2A%2A%0A%2A%20Mieux%20comprendre%20les%20m%C3%A9canismes%20des%20composantes%20de%20la%20dotation%20globale%20de%20fonctionnement%2C%0A%2A%20Suivre%20l%E2%80%99historique%20et%20l%E2%80%99%C3%A9volution%20de%20leurs%20dotations%2C%0A%2A%20Comprendre%20des%20crit%C3%A8res%20qui%20interviennent%20dans%20le%20calcul%2C%0A%2A%20Visualiser%20et%20identifier%20les%20seuils%20qui%20ont%20un%20impact%20sur%20le%20calcul%2C%0A%2A%20Se%20comparer%20facilement%20avec%20d%E2%80%99autres%20collectivit%C3%A9s.%0A%0ALa%20solution%20contribuera%20%C3%A9galement%20%C3%A0%20la%20poursuite%20de%20l%E2%80%99ouverture%20et%20de%20la%20publication%20du%20mod%C3%A8le%20de%20calcul%20des%20dotations%20locales.%0A", - "events": [], - "phases": [ - { - "name": "construction", - "start": "2022-01-01", - "end": "2022-07-01" - }, - { - "name": "acceleration", - "start": "2022-07-01", - "end": "" - }, - { - "name": "alumni", - "start": "2024-01-01", - "end": "" - } - ], - "sponsors": [ - "anct" - ], - "thematiques": [], - "accessibility_status": "non conforme" + "id": "key_exchange_score_weighted", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "anct" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://dotations.incubateur.anct.gouv.fr", - "size": 1618.169, - "nodes": 191, - "requests": 23, - "grade": "B", - "score": 78, - "ges": 1.44, - "water": 2.16, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:52:05.935123", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "F", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-02T15:53:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 5, - "lighthouse_performance": 0.66, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.97, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "title": "Frontend data-subvention (préprod)", - "category": "dinum", - "repositories": [ - "betagouv/api-subventions-asso" - ], - "tags": [ - "data-subvention", - "staging" - ], - "betaId": "data-subvention", - "http": { - "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:05:23 GMT", - "grade": "A", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 12:05:21 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "a1030c19-ddb9-4eab-9302-e4e610344e81", - "access-control-allow-origin": "*", - "cache-control": "max-age 1800", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-aZ3YD0D2j1Nzl8BdYACI1g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "etag": "W/\"1ypb0cz\"", - "link": "<./_app/immutable/entry/start.bb9b2523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.bc882566.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.ab1795d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.4cd083e0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2c151fd8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.8c4b9623.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.999b05bc.js>; rel=\"modulepreload\"; nopush", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-sveltekit-page": "true" + "id": "cipher_strength_score", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" }, - "scan_id": 57062621, - "score": 90, - "start_time": "Sun, 20 Oct 2024 12:05:20 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "wss://client.relay.crisp.chat", - "https://geo.api.gouv.fr", - "'self'", - "https://client.crisp.chat", - "https://sentry.incubateur.net", - "https://storage.crisp.chat", - "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "wss://stream.relay.crisp.chat", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://client.crisp.chat", - "'self'" - ], - "frame-src": [ - "https://game.crisp.chat", - "https://datasubvention.crisp.help", - "'self'" - ], - "img-src": [ - "'self'", - "data:", - "https://client.crisp.chat", - "https://image.crisp.chat", - "https://storage.crisp.chat" - ], - "report-to": [ - "'csp-endpoint'" - ], - "report-uri": [ - "https://sentry.incubateur.net" - ], - "script-src": [ - "'self'", - "https://client.crisp.chat", - "'unsafe-eval'", - "https://sentry.incubateur.net", - "'nonce-az3yd0d2j1nzl8bdyaci1g=='", - "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", - "https://settings.crisp.chat", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io" - ], - "style-src": [ - "'unsafe-inline'", - "https://client.crisp.chat", - "'self'" - ], - "worker-src": [ - "blob:" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-eval", - "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", - "score_modifier": -10 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "*", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "redirects": true, - "route": [ - "http://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 63072000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "1fh1", - "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T07:37:12Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:04:27Z", - "next_check_at": "2024-11-24T16:05:26Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/dsfr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:02:28Z", - "expires_at": "2025-01-12T23:59:59Z", - "valid": true, - "error": null + { + "id": "cipher_strength_score_weighted", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 10, - "connection": 128, - "handshake": 131, - "response": 135, - "total": 404 - } + { + "id": "final_score", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "service", + "id": "overall_grade", "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -399565,7 +394171,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -399573,7 +394179,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -399581,7 +394187,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -399589,7 +394195,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -399597,7 +394203,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -399605,490 +394211,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732464090" + "finding": "1733069528" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-L4HUKpTLxmuK+lS0oc90mw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-xRYQbGvIGWuCSCj5XArnXQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -400096,7 +394702,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -400105,7 +394711,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -400114,7 +394720,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -400123,7 +394729,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -400132,7 +394738,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -400140,7 +394746,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -400149,7 +394755,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -400158,7 +394764,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -400167,7 +394773,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -400176,14 +394782,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -400192,7 +394798,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -400201,7 +394807,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -400210,7 +394816,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -400219,7 +394825,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -400228,7 +394834,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -400237,7 +394843,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -400246,7 +394852,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -400255,7 +394861,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -400264,7 +394870,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -400273,392 +394879,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -400666,7 +395272,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -400674,7 +395280,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -400682,7 +395288,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -400690,7 +395296,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -400698,7 +395304,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -400706,490 +395312,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732464144" + "finding": "1733069623" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-o9bIXFmN9AL+Evcpx+WHPQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-u13qgzvDv0jAHBFy9TQTvQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -401197,7 +395803,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -401206,7 +395812,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -401215,7 +395821,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -401224,7 +395830,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -401233,7 +395839,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -401241,7 +395847,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -401250,7 +395856,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -401259,7 +395865,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -401268,7 +395874,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -401277,14 +395883,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -401293,7 +395899,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -401302,7 +395908,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -401311,7 +395917,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -401320,7 +395926,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -401329,7 +395935,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -401338,7 +395944,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -401347,7 +395953,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -401356,7 +395962,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -401365,7 +395971,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -401374,392 +395980,1281 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { - "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" + "id": "cipher_strength_score_weighted", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "388" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + } + ], + "cookies": [], + "headers": { + "access-control-allow-origin": "*", + "cache-control": "max-age 1800", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-odBEQ4UTnVidIbB16cnnfw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 16:07:06 GMT", + "etag": "W/\"mtpv52\"", + "link": "<./_app/immutable/entry/start.b0863594.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.91dd15ed.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.9ded8f2d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.4234348d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.869bcdd4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.8c4b9623.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.4eed3cdc.js>; rel=\"modulepreload\"; nopush", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-request-id": "b438f10f-9325-41a1-b9e2-11c89210a316", + "x-sveltekit-page": "true" + }, + "endpoints": [ + { + "hostname": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "sveltekit", + "name": "SvelteKit", + "description": "SvelteKit is the official Svelte framework for building web applications with a flexible filesystem-based routing.", + "confidence": 100, + "version": null, + "icon": "Svelte.svg", + "website": "https://kit.svelte.dev", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "svelte", + "name": "Svelte", + "description": "Svelte is a free and open-source front end compiler created by Rich Harris and maintained by the Svelte core team members.", + "confidence": 100, + "version": null, + "icon": "Svelte.svg", + "website": "https://svelte.dev", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "vite", + "name": "Vite", + "description": "Vite is a rapid development tool for modern web projects.", + "confidence": 100, + "version": null, + "icon": "vite.svg", + "website": "https://vitejs.dev", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "finalUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "fetchTime": "2024-12-01T16:06:39.434Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.65 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.88 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4865, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3985, + "firstMeaningfulPaint": 3985, + "largestContentfulPaint": 5751, + "interactive": 4865, + "speedIndex": 5278, + "totalBlockingTime": 38, + "maxPotentialFID": 114, + "cumulativeLayoutShift": 0.0022251383463541665, + "cumulativeLayoutShiftMainFrame": 0.0022251383463541665, + "totalCumulativeLayoutShift": 0.0022251383463541665, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 417358842, + "observedNavigationStart": 0, + "observedNavigationStartTs": 417358842, + "observedFirstPaint": 1640, + "observedFirstPaintTs": 418998654, + "observedFirstContentfulPaint": 1640, + "observedFirstContentfulPaintTs": 418998654, + "observedFirstContentfulPaintAllFrames": 1640, + "observedFirstContentfulPaintAllFramesTs": 418998654, + "observedFirstMeaningfulPaint": 1640, + "observedFirstMeaningfulPaintTs": 418998654, + "observedLargestContentfulPaint": 1640, + "observedLargestContentfulPaintTs": 418998654, + "observedLargestContentfulPaintAllFrames": 1640, + "observedLargestContentfulPaintAllFramesTs": 418998654, + "observedTraceEnd": 4074, + "observedTraceEndTs": 421433220, + "observedLoad": 481, + "observedLoadTs": 417839984, + "observedDomContentLoaded": 428, + "observedDomContentLoadedTs": 417787001, + "observedCumulativeLayoutShift": 0.0022251383463541665, + "observedCumulativeLayoutShiftMainFrame": 0.0022251383463541665, + "observedTotalCumulativeLayoutShift": 0.0022251383463541665, + "observedFirstVisualChange": 1641, + "observedFirstVisualChangeTs": 418999842, + "observedLastVisualChange": 1791, + "observedLastVisualChangeTs": 419149842, + "observedSpeedIndex": 1649, + "observedSpeedIndexTs": 419007906 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 72, + "numScripts": 40, + "numStylesheets": 7, + "numFonts": 3, + "numTasks": 1804, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, + "numTasksOver50ms": 3, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 10145208.966731623, + "maxRtt": 143.75, + "maxServerLatency": 137.471, + "totalByteWeight": 541538, + "totalTaskTime": 397.1269999999976, + "mainDocumentTransferSize": 3340 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 4, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://datasubvention.beta.gouv.fr/politique-de-confidentialite/" + } + ], + "betagouv": { + "id": "data-subvention", + "type": "startup", + "attributes": { + "name": "Data.Subvention", + "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", + "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", + "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", + "link": "https://datasubvention.beta.gouv.fr", + "repository": "https://github.com/betagouv/api-subventions-asso", + "contact": "contact@datasubvention.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Lauréat du FAST 13. " + }, + { + "name": "other", + "date": "2024-06-10", + "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" + } + ], + "phases": [ + { + "name": "construction", + "start": "2022-01-03", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-06-10", + "end": "" + } + ], + "sponsors": [ + "djepva" + ], + "thematiques": [ + "Subventions", + "Data", + "Open-Data" + ], + "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "size": 1043.29, + "nodes": 294, + "requests": 78, + "grade": "C", + "score": 65, + "ges": 1.7, + "water": 2.55, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:03:36.696871", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-12T23:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.88, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://app.datasubvention.beta.gouv.fr", + "title": "Frontend data-subvention", + "category": "dinum", + "repositories": [ + "betagouv/api-subventions-asso" + ], + "tags": [ + "data-subvention", + "production" + ], + "betaId": "data-subvention", + "http": { + "url": "https://app.datasubvention.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:11:17 GMT", + "grade": "A", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 12:11:16 GMT", + "Transfer-Encoding": "chunked", + "X-Request-ID": "8569f1a8-816d-413f-9df4-4f53bacf178d", + "access-control-allow-origin": "*", + "cache-control": "max-age 1800", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-I0yQMA4/Z6mpTYmqyTeBDg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "etag": "W/\"sjem4r\"", + "link": "<./_app/immutable/entry/start.bb9b2523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.bc882566.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.ab1795d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.a175d07a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2c151fd8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5d851ad1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.999b05bc.js>; rel=\"modulepreload\"; nopush", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-sveltekit-page": "true" }, - { - "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57063171, + "score": 90, + "start_time": "Sun, 20 Oct 2024 12:11:15 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "https://storage.crisp.chat", + "https://sentry.incubateur.net", + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", + "https://geo.api.gouv.fr", + "wss://stream.relay.crisp.chat", + "wss://client.relay.crisp.chat", + "'self'", + "https://api.datasubvention.beta.gouv.fr", + "https://client.crisp.chat" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://client.crisp.chat", + "'self'" + ], + "frame-src": [ + "https://datasubvention.crisp.help", + "https://game.crisp.chat", + "'self'" + ], + "img-src": [ + "data:", + "'self'", + "https://storage.crisp.chat", + "https://image.crisp.chat", + "https://client.crisp.chat" + ], + "report-to": [ + "'csp-endpoint'" + ], + "report-uri": [ + "https://sentry.incubateur.net" + ], + "script-src": [ + "'unsafe-eval'", + "https://sentry.incubateur.net", + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", + "https://client.crisp.chat", + "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", + "'self'", + "https://settings.crisp.chat", + "'nonce-i0yqma4/z6mptymqytebdg=='" + ], + "style-src": [ + "https://client.crisp.chat", + "'unsafe-inline'", + "'self'" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-eval", + "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", + "score_modifier": -10 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://app.datasubvention.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://app.datasubvention.beta.gouv.fr/", + "https://app.datasubvention.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "thda", + "url": "https://app.datasubvention.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T18:57:11Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:25:51Z", + "next_check_at": "2024-12-01T16:26:51Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://app.datasubvention.beta.gouv.fr/dsfr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:22:54Z", + "expires_at": "2025-01-21T08:10:54Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 103, + "connection": 133, + "handshake": 139, + "response": 140, + "total": 515 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "app.datasubvention.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -401767,7 +397262,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -401775,7 +397270,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -401783,7 +397278,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -401791,7 +397286,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -401799,7 +397294,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -401807,490 +397302,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-23 08:10" }, { "id": "cert_notAfter", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-21 08:10" }, { "id": "cert_extlifeSpan", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732464198" + "finding": "1733070016" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-nb1z3SxJnxlGM8nAEGWXHA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-r/ACPUqpA58QIXVEVF1vmg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -402298,7 +397786,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -402307,7 +397795,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -402316,7 +397804,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -402325,7 +397813,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -402334,7 +397822,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -402342,7 +397830,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -402351,7 +397839,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -402360,7 +397848,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -402369,7 +397857,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -402378,14 +397866,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -402394,7 +397882,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -402403,7 +397891,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -402412,16 +397900,16 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -402430,7 +397918,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -402439,7 +397927,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -402448,7 +397936,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -402457,7 +397945,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -402466,7 +397954,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -402475,392 +397963,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402868,7 +398356,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402876,7 +398364,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402884,7 +398372,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402892,7 +398380,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -402900,7 +398388,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -402908,490 +398396,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-23 08:10" }, { "id": "cert_notAfter", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-21 08:10" }, { "id": "cert_extlifeSpan", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732464251" + "finding": "1733070111" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-T0GWZVg+2WtmHuSrJa1PFw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-tO1rlNQEMi/jZvay+3f2TQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -403399,7 +398880,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -403408,7 +398889,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -403417,7 +398898,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -403426,7 +398907,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -403435,7 +398916,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -403443,7 +398924,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -403452,7 +398933,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -403461,7 +398942,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -403470,7 +398951,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -403479,14 +398960,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -403495,7 +398976,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -403504,7 +398985,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -403513,16 +398994,16 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -403531,7 +399012,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -403540,7 +399021,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -403549,7 +399030,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -403558,7 +399039,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -403567,7 +399048,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -403576,1281 +399057,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "218" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - } - ], - "cookies": [], - "headers": { - "access-control-allow-origin": "*", - "cache-control": "max-age 1800", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-+S6e15yddgUnVUV0ZNQNCw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 16:00:17 GMT", - "etag": "W/\"1sm32sp\"", - "link": "<./_app/immutable/entry/start.b0863594.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.91dd15ed.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.9ded8f2d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.4234348d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.869bcdd4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.8c4b9623.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.4eed3cdc.js>; rel=\"modulepreload\"; nopush", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-request-id": "798228f4-c287-4048-a93c-52fd5d2200ef", - "x-sveltekit-page": "true" - }, - "endpoints": [ - { - "hostname": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "sveltekit", - "name": "SvelteKit", - "description": "SvelteKit is the official Svelte framework for building web applications with a flexible filesystem-based routing.", - "confidence": 100, - "version": null, - "icon": "Svelte.svg", - "website": "https://kit.svelte.dev", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "svelte", - "name": "Svelte", - "description": "Svelte is a free and open-source front end compiler created by Rich Harris and maintained by the Svelte core team members.", - "confidence": 100, - "version": null, - "icon": "Svelte.svg", - "website": "https://svelte.dev", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "vite", - "name": "Vite", - "description": "Vite is a rapid development tool for modern web projects.", - "confidence": 100, - "version": null, - "icon": "vite.svg", - "website": "https://vitejs.dev", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "finalUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-11-24T15:59:52.222Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.67 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.88 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.91 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4604, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3715, - "firstMeaningfulPaint": 3805, - "largestContentfulPaint": 5657, - "interactive": 4604, - "speedIndex": 4473, - "totalBlockingTime": 107, - "maxPotentialFID": 178, - "cumulativeLayoutShift": 0.0022251383463541665, - "cumulativeLayoutShiftMainFrame": 0.0022251383463541665, - "totalCumulativeLayoutShift": 0.0022251383463541665, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 434752721, - "observedNavigationStart": 0, - "observedNavigationStartTs": 434752721, - "observedFirstPaint": 1221, - "observedFirstPaintTs": 435973411, - "observedFirstContentfulPaint": 1221, - "observedFirstContentfulPaintTs": 435973411, - "observedFirstContentfulPaintAllFrames": 1221, - "observedFirstContentfulPaintAllFramesTs": 435973411, - "observedFirstMeaningfulPaint": 1221, - "observedFirstMeaningfulPaintTs": 435973411, - "observedLargestContentfulPaint": 1221, - "observedLargestContentfulPaintTs": 435973411, - "observedLargestContentfulPaintAllFrames": 1221, - "observedLargestContentfulPaintAllFramesTs": 435973411, - "observedTraceEnd": 3606, - "observedTraceEndTs": 438358480, - "observedLoad": 329, - "observedLoadTs": 435082146, - "observedDomContentLoaded": 282, - "observedDomContentLoadedTs": 435034896, - "observedCumulativeLayoutShift": 0.0022251383463541665, - "observedCumulativeLayoutShiftMainFrame": 0.0022251383463541665, - "observedTotalCumulativeLayoutShift": 0.0022251383463541665, - "observedFirstVisualChange": 1229, - "observedFirstVisualChangeTs": 435981721, - "observedLastVisualChange": 1313, - "observedLastVisualChangeTs": 436065721, - "observedSpeedIndex": 1234, - "observedSpeedIndexTs": 435986560 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 72, - "numScripts": 40, - "numStylesheets": 7, - "numFonts": 3, - "numTasks": 1770, - "numTasksOver10ms": 9, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 13457462.886157477, - "maxRtt": 83.13000000000001, - "maxServerLatency": 85.13, - "totalByteWeight": 541501, - "totalTaskTime": 531.8929999999962, - "mainDocumentTransferSize": 3341 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 4, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://datasubvention.beta.gouv.fr/politique-de-confidentialite/" - } - ], - "betagouv": { - "id": "data-subvention", - "type": "startup", - "attributes": { - "name": "Data.Subvention", - "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", - "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", - "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", - "link": "https://datasubvention.beta.gouv.fr", - "repository": "https://github.com/betagouv/api-subventions-asso", - "contact": "contact@datasubvention.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Lauréat du FAST 13. " - }, - { - "name": "other", - "date": "2024-06-10", - "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" - } - ], - "phases": [ - { - "name": "construction", - "start": "2022-01-03", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-06-10", - "end": "" - } - ], - "sponsors": [ - "djepva" - ], - "thematiques": [ - "Subventions", - "Data", - "Open-Data" - ], - "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "size": 1043.342, - "nodes": 294, - "requests": 78, - "grade": "C", - "score": 65, - "ges": 1.7, - "water": 2.55, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 15:56:43.999317", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "A", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T23:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.67, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.88, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.91, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://app.datasubvention.beta.gouv.fr", - "title": "Frontend data-subvention", - "category": "dinum", - "repositories": [ - "betagouv/api-subventions-asso" - ], - "tags": [ - "data-subvention", - "production" - ], - "betaId": "data-subvention", - "http": { - "url": "https://app.datasubvention.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:11:17 GMT", - "grade": "A", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 12:11:16 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "8569f1a8-816d-413f-9df4-4f53bacf178d", - "access-control-allow-origin": "*", - "cache-control": "max-age 1800", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-I0yQMA4/Z6mpTYmqyTeBDg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "etag": "W/\"sjem4r\"", - "link": "<./_app/immutable/entry/start.bb9b2523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.bc882566.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.ab1795d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.a175d07a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2c151fd8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5d851ad1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.999b05bc.js>; rel=\"modulepreload\"; nopush", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-sveltekit-page": "true" - }, - "scan_id": 57063171, - "score": 90, - "start_time": "Sun, 20 Oct 2024 12:11:15 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "connect-src": [ - "https://storage.crisp.chat", - "https://sentry.incubateur.net", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", - "https://geo.api.gouv.fr", - "wss://stream.relay.crisp.chat", - "wss://client.relay.crisp.chat", - "'self'", - "https://api.datasubvention.beta.gouv.fr", - "https://client.crisp.chat" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://client.crisp.chat", - "'self'" - ], - "frame-src": [ - "https://datasubvention.crisp.help", - "https://game.crisp.chat", - "'self'" - ], - "img-src": [ - "data:", - "'self'", - "https://storage.crisp.chat", - "https://image.crisp.chat", - "https://client.crisp.chat" - ], - "report-to": [ - "'csp-endpoint'" - ], - "report-uri": [ - "https://sentry.incubateur.net" - ], - "script-src": [ - "'unsafe-eval'", - "https://sentry.incubateur.net", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", - "https://client.crisp.chat", - "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", - "'self'", - "https://settings.crisp.chat", - "'nonce-i0yqma4/z6mptymqytebdg=='" - ], - "style-src": [ - "https://client.crisp.chat", - "'unsafe-inline'", - "'self'" - ], - "worker-src": [ - "blob:" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-eval", - "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", - "score_modifier": -10 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "*", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://app.datasubvention.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://app.datasubvention.beta.gouv.fr/", - "https://app.datasubvention.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 63072000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "thda", - "url": "https://app.datasubvention.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T09:00:09Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:22:32Z", - "next_check_at": "2024-11-24T16:23:31Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://app.datasubvention.beta.gouv.fr/dsfr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:22:34Z", - "expires_at": "2025-01-21T08:10:54Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 89, - "connection": 153, - "handshake": 146, - "response": 150, - "total": 538 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "app.datasubvention.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404858,7 +399450,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404866,7 +399458,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404874,7 +399466,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404882,7 +399474,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -404890,7 +399482,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -404898,483 +399490,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "50 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-10-23 08:10" }, { "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-21 08:10" }, { "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732465027" + "finding": "1733070206" }, { "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-oJGZ5XriKTNmd8B6QZBTPw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-Qs/2Hx02MXcbBChmlq3Z1Q=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -405382,7 +399974,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -405391,7 +399983,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -405400,7 +399992,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -405409,7 +400001,7 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -405418,7 +400010,7 @@ }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -405426,7 +400018,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -405435,7 +400027,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -405444,7 +400036,7 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -405453,7 +400045,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -405462,14 +400054,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -405478,7 +400070,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -405487,7 +400079,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405496,7 +400088,7 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405505,7 +400097,7 @@ }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405514,7 +400106,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405523,7 +400115,7 @@ }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -405532,7 +400124,7 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -405541,7 +400133,7 @@ }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -405550,7 +400142,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -405559,2010 +400151,3284 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2024-10-23 08:10" + }, + { + "id": "cert_notAfter", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2025-01-21 08:10" + }, + { + "id": "cert_extlifeSpan", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "1733070301" + }, + { + "id": "HSTS_time", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-LQyyx+z027RWwSK8GbD/ow=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" + }, + { + "id": "banner_reverseproxy", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" + }, + { + "id": "LOGJAM", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-android_12", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-chrome_79_win10", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-chrome_101_win10", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-firefox_66_win81", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered with final" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-firefox_100_win10", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "h2" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_6_xp", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "No connection" }, { - "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_8_win7", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_8_xp", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_11_win7", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_11_win81", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_11_winphone81", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "No connection" }, { - "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-ie_11_win10", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-edge_15_win10", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-safari_121_ios_122", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-safari_130_osx_10146", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-safari_154_osx_1231", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-java_7u25", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "No connection" }, { - "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-java_8u161", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-java1102", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-java1703", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "clientsimulation-go_1178", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.91dd15ed.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.9ded8f2d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.c7686e1b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.869bcdd4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5d851ad1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.4eed3cdc.js>; rel=\"modulepreload\"; nopush", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-request-id": "7b86102e-232e-41e4-9e5b-350e9384aad9", + "x-sveltekit-page": "true" + }, + "endpoints": [ + { + "hostname": "app.datasubvention.beta.gouv.fr", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.29.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "matomo-datasubvention.osc-secnum-fr1.scalingo.io", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://app.datasubvention.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "sveltekit", + "name": "SvelteKit", + "description": "SvelteKit is the official Svelte framework for building web applications with a flexible filesystem-based routing.", + "confidence": 100, + "version": null, + "icon": "Svelte.svg", + "website": "https://kit.svelte.dev", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "svelte", + "name": "Svelte", + "description": "Svelte is a free and open-source front end compiler created by Rich Harris and maintained by the Svelte core team members.", + "confidence": 100, + "version": null, + "icon": "Svelte.svg", + "website": "https://svelte.dev", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "vite", + "name": "Vite", + "description": "Vite is a rapid development tool for modern web projects.", + "confidence": 100, + "version": null, + "icon": "vite.svg", + "website": "https://vitejs.dev", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://app.datasubvention.beta.gouv.fr/", + "finalUrl": "https://app.datasubvention.beta.gouv.fr/", + "fetchTime": "2024-12-01T16:17:48.384Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.64 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.91 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4932, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3926, + "firstMeaningfulPaint": 3926, + "largestContentfulPaint": 6025, + "interactive": 4932, + "speedIndex": 5675, + "totalBlockingTime": 55, + "maxPotentialFID": 125, + "cumulativeLayoutShift": 0.002530517578125, + "cumulativeLayoutShiftMainFrame": 0.002530517578125, + "totalCumulativeLayoutShift": 0.002530517578125, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 322487933, + "observedNavigationStart": 0, + "observedNavigationStartTs": 322487933, + "observedFirstPaint": 1874, + "observedFirstPaintTs": 324362246, + "observedFirstContentfulPaint": 1874, + "observedFirstContentfulPaintTs": 324362246, + "observedFirstContentfulPaintAllFrames": 1874, + "observedFirstContentfulPaintAllFramesTs": 324362246, + "observedFirstMeaningfulPaint": 1874, + "observedFirstMeaningfulPaintTs": 324362246, + "observedLargestContentfulPaint": 1874, + "observedLargestContentfulPaintTs": 324362246, + "observedLargestContentfulPaintAllFrames": 1874, + "observedLargestContentfulPaintAllFramesTs": 324362246, + "observedTraceEnd": 5787, + "observedTraceEndTs": 328275229, + "observedLoad": 484, + "observedLoadTs": 322971946, + "observedDomContentLoaded": 435, + "observedDomContentLoadedTs": 322922678, + "observedCumulativeLayoutShift": 0.002530517578125, + "observedCumulativeLayoutShiftMainFrame": 0.002530517578125, + "observedTotalCumulativeLayoutShift": 0.002530517578125, + "observedFirstVisualChange": 1882, + "observedFirstVisualChangeTs": 324369933, + "observedLastVisualChange": 2032, + "observedLastVisualChangeTs": 324519933, + "observedSpeedIndex": 1891, + "observedSpeedIndexTs": 324378858 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 73, + "numScripts": 41, + "numStylesheets": 7, + "numFonts": 3, + "numTasks": 2040, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 10700131.623338101, + "maxRtt": 146.95, + "maxServerLatency": 23.351999999999997, + "totalByteWeight": 563489, + "totalTaskTime": 425.1159999999972, + "mainDocumentTransferSize": 3298 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://app.datasubvention.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://app.datasubvention.beta.gouv.fr/mentions-legales" }, { - "id": "cert_subjectAltName", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "app.datasubvention.beta.gouv.fr" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 4, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://datasubvention.beta.gouv.fr/politique-de-confidentialite/" + } + ], + "betagouv": { + "id": "data-subvention", + "type": "startup", + "attributes": { + "name": "Data.Subvention", + "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", + "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", + "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", + "link": "https://datasubvention.beta.gouv.fr", + "repository": "https://github.com/betagouv/api-subventions-asso", + "contact": "contact@datasubvention.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Lauréat du FAST 13. " + }, + { + "name": "other", + "date": "2024-06-10", + "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" + } + ], + "phases": [ + { + "name": "construction", + "start": "2022-01-03", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-06-10", + "end": "" + } + ], + "sponsors": [ + "djepva" + ], + "thematiques": [ + "Subventions", + "Data", + "Open-Data" + ], + "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "cert_trust", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "width": 1920, + "height": 1080, + "url": "https://app.datasubvention.beta.gouv.fr", + "size": 1061.615, + "nodes": 281, + "requests": 80, + "grade": "C", + "score": 65, + "ges": 1.7, + "water": 2.55, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:14:45.434634", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-21T08:10:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.64, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.91, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://datasubvention.beta.gouv.fr", + "title": "Landing page data-subvention", + "category": "dinum", + "repositories": [ + "betagouv/api-subventions-asso" + ], + "tags": [ + "data-subvention" + ], + "betaId": "data-subvention", + "http": { + "url": "https://datasubvention.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:19:38 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Age": "60582", + "CF-Cache-Status": "HIT", + "CF-Ray": "8d58f4f97f67a334-SEA", + "Cache-Control": "public, max-age=604800", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 12:19:34 GMT", + "Last-Modified": "Sat, 19 Oct 2024 19:29:52 GMT", + "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", + "Server": "cloudflare", + "Set-Cookie": "__cf_bm=Ctsb6JTv7ZwuLr2rKL5SIxfzTpJtb9wOi2Tc0AiJOGc-1729426774-1.0.1.1-pNIj9VoXA9376F5TboRXyW.bhrorgAS2ALCxZFxiscWPn2VF96aiPXVfWiZrxe6WeNa_k3b.LT0aS7mNvkEc7Q; path=/; expires=Sun, 20-Oct-24 12:49:34 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=RV44Gz9ATdMF2M5HLn49.QkHjEwgI8aqcHElXACbHL8-1729426774026-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-LiteSpeed-Tag": "81d_HTTP.200", + "alt-svc": "h3=\":443\"; ma=86400", + "ec-cdn-cache-control": "public, max-age=604800", + "ec-cdn-status": "hit", + "ec-cdn-supported": "1", + "ec-coldstart": "worker", + "ec-source": "dynamic", + "x-powered-by": "Elementor Cloud" + }, + "scan_id": 57063265, + "score": 30, + "start_time": "Sun, 20 Oct 2024 12:19:33 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "__cf_bm": { + "domain": ".datasubvention.beta.gouv.fr", + "expires": 1729428574, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "None", + "secure": true + }, + "_cfuvid": { + "domain": ".datasubvention.beta.gouv.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "None", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://datasubvention.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://datasubvention.beta.gouv.fr/", + "https://datasubvention.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "qdtt", + "url": "https://datasubvention.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.868, + "down": false, + "down_since": null, + "up_since": "2024-11-30T11:13:39Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [], + "last_check_at": "2024-12-01T16:23:22Z", + "next_check_at": "2024-12-01T16:24:22Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://datasubvention.beta.gouv.fr/wp-content/uploads/2022/06/Republique-francaise.jpeg", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:19:25Z", + "expires_at": "2025-01-02T05:36:22Z", + "valid": true, + "error": null }, - { - "id": "cert_chain_of_trust", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "passed." + "metrics": { + "apdex": 0.709, + "timings": { + "redirect": 0, + "namelookup": 120, + "connection": 3, + "handshake": 12, + "response": 544, + "total": 679 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "datasubvention.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "cert_certificatePolicies_EV", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "service", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "57 >= 30 days" + "finding": "HTTP" }, { - "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "pre_128cipher", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2024-10-23 08:10" - }, - { - "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "2025-01-21 08:10" + "finding": "No 128 cipher limit bug" }, { - "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "SSLv2", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "LOW", "finding": "not offered" }, { - "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "SSLv3", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "not offered" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS1", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "not offered" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS1_1", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "not offered" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS1_2", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "offered" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS1_3", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "offered with final" }, { - "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "ALPN_HTTP2", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "h2" }, { - "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "ALPN", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "1732465121" - }, - { - "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "http/1.1" }, { - "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_NULL", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_aNULL", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_EXPORT", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "nosniff" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_LOW", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-+TpPL9rUSkdFiT7ct6rwnA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "*" - }, - { - "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "max-age 1800" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_3DES_IDEA", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not offered" }, { - "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_OBSOLETED", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "offered" }, { - "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_STRONG_NOFS", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherlist_STRONG_FS", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "offered" }, { - "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipher_order-tls1_2", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" + "finding": "server" }, { - "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipherorder_TLSv1_2", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" - }, - { - "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { - "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cipher_order", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" + "finding": "server -- TLS 1.3 client determined" }, { - "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "FS", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "offered" }, { - "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "FS_ciphers", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { - "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "FS_ECDHE_curves", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "No connection" + "severity": "OK", + "finding": "prime256v1" }, { - "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS_extensions", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { - "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "TLS_session_ticket", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "valid for 64800 seconds only (", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "severity": "OK", + "finding": "SHA256 with RSA" }, { - "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_keySize ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_keyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_extKeyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLS Web Server Authentication" }, { - "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_serialNumber ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2A56C59EE7344CF21369152FFF317BF4" }, { - "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_serialNumberLen ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "16" }, { - "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_fingerprintSHA1 ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "0FE6F0C9E33AA22DD8A32643F77CB861A4F95E9E" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_fingerprintSHA256 ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_commonName ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "severity": "OK", + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_commonName_wo_SNI ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "elementor.cloud" }, { - "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_subjectAltName ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "30" + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_chain_of_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "90" + "severity": "OK", + "finding": "passed." }, { - "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_certificatePolicies_EV ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "no" }, { - "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_expirationStatus ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "60" + "severity": "MEDIUM", + "finding": "expires < 60 days (31)" }, { - "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_notBefore ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "2024-10-04 04:36" }, { - "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_notAfter ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "81" + "severity": "MEDIUM", + "finding": "2025-01-02 05:35" }, { - "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "cert_extlifeSpan ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "HTTP" + "finding": "certificate has no extended life time according to browser forum" }, { - "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_eTLS ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" + "finding": "not present" }, { - "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_crlDistributionPoints ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http://c.pki.goog/wr1/1IpaVurLY24.crl" }, { - "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_ocspURL ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "not offered" + "finding": "http://o.pki.goog/s/wr1/KlY" }, { - "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "OCSP_stapling ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_ocspRevoked ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "h2" + "finding": "not revoked" }, { - "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_mustStapleExtension ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "--" }, { - "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "DNS_CAArecord ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "severity": "LOW", + "finding": "--" }, { - "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certificate_transparency ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "yes (certificate extension)" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certs_countServer ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "3" }, { - "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certs_list_ordering_problem ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "no" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_caIssuers ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_expiration <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_chain <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only ( ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "random" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_expiration <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "none" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_chain <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_badOCSP ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_signatureAlgorithm ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_keySize ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_keyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_extKeyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_serialNumber ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "04AFFD2E1EC1520266B3BC3BF615EBD24BB3" + "finding": "4214907D2CE0F6E513F0F5EFC6BEF618" }, { - "id": "cert_serialNumberLen", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_serialNumberLen ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_fingerprintSHA1 ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "9E7DBCB00301CC20280361699E816F5932D566FB" + "finding": "1E86AB34B776A54C149C2187468E31B67D2FF788" }, { - "id": "cert_fingerprintSHA256", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_fingerprintSHA256 ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" + "finding": "A2BDAA0B1DE6B52A127934A9122A437974AA4FA5DC7502D24F1161DAE866426F" }, { - "id": "cert", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIDszCCA1mgAwIBAgIQQhSQfSzg9uUT8PXvxr72GDAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMDA0MDQzNjI2WhcNMjUwMTAyMDUzNjIyWjAmMSQwIgYDVQQDExtkYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS9JVbfVLygBnD3898uojuxI/+JNh5NBe+cjRou2uGBf02todCg8RTpPmyJMqVZBPcpgJqObu1uy0V7+3sMChjjo4ICUjCCAk4wDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOAo/GH6Zb2rAliZOG1YaUNEmXMYMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvUWhRMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MCYGA1UdEQQfMB2CG2RhdGFzdWJ2ZW50aW9uLmJldGEuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvMHJiQWdHM2dNZ1UuY3JsMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGSVgeHlAAABAMARjBEAiAy10R9VktuzrWIYmp8fSn4EguN+MJk7Et8C8xqlUSHPQIgcyEmeBM3uml9bI8WvcCeYzcVG45EmfubFWb6BNWqyzAAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAZJWB4ejAAAEAwBGMEQCIB6i1x6GUN0pUTG8fjvzQdYa4TCyi8b8mzYjLIE6Rw+tAiB1my9fUfXZvSFHasx2bhjr0RhhrUvi5RGKpLK5kAzOezAKBggqhkjOPQQDAgNIADBFAiEA6o7DKN8T+evLa2TYw0EKxH5XP7zFgH/l+RP2x7Zfj9sCIFX1v2I0Nc5KGHjHyGkTT02AoFmybYzP5r3Mdi74kGTm\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_commonName ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "app.datasubvention.beta.gouv.fr" + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_commonName_wo_SNI ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "*.osc-secnum-fr1.scalingo.io" + "finding": "elementor.cloud" }, { - "id": "cert_subjectAltName", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_subjectAltName ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "app.datasubvention.beta.gouv.fr" + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "cert_trust", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_chain_of_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_certificatePolicies_EV ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_expirationStatus ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "57 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (31)" }, { - "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_notBefore ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2024-10-23 08:10" + "finding": "2024-10-04 04:36" }, { - "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_notAfter ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "2025-01-21 08:10" + "severity": "MEDIUM", + "finding": "2025-01-02 05:36" }, { - "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_extlifeSpan ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_eTLS ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_crlDistributionPoints ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/0rbAgG3gMgU.crl" }, { - "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_ocspURL ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/QhQ" }, { - "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "OCSP_stapling ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_ocspRevoked ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "DNS_CAArecord ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certificate_transparency ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certs_countServer ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "certs_list_ordering_problem ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cert_caIssuers ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_expiration <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert_chain <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "intermediate_cert <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+358 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "1732465215" + "finding": "1733070097" }, { - "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "HTTP_headerAge", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "severity": "INFO", + "finding": "358 seconds" }, { - "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "ipv4_in_header", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "MEDIUM", + "cwe": "CWE-212", + "finding": "Set-Cookie: __cf_bm=XQjFQ701EL8Q1LYDS2PNJk4.q1lT6IThUQvAUfjJFR0-1733070097-1.0.1.1-mlQxZqivyHzDrAEEhDw56kbn_cpyQ_sK6EH1KDDXLpbYZZ7n5UknZhAphaFi.bTGl2B7kfBtRYFXOfwrPIpw1g; path=/; expires=Sun, 01-Dec-24 16:51:37 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None (check if it's your IP address or e.g. a cluster IP)" }, { - "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "ipv4_in_header", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "MEDIUM", + "cwe": "CWE-212", + "finding": "Set-Cookie: _cfuvid=tHtgEzDbqcD_NjuXHfYWoZq9D8UW1fll7zT2gvJ8VDs-1733070097104-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None" + }, + { + "id": "HSTS", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "2 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cookie_secure", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "All (2) at '/' marked as secure" }, { - "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "cookie_httponly", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-AG3qAe5jSBZ/RdCi12S72g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "max-age 1800" + "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -407570,7 +403436,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -407579,7 +403445,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -407588,7 +403454,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -407597,16 +403463,16 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -407614,7 +403480,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -407623,7 +403489,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -407632,16 +403498,16 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -407650,14 +403516,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -407666,7 +403532,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -407675,7 +403541,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -407684,16 +403550,16 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -407702,16 +403568,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -407720,16 +403586,16 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -407738,7 +403604,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -407747,392 +403613,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408140,7 +404013,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408148,7 +404021,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408156,7 +404029,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408164,7 +404037,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -408172,491 +404045,836 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_keySize ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_keyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_extKeyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_serialNumber ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "04AFFD2E1EC1520266B3BC3BF615EBD24BB3" + "finding": "2A56C59EE7344CF21369152FFF317BF4" }, { - "id": "cert_serialNumberLen", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_serialNumberLen ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_fingerprintSHA1 ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "9E7DBCB00301CC20280361699E816F5932D566FB" + "finding": "0FE6F0C9E33AA22DD8A32643F77CB861A4F95E9E" }, { - "id": "cert_fingerprintSHA256", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_fingerprintSHA256 ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" + "finding": "CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" }, { - "id": "cert", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "datasubvention.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "elementor.cloud" + }, + { + "id": "cert_subjectAltName ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "datasubvention.beta.gouv.fr" + }, + { + "id": "cert_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "MEDIUM", + "finding": "expires < 60 days (31)" + }, + { + "id": "cert_notBefore ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "2024-10-04 04:36" + }, + { + "id": "cert_notAfter ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "MEDIUM", + "finding": "2025-01-02 05:35" + }, + { + "id": "cert_extlifeSpan ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/wr1/1IpaVurLY24.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/wr1/KlY" + }, + { + "id": "OCSP_stapling ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "WR1 (Google Trust Services from US)" + }, + { + "id": "intermediate_cert <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + }, + { + "id": "intermediate_cert_notBefore <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "2023-12-13 09:00" + }, + { + "id": "intermediate_cert_notAfter <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "2029-02-20 14:00" + }, + { + "id": "intermediate_cert_expiration <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "WR1 <-- GTS Root R1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "2020-06-19 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R1 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "cert_signatureAlgorithm ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "ECDSA with SHA256" + }, + { + "id": "cert_keySize ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" + }, + { + "id": "cert_keyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature" + }, + { + "id": "cert_extKeyUsage ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication" + }, + { + "id": "cert_serialNumber ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "4214907D2CE0F6E513F0F5EFC6BEF618" + }, + { + "id": "cert_serialNumberLen ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1 ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "1E86AB34B776A54C149C2187468E31B67D2FF788" + }, + { + "id": "cert_fingerprintSHA256 ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "A2BDAA0B1DE6B52A127934A9122A437974AA4FA5DC7502D24F1161DAE866426F" + }, + { + "id": "cert ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIDszCCA1mgAwIBAgIQQhSQfSzg9uUT8PXvxr72GDAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMDA0MDQzNjI2WhcNMjUwMTAyMDUzNjIyWjAmMSQwIgYDVQQDExtkYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS9JVbfVLygBnD3898uojuxI/+JNh5NBe+cjRou2uGBf02todCg8RTpPmyJMqVZBPcpgJqObu1uy0V7+3sMChjjo4ICUjCCAk4wDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOAo/GH6Zb2rAliZOG1YaUNEmXMYMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvUWhRMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MCYGA1UdEQQfMB2CG2RhdGFzdWJ2ZW50aW9uLmJldGEuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvMHJiQWdHM2dNZ1UuY3JsMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGSVgeHlAAABAMARjBEAiAy10R9VktuzrWIYmp8fSn4EguN+MJk7Et8C8xqlUSHPQIgcyEmeBM3uml9bI8WvcCeYzcVG45EmfubFWb6BNWqyzAAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAZJWB4ejAAAEAwBGMEQCIB6i1x6GUN0pUTG8fjvzQdYa4TCyi8b8mzYjLIE6Rw+tAiB1my9fUfXZvSFHasx2bhjr0RhhrUvi5RGKpLK5kAzOezAKBggqhkjOPQQDAgNIADBFAiEA6o7DKN8T+evLa2TYw0EKxH5XP7zFgH/l+RP2x7Zfj9sCIFX1v2I0Nc5KGHjHyGkTT02AoFmybYzP5r3Mdi74kGTm\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_commonName ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "app.datasubvention.beta.gouv.fr" + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_commonName_wo_SNI ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "*.osc-secnum-fr1.scalingo.io" + "finding": "elementor.cloud" }, { - "id": "cert_subjectAltName", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_subjectAltName ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "app.datasubvention.beta.gouv.fr" + "finding": "datasubvention.beta.gouv.fr" }, { - "id": "cert_trust", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_chain_of_trust ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_certificatePolicies_EV ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_expirationStatus ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", - "finding": "57 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (31)" }, { - "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_notBefore ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "2024-10-23 08:10" + "finding": "2024-10-04 04:36" }, { - "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_notAfter ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", - "finding": "2025-01-21 08:10" + "severity": "MEDIUM", + "finding": "2025-01-02 05:36" }, { - "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_extlifeSpan ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_eTLS ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_crlDistributionPoints ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/0rbAgG3gMgU.crl" }, { - "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_ocspURL ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/QhQ" }, { - "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "OCSP_stapling ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_ocspRevoked ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "DNS_CAArecord ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "certificate_transparency ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "certs_countServer ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "certs_list_ordering_problem ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cert_caIssuers ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert_expiration <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert_chain <#1> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "intermediate_cert <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "2023-11-15 03:43" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R4 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+418 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "1732465310" + "finding": "1733070157" }, { - "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "HTTP_headerAge", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "severity": "INFO", + "finding": "418 seconds" }, { - "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "ipv4_in_header", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "MEDIUM", + "cwe": "CWE-212", + "finding": "Set-Cookie: __cf_bm=VOFuucc809yRnxlAQhKgeA2hnNIdWV_nw2IPBU1yWS4-1733070157-1.0.1.1-TNsn8vo0UtgdPqAH5h5W9l_GyapRPgX8wiBl3cZm_jWH5g0Empfs8CaESxJxvt7CIoO8IcQj6Wosvuuh4f9.XA; path=/; expires=Sun, 01-Dec-24 16:52:37 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None (check if it's your IP address or e.g. a cluster IP)" }, { - "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "ipv4_in_header", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "MEDIUM", + "cwe": "CWE-212", + "finding": "Set-Cookie: _cfuvid=Yg67mWoFdK.uM4FMR5r35dO4ZK.3xTDUGGPUw5NJoYk-1733070157540-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None" + }, + { + "id": "HSTS", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "2 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cookie_secure", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "All (2) at '/' marked as secure" }, { - "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "cookie_httponly", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-vr7QDFvlupF5QFsWt9JLDw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "*" + "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "max-age 1800" + "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -408664,7 +404882,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -408673,7 +404891,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -408682,7 +404900,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -408691,16 +404909,16 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -408708,7 +404926,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -408717,7 +404935,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -408726,16 +404944,16 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -408744,14 +404962,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -408760,7 +404978,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -408769,7 +404987,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -408778,16 +404996,16 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2554CAF124A9C86E63183CFB2E0E0569094667D273B106B8BF181AA5D74A8CB4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -408796,16 +405014,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -408814,16 +405032,16 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -408832,7 +405050,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -408841,329 +405059,352 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "384" + "finding": "125" } ], "thirdparties": { "trackers": [ + { + "type": "brevo", + "url": "https://cdn.brevo.com/js/sdk-loader.js", + "details": { + "id": "brevo", + "message": "Ensure your TOS notify the Brevo usage" + } + }, + { + "type": "cloudflare", + "url": "https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } + }, { "type": "crisp", "url": "https://client.crisp.chat/l.js", @@ -409173,33 +405414,674 @@ } }, { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/matomo.js" + "type": "unknown", + "url": "https://www.loom.com/embed/2720a47a15ab4929bfb0ab2059ca3fe5?sid=69da8177-7dd7-4da0-a62e-bc0cf925fe54" + }, + { + "type": "unknown", + "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.js" + }, + { + "type": "unknown", + "url": "https://sibautomation.com/sa.js?key=uvxc7hbx21zuv3f2yjbhub71" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/css/vendor-716f7d0d-d74f0245ad1ca258a57a.css" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/css/embed-video-bd3c3921137d81a83b5d.css" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/0runtime-3ffa51d0f8e7ef96ecda.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/lens-70d2f665b2fe784ef600.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-35bda9aa-2d7cf22f78ac9cf70fab.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-16978ab6-ebb25dbfe0b834462d2b.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-6575d636-acb6bc1d5a4e2716b15c.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-c30f4496-5b6bdafc83eb96695e5a.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-1d62346b-c8c3e444d3fb0fd3373f.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-fc7032e9-55fc15b3dc991f4a262e.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-ee7923f1-22218e2deb23f677a223.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-061dedfc-727a0adcd51bb3af1d2f.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-c2538b26-ae74dfa02a98d5e82468.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-5603c60f-98942a2e753f5261e692.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-7d915b0b-f80085337104ddf96c59.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-8ffe3826-e572edad7dc0bad2ad59.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-10033cf1-d5abfabbbd5ab6947aa7.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-2983fe02-368aea7c5c4036c0409e.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-ab28add5-6308196e80166e65f38f.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-72e1f408-b9245aa0753d64689bef.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-6f4e698b-e65d315613480d27f2c2.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-7cbfd151-7d97da0459b84685de6e.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-0dff58e9-9a8acbddda838265257c.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-bf1de93b-9a8801fde7fb15c392eb.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-0d659241-47fcde4f8c3b3796d22c.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-20796a5f-17a7e50238d6b30d1c70.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-07789531-eeefbd9815e288806277.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-91502f39-2bcf16c9e62944768565.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-752219c7-1a701475a017ac9dc713.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-c4380658-651e22481e0295ba26df.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-d0ec3b80-af0c8ffb60a62bd00921.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-1339a779-fbb4d43aa9b77f8da577.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-6f12e44d-cdd115f2e9a90092e2d6.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-be5e06f6-1f8d87a5a17b507d3c54.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-d42fe5d3-cf7560f62e42c4469011.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-4c3bcec0-dd20b5c47a8eede3ed68.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-52dd3122-ac078d4e6a48b45349f7.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-a1b7b07f-9ec040017b8637c4c549.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-9be35530-5c1a79fa9944ad3decdc.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-f56ba585-3f7d90b6c425ef229cc2.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-429cbf9e-04a587a25ff99470792e.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-734fce56-8abe15a4cdc4c9f8b4a7.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-716f7d0d-134b0ad9632d83edb2ba.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-708367d0-1409b91c1408b1ecb004.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/vendor-5c7c8bfa-a645e1911c06644b468e.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/embed-video-c37ecb0b9c6ba3c32161.js" + }, + { + "type": "unknown", + "url": "https://sibautomation.com/cm.html?key=uvxc7hbx21zuv3f2yjbhub71" + }, + { + "type": "unknown", + "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=740137&h=16&m=20&s=13&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=d48b229587bdf217&_idn=1&send_image=0&_refts=0&pv_id=8SeHD9&pf_net=187&pf_srv=73&pf_tfr=6&pf_dm1=450&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "brevo", + "url": "https://in-automate.brevo.com/cm?uuid=7c197c4d-945e-4de6-a3ef-8ee3de8dc89d&key=uvxc7hbx21zuv3f2yjbhub71&cuid=f5ad6636-4e10-4671-ba7a-2d7ff13cb544", + "details": { + "id": "brevo", + "message": "Ensure your TOS notify the Brevo usage" + } + }, + { + "type": "unknown", + "url": "https://o398470.ingest.sentry.io/api/5257803/envelope/?sentry_key=44839bac2d7547769e214445b25f43d9&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.73.0" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/record-sdk-supported-endpoint-5b1f979c88d8f1e7288b.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/LoadSlackConnect-29a23e74b12aec19afaf.js" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/js/emojiUtil-bc2549ff1be0d0649737.js" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "chrome-extension://liecbddmkiiihnedobmlmillhodjkdmb/img/installed.jpg" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Bold-7635c1bc788a9c68bf95.woff2" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Book-5f7f3d61a321e3838310.woff2" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/sessions/thumbnails/2720a47a15ab4929bfb0ab2059ca3fe5-00001.jpg" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/avatars/27487685_31667f520bb54358a2673a22a7d2d8c6_192.jpg" + }, + { + "type": "unknown", + "url": "https://evs.sgmt.loom.com/yhPeelcEJD/eejxbDiFfK.min.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/sessions/thumbnails/2720a47a15ab4929bfb0ab2059ca3fe5-00001.mp4" + }, + { + "type": "brevo", + "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=f5ad6636-4e10-4671-ba7a-2d7ff13cb544&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention&sib_name=Data.Subvention&ma_referrer=&ma_path=%2F", + "details": { + "id": "brevo", + "message": "Ensure your TOS notify the Brevo usage" + } + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Bold-7635c1bc788a9c68bf95.woff2" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Book-5f7f3d61a321e3838310.woff2" + }, + { + "type": "unknown", + "url": "https://www.loom.com/v1/users/feature_flag/bulk?flags=rollout-limit-business-creator-lite,enable-dev-tools,rollout-new-sdk-ui,rollout-new-sdk-ui,exp-hard-gate-comment-emoji&hash=f7a61aaa-c85d-4f1d-ad91-7d43232e7f34&extraProperties={}" + }, + { + "type": "unknown", + "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=283170&h=16&m=20&s=13&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=d48b229587bdf217&_idn=0&send_image=0&_refts=0&pv_id=wRfLAI&pf_net=187&pf_srv=73&pf_tfr=6&pf_dm1=450&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "unknown", + "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=487149&h=16&m=20&s=13&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=d48b229587bdf217&_idn=0&send_image=0&_refts=0&pv_id=QRG3fB&pf_net=187&pf_srv=73&pf_tfr=6&pf_dm1=450&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "unknown", + "url": "https://www.loom.com/graphql" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/v1/projects/rggRFsCK29LOKVGyTLpt9xoXVhNNXaP6/settings" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM4MjU0MDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=k3Ucne3fZ0UvJBt-9VEXPVG93aHpPUGFLgn95wq%7EkAbE90030K9o9wi5XmCND08wezTa%7EjXqlHMq54OGipboHsU9V17-Td2MtT%7EERa%7ESUpFYLhmO3TnHkBPfCvk32h48n276Cto%7EONHFvXF8Kir6ghJZiV5cRKvAlKmSQHUxxTdKil1NO8e7YLUK3bJ5l6E%7EgBFQHc7y-umcZSh8PYGyzFi3RrUOqlqTy0w0d4JsnTgopEoQS9zlSjZrvOBXgAw3pZL4JIz7dAMGLGh7qDz4rug6jFx09xfj05l%7EgRFGtlI15ZtTqFDkyLbrC4Z1EjuIu%7EI1OlgFvmKCWfT31r9zUA__" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM4MjU0MDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=k3Ucne3fZ0UvJBt-9VEXPVG93aHpPUGFLgn95wq%7EkAbE90030K9o9wi5XmCND08wezTa%7EjXqlHMq54OGipboHsU9V17-Td2MtT%7EERa%7ESUpFYLhmO3TnHkBPfCvk32h48n276Cto%7EONHFvXF8Kir6ghJZiV5cRKvAlKmSQHUxxTdKil1NO8e7YLUK3bJ5l6E%7EgBFQHc7y-umcZSh8PYGyzFi3RrUOqlqTy0w0d4JsnTgopEoQS9zlSjZrvOBXgAw3pZL4JIz7dAMGLGh7qDz4rug6jFx09xfj05l%7EgRFGtlI15ZtTqFDkyLbrC4Z1EjuIu%7EI1OlgFvmKCWfT31r9zUA__" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM4MjU0MDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=k3Ucne3fZ0UvJBt-9VEXPVG93aHpPUGFLgn95wq%7EkAbE90030K9o9wi5XmCND08wezTa%7EjXqlHMq54OGipboHsU9V17-Td2MtT%7EERa%7ESUpFYLhmO3TnHkBPfCvk32h48n276Cto%7EONHFvXF8Kir6ghJZiV5cRKvAlKmSQHUxxTdKil1NO8e7YLUK3bJ5l6E%7EgBFQHc7y-umcZSh8PYGyzFi3RrUOqlqTy0w0d4JsnTgopEoQS9zlSjZrvOBXgAw3pZL4JIz7dAMGLGh7qDz4rug6jFx09xfj05l%7EgRFGtlI15ZtTqFDkyLbrC4Z1EjuIu%7EI1OlgFvmKCWfT31r9zUA__" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM4MjU0MDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=k3Ucne3fZ0UvJBt-9VEXPVG93aHpPUGFLgn95wq%7EkAbE90030K9o9wi5XmCND08wezTa%7EjXqlHMq54OGipboHsU9V17-Td2MtT%7EERa%7ESUpFYLhmO3TnHkBPfCvk32h48n276Cto%7EONHFvXF8Kir6ghJZiV5cRKvAlKmSQHUxxTdKil1NO8e7YLUK3bJ5l6E%7EgBFQHc7y-umcZSh8PYGyzFi3RrUOqlqTy0w0d4JsnTgopEoQS9zlSjZrvOBXgAw3pZL4JIz7dAMGLGh7qDz4rug6jFx09xfj05l%7EgRFGtlI15ZtTqFDkyLbrC4Z1EjuIu%7EI1OlgFvmKCWfT31r9zUA__" + }, + { + "type": "unknown", + "url": "https://www.loom.com/v1/users/feature_flag/bulk?flags=rollout-sdk-firefox-support&hash=759eaa11-e942-4f1a-9aa9-85d7bd5475d9&extraProperties={}" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/analytics-next/bundles/tsub-middleware.bundle.c0f5511a001f780f591f.js" + }, + { + "type": "unknown", + "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/playlistmultibitrate.mpd?Signature=ph3NWwbKUByT3plb4-PkWL3P--E-rfe5hpyQYCdJ5JDus-tO9uMzRZHyJiwuDylfm6dljkxewN-ff7O7r~mwLJDMmcYep5LQfoORBklZkA5DOlLo3g~af0D5~z1Jh87sF5IuoiWU9U~FnhmOA0qIWZUkVKIaSiAapDLojNB7UzxvTw7fwWiGtTeBcjTRRHKBBM7pNn2R9oPeRzCQsFgouGCVYT98EyiEGJKKgxrdlzsVajIJJy7u8oXkd~BCpbmK9MRIT23MzkBPL1YQQFzXshUfscUhRNtbM1wQ62Qxqni6xR06VFqYyh96B~1yggFi7u~56~SevwKSgXBUH99giw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMzMTU2NDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/next-integrations/actions/sprig-web/1041a2eb0b05fe32acf2.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/NotoColorEmoji/NotoColorEmoji.9.woff2" + }, + { + "type": "unknown", + "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-audio-init.webm?Signature=ph3NWwbKUByT3plb4-PkWL3P--E-rfe5hpyQYCdJ5JDus-tO9uMzRZHyJiwuDylfm6dljkxewN-ff7O7r~mwLJDMmcYep5LQfoORBklZkA5DOlLo3g~af0D5~z1Jh87sF5IuoiWU9U~FnhmOA0qIWZUkVKIaSiAapDLojNB7UzxvTw7fwWiGtTeBcjTRRHKBBM7pNn2R9oPeRzCQsFgouGCVYT98EyiEGJKKgxrdlzsVajIJJy7u8oXkd~BCpbmK9MRIT23MzkBPL1YQQFzXshUfscUhRNtbM1wQ62Qxqni6xR06VFqYyh96B~1yggFi7u~56~SevwKSgXBUH99giw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMzMTU2NDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" + }, + { + "type": "unknown", + "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-video-init.webm?Signature=ph3NWwbKUByT3plb4-PkWL3P--E-rfe5hpyQYCdJ5JDus-tO9uMzRZHyJiwuDylfm6dljkxewN-ff7O7r~mwLJDMmcYep5LQfoORBklZkA5DOlLo3g~af0D5~z1Jh87sF5IuoiWU9U~FnhmOA0qIWZUkVKIaSiAapDLojNB7UzxvTw7fwWiGtTeBcjTRRHKBBM7pNn2R9oPeRzCQsFgouGCVYT98EyiEGJKKgxrdlzsVajIJJy7u8oXkd~BCpbmK9MRIT23MzkBPL1YQQFzXshUfscUhRNtbM1wQ62Qxqni6xR06VFqYyh96B~1yggFi7u~56~SevwKSgXBUH99giw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMzMTU2NDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" + }, + { + "type": "unknown", + "url": "https://cdn.segment.com/next-integrations/actions/845/449cd4534726259c2a8c.js" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/assets/fonts/NotoColorEmoji/NotoColorEmoji.9.woff2" + }, + { + "type": "unknown", + "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-audio-0.webm?Signature=ph3NWwbKUByT3plb4-PkWL3P--E-rfe5hpyQYCdJ5JDus-tO9uMzRZHyJiwuDylfm6dljkxewN-ff7O7r~mwLJDMmcYep5LQfoORBklZkA5DOlLo3g~af0D5~z1Jh87sF5IuoiWU9U~FnhmOA0qIWZUkVKIaSiAapDLojNB7UzxvTw7fwWiGtTeBcjTRRHKBBM7pNn2R9oPeRzCQsFgouGCVYT98EyiEGJKKgxrdlzsVajIJJy7u8oXkd~BCpbmK9MRIT23MzkBPL1YQQFzXshUfscUhRNtbM1wQ62Qxqni6xR06VFqYyh96B~1yggFi7u~56~SevwKSgXBUH99giw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMzMTU2NDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" + }, + { + "type": "unknown", + "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-video-0.webm?Signature=ph3NWwbKUByT3plb4-PkWL3P--E-rfe5hpyQYCdJ5JDus-tO9uMzRZHyJiwuDylfm6dljkxewN-ff7O7r~mwLJDMmcYep5LQfoORBklZkA5DOlLo3g~af0D5~z1Jh87sF5IuoiWU9U~FnhmOA0qIWZUkVKIaSiAapDLojNB7UzxvTw7fwWiGtTeBcjTRRHKBBM7pNn2R9oPeRzCQsFgouGCVYT98EyiEGJKKgxrdlzsVajIJJy7u8oXkd~BCpbmK9MRIT23MzkBPL1YQQFzXshUfscUhRNtbM1wQ62Qxqni6xR06VFqYyh96B~1yggFi7u~56~SevwKSgXBUH99giw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMzMTU2NDE0fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" + }, + { + "type": "unknown", + "url": "https://cdn.sprig.com/shim.js?id=KVj_WYX4LR" + }, + { + "type": "unknown", + "url": "https://api.sgmt.loom.com/v1/p" + }, + { + "type": "unknown", + "url": "https://cdn.loom.com/mediametadata/captions/2720a47a15ab4929bfb0ab2059ca3fe5-2.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9jYXB0aW9ucy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS0yLnZ0dCIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTczMzE1NjQxNH19fV19&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=h2QSF9osEmjWVs-AcgEsC%7E8eG2SahL4px9Y5nb4pZZMPgfQJNvEyLcIkNPocsoCloRHd8df6o0Z-EZyY6Is6IjZOMLLqo921w-9J2Gu7gySg8ggR%7EePvUYCX%7EQDiTE%7EPu8TPhd2Je5ZzexYdrtKkGeSVmwtoWWzcV0sx9L4lt-akLJXBXBS44gfglQpmauGHpUgYxBsKSMg8ny%7Exb10O7FeH-lOMRLM4t2Jq1StFr%7EzSEL6S04TahG130lTYriJXej9S4eQSUeClsUbPCXk4NADQOAomPIJi4aF-jBVX4a8NfwHAnQGmit%7EwsFX2CMZip1o%7EOeqx5VBkC36ydO0%7Enw__" + }, + { + "type": "unknown", + "url": "https://api.sprig.com/sdk/1/environments/KVj_WYX4LR/config" + }, + { + "type": "unknown", + "url": "https://api.sgmt.loom.com/v1/t" + }, + { + "type": "unknown", + "url": "https://api-private.atlassian.com/gasv3/api/v1/batch" + }, + { + "type": "unknown", + "url": "https://api.sprig.com/sdk/1/environments/KVj_WYX4LR/config" + }, + { + "type": "unknown", + "url": "https://www.loom.com/insights-api/graphql" + } + ], + "cookies": [ + { + "name": "_pk_ses.2.755a", + "value": "1", + "domain": "datasubvention.beta.gouv.fr", + "path": "/", + "expires": 1733071813, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.2.755a", + "value": "d48b229587bdf217.1733070013.", + "domain": "datasubvention.beta.gouv.fr", + "path": "/", + "expires": 1767025213, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_cfuvid", + "value": "SrmznVehpXVYvqRhxmKJJHuAbXChquMox.gHQjr4aOU-1733070012518-0.0.1.1-604800000", + "domain": ".datasubvention.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 82, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "sib_cuid", + "value": "f5ad6636-4e10-4671-ba7a-2d7ff13cb544", + "domain": ".datasubvention.beta.gouv.fr", + "path": "/", + "expires": 1748737213, + "size": 44, + "httpOnly": false, + "secure": false, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__cf_bm", + "value": "Z0Qo_kJD1zlk.4v5Ai8ikgzXeKPatXhnHO0aGJ4Kvs4-1733070012-1.0.1.1-WqMYTBUZEpOZdFVE8KbJ2Iq1.bd0pmPnh3NBnGFPMZydPB06NQikMfBGmUfGvm8zm82o0D61XqPtet4te0dhAg", + "domain": ".datasubvention.beta.gouv.fr", + "path": "/", + "expires": 1733071812.526606, + "size": 156, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "age": "273", + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "public, max-age=604800", + "cf-cache-status": "HIT", + "cf-ray": "8eb46739dd3b7c65-LAX", + "content-encoding": "br", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 16:20:12 GMT", + "ec-cdn-cache-control": "public, max-age=604800", + "ec-cdn-status": "hit", + "ec-cdn-supported": "1", + "ec-coldstart": "", + "ec-source": "dynamic", + "last-modified": "Sun, 01 Dec 2024 16:15:39 GMT", + "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", + "server": "cloudflare", + "server-timing": "cfCacheStatus;desc=\"HIT\"", + "set-cookie": "__cf_bm=Z0Qo_kJD1zlk.4v5Ai8ikgzXeKPatXhnHO0aGJ4Kvs4-1733070012-1.0.1.1-WqMYTBUZEpOZdFVE8KbJ2Iq1.bd0pmPnh3NBnGFPMZydPB06NQikMfBGmUfGvm8zm82o0D61XqPtet4te0dhAg; path=/; expires=Sun, 01-Dec-24 16:50:12 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=SrmznVehpXVYvqRhxmKJJHuAbXChquMox.gHQjr4aOU-1733070012518-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "vary": "Accept-Encoding", + "x-litespeed-tag": "81d_HTTP.200", + "x-powered-by": "Elementor Cloud" + }, + "endpoints": [ + { + "hostname": "datasubvention.beta.gouv.fr", + "ip": "162.159.137.9", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.brevo.com", + "ip": "104.18.37.40", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "static.cloudflareinsights.com", + "ip": "104.16.80.73", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.29.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } }, { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/matomo.php?action_name=Data.subvention&idsite=1&rec=1&r=488802&h=16&m=15&s=18&url=https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F&_id=&_idn=1&send_image=0&_refts=0&pv_id=W2g8NO&pf_net=285&pf_srv=144&pf_tfr=1&pf_dm1=10&pf_dm2=415&pf_onl=0&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - } - ], - "cookies": [], - "headers": { - "access-control-allow-origin": "*", - "cache-control": "max-age 1800", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat https://datasubvention.crisp.help; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat wss://client.relay.crisp.chat https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-xPjlhYNZstqoarcPuvSZYA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 16:15:17 GMT", - "etag": "W/\"gabhzi\"", - "link": "<./_app/immutable/entry/start.b0863594.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.7184b185.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.91dd15ed.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.d680a20e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.9ded8f2d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.c7686e1b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.869bcdd4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5d851ad1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.4eed3cdc.js>; rel=\"modulepreload\"; nopush", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-request-id": "0bbb8029-b9d5-4c90-9726-bc258c8cf5b3", - "x-sveltekit-page": "true" - }, - "endpoints": [ + "hostname": "www.loom.com", + "ip": "18.154.206.38", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 41.8764, + "longitude": -87.6133, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4896861, + "iso_code": "IL", + "names": { + "de": "Illinois", + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" + } + } + ] + } + }, { - "hostname": "app.datasubvention.beta.gouv.fr", + "hostname": "matomo-datasubvention.osc-secnum-fr1.scalingo.io", "ip": "148.253.96.193", "geoip": { "continent": { @@ -409252,226 +406134,1160 @@ "zh-CN": "法国" } } - } + } + }, + { + "hostname": "sibautomation.com", + "ip": "172.64.148.115", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.loom.com", + "ip": "3.168.147.90", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "in-automate.brevo.com", + "ip": "172.64.150.216", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "o398470.ingest.sentry.io", + "ip": "34.120.195.249", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "installed.jpg", + "ip": null, + "geoip": null + }, + { + "hostname": "evs.sgmt.loom.com", + "ip": "18.164.154.10", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.segment.com", + "ip": "3.168.149.142", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "luna.loom.com", + "ip": "13.226.228.102", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.sprig.com", + "ip": "216.137.39.52", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "api.sgmt.loom.com", + "ip": "54.69.21.216", + "geoip": { + "city": { + "geoname_id": 5714964, + "names": { + "de": "Boardman", + "en": "Boardman", + "es": "Boardman", + "fr": "Boardman", + "ja": "ボードマン", + "pt-BR": "Boardman", + "ru": "Бордман" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 45.8491, + "longitude": -119.7143, + "metro_code": 810, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "97818" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5744337, + "iso_code": "OR", + "names": { + "de": "Oregon", + "en": "Oregon", + "es": "Oregón", + "fr": "Oregon", + "ja": "オレゴン州", + "pt-BR": "Oregon", + "ru": "Орегон", + "zh-CN": "俄勒冈州" + } + } + ] + } + }, + { + "hostname": "api.sprig.com", + "ip": "34.198.52.31", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "api-private.atlassian.com", + "ip": "104.192.138.8", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://datasubvention.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wordpress", + "name": "WordPress", + "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", + "confidence": 100, + "version": "6.7.1", + "icon": "WordPress.svg", + "website": "https://wordpress.org", + "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + }, + { + "id": 11, + "slug": "blogs", + "name": "Blogs" + } + ], + "rootPath": true + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "hello-elementor", + "name": "Hello Elementor", + "description": "Hello Elementor is a WordPress theme built for the Elementor website builder platform. It uses minimal styling and scripts for maximum speed and design freedom.", + "confidence": 100, + "version": "3.0.1", + "icon": "Hello Elementor.png", + "website": "https://elementor.com/hello-theme/", + "cpe": null, + "categories": [ + { + "id": 80, + "slug": "wordpress-themes", + "name": "WordPress themes" + } + ], + "rootPath": true + }, + { + "slug": "elementor", + "name": "Elementor", + "description": "Elementor is a website builder platform for professionals on WordPress.", + "confidence": 100, + "version": "3.25.10", + "icon": "Elementor.svg", + "website": "https://elementor.com", + "cpe": null, + "categories": [ + { + "id": 51, + "slug": "page-builders", + "name": "Page builders" + }, + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "backbone-js", + "name": "Backbone.js", + "description": "BackboneJS is a JavaScript library that allows to develop and structure the client side applications that run in a web browser.", + "confidence": 100, + "version": "1.6.0", + "icon": "Backbone.js.png", + "website": "https://backbonejs.org", + "cpe": "cpe:2.3:a:backbone_project:backbone:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "yoast-seo", + "name": "Yoast SEO", + "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", + "confidence": 100, + "version": "23.9", + "icon": "Yoast SEO.png", + "website": "https://yoast.com/wordpress/plugins/seo/", + "cpe": null, + "categories": [ + { + "id": 54, + "slug": "seo", + "name": "SEO" + }, + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "underscore-js", + "name": "Underscore.js", + "description": "Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.", + "confidence": 100, + "version": null, + "icon": "Underscore.js.png", + "website": "https://underscorejs.org", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "cloudflare-browser-insights", + "name": "Cloudflare Browser Insights", + "description": "Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + }, + { + "id": 78, + "slug": "rum", + "name": "RUM" + } + ], + "rootPath": true + }, + { + "slug": "cloudflare-bot-management", + "name": "Cloudflare Bot Management", + "description": "Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com/en-gb/products/bot-management/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 0, + "version": "1.13.7", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery-ui", + "name": "jQuery UI", + "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", + "confidence": 100, + "version": "1.13.3", + "icon": "jQuery UI.svg", + "website": "https://jqueryui.com", + "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery-migrate", + "name": "jQuery Migrate", + "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", + "confidence": 100, + "version": "3.4.1", + "icon": "jQuery.svg", + "website": "https://github.com/jquery/jquery-migrate", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.7.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true }, { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.32.0", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } - } + ], + "rootPath": true }, { - "hostname": "matomo-datasubvention.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://app.datasubvention.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ + ], + "rootPath": true + }, { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "slug": "swiper", + "name": "Swiper", + "description": "Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.", "confidence": 100, "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", + "icon": "Swiper.svg", + "website": "https://swiperjs.com", "cpe": null, "categories": [ { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" } ], "rootPath": true }, { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", "confidence": 100, "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" } - ] + ], + "rootPath": true }, { - "slug": "sveltekit", - "name": "SvelteKit", - "description": "SvelteKit is the official Svelte framework for building web applications with a flexible filesystem-based routing.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "Svelte.svg", - "website": "https://kit.svelte.dev", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, { - "slug": "svelte", - "name": "Svelte", - "description": "Svelte is a free and open-source front end compiler created by Rich Harris and maintained by the Svelte core team members.", + "slug": "calendly", + "name": "Calendly", + "description": "Calendly is an app for scheduling appointments, meetings, and events.", "confidence": 100, "version": null, - "icon": "Svelte.svg", - "website": "https://svelte.dev", + "icon": "Calendly.svg", + "website": "https://calendly.com/", "cpe": null, "categories": [ { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" + "id": 72, + "slug": "appointment-scheduling", + "name": "Appointment scheduling" } ], "rootPath": true }, { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "slug": "elementor-cloud", + "name": "Elementor Cloud", + "description": "Elementor Cloud is a platform for creating and hosting WordPress websites with Elementor.", "confidence": 100, "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "icon": "Elementor.svg", + "website": "https://elementor.com", + "cpe": null, "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 88, + "slug": "hosting", + "name": "Hosting" } ], "rootPath": true }, { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", "confidence": 100, "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", "cpe": null, "categories": [ { - "id": 52, - "slug": "live-chat", - "name": "Live chat" + "id": 31, + "slug": "cdn", + "name": "CDN" } ], "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "rss", + "name": "RSS", + "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "RSS.svg", + "website": "https://www.rssboard.org/rss-specification", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true }, { - "slug": "vite", - "name": "Vite", - "description": "Vite is a rapid development tool for modern web projects.", + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", "confidence": 100, "version": null, - "icon": "vite.svg", - "website": "https://vitejs.dev", + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", "cpe": null, "categories": [ { @@ -409480,6 +407296,24 @@ "name": "Miscellaneous" } ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true } ] }, @@ -409487,9 +407321,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://app.datasubvention.beta.gouv.fr/", - "finalUrl": "https://app.datasubvention.beta.gouv.fr/", - "fetchTime": "2024-11-24T16:14:48.444Z", + "requestedUrl": "https://datasubvention.beta.gouv.fr/", + "finalUrl": "https://datasubvention.beta.gouv.fr/", + "fetchTime": "2024-12-01T16:19:39.873Z", "runWarnings": [], "categories": { "performance": { @@ -409500,7 +407334,7 @@ "snapshot" ], "id": "performance", - "score": 0.64 + "score": 0.49 }, "accessibility": { "title": "Accessibility", @@ -409511,7 +407345,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.91 + "score": 0.95 }, "best-practices": { "title": "Best Practices", @@ -409521,7 +407355,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.83 }, "seo": { "title": "SEO", @@ -409532,7 +407366,7 @@ "snapshot" ], "id": "seo", - "score": 0.91 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -409552,53 +407386,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4858, + "numericValue": 22110, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3876, - "firstMeaningfulPaint": 3876, - "largestContentfulPaint": 6124, - "interactive": 4858, - "speedIndex": 5739, - "totalBlockingTime": 43, - "maxPotentialFID": 116, - "cumulativeLayoutShift": 0.002530517578125, - "cumulativeLayoutShiftMainFrame": 0.002530517578125, - "totalCumulativeLayoutShift": 0.002530517578125, + "firstContentfulPaint": 1846, + "firstMeaningfulPaint": 4079, + "largestContentfulPaint": 28086, + "interactive": 22110, + "speedIndex": 14997, + "totalBlockingTime": 254, + "maxPotentialFID": 234, + "cumulativeLayoutShift": 0.00003484916687011719, + "cumulativeLayoutShiftMainFrame": 0.00003484916687011719, + "totalCumulativeLayoutShift": 0.00003484916687011719, "observedTimeOrigin": 0, - "observedTimeOriginTs": 339104439, + "observedTimeOriginTs": 365078251, "observedNavigationStart": 0, - "observedNavigationStartTs": 339104439, - "observedFirstPaint": 1963, - "observedFirstPaintTs": 341067916, - "observedFirstContentfulPaint": 1963, - "observedFirstContentfulPaintTs": 341067916, - "observedFirstContentfulPaintAllFrames": 1963, - "observedFirstContentfulPaintAllFramesTs": 341067916, - "observedFirstMeaningfulPaint": 1963, - "observedFirstMeaningfulPaintTs": 341067916, - "observedLargestContentfulPaint": 1963, - "observedLargestContentfulPaintTs": 341067916, - "observedLargestContentfulPaintAllFrames": 1963, - "observedLargestContentfulPaintAllFramesTs": 341067916, - "observedTraceEnd": 5867, - "observedTraceEndTs": 344971704, - "observedLoad": 480, - "observedLoadTs": 339584761, - "observedDomContentLoaded": 419, - "observedDomContentLoadedTs": 339523881, - "observedCumulativeLayoutShift": 0.002530517578125, - "observedCumulativeLayoutShiftMainFrame": 0.002530517578125, - "observedTotalCumulativeLayoutShift": 0.002530517578125, - "observedFirstVisualChange": 1965, - "observedFirstVisualChangeTs": 341069439, - "observedLastVisualChange": 2115, - "observedLastVisualChangeTs": 341219439, - "observedSpeedIndex": 1974, - "observedSpeedIndexTs": 341078190 + "observedNavigationStartTs": 365078251, + "observedFirstPaint": 733, + "observedFirstPaintTs": 365811614, + "observedFirstContentfulPaint": 733, + "observedFirstContentfulPaintTs": 365811614, + "observedFirstContentfulPaintAllFrames": 733, + "observedFirstContentfulPaintAllFramesTs": 365811614, + "observedFirstMeaningfulPaint": 1002, + "observedFirstMeaningfulPaintTs": 366080631, + "observedLargestContentfulPaint": 2190, + "observedLargestContentfulPaintTs": 367268522, + "observedLargestContentfulPaintAllFrames": 2190, + "observedLargestContentfulPaintAllFramesTs": 367268522, + "observedTraceEnd": 5050, + "observedTraceEndTs": 370128058, + "observedLoad": 1992, + "observedLoadTs": 367070079, + "observedDomContentLoaded": 1081, + "observedDomContentLoadedTs": 366159569, + "observedCumulativeLayoutShift": 0.00003484916687011719, + "observedCumulativeLayoutShiftMainFrame": 0.00003484916687011719, + "observedTotalCumulativeLayoutShift": 0.00003484916687011719, + "observedFirstVisualChange": 740, + "observedFirstVisualChangeTs": 365818251, + "observedLastVisualChange": 3440, + "observedLastVisualChangeTs": 368518251, + "observedSpeedIndex": 1173, + "observedSpeedIndexTs": 366251016 }, { "lcpInvalidated": false @@ -409616,23 +407450,23 @@ "type": "debugdata", "items": [ { - "numRequests": 73, - "numScripts": 41, - "numStylesheets": 7, - "numFonts": 3, - "numTasks": 2101, - "numTasksOver10ms": 9, - "numTasksOver25ms": 5, + "numRequests": 215, + "numScripts": 94, + "numStylesheets": 36, + "numFonts": 8, + "numTasks": 3396, + "numTasksOver10ms": 20, + "numTasksOver25ms": 7, "numTasksOver50ms": 3, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 10900714.629933808, - "maxRtt": 141.758, - "maxServerLatency": 35.903999999999996, - "totalByteWeight": 563200, - "totalTaskTime": 469.11199999999735, - "mainDocumentTransferSize": 3300 + "throughput": 40646805.04680649, + "maxRtt": 147.21499999999997, + "maxServerLatency": 139.53799999999998, + "totalByteWeight": 5243357, + "totalTaskTime": 1122.12499999999, + "mainDocumentTransferSize": 32961 } ] } @@ -409652,7 +407486,7 @@ }, "declaration-a11y": { "mention": "Accessibilité : non conforme", - "declarationUrl": "https://app.datasubvention.beta.gouv.fr/accessibilite" + "declarationUrl": "https://datasubvention.beta.gouv.fr/accessibilite/" }, "declaration-rgpd": [ { @@ -409667,8 +407501,8 @@ { "slug": "pc", "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 4, + "maxScore": 7, + "score": 6, "missingWords": [ "durée de la conservation (ou) durée de conservation" ], @@ -409736,46 +407570,46 @@ { "width": 1920, "height": 1080, - "url": "https://app.datasubvention.beta.gouv.fr", - "size": 1061.513, - "nodes": 281, - "requests": 80, - "grade": "C", - "score": 65, - "ges": 1.7, - "water": 2.55, + "url": "https://datasubvention.beta.gouv.fr", + "size": 5048.167, + "nodes": 1141, + "requests": 132, + "grade": "F", + "score": 22, + "ges": 2.56, + "water": 3.84, "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:11:48.133225", - "page_type": null + "date": "2024-12-01 16:16:21.435111", + "page_type": "website" } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "A", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, + "httpGrade": "D", + "apdex": 0.709, + "apdexGrade": "F", + "uptime": 99.868, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-21T08:10:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.64, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.91, + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": null, + "testsslExpireDate": null, + "testsslGrade": "A", + "cookiesGrade": "C", + "cookiesCount": 5, + "trackersGrade": "F", + "trackersCount": 105, + "lighthouse_performance": 0.49, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.91, + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", @@ -409785,56 +407619,36 @@ "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", - "dsfrGrade": "A" + "ecoindexGrade": "F", + "dsfrGrade": "F" } }, { "404": null, - "url": "https://datasubvention.beta.gouv.fr", - "title": "Landing page data-subvention", + "url": "https://cje.beta.gouv.fr", "category": "dinum", - "repositories": [ - "betagouv/api-subventions-asso" - ], - "tags": [ - "data-subvention" - ], - "betaId": "data-subvention", + "betaId": "pass.engagement.jeune", "http": { - "url": "https://datasubvention.beta.gouv.fr", + "url": "https://cje.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:19:38 GMT", - "grade": "D", + "end_time": "Sun, 20 Oct 2024 12:29:54 GMT", + "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Age": "60582", - "CF-Cache-Status": "HIT", - "CF-Ray": "8d58f4f97f67a334-SEA", - "Cache-Control": "public, max-age=604800", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 12:19:34 GMT", - "Last-Modified": "Sat, 19 Oct 2024 19:29:52 GMT", - "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", - "Server": "cloudflare", - "Set-Cookie": "__cf_bm=Ctsb6JTv7ZwuLr2rKL5SIxfzTpJtb9wOi2Tc0AiJOGc-1729426774-1.0.1.1-pNIj9VoXA9376F5TboRXyW.bhrorgAS2ALCxZFxiscWPn2VF96aiPXVfWiZrxe6WeNa_k3b.LT0aS7mNvkEc7Q; path=/; expires=Sun, 20-Oct-24 12:49:34 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=RV44Gz9ATdMF2M5HLn49.QkHjEwgI8aqcHElXACbHL8-1729426774026-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 12:29:51 GMT", + "ETag": "\"smraa5xhwjxq1\"", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-LiteSpeed-Tag": "81d_HTTP.200", - "alt-svc": "h3=\":443\"; ma=86400", - "ec-cdn-cache-control": "public, max-age=604800", - "ec-cdn-status": "hit", - "ec-cdn-supported": "1", - "ec-coldstart": "worker", - "ec-source": "dynamic", - "x-powered-by": "Elementor Cloud" + "X-Powered-By": "Next.js" }, - "scan_id": 57063265, - "score": 30, - "start_time": "Sun, 20 Oct 2024 12:19:33 GMT", + "scan_id": 57063470, + "score": 45, + "start_time": "Sun, 20 Oct 2024 12:29:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -409860,34 +407674,13 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "__cf_bm": { - "domain": ".datasubvention.beta.gouv.fr", - "expires": 1729428574, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "None", - "secure": true - }, - "_cfuvid": { - "domain": ".datasubvention.beta.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "None", - "secure": true - } - }, - "sameSite": true + "data": null, + "sameSite": null }, "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -409908,18 +407701,18 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://datasubvention.beta.gouv.fr/", + "destination": "https://cje.fabrique.social.gouv.fr", "redirects": true, "route": [ - "http://datasubvention.beta.gouv.fr/", - "https://datasubvention.beta.gouv.fr/" + "http://cje.beta.gouv.fr/", + "https://cje.fabrique.social.gouv.fr" ], - "status_code": 200 + "status_code": 301 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -409938,16 +407731,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -409996,14 +407789,14 @@ } }, "updownio": { - "token": "qdtt", - "url": "https://datasubvention.beta.gouv.fr", + "token": "0u75", + "url": "https://cje.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.868, + "uptime": 99.98, "down": false, "down_since": null, - "up_since": "2024-11-24T13:12:27Z", + "up_since": "2024-11-29T05:40:42Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -410011,151 +407804,135 @@ "enabled": true, "published": true, "disabled_locations": [], - "recipients": [], - "last_check_at": "2024-11-24T16:19:26Z", - "next_check_at": "2024-11-24T16:20:26Z", + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:36:37Z", + "next_check_at": "2024-12-01T16:37:37Z", "created_at": "2024-01-15T14:02:08Z", "mute_until": null, - "favicon_url": "https://datasubvention.beta.gouv.fr/wp-content/uploads/2022/06/Republique-francaise.jpeg", + "favicon_url": "https://cje.fabrique.social.gouv.fr/pwa/appIcon/maskable_icon_x48.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T16:11:28Z", - "expires_at": "2025-01-02T05:36:22Z", + "tested_at": "2024-12-01T16:28:40Z", + "expires_at": "2025-01-11T12:39:37Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.508, + "apdex": 1, "timings": { - "redirect": 0, - "namelookup": 130, - "connection": 3, - "handshake": 11, - "response": 921, - "total": 1065 + "redirect": 357, + "namelookup": 13, + "connection": 120, + "handshake": 130, + "response": 182, + "total": 802 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { - "host": "datasubvention.beta.gouv.fr", + "host": "cje.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "998", "open_ports": [ { "service": { "name": "http", - "product": "Cloudflare http proxy", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "Cloudflare http proxy", + "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -410163,7 +407940,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -410171,7 +407948,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -410179,7 +407956,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -410187,7 +407964,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -410195,836 +407972,449 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_signatureAlgorithm", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_keySize", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_keyUsage", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "2A56C59EE7344CF21369152FFF317BF4" - }, - { - "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "0FE6F0C9E33AA22DD8A32643F77CB861A4F95E9E" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" - }, - { - "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "datasubvention.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "elementor.cloud" - }, - { - "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "datasubvention.beta.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (38)" - }, - { - "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "2024-10-04 04:36" - }, - { - "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-02 05:35" - }, - { - "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/1IpaVurLY24.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/KlY" - }, - { - "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "ECDSA with SHA256" - }, - { - "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" - }, - { - "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature" - }, - { - "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_extKeyUsage", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_serialNumber", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "4214907D2CE0F6E513F0F5EFC6BEF618" + "finding": "04ABA1931EA1761DE2D55E88CD323F10B2DE" }, { - "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_serialNumberLen", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_fingerprintSHA1", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1E86AB34B776A54C149C2187468E31B67D2FF788" + "finding": "44EAE5592FD1AF10FBAD076D68A3AE50A61F1787" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_fingerprintSHA256", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "A2BDAA0B1DE6B52A127934A9122A437974AA4FA5DC7502D24F1161DAE866426F" + "finding": "9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" }, { - "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDszCCA1mgAwIBAgIQQhSQfSzg9uUT8PXvxr72GDAKBggqhkjOPQQDAjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXRTEwHhcNMjQxMDA0MDQzNjI2WhcNMjUwMTAyMDUzNjIyWjAmMSQwIgYDVQQDExtkYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS9JVbfVLygBnD3898uojuxI/+JNh5NBe+cjRou2uGBf02todCg8RTpPmyJMqVZBPcpgJqObu1uy0V7+3sMChjjo4ICUjCCAk4wDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOAo/GH6Zb2rAliZOG1YaUNEmXMYMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvUWhRMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MCYGA1UdEQQfMB2CG2RhdGFzdWJ2ZW50aW9uLmJldGEuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvMHJiQWdHM2dNZ1UuY3JsMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGSVgeHlAAABAMARjBEAiAy10R9VktuzrWIYmp8fSn4EguN+MJk7Et8C8xqlUSHPQIgcyEmeBM3uml9bI8WvcCeYzcVG45EmfubFWb6BNWqyzAAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAZJWB4ejAAAEAwBGMEQCIB6i1x6GUN0pUTG8fjvzQdYa4TCyi8b8mzYjLIE6Rw+tAiB1my9fUfXZvSFHasx2bhjr0RhhrUvi5RGKpLK5kAzOezAKBggqhkjOPQQDAgNIADBFAiEA6o7DKN8T+evLa2TYw0EKxH5XP7zFgH/l+RP2x7Zfj9sCIFX1v2I0Nc5KGHjHyGkTT02AoFmybYzP5r3Mdi74kGTm\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_commonName", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "datasubvention.beta.gouv.fr" + "finding": "cje.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_commonName_wo_SNI", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "elementor.cloud" + "finding": "*.osc-fr1.scalingo.io" }, { - "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_subjectAltName", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "datasubvention.beta.gouv.fr" + "finding": "cje.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_trust", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_chain_of_trust", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_certificatePolicies_EV", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_expirationStatus", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (38)" + "severity": "OK", + "finding": "40 >= 30 days" }, { - "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_notBefore", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-04 04:36" + "finding": "2024-10-13 12:39" }, { - "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_notAfter", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-02 05:36" + "severity": "OK", + "finding": "2025-01-11 12:39" }, { - "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_extlifeSpan", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_eTLS", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_crlDistributionPoints", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/0rbAgG3gMgU.crl" + "finding": "--" }, { - "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_ocspURL", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/QhQ" - }, - { - "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://r11.o.lencr.org" }, { - "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "OCSP_stapling", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_mustStapleExtension", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "DNS_CAArecord", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "certificate_transparency", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "certs_countServer", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { - "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "certs_list_ordering_problem", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "cert_caIssuers", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmKgAwIBAgIQf+UwvzMTQ77dghYQST2KGzANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIzMTExNTAzNDMyMVoXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFI0MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE83Rzp2iLYK5DuDXFgTB7S0md+8FhzubeRr1r1WEYNa5A3XP3iZEwWus87oV8okB2O6nGuEfYKueSkWpz6bFyOZ8pn6KY019eWIZlD6GEZQbR3IvJx3PIjGov5cSr0R2Ko4H/MIH8MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUgEzW63T/STaj1dj8tT7FavCUHYwwHwYDVR0jBBgwFoAUYHtmGkUNl8qJUC99BM00qP/8/UswNgYIKwYBBQUHAQEEKjAoMCYGCCsGAQUFBzAChhpodHRwOi8vaS5wa2kuZ29vZy9nc3IxLmNydDAtBgNVHR8EJjAkMCKgIKAehhxodHRwOi8vYy5wa2kuZ29vZy9yL2dzcjEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA0GCSqGSIb3DQEBCwUAA4IBAQAYQrsPBtYDh5bjP2OBDwmkoWhIDDkic574y04tfzHpn+cJodI2D4SseesQ6bDrarZ7C30ddLibZatoKiws3UL9xnELz4ct92vID24FfVbiI1hY+SW6FoVHkNeWIP0GCbaM4C6uVdF5dTUsMVs/ZbzNnIdCp5Gxmx5ejvEau8otR/CskGN+hr/W5GvT1tMBjgWKZ1i4//emhA1JG1BbPzoLJQvyEotc03lXjTaCzv8mEbep8RqZ7a2CPsgRbuvTPBwcOMBBmuFeU88+FSBX6+7iP0il8b4Z0QFqIwwMHfs/L6K1vepuoxtGzi4CZ68zJpiq1UvSqTbFJjtbD4seiMHl\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_notBefore <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_notAfter <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_expiration <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_chain <#1>", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "intermediate_cert_badOCSP", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "+52262 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "1732465051" - }, - { - "id": "HTTP_headerAge", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "52262 seconds" - }, - { - "id": "ipv4_in_header", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "MEDIUM", - "cwe": "CWE-212", - "finding": "Set-Cookie: __cf_bm=lBGE96._w_0A_7t48PokPPXEcLswXKiGHOZdukch6XA-1732465051-1.0.1.1-6rKXkBzV4VTsu8QSI4Djt1sjSQ3YxkCPLEqWbAlpFbDH7_hqBWOwYHbWG0C.kjsZKWOezuQ0O5l1gdEhqNBRBA; path=/; expires=Sun, 24-Nov-24 16:47:31 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None (check if it's your IP address or e.g. a cluster IP)" - }, - { - "id": "ipv4_in_header", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "MEDIUM", - "cwe": "CWE-212", - "finding": "Set-Cookie: _cfuvid=vPMa_5uQJgF0aESoMT1LE23NtRVNx0xDI6zwJ8fAfVw-1732465051455-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None" + "finding": "1733070789" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Elementor Cloud" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as HttpOnly" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "id": "security_headers", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "public, max-age=604800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -411032,7 +408422,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -411041,7 +408431,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -411050,7 +408440,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -411059,16 +408449,16 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -411076,7 +408466,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -411085,7 +408475,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -411094,16 +408484,16 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -411112,14 +408502,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -411128,7 +408518,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -411137,7 +408527,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -411146,16 +408536,16 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -411164,16 +408554,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -411182,16 +408572,16 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -411200,7 +408590,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -411209,399 +408599,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "cje.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -411609,7 +408999,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -411617,7 +409007,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -411625,7 +409015,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -411633,7 +409023,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -411641,836 +409031,449 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_signatureAlgorithm", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_keySize", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_keyUsage", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_extKeyUsage", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_serialNumber", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2A56C59EE7344CF21369152FFF317BF4" + "finding": "04ABA1931EA1761DE2D55E88CD323F10B2DE" }, { - "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_serialNumberLen", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_fingerprintSHA1", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0FE6F0C9E33AA22DD8A32643F77CB861A4F95E9E" + "finding": "44EAE5592FD1AF10FBAD076D68A3AE50A61F1787" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_fingerprintSHA256", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" + "finding": "9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" }, { - "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_commonName", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "datasubvention.beta.gouv.fr" + "finding": "cje.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_commonName_wo_SNI", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "elementor.cloud" + "finding": "*.osc-fr1.scalingo.io" }, { - "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_subjectAltName", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "datasubvention.beta.gouv.fr" + "finding": "cje.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_trust", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_chain_of_trust", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (38)" - }, - { - "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "2024-10-04 04:36" - }, - { - "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-02 05:35" - }, - { - "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/wr1/1IpaVurLY24.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/KlY" - }, - { - "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_certificatePolicies_EV", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" - }, - { - "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" - }, - { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "ECDSA with SHA256" - }, - { - "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" - }, - { - "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature" - }, - { - "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "4214907D2CE0F6E513F0F5EFC6BEF618" - }, - { - "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "1E86AB34B776A54C149C2187468E31B67D2FF788" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "A2BDAA0B1DE6B52A127934A9122A437974AA4FA5DC7502D24F1161DAE866426F" - }, - { - "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_expirationStatus", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "datasubvention.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "elementor.cloud" + "finding": "40 >= 30 days" }, { - "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_notBefore", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "datasubvention.beta.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "2024-10-13 12:39" }, { - "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_notAfter", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (38)" - }, - { - "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "2024-10-04 04:36" - }, - { - "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-02 05:36" + "finding": "2025-01-11 12:39" }, { - "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_extlifeSpan", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_eTLS", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "http://c.pki.goog/we1/0rbAgG3gMgU.crl" - }, - { - "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/QhQ" - }, - { - "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_crlDistributionPoints", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_ocspURL", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "no" + "finding": "http://r11.o.lencr.org" }, { - "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "OCSP_stapling", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "severity": "LOW", + "finding": "not offered" }, { - "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_mustStapleExtension", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "--" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "DNS_CAArecord", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "severity": "LOW", + "finding": "--" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "certificate_transparency", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "2023-12-13 09:00" + "severity": "OK", + "finding": "yes (certificate extension)" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "certs_countServer", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" + "severity": "INFO", + "finding": "2" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "certs_list_ordering_problem", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "INFO", + "finding": "no" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "cert_caIssuers", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "R11 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_notBefore <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_notAfter <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_expiration <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_chain <#1>", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "intermediate_cert_badOCSP", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "+52319 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "1732465108" - }, - { - "id": "HTTP_headerAge", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "52319 seconds" - }, - { - "id": "ipv4_in_header", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "cwe": "CWE-212", - "finding": "Set-Cookie: __cf_bm=deiZNnqtOHRI76IIRGSFMKLcDkqhM7JtiejhG4nFOFc-1732465108-1.0.1.1-f4iLh8NWwAbLFT_E0Y9qRljQSkcDn.PnaFEYfQaecOJFaj5L2bKdamaKtkjHi6nRXkit0MOyKiYSEM76MjJZ8A; path=/; expires=Sun, 24-Nov-24 16:48:28 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None (check if it's your IP address or e.g. a cluster IP)" - }, - { - "id": "ipv4_in_header", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "MEDIUM", - "cwe": "CWE-212", - "finding": "Set-Cookie: _cfuvid=PnUFbPVmMUzv.BCd2WLwWH8jpxgq_ULXRllyD0ItclM-1732465108140-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None" + "finding": "1733070845" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "cloudflare" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "x-powered-by: Elementor Cloud" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as HttpOnly" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "security_headers", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "public, max-age=604800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -412478,7 +409481,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -412487,7 +409490,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -412496,7 +409499,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -412505,16 +409508,16 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -412522,7 +409525,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -412531,7 +409534,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -412540,16 +409543,16 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -412558,14 +409561,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -412574,7 +409577,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -412583,7 +409586,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -412592,16 +409595,16 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CCD7B1B38A560A490A2C033AFB19BB6A970BA0090011C61A56DBF79D4B63D844" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -412610,16 +409613,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -412628,16 +409631,16 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -412646,7 +409649,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -412655,2763 +409658,1385 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "clientsimulation-firefox_66_win81", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "clientsimulation-firefox_100_win10", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "id": "clientsimulation-ie_6_xp", + "ip": "cje.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "116" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "brevo", - "url": "https://cdn.brevo.com/js/sdk-loader.js", - "details": { - "id": "brevo", - "message": "Ensure your TOS notify the Brevo usage" - } - }, - { - "type": "cloudflare", - "url": "https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - }, - { - "type": "unknown", - "url": "https://www.loom.com/embed/2720a47a15ab4929bfb0ab2059ca3fe5?sid=69da8177-7dd7-4da0-a62e-bc0cf925fe54" - }, - { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.js" - }, - { - "type": "unknown", - "url": "https://sibautomation.com/sa.js?key=uvxc7hbx21zuv3f2yjbhub71" - }, - { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=988094&h=16&m=16&s=16&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=019cdce1ce0357da&_idn=1&send_image=0&_refts=0&pv_id=PiLrVo&pf_net=194&pf_srv=60&pf_tfr=5&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - }, - { - "type": "unknown", - "url": "https://sibautomation.com/cm.html?key=uvxc7hbx21zuv3f2yjbhub71" - }, - { - "type": "brevo", - "url": "https://in-automate.brevo.com/cm?uuid=501d8d31-ea4a-46f0-a036-7bd7dfa82318&key=uvxc7hbx21zuv3f2yjbhub71&cuid=4e2c69e6-09d5-4c76-b74f-df83222e89d6", - "details": { - "id": "brevo", - "message": "Ensure your TOS notify the Brevo usage" - } - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/css/vendor-716f7d0d-d74f0245ad1ca258a57a.css" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/css/embed-video-3f18c11e9a9127806544.css" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/0runtime-ee3624481134e4951894.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/lens-93c6e51741e3afeb4937.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-35bda9aa-2d7cf22f78ac9cf70fab.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-16978ab6-ebb25dbfe0b834462d2b.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-6575d636-acb6bc1d5a4e2716b15c.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-c30f4496-5b6bdafc83eb96695e5a.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-1d62346b-c8c3e444d3fb0fd3373f.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-fc7032e9-55fc15b3dc991f4a262e.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-ee7923f1-22218e2deb23f677a223.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-061dedfc-727a0adcd51bb3af1d2f.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-c2538b26-ae74dfa02a98d5e82468.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-5603c60f-98942a2e753f5261e692.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-7d915b0b-f80085337104ddf96c59.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-8ffe3826-e572edad7dc0bad2ad59.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-10033cf1-d5abfabbbd5ab6947aa7.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-2983fe02-368aea7c5c4036c0409e.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-ab28add5-6308196e80166e65f38f.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-72e1f408-cf4e00c99bf957d81866.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-6f4e698b-e65d315613480d27f2c2.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-7cbfd151-7d97da0459b84685de6e.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-0dff58e9-9a8acbddda838265257c.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-bf1de93b-9a8801fde7fb15c392eb.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-0d659241-47fcde4f8c3b3796d22c.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-20796a5f-17a7e50238d6b30d1c70.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-07789531-eeefbd9815e288806277.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-91502f39-2bcf16c9e62944768565.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-752219c7-1a701475a017ac9dc713.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-c4380658-651e22481e0295ba26df.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-d0ec3b80-af0c8ffb60a62bd00921.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-1339a779-fbb4d43aa9b77f8da577.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-6f12e44d-cdd115f2e9a90092e2d6.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-be5e06f6-1f8d87a5a17b507d3c54.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-d42fe5d3-864755c7bcc11e0d64a6.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-4c3bcec0-dd20b5c47a8eede3ed68.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-52dd3122-ac078d4e6a48b45349f7.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-a1b7b07f-59a4c0e2f8eaf179b6fd.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-9be35530-5c1a79fa9944ad3decdc.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-f56ba585-3f7d90b6c425ef229cc2.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-429cbf9e-04a587a25ff99470792e.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-734fce56-8abe15a4cdc4c9f8b4a7.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-716f7d0d-134b0ad9632d83edb2ba.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-708367d0-1409b91c1408b1ecb004.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/vendor-5c7c8bfa-0d865ca2c564b2007938.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/embed-video-e0b51589e735f8b8a668.js" - }, - { - "type": "brevo", - "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=4e2c69e6-09d5-4c76-b74f-df83222e89d6&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention&sib_name=Data.Subvention&ma_referrer=&ma_path=%2F", - "details": { - "id": "brevo", - "message": "Ensure your TOS notify the Brevo usage" - } - }, - { - "type": "unknown", - "url": "https://o398470.ingest.sentry.io/api/5257803/envelope/?sentry_key=44839bac2d7547769e214445b25f43d9&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.73.0" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/record-sdk-supported-endpoint-5b1f979c88d8f1e7288b.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/LoadSlackConnect-973eb329e0090b72a326.js" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/js/emojiUtil-bc2549ff1be0d0649737.js" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "chrome-extension://liecbddmkiiihnedobmlmillhodjkdmb/img/installed.jpg" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Bold-7635c1bc788a9c68bf95.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Book-5f7f3d61a321e3838310.woff2" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/sessions/thumbnails/2720a47a15ab4929bfb0ab2059ca3fe5-00001.jpg" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/avatars/27487685_31667f520bb54358a2673a22a7d2d8c6_192.jpg" - }, - { - "type": "unknown", - "url": "https://evs.sgmt.loom.com/yhPeelcEJD/eejxbDiFfK.min.js" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/sessions/thumbnails/2720a47a15ab4929bfb0ab2059ca3fe5-00001.mp4" - }, - { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=655485&h=16&m=16&s=16&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=019cdce1ce0357da&_idn=0&send_image=0&_refts=0&pv_id=5e8sj8&pf_net=194&pf_srv=60&pf_tfr=5&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Bold-7635c1bc788a9c68bf95.woff2" - }, - { - "type": "unknown", - "url": "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io/piwik.php?action_name=Data.Subvention&idsite=2&rec=1&r=263582&h=16&m=16&s=16&url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&_id=019cdce1ce0357da&_idn=0&send_image=0&_refts=0&pv_id=uU0jpF&pf_net=194&pf_srv=60&pf_tfr=5&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/circular/CircularXXWeb-Book-5f7f3d61a321e3838310.woff2" - }, - { - "type": "unknown", - "url": "https://www.loom.com/v1/users/feature_flag/bulk?flags=rollout-limit-business-creator-lite,enable-dev-tools,rollout-new-sdk-ui,rollout-new-sdk-ui,exp-hard-gate-comment-emoji&hash=18c3ea2b-3512-4008-81ba-f6de23c2695f&extraProperties={}" - }, - { - "type": "unknown", - "url": "https://www.loom.com/graphql" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/v1/projects/rggRFsCK29LOKVGyTLpt9xoXVhNNXaP6/settings" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/analytics-next/bundles/tsub-middleware.bundle.c0f5511a001f780f591f.js" - }, - { - "type": "unknown", - "url": "https://www.loom.com/v1/users/feature_flag/bulk?flags=rollout-sdk-firefox-support&hash=94275445-b328-4d10-b58c-40cf3b541622&extraProperties={}" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM3NjQ4OTc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=Ei0aKCLUzQvB%7EY3BPf6kIuprmQJtKyB0Nw9cORybOANy3VkP7kNLFMueF%7EyPtUWCeJSCCegBggQQsl2Tp0H5GAA4Fyb-j4M1OPccKrcmGXqdWcdAJo-vORWsOO2UKSi8kvHY8mdoIPs4zpwNUuEprLEFRybuwGYa9ViVZ09nKw9L1qBP3RAWvto6UlWX-THnrK05rChoJy1KJBiLroGq87vX-v8oyJO1RvLgoeD8u8VroFVMx9mgJBKXDa%7EjoKp5h9HEIp2y3J00S8USrR3d77%7EdO081MbgJ2wzE2nLli9Zsh7utc1d2c%7ED%7EPFaqJ10b-joQd76pyu%7ELdPTCRfcLMA__" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM3NjQ4OTc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=Ei0aKCLUzQvB%7EY3BPf6kIuprmQJtKyB0Nw9cORybOANy3VkP7kNLFMueF%7EyPtUWCeJSCCegBggQQsl2Tp0H5GAA4Fyb-j4M1OPccKrcmGXqdWcdAJo-vORWsOO2UKSi8kvHY8mdoIPs4zpwNUuEprLEFRybuwGYa9ViVZ09nKw9L1qBP3RAWvto6UlWX-THnrK05rChoJy1KJBiLroGq87vX-v8oyJO1RvLgoeD8u8VroFVMx9mgJBKXDa%7EjoKp5h9HEIp2y3J00S8USrR3d77%7EdO081MbgJ2wzE2nLli9Zsh7utc1d2c%7ED%7EPFaqJ10b-joQd76pyu%7ELdPTCRfcLMA__" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM3NjQ4OTc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=Ei0aKCLUzQvB%7EY3BPf6kIuprmQJtKyB0Nw9cORybOANy3VkP7kNLFMueF%7EyPtUWCeJSCCegBggQQsl2Tp0H5GAA4Fyb-j4M1OPccKrcmGXqdWcdAJo-vORWsOO2UKSi8kvHY8mdoIPs4zpwNUuEprLEFRybuwGYa9ViVZ09nKw9L1qBP3RAWvto6UlWX-THnrK05rChoJy1KJBiLroGq87vX-v8oyJO1RvLgoeD8u8VroFVMx9mgJBKXDa%7EjoKp5h9HEIp2y3J00S8USrR3d77%7EdO081MbgJ2wzE2nLli9Zsh7utc1d2c%7ED%7EPFaqJ10b-joQd76pyu%7ELdPTCRfcLMA__" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/mediametadata/seekpreview/2720a47a15ab4929bfb0ab2059ca3fe5.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9zZWVrcHJldmlldy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS4qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzM3NjQ4OTc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=Ei0aKCLUzQvB%7EY3BPf6kIuprmQJtKyB0Nw9cORybOANy3VkP7kNLFMueF%7EyPtUWCeJSCCegBggQQsl2Tp0H5GAA4Fyb-j4M1OPccKrcmGXqdWcdAJo-vORWsOO2UKSi8kvHY8mdoIPs4zpwNUuEprLEFRybuwGYa9ViVZ09nKw9L1qBP3RAWvto6UlWX-THnrK05rChoJy1KJBiLroGq87vX-v8oyJO1RvLgoeD8u8VroFVMx9mgJBKXDa%7EjoKp5h9HEIp2y3J00S8USrR3d77%7EdO081MbgJ2wzE2nLli9Zsh7utc1d2c%7ED%7EPFaqJ10b-joQd76pyu%7ELdPTCRfcLMA__" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js" - }, - { - "type": "unknown", - "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/playlistmultibitrate.mpd?Signature=FsKnNLEYRWjbJxjP9U0n4USXmmKDGsaQhvr7ZWdhpYG~STNDRjqGFAi14r6hRvk19~ryexsz2kEHlJaNcDyhVOTBuAQHyZ3VPz2-PdFDCTaW85re~z5AlivMWsmp9afmB1WpvqmiFZSziNeooJRLh-aiLh5lyLrE3wjnxnTtF-51Q-FnAJlDzvshL3xWOF-eRQn-TZ9PojvvsMKKUtR15yCYlX2bc8LJsQ5gFQ-MH8AlVIpFfQ~nC7bNtNM3md1Y9cdt2b446nbPIq8U4MxwXGcMsGG13x1XW4p7cL0mAZa0xvlQEyXkAGg1~gJy3J4JK~Ulk1rzlfKaLzyi-Y5fMw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMyNTUxMzc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/next-integrations/actions/sprig-web/1041a2eb0b05fe32acf2.js" - }, - { - "type": "unknown", - "url": "https://cdn.segment.com/next-integrations/actions/845/449cd4534726259c2a8c.js" - }, - { - "type": "unknown", - "url": "https://cdn.sprig.com/shim.js?id=KVj_WYX4LR" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/NotoColorEmoji/NotoColorEmoji.9.woff2" - }, - { - "type": "unknown", - "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-audio-init.webm?Signature=FsKnNLEYRWjbJxjP9U0n4USXmmKDGsaQhvr7ZWdhpYG~STNDRjqGFAi14r6hRvk19~ryexsz2kEHlJaNcDyhVOTBuAQHyZ3VPz2-PdFDCTaW85re~z5AlivMWsmp9afmB1WpvqmiFZSziNeooJRLh-aiLh5lyLrE3wjnxnTtF-51Q-FnAJlDzvshL3xWOF-eRQn-TZ9PojvvsMKKUtR15yCYlX2bc8LJsQ5gFQ-MH8AlVIpFfQ~nC7bNtNM3md1Y9cdt2b446nbPIq8U4MxwXGcMsGG13x1XW4p7cL0mAZa0xvlQEyXkAGg1~gJy3J4JK~Ulk1rzlfKaLzyi-Y5fMw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMyNTUxMzc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" - }, - { - "type": "unknown", - "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-video-init.webm?Signature=FsKnNLEYRWjbJxjP9U0n4USXmmKDGsaQhvr7ZWdhpYG~STNDRjqGFAi14r6hRvk19~ryexsz2kEHlJaNcDyhVOTBuAQHyZ3VPz2-PdFDCTaW85re~z5AlivMWsmp9afmB1WpvqmiFZSziNeooJRLh-aiLh5lyLrE3wjnxnTtF-51Q-FnAJlDzvshL3xWOF-eRQn-TZ9PojvvsMKKUtR15yCYlX2bc8LJsQ5gFQ-MH8AlVIpFfQ~nC7bNtNM3md1Y9cdt2b446nbPIq8U4MxwXGcMsGG13x1XW4p7cL0mAZa0xvlQEyXkAGg1~gJy3J4JK~Ulk1rzlfKaLzyi-Y5fMw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMyNTUxMzc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" - }, - { - "type": "unknown", - "url": "https://api.sgmt.loom.com/v1/p" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/assets/fonts/NotoColorEmoji/NotoColorEmoji.9.woff2" - }, - { - "type": "unknown", - "url": "https://api.sprig.com/sdk/1/environments/KVj_WYX4LR/config" - }, - { - "type": "unknown", - "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-video-0.webm?Signature=FsKnNLEYRWjbJxjP9U0n4USXmmKDGsaQhvr7ZWdhpYG~STNDRjqGFAi14r6hRvk19~ryexsz2kEHlJaNcDyhVOTBuAQHyZ3VPz2-PdFDCTaW85re~z5AlivMWsmp9afmB1WpvqmiFZSziNeooJRLh-aiLh5lyLrE3wjnxnTtF-51Q-FnAJlDzvshL3xWOF-eRQn-TZ9PojvvsMKKUtR15yCYlX2bc8LJsQ5gFQ-MH8AlVIpFfQ~nC7bNtNM3md1Y9cdt2b446nbPIq8U4MxwXGcMsGG13x1XW4p7cL0mAZa0xvlQEyXkAGg1~gJy3J4JK~Ulk1rzlfKaLzyi-Y5fMw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMyNTUxMzc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" - }, - { - "type": "unknown", - "url": "https://luna.loom.com/id/2720a47a15ab4929bfb0ab2059ca3fe5/rev/6e82eda7caf7ce86600e6e749fac9081207520bfffb464b0e8f7c1bff08311604/resource/dash/2720a47a15ab4929bfb0ab2059ca3fe5-audio-0.webm?Signature=FsKnNLEYRWjbJxjP9U0n4USXmmKDGsaQhvr7ZWdhpYG~STNDRjqGFAi14r6hRvk19~ryexsz2kEHlJaNcDyhVOTBuAQHyZ3VPz2-PdFDCTaW85re~z5AlivMWsmp9afmB1WpvqmiFZSziNeooJRLh-aiLh5lyLrE3wjnxnTtF-51Q-FnAJlDzvshL3xWOF-eRQn-TZ9PojvvsMKKUtR15yCYlX2bc8LJsQ5gFQ-MH8AlVIpFfQ~nC7bNtNM3md1Y9cdt2b446nbPIq8U4MxwXGcMsGG13x1XW4p7cL0mAZa0xvlQEyXkAGg1~gJy3J4JK~Ulk1rzlfKaLzyi-Y5fMw__&Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9sdW5hLmxvb20uY29tL2lkLzI3MjBhNDdhMTVhYjQ5MjliZmIwYWIyMDU5Y2EzZmU1L3Jldi82ZTgyZWRhN2NhZjdjZTg2NjAwZTZlNzQ5ZmFjOTA4MTIwNzUyMGJmZmZiNDY0YjBlOGY3YzFiZmYwODMxMTYwNC9yZXNvdXJjZS8qIiwiQ29uZGl0aW9uIjp7IkRhdGVMZXNzVGhhbiI6eyJBV1M6RXBvY2hUaW1lIjoxNzMyNTUxMzc3fX19XX0_&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ" - }, - { - "type": "unknown", - "url": "https://cdn.loom.com/mediametadata/captions/2720a47a15ab4929bfb0ab2059ca3fe5-2.vtt?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9jZG4ubG9vbS5jb20vbWVkaWFtZXRhZGF0YS9jYXB0aW9ucy8yNzIwYTQ3YTE1YWI0OTI5YmZiMGFiMjA1OWNhM2ZlNS0yLnZ0dCIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTczMjU1MTM3N319fV19&Key-Pair-Id=APKAJQIC5BGSW7XXK7FQ&Signature=e6sga1KsMIM-mwDGbeoDfaQqEVGcGVUlHjVZxIPCFGfTI9Lf0roycMO4nEs1wHLR9OfobEslLgbI5wAK965k1i%7EjYuXSagM3SN7jmwBrVTr5Q9uWbfznUVC4ZZzgjCyaqmd0mYn2h6nNvo9SRUKHg9r5xBEnAjuFEQF9uUFEuLZS2HkUSEG07WUwF4Tq3%7EJmaPNnBNNT9OtAg5gM0fUPIXjs6Z%7ERRxwWrOLq8GiM4eAHXxMZvwjp-YAqo6ZdXgwoskxqUwEF-t0yE2Lr-%7EMHEghE6rIrs9dzjztvVSvG2Iy94SyRs0Aw97Ww-A%7Ev8-3M6zy1p6JYr0BCjJrO7hbCaA__" - }, - { - "type": "unknown", - "url": "https://api.sgmt.loom.com/v1/t" - }, - { - "type": "unknown", - "url": "https://api.sprig.com/sdk/1/environments/KVj_WYX4LR/config" - }, - { - "type": "unknown", - "url": "https://www.loom.com/insights-api/graphql" - } - ], - "cookies": [ - { - "name": "_pk_id.258.755a", - "value": "ebd6a13ad404dc3a.1732464976.", - "domain": "datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1766420176, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_ses.2.755a", - "value": "1", - "domain": "datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1732466776, - "size": 15, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "__cf_bm", - "value": "gONou.gKX3uS0TVUiv8kja3rnKzqgkmy6iDI2fE20o4-1732464975-1.0.1.1-pxK1Ay29PayFhCRoGeDCBt6kVyhEkfHH45oB3u_Yl8O2Mmz6qNKKibqUWEkdU_NggqB.z6OaEu6ccSy2kolsbQ", - "domain": ".datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1732466775.76669, - "size": 156, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.2.755a", - "value": "019cdce1ce0357da.1732464976.", - "domain": "datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1766420176, - "size": 41, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_ses.258.755a", - "value": "1", - "domain": "datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1732466776, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_cfuvid", - "value": "dbSPDhrYY8W8VTZEKUJ_bqVP.H1avc2a0A9RU_w4e6M-1732464975762-0.0.1.1-604800000", - "domain": ".datasubvention.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 82, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "sib_cuid", - "value": "4e2c69e6-09d5-4c76-b74f-df83222e89d6", - "domain": ".datasubvention.beta.gouv.fr", - "path": "/", - "expires": 1748132176, - "size": 44, - "httpOnly": false, - "secure": false, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "age": "52186", - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "public, max-age=604800", - "cf-cache-status": "HIT", - "cf-ray": "8e7ab3d22a493885-IAD", - "content-encoding": "br", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 16:16:15 GMT", - "ec-cdn-cache-control": "public, max-age=604800", - "ec-cdn-status": "hit", - "ec-cdn-supported": "1", - "ec-coldstart": "", - "ec-source": "dynamic", - "last-modified": "Sun, 24 Nov 2024 01:46:29 GMT", - "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", - "server": "cloudflare", - "server-timing": "cfCacheStatus;desc=\"HIT\"", - "set-cookie": "__cf_bm=gONou.gKX3uS0TVUiv8kja3rnKzqgkmy6iDI2fE20o4-1732464975-1.0.1.1-pxK1Ay29PayFhCRoGeDCBt6kVyhEkfHH45oB3u_Yl8O2Mmz6qNKKibqUWEkdU_NggqB.z6OaEu6ccSy2kolsbQ; path=/; expires=Sun, 24-Nov-24 16:46:15 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=dbSPDhrYY8W8VTZEKUJ_bqVP.H1avc2a0A9RU_w4e6M-1732464975762-0.0.1.1-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", - "vary": "Accept-Encoding", - "x-litespeed-tag": "81d_HTTP.200", - "x-powered-by": "Elementor Cloud" + "severity": "INFO", + "finding": "No connection" }, - "endpoints": [ - { - "hostname": "datasubvention.beta.gouv.fr", - "ip": "162.159.137.9", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.brevo.com", - "ip": "104.18.37.40", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "static.cloudflareinsights.com", - "ip": "104.16.80.73", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.29.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.loom.com", - "ip": "3.167.69.11", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "matomo-datasubvention.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "sibautomation.com", - "ip": "172.64.148.115", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "in-automate.brevo.com", - "ip": "104.18.37.40", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.loom.com", - "ip": "18.165.98.62", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "o398470.ingest.sentry.io", - "ip": "34.120.195.249", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "installed.jpg", - "ip": null, - "geoip": null - }, - { - "hostname": "evs.sgmt.loom.com", - "ip": "3.167.69.38", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.segment.com", - "ip": "99.86.191.237", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "luna.loom.com", - "ip": "18.165.83.91", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.sprig.com", - "ip": "3.162.112.54", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "api.sgmt.loom.com", - "ip": "54.148.233.230", - "geoip": { - "city": { - "geoname_id": 5714964, - "names": { - "de": "Boardman", - "en": "Boardman", - "es": "Boardman", - "fr": "Boardman", - "ja": "ボードマン", - "pt-BR": "Boardman", - "ru": "Бордман" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 45.8491, - "longitude": -119.7143, - "metro_code": 810, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "97818" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5744337, - "iso_code": "OR", - "names": { - "de": "Oregon", - "en": "Oregon", - "es": "Oregón", - "fr": "Oregon", - "ja": "オレゴン州", - "pt-BR": "Oregon", - "ru": "Орегон", - "zh-CN": "俄勒冈州" - } - } - ] - } - }, - { - "hostname": "api.sprig.com", - "ip": "50.19.89.137", - "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://datasubvention.beta.gouv.fr/": { - "status": 200 - } + { + "id": "clientsimulation-ie_8_win7", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "cje.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "service", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2024-10-13 12:39" + }, + { + "id": "cert_notAfter", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2025-01-11 12:39" + }, + { + "id": "cert_extlifeSpan", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "301 Moved Permanently ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" }, - "technologies": [ - { - "slug": "wordpress", - "name": "WordPress", - "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", - "confidence": 100, - "version": "6.7.1", - "icon": "WordPress.svg", - "website": "https://wordpress.org", - "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - }, - { - "id": 11, - "slug": "blogs", - "name": "Blogs" - } - ], - "rootPath": true - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "hello-elementor", - "name": "Hello Elementor", - "description": "Hello Elementor is a WordPress theme built for the Elementor website builder platform. It uses minimal styling and scripts for maximum speed and design freedom.", - "confidence": 100, - "version": "3.0.1", - "icon": "Hello Elementor.png", - "website": "https://elementor.com/hello-theme/", - "cpe": null, - "categories": [ - { - "id": 80, - "slug": "wordpress-themes", - "name": "WordPress themes" - } - ], - "rootPath": true - }, - { - "slug": "elementor", - "name": "Elementor", - "description": "Elementor is a website builder platform for professionals on WordPress.", - "confidence": 100, - "version": "3.25.9", - "icon": "Elementor.svg", - "website": "https://elementor.com", - "cpe": null, - "categories": [ - { - "id": 51, - "slug": "page-builders", - "name": "Page builders" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "backbone-js", - "name": "Backbone.js", - "description": "BackboneJS is a JavaScript library that allows to develop and structure the client side applications that run in a web browser.", - "confidence": 100, - "version": "1.6.0", - "icon": "Backbone.js.png", - "website": "https://backbonejs.org", - "cpe": "cpe:2.3:a:backbone_project:backbone:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "yoast-seo", - "name": "Yoast SEO", - "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", - "confidence": 100, - "version": "23.9", - "icon": "Yoast SEO.png", - "website": "https://yoast.com/wordpress/plugins/seo/", - "cpe": null, - "categories": [ - { - "id": 54, - "slug": "seo", - "name": "SEO" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "underscore-js", - "name": "Underscore.js", - "description": "Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.", - "confidence": 100, - "version": null, - "icon": "Underscore.js.png", - "website": "https://underscorejs.org", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "cloudflare-browser-insights", - "name": "Cloudflare Browser Insights", - "description": "Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - }, - { - "id": 78, - "slug": "rum", - "name": "RUM" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare-bot-management", - "name": "Cloudflare Bot Management", - "description": "Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com/en-gb/products/bot-management/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 0, - "version": "1.13.7", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery-ui", - "name": "jQuery UI", - "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", - "confidence": 100, - "version": "1.13.3", - "icon": "jQuery UI.svg", - "website": "https://jqueryui.com", - "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery-migrate", - "name": "jQuery Migrate", - "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", - "confidence": 100, - "version": "3.4.1", - "icon": "jQuery.svg", - "website": "https://github.com/jquery/jquery-migrate", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.7.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.32.0", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "swiper", - "name": "Swiper", - "description": "Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.", - "confidence": 100, - "version": null, - "icon": "Swiper.svg", - "website": "https://swiperjs.com", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "calendly", - "name": "Calendly", - "description": "Calendly is an app for scheduling appointments, meetings, and events.", - "confidence": 100, - "version": null, - "icon": "Calendly.svg", - "website": "https://calendly.com/", - "cpe": null, - "categories": [ - { - "id": 72, - "slug": "appointment-scheduling", - "name": "Appointment scheduling" - } - ], - "rootPath": true - }, - { - "slug": "elementor-cloud", - "name": "Elementor Cloud", - "description": "Elementor Cloud is a platform for creating and hosting WordPress websites with Elementor.", - "confidence": 100, - "version": null, - "icon": "Elementor.svg", - "website": "https://elementor.com", - "cpe": null, - "categories": [ - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "rss", - "name": "RSS", - "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", - "confidence": 100, - "version": null, - "icon": "RSS.svg", - "website": "https://www.rssboard.org/rss-specification", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://datasubvention.beta.gouv.fr/", - "finalUrl": "https://datasubvention.beta.gouv.fr/", - "fetchTime": "2024-11-24T16:15:46.953Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.48 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.95 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 21950, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1752, - "firstMeaningfulPaint": 3491, - "largestContentfulPaint": 28011, - "interactive": 21950, - "speedIndex": 16136, - "totalBlockingTime": 297, - "maxPotentialFID": 219, - "cumulativeLayoutShift": 0.00003484916687011719, - "cumulativeLayoutShiftMainFrame": 0.00003484916687011719, - "totalCumulativeLayoutShift": 0.00003484916687011719, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 328767106, - "observedNavigationStart": 0, - "observedNavigationStartTs": 328767106, - "observedFirstPaint": 178, - "observedFirstPaintTs": 328945241, - "observedFirstContentfulPaint": 244, - "observedFirstContentfulPaintTs": 329011569, - "observedFirstContentfulPaintAllFrames": 244, - "observedFirstContentfulPaintAllFramesTs": 329011569, - "observedFirstMeaningfulPaint": 373, - "observedFirstMeaningfulPaintTs": 329140292, - "observedLargestContentfulPaint": 1584, - "observedLargestContentfulPaintTs": 330351046, - "observedLargestContentfulPaintAllFrames": 1584, - "observedLargestContentfulPaintAllFramesTs": 330351046, - "observedTraceEnd": 5116, - "observedTraceEndTs": 333882968, - "observedLoad": 1243, - "observedLoadTs": 330009837, - "observedDomContentLoaded": 488, - "observedDomContentLoadedTs": 329255437, - "observedCumulativeLayoutShift": 0.00003484916687011719, - "observedCumulativeLayoutShiftMainFrame": 0.00003484916687011719, - "observedTotalCumulativeLayoutShift": 0.00003484916687011719, - "observedFirstVisualChange": 253, - "observedFirstVisualChangeTs": 329020106, - "observedLastVisualChange": 2836, - "observedLastVisualChangeTs": 331603106, - "observedSpeedIndex": 576, - "observedSpeedIndexTs": 329342659 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 214, - "numScripts": 94, - "numStylesheets": 36, - "numFonts": 8, - "numTasks": 3372, - "numTasksOver10ms": 17, - "numTasksOver25ms": 6, - "numTasksOver50ms": 4, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 122033092.85548954, - "maxRtt": 83.00999999999999, - "maxServerLatency": 100.451, - "totalByteWeight": 5243987, - "totalTaskTime": 1050.7249999999906, - "mainDocumentTransferSize": 32963 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://datasubvention.beta.gouv.fr/accessibilite/" - }, - "declaration-rgpd": [ + "id": "HTTP_headerTime", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1733070900" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://app.datasubvention.beta.gouv.fr/mentions-legales" + "id": "HSTS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 7, - "score": 6, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://datasubvention.beta.gouv.fr/politique-de-confidentialite/" - } - ], - "betagouv": { - "id": "data-subvention", - "type": "startup", - "attributes": { - "name": "Data.Subvention", - "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", - "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", - "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", - "link": "https://datasubvention.beta.gouv.fr", - "repository": "https://github.com/betagouv/api-subventions-asso", - "contact": "contact@datasubvention.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Lauréat du FAST 13. " - }, - { - "name": "other", - "date": "2024-06-10", - "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" - } - ], - "phases": [ - { - "name": "construction", - "start": "2022-01-03", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-06-10", - "end": "" - } - ], - "sponsors": [ - "djepva" - ], - "thematiques": [ - "Subventions", - "Data", - "Open-Data" - ], - "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", - "accessibility_status": "partiellement conforme" + "id": "HPKP", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://datasubvention.beta.gouv.fr", - "size": 5053.319, - "nodes": 1141, - "requests": 132, - "grade": "F", - "score": 22, - "ges": 2.56, - "water": 3.84, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:12:46.348376", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "apdex": 0.508, - "apdexGrade": "F", - "uptime": 99.868, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": null, - "testsslExpireDate": null, - "testsslGrade": "A", - "cookiesGrade": "E", - "cookiesCount": 7, - "trackersGrade": "F", - "trackersCount": 104, - "lighthouse_performance": 0.48, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.95, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://cje.beta.gouv.fr", - "category": "dinum", - "betaId": "pass.engagement.jeune", - "http": { - "url": "https://cje.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:29:54 GMT", - "grade": "C-", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 12:29:51 GMT", - "ETag": "\"smraa5xhwjxq1\"", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Powered-By": "Next.js" + "id": "banner_server", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" }, - "scan_id": 57063470, - "score": 45, - "start_time": "Sun, 20 Oct 2024 12:29:49 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://cje.fabrique.social.gouv.fr", - "redirects": true, - "route": [ - "http://cje.beta.gouv.fr/", - "https://cje.fabrique.social.gouv.fr" - ], - "status_code": 301 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "0u75", - "url": "https://cje.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.978, - "down": false, - "down_since": null, - "up_since": "2024-11-24T05:29:23Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:38:22Z", - "next_check_at": "2024-11-24T16:39:22Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://cje.fabrique.social.gouv.fr/pwa/appIcon/maskable_icon_x48.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:35:25Z", - "expires_at": "2025-01-11T12:39:37Z", - "valid": true, - "error": null + { + "id": "banner_application", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" }, - "metrics": { - "apdex": 0.992, - "timings": { - "redirect": 466, - "namelookup": 15, - "connection": 152, - "handshake": 161, - "response": 214, - "total": 1008 - } + { + "id": "cookie_count", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "security_headers", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "MEDIUM", + "finding": "--" + }, + { + "id": "banner_reverseproxy", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" + }, + { + "id": "LOGJAM", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "cje.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "cje.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", "ip": "cje.beta.gouv.fr/109.232.236.90", @@ -415759,7 +411384,7 @@ "ip": "cje.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "47 >= 30 days" + "finding": "40 >= 30 days" }, { "id": "cert_notBefore", @@ -415913,14 +411538,14 @@ "ip": "cje.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "cje.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732465968" + "finding": "1733070955" }, { "id": "HSTS", @@ -416464,86 +412089,738 @@ "severity": "OK", "finding": "A" }, - { - "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + { + "id": "grade_cap_reason_1", + "ip": "cje.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "cje.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "233" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 16:31:42 GMT", + "etag": "\"k4ugvvmj4o13ga\"", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Accept-Encoding", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "cje.beta.gouv.fr", + "ip": "109.232.236.90", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://cje.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://cje.beta.gouv.fr/ (https://cje.beta.gouv.fr/)" + } + }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://cje.beta.gouv.fr/", + "finalUrl": "https://cje.fabrique.social.gouv.fr/", + "fetchTime": "2024-12-01T16:26:18.157Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://cje.beta.gouv.fr/) was redirected to https://cje.fabrique.social.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.31 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.84 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.9 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 10537, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2016, + "firstMeaningfulPaint": 2016, + "largestContentfulPaint": 11048, + "interactive": 10537, + "speedIndex": 11755, + "totalBlockingTime": 1307, + "maxPotentialFID": 797, + "cumulativeLayoutShift": 0.04790828895568847, + "cumulativeLayoutShiftMainFrame": 0.04790828895568847, + "totalCumulativeLayoutShift": 0.04790828895568847, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 315197267, + "observedNavigationStart": 0, + "observedNavigationStartTs": 315197267, + "observedFirstPaint": 1173, + "observedFirstPaintTs": 316370425, + "observedFirstContentfulPaint": 1173, + "observedFirstContentfulPaintTs": 316370425, + "observedFirstContentfulPaintAllFrames": 1173, + "observedFirstContentfulPaintAllFramesTs": 316370425, + "observedFirstMeaningfulPaint": 1173, + "observedFirstMeaningfulPaintTs": 316370425, + "observedLargestContentfulPaint": 2328, + "observedLargestContentfulPaintTs": 317525240, + "observedLargestContentfulPaintAllFrames": 2328, + "observedLargestContentfulPaintAllFramesTs": 317525240, + "observedTraceEnd": 6625, + "observedTraceEndTs": 321822456, + "observedLoad": 1840, + "observedLoadTs": 317037702, + "observedDomContentLoaded": 1811, + "observedDomContentLoadedTs": 317007900, + "observedCumulativeLayoutShift": 0.04790828895568847, + "observedCumulativeLayoutShiftMainFrame": 0.04790828895568847, + "observedTotalCumulativeLayoutShift": 0.04790828895568847, + "observedFirstVisualChange": 1173, + "observedFirstVisualChangeTs": 316370267, + "observedLastVisualChange": 3356, + "observedLastVisualChangeTs": 318553267, + "observedSpeedIndex": 2516, + "observedSpeedIndexTs": 317712791 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 61, + "numScripts": 19, + "numStylesheets": 2, + "numFonts": 6, + "numTasks": 2951, + "numTasksOver10ms": 16, + "numTasksOver25ms": 9, + "numTasksOver50ms": 4, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 98.50699999999999, + "throughput": 99681618.24980843, + "maxRtt": 102.968, + "maxServerLatency": 20.482, + "totalByteWeight": 20444631, + "totalTaskTime": 1346.932000000013, + "mainDocumentTransferSize": 10576 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 0, + "missingWords": [ + "directeur (ou) directrice", + "publication", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://cje.beta.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 1, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://cje.beta.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "pass.engagement.jeune", + "type": "startup", + "attributes": { + "name": "Carte Jeune Engagé", + "pitch": "Proposer aux jeunes en insertion des avantages sur des biens et services essentiels", + "stats_url": "https://metabase-carte-jeune-engage.fabrique.social.gouv.fr/public/dashboard/9d6a663b-99f2-47eb-ba55-be238909b1ba", + "link": "https://cje.fabrique.social.gouv.fr/", + "repository": "https://github.com/SocialGouv/carte-jeune-engage", + "contact": "alameen.abdul@fabrique.social.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ALes%20programmes%20de%20r%C3%A9ductions%20et%20de%20tarifications%20avantageuses%20propos%C3%A9s%20pour%20les%20%C3%A9tudiants%20rencontrent%20un%20franc%20succ%C3%A8s%20aupr%C3%A8s%20des%20jeunes.%20%0A%0AEn%20France%2C%20pr%C3%A8s%20d%E2%80%991%20%C3%A9tudiant%20sur%203%20est%20inscrit%20sur%20une%20application%20de%20r%C3%A9ductions%20exclusives.%20Pourtant%20en%20France%2C%20parmi%20les%20jeunes%20de%2018%20%C3%A0%2025%20ans%20ce%20sont%206%20jeunes%20sur%2010%20qui%20n%E2%80%99ont%20pas%20le%20statut%20%C3%A9tudiant%2C%20et%20qui%20sont%20donc%20exclus%20de%20ces%20avantages%20mis%20en%20place%20par%20les%20acteurs%20priv%C3%A9s.%0A%0ALa%20carte%20%E2%80%9Cjeune%20engag%C3%A9%E2%80%9D%20est%20une%20initiative%20visant%20%C3%A0%20r%C3%A9tablir%20l%27%C3%A9quilibre%20des%20avantages%20dont%20peuvent%20b%C3%A9n%C3%A9ficier%20tous%20les%20jeunes%20%C3%A2g%C3%A9s%20de%2018%20%C3%A0%2025%20ans%2C%20qu%27ils%20soient%20%C3%A9tudiants%2C%20en%20formation%2C%20engag%C3%A9s%20en%20service%20civique%20ou%20en%20insertion%20professionnelle.%0A%20%0A%23%23%20Solution%0A%0ALa%20carte%20%E2%80%9Cjeune%20engag%C3%A9%E2%80%9D%20permettra%20aux%20jeunes%20en%20insertion%20d%E2%80%99acc%C3%A9der%20%C3%A0%20des%20biens%20et%20services%20essentiels%20%C3%A0%20un%20tarif%20remis%C3%A9%20n%C3%A9goci%C3%A9%20de%20mani%C3%A8re%20in%C3%A9dite%20avec%20des%20entreprises%20partenaires.%0AUne%20seule%20application%20permettra%20aux%20jeunes%20de%20retrouver%20l%E2%80%99ensemble%20des%20offres%20des%20entreprises%20engag%C3%A9es%20partenaires%20et%20d%E2%80%99utiliser%20les%20r%C3%A9ductions%20au%20moment%20du%20paiement%20que%20ce%20soit%20en%20ligne%20ou%20en%20magasin.%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%2AT4%202023%2A%2A%0A%2A%20Analyse%20des%20besoins%20aupr%C3%A8s%20des%20jeunes%20en%20insertion%0A%2A%20Conception%20et%20confirmation%20d%E2%80%99une%20solution%20MVP%20avec%20une%20strat%C3%A9gie%20de%20tests%20avec%20des%20jeunes%20de%20la%20cible%0A%0A%2A%2AT1%202024%2A%2A%0A%2A%20D%C3%A9veloppement%20fonctionnel%20du%20MVP%0A%2A%20Co-construction%20des%20processus%20de%20cr%C3%A9ation%2C%20de%20diffusion%20et%20d%E2%80%99utilisation%20des%20r%C3%A9ductions%20et%20offres%20avec%20les%20entreprises%20partenaires%20qui%20les%20proposent%0A%2A%20Co-construction%20de%20la%20phase%20d%E2%80%99exp%C3%A9rimentation%20avec%20les%20travailleurs%20sociaux%20du%20service%20public%20%C3%A0%20l%E2%80%99emploi%20pour%20cibler%20les%20jeune%20du%20CEJ%20%28France%20Travail%20et%20Mission%20locale%29%0A%2A%20Lancement%20du%20MVP%20en%20phase%20d%E2%80%99exp%C3%A9rimentation%20sur%20le%20territoire%20de%20l%E2%80%99Est%20du%20Val%20d%E2%80%99Oise%0A%0A%2A%2AMars%20-%20juin%202024%2A%2A%0A%2A%20Analyse%20et%20it%C3%A9rations%20en%20fonction%20des%20indicateurs%20d%E2%80%99usage%20et%20des%20indicateurs%20d%E2%80%99impact%20sur%20le%20nombres%20de%20r%C3%A9ductions%20utilis%C3%A9es%20par%20les%20jeunes%20et%20le%20montant%20%C3%A9conomis%C3%A9%20en%20euros%0A%0A%2A%2ABilan%20de%20l%E2%80%99exp%C3%A9rimentation%20pr%C3%A9sent%C3%A9%20au%20comit%C3%A9%20d%C3%A9but%20juillet%2A%2A%0A%2A%20Le%20produit%20suscite%20un%20int%C3%A9r%C3%AAt%20r%C3%A9el%20aupr%C3%A8s%20du%20public%20cible%2C%20avec%20plus%20d%E2%80%99une%20personne%20sur%20deux%20ayant%20t%C3%A9l%C3%A9charg%C3%A9%20l%E2%80%99application%0A%2A%20Cependant%2C%20le%20manque%20d%E2%80%99offres%20de%20r%C3%A9ductions%20propos%C3%A9es%20pendant%20la%20phase%20d%E2%80%99exp%C3%A9rimentation%20a%20%C3%A9t%C3%A9%20unanimement%20signal%C3%A9%20par%20les%20testeurs.%20Avec%20seulement%2023%20offres%20disponibles%2C%20ce%20point%20a%20%C3%A9t%C3%A9%20identifi%C3%A9%20comme%20le%20principal%20frein%20%C3%A0%20la%20satisfaction%20et%20%C3%A0%20l%E2%80%99usage%20r%C3%A9gulier%20du%20produit%0A%0A%2A%2A%C3%80%20partir%20de%20juin%202024%20-%20Pr%C3%A9paration%20d%E2%80%99une%20nouvelle%20phase%20de%20tests%2A%2A%0A%2A%20Am%C3%A9lioration%20de%20l%E2%80%99application%20en%20int%C3%A9grant%20les%20retours%20des%20utilisateurs%20de%20l%E2%80%99exp%C3%A9rimentation%0A%2A%20Enrichissement%20continu%20du%20catalogue%20de%20r%C3%A9ductions%0A%2A%20Collaboration%20avec%20le%20CEJ%2C%20incluant%20la%20mise%20en%20avant%20du%20catalogue%20de%20r%C3%A9ductions%20sous%20forme%20d%27un%20widget%20int%C3%A9gr%C3%A9%20dans%20l%E2%80%99application%20du%20CEJ%0A%0A%2A%2AT4%202024%2A%2A%0A%2A%20Ouverture%20de%20l%E2%80%99application%20%C3%A0%20tous%20les%20jeunes%20du%20CEJ%2C%20avec%20un%20catalogue%20enrichi%20proposant%20plus%20de%2075%20offres%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2022-05-15", + "end": "2022-11-08" + }, + { + "name": "construction", + "start": "2023-12-15", + "end": "" + } + ], + "sponsors": [ + "dgefp" + ], + "thematiques": [ + "Jeunesse", + "Social", + "Travail / Emploi" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "sgmas" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://cje.beta.gouv.fr", + "size": 23958.676, + "nodes": 532, + "requests": 65, + "grade": "D", + "score": 48, + "ges": 2.04, + "water": 3.06, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:23:16.770109", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C-", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.98, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-11T12:39:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.31, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.84, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.9, + "lighthouse_pwaGrade": "A", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "D", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "D", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://aplypro.beta.gouv.fr", + "category": "dinum", + "betaId": "valorisation.des.stages.pro", + "http": { + "url": "https://aplypro.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:30:53 GMT", + "grade": "C+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 12:30:52 GMT", + "Transfer-Encoding": "chunked", + "X-Request-ID": "90341dcc-c74d-4215-afc3-7c1f2ec3f688, 90341dcc-c74d-4215-afc3-7c1f2ec3f688", + "cache-control": "max-age=0, private, must-revalidate", + "etag": "W/\"fc5ea3140a235cbfc8afadfdc3dc2586\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_aplypro_session=Pjnzmeskx6%2BXMPrqR2QLf4QjQ%2FM0AskWkSQsk481IunRhMt%2BGf6NwPXy4Kbk4obFx7ZtdY2PR13jPtNhLcCp66vEx03eGxOVFVc%2F2kB5XFSxSc5TR86Gqf2ED9JY%2FPhJfCCeJj15oyS13QD7PlEseYU8jcwt%2BWfu36BXS4vintif4GqpaQNjwG1HG7cpUx8Yl7Qy%2Ff%2FHH2UwdFp58Fy0lqx8apveCg6AC2cDpsHw%2Fw6pJLZM2L0YwPBB%2BZ%2Bpbie2kIAqtJPhUtQIOIIlRBQhwv9xmTlf9cqA--%2BWV0mE7Sgwo8xiYV--V06vOnZyGPmNv8xRCbXgfg%3D%3D; path=/; httponly; samesite=lax", + "strict-transport-security": "max-age=31536000", + "vary": "Accept", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-runtime": "0.006903", + "x-xss-protection": "0" + }, + "scan_id": 57063475, + "score": 60, + "start_time": "Sun, 20 Oct 2024 12:30:51 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_aplypro_session": { + "domain": "aplypro.beta.gouv.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-session-without-secure-flag-but-protected-by-hsts", + "score_description": "Session cookie set without the Secure flag, but transmission over HTTP prevented by HSTS", + "score_modifier": -10 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://aplypro.beta.gouv.fr/login", + "redirects": true, + "route": [ + "http://aplypro.beta.gouv.fr/", + "https://aplypro.beta.gouv.fr/", + "https://aplypro.beta.gouv.fr/login" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://ga.jspm.io/npm:es-module-shims@1.10.0/dist/es-module-shims.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "jyjc", + "url": "https://aplypro.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.127, + "down": false, + "down_since": null, + "up_since": "2024-11-28T22:35:12Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:43:11Z", + "next_check_at": "2024-12-01T16:44:11Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://aplypro.beta.gouv.fr/assets/favicon/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:38:14Z", + "expires_at": "2025-01-24T11:50:37Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 556, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 144, + "total": 701 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "aplypro.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416551,7 +412828,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416559,7 +412836,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416567,7 +412844,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416575,7 +412852,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416583,7 +412860,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416591,441 +412868,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-13 12:39" + "finding": "2024-10-26 11:50" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-11 12:39" + "finding": "2025-01-24 11:50" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732466062" + "finding": "1733071057" }, { - "id": "HSTS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "id": "HSTS_time", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "id": "X-Frame-Options", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -417033,7 +413352,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -417042,7 +413361,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -417051,7 +413370,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -417060,7 +413379,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -417069,7 +413388,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -417077,7 +413396,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -417086,7 +413405,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -417095,7 +413414,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -417104,7 +413423,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -417113,14 +413432,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -417129,7 +413448,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -417138,7 +413457,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -417147,16 +413466,16 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417165,7 +413484,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417174,7 +413493,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -417183,7 +413502,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -417192,7 +413511,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -417201,7 +413520,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -417210,399 +413529,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/109.232.233.130", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417610,7 +413922,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417618,7 +413930,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417626,7 +413938,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417634,7 +413946,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417642,7 +413954,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417650,441 +413962,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-13 12:39" + "finding": "2024-10-26 11:50" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-11 12:39" + "finding": "2025-01-24 11:50" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732466158" + "finding": "1733071152" }, { - "id": "HSTS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "id": "HSTS_time", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "id": "X-Frame-Options", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -418092,7 +414446,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -418101,7 +414455,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -418110,7 +414464,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -418119,7 +414473,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -418128,7 +414482,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -418136,7 +414490,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -418145,7 +414499,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -418154,7 +414508,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -418163,7 +414517,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -418172,14 +414526,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -418188,7 +414542,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -418197,7 +414551,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -418206,16 +414560,16 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -418224,7 +414578,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -418233,7 +414587,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -418242,7 +414596,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -418251,7 +414605,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -418260,7 +414614,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -418269,399 +414623,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/5.104.101.30", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -418669,7 +415016,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -418677,7 +415024,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -418685,7 +415032,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -418693,7 +415040,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -418701,7 +415048,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -418709,441 +415056,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-13 12:39" + "finding": "2024-10-26 11:50" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-11 12:39" + "finding": "2025-01-24 11:50" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732466254" + "finding": "1733071248" }, { - "id": "HSTS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "id": "HSTS_time", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "id": "X-Frame-Options", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -419151,7 +415540,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -419160,7 +415549,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -419169,7 +415558,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -419178,7 +415567,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -419187,7 +415576,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -419195,7 +415584,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -419204,7 +415593,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -419213,7 +415602,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -419222,7 +415611,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -419231,14 +415620,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -419247,7 +415636,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -419256,7 +415645,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -419265,16 +415654,16 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9D63E3619FFC5DE1AD1EDBBD4FB56CB2651BBB052C8F2F5901B378898C92CD7B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -419283,7 +415672,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -419292,7 +415681,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -419301,7 +415690,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -419310,7 +415699,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -419319,7 +415708,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -419328,1050 +415717,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/148.253.75.120", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "cje.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "INFO", - "finding": "387" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 16:30:52 GMT", - "etag": "\"wvqibtplxg13ga\"", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Accept-Encoding", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "cje.beta.gouv.fr", - "ip": "109.232.233.130", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://cje.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://cje.beta.gouv.fr/ (https://cje.beta.gouv.fr/)" - } - }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://cje.beta.gouv.fr/", - "finalUrl": "https://cje.fabrique.social.gouv.fr/", - "fetchTime": "2024-11-24T16:25:28.615Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://cje.beta.gouv.fr/) was redirected to https://cje.fabrique.social.gouv.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.31 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.84 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.9 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 10544, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1907, - "firstMeaningfulPaint": 1907, - "largestContentfulPaint": 10798, - "interactive": 10544, - "speedIndex": 13681, - "totalBlockingTime": 1362, - "maxPotentialFID": 800, - "cumulativeLayoutShift": 0.04790828895568847, - "cumulativeLayoutShiftMainFrame": 0.04790828895568847, - "totalCumulativeLayoutShift": 0.04790828895568847, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 514472115, - "observedNavigationStart": 0, - "observedNavigationStartTs": 514472115, - "observedFirstPaint": 1631, - "observedFirstPaintTs": 516103522, - "observedFirstContentfulPaint": 1631, - "observedFirstContentfulPaintTs": 516103522, - "observedFirstContentfulPaintAllFrames": 1631, - "observedFirstContentfulPaintAllFramesTs": 516103522, - "observedFirstMeaningfulPaint": 1631, - "observedFirstMeaningfulPaintTs": 516103522, - "observedLargestContentfulPaint": 2927, - "observedLargestContentfulPaintTs": 517399225, - "observedLargestContentfulPaintAllFrames": 2927, - "observedLargestContentfulPaintAllFramesTs": 517399225, - "observedTraceEnd": 7516, - "observedTraceEndTs": 521988282, - "observedLoad": 2338, - "observedLoadTs": 516809991, - "observedDomContentLoaded": 2306, - "observedDomContentLoadedTs": 516778168, - "observedCumulativeLayoutShift": 0.04790828895568847, - "observedCumulativeLayoutShiftMainFrame": 0.04790828895568847, - "observedTotalCumulativeLayoutShift": 0.04790828895568847, - "observedFirstVisualChange": 1640, - "observedFirstVisualChangeTs": 516112115, - "observedLastVisualChange": 4340, - "observedLastVisualChangeTs": 518812115, - "observedSpeedIndex": 3132, - "observedSpeedIndexTs": 517603628 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 62, - "numScripts": 19, - "numStylesheets": 2, - "numFonts": 6, - "numTasks": 3117, - "numTasksOver10ms": 13, - "numTasksOver25ms": 5, - "numTasksOver50ms": 4, - "numTasksOver100ms": 2, - "numTasksOver500ms": 0, - "rtt": 144.319, - "throughput": 77599678.13775596, - "maxRtt": 152.515, - "maxServerLatency": 289.02700000000004, - "totalByteWeight": 20445054, - "totalTaskTime": 1418.524000000009, - "mainDocumentTransferSize": 10574 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://cje.beta.gouv.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 4, - "score": 1, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://cje.beta.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "pass.engagement.jeune", - "type": "startup", - "attributes": { - "name": "Carte jeune engagé", - "pitch": "Une carte pour les jeunes engagés dans un parcours d'insertion avec des avantages sur des biens et services essentiels ", - "stats_url": "https://metabase-carte-jeune-engage.fabrique.social.gouv.fr/public/dashboard/9d6a663b-99f2-47eb-ba55-be238909b1ba", - "link": "https://cje.fabrique.social.gouv.fr/", - "contact": "alameen.abdul@fabrique.social.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ALes%20programmes%20de%20r%C3%A9ductions%20et%20de%20tarifications%20avantageuses%20propos%C3%A9s%20pour%20les%20%C3%A9tudiants%20rencontrent%20un%20franc%20succ%C3%A8s%20aupr%C3%A8s%20des%20jeunes.%20%0A%0AEn%20France%2C%20pr%C3%A8s%20d%E2%80%991%20%C3%A9tudiant%20sur%203%20est%20inscrit%20sur%20une%20application%20de%20r%C3%A9ductions%20exclusives.%20Pourtant%20en%20France%2C%20parmi%20les%20jeunes%20de%2018%20%C3%A0%2025%20ans%20ce%20sont%206%20jeunes%20sur%2010%20qui%20n%E2%80%99ont%20pas%20le%20statut%20%C3%A9tudiant%2C%20et%20qui%20sont%20donc%20exclus%20de%20ces%20avantages%20mis%20en%20place%20par%20les%20acteurs%20priv%C3%A9s.%0A%0ALa%20carte%20%E2%80%9Cjeune%20engag%C3%A9%E2%80%9D%20est%20une%20initiative%20visant%20%C3%A0%20r%C3%A9tablir%20l%27%C3%A9quilibre%20des%20avantages%20dont%20peuvent%20b%C3%A9n%C3%A9ficier%20tous%20les%20jeunes%20%C3%A2g%C3%A9s%20de%2018%20%C3%A0%2025%20ans%2C%20qu%27ils%20soient%20%C3%A9tudiants%2C%20en%20formation%2C%20engag%C3%A9s%20en%20service%20civique%20ou%20en%20insertion%20professionnelle.%0A%20%0A%23%23%20Solution%0A%0ALa%20carte%20%E2%80%9Cjeune%20engag%C3%A9%E2%80%9D%20permettra%20aux%20jeunes%20en%20insertion%20d%E2%80%99acc%C3%A9der%20%C3%A0%20des%20biens%20et%20services%20essentiels%20%C3%A0%20un%20tarif%20remis%C3%A9%20n%C3%A9goci%C3%A9%20de%20mani%C3%A8re%20in%C3%A9dite%20avec%20des%20entreprises%20partenaires.%0AUne%20seule%20application%20permettra%20aux%20jeunes%20de%20retrouver%20l%E2%80%99ensemble%20des%20offres%20des%20entreprises%20engag%C3%A9es%20partenaires%20et%20d%E2%80%99utiliser%20les%20r%C3%A9ductions%20au%20moment%20du%20paiement%20que%20ce%20soit%20en%20ligne%20ou%20en%20magasin.%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%2AT4%202023%2A%2A%0A%2A%20Analyse%20des%20besoins%20aupr%C3%A8s%20des%20jeunes%20en%20insertion%0A%2A%20Conception%20et%20confirmation%20d%E2%80%99une%20solution%20MVP%20avec%20une%20strat%C3%A9gie%20de%20tests%20avec%20des%20jeunes%20de%20la%20cible%0A%0A%2A%2AT1%202024%2A%2A%0A%2A%20D%C3%A9veloppement%20fonctionnel%20du%20MVP%0A%2A%20Co-construction%20des%20processus%20de%20cr%C3%A9ation%2C%20de%20diffusion%20et%20d%E2%80%99utilisation%20des%20r%C3%A9ductions%20et%20offres%20avec%20les%20entreprises%20partenaires%20qui%20les%20proposent%0A%2A%20Co-construction%20de%20la%20phase%20d%E2%80%99exp%C3%A9rimentation%20avec%20les%20travailleurs%20sociaux%20du%20service%20public%20%C3%A0%20l%E2%80%99emploi%20pour%20cibler%20les%20jeune%20du%20CEJ%20%28France%20Travail%20et%20Mission%20locale%29%0A%2A%20Lancement%20du%20MVP%20en%20phase%20d%E2%80%99exp%C3%A9rimentation%20sur%20le%20territoire%20de%20l%E2%80%99Est%20du%20Val%20d%E2%80%99Oise.%0A%0A%2A%2AMars%20-%20juin%202024%2A%2A%0A%2A%20Analyse%20et%20it%C3%A9rations%20en%20fonction%20des%20indicateurs%20d%E2%80%99usage%20et%20des%20indicateurs%20d%E2%80%99impact%20sur%20le%20nombres%20de%20r%C3%A9ductions%20utilis%C3%A9es%20par%20les%20jeunes%20et%20le%20montant%20%C3%A9conomis%C3%A9%20en%20euros%60%0A%0A%2A%2A%C3%80%20partir%20de%20juin%202024%2A%2A%0A%2A%20Pr%C3%A9sentation%20des%20analyses%20des%20r%C3%A9sultats%20de%20la%20phase%20exp%C3%A9rimentation%20au%20comit%C3%A9%0Ad%E2%80%99investissement%0A%2A%20Selon%20les%20d%C3%A9cisions%20du%20comit%C3%A9%2C%20d%C3%A9ploiement%20progressif%20du%20service%20sur%20l%E2%80%99ensemble%20du%20territoire%0Aet%20pour%20l%E2%80%99ensemble%20des%20jeunes%20en%20insertion%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2022-05-15", - "end": "2022-11-08" - }, - { - "name": "construction", - "start": "2023-12-15", - "end": "" - } - ], - "sponsors": [ - "mtei" - ], - "thematiques": [ - "Jeunesse", - "Social", - "Travail / Emploi" - ], - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "sgmas" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://cje.beta.gouv.fr", - "size": 23958.458, - "nodes": 532, - "requests": 65, - "grade": "D", - "score": 48, - "ges": 2.04, - "water": 3.06, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:22:22.198519", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C-", - "apdex": 0.992, - "apdexGrade": "A", - "uptime": 99.978, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-11T12:39:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.31, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.84, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.9, - "lighthouse_pwaGrade": "A", - "statsGrade": "A", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "D", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "D", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://aplypro.beta.gouv.fr", - "category": "dinum", - "betaId": "valorisation.des.stages.pro", - "http": { - "url": "https://aplypro.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:30:53 GMT", - "grade": "C+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 12:30:52 GMT", - "Transfer-Encoding": "chunked", - "X-Request-ID": "90341dcc-c74d-4215-afc3-7c1f2ec3f688, 90341dcc-c74d-4215-afc3-7c1f2ec3f688", - "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"fc5ea3140a235cbfc8afadfdc3dc2586\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_aplypro_session=Pjnzmeskx6%2BXMPrqR2QLf4QjQ%2FM0AskWkSQsk481IunRhMt%2BGf6NwPXy4Kbk4obFx7ZtdY2PR13jPtNhLcCp66vEx03eGxOVFVc%2F2kB5XFSxSc5TR86Gqf2ED9JY%2FPhJfCCeJj15oyS13QD7PlEseYU8jcwt%2BWfu36BXS4vintif4GqpaQNjwG1HG7cpUx8Yl7Qy%2Ff%2FHH2UwdFp58Fy0lqx8apveCg6AC2cDpsHw%2Fw6pJLZM2L0YwPBB%2BZ%2Bpbie2kIAqtJPhUtQIOIIlRBQhwv9xmTlf9cqA--%2BWV0mE7Sgwo8xiYV--V06vOnZyGPmNv8xRCbXgfg%3D%3D; path=/; httponly; samesite=lax", - "strict-transport-security": "max-age=31536000", - "vary": "Accept", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-runtime": "0.006903", - "x-xss-protection": "0" - }, - "scan_id": 57063475, - "score": 60, - "start_time": "Sun, 20 Oct 2024 12:30:51 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_aplypro_session": { - "domain": "aplypro.beta.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": false - } - }, - "sameSite": null - }, - "pass": false, - "result": "cookies-session-without-secure-flag-but-protected-by-hsts", - "score_description": "Session cookie set without the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -10 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://aplypro.beta.gouv.fr/login", - "redirects": true, - "route": [ - "http://aplypro.beta.gouv.fr/", - "https://aplypro.beta.gouv.fr/", - "https://aplypro.beta.gouv.fr/login" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://ga.jspm.io/npm:es-module-shims@1.10.0/dist/es-module-shims.js": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "jyjc", - "url": "https://aplypro.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.077, - "down": false, - "down_since": null, - "up_since": "2024-11-23T20:26:01Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:34:52Z", - "next_check_at": "2024-11-24T16:35:51Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://aplypro.beta.gouv.fr/assets/favicon/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:31:52Z", - "expires_at": "2025-01-24T11:50:37Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.997, - "timings": { - "redirect": 580, - "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 155, - "total": 735 - } + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "aplypro.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420379,7 +416110,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420387,7 +416118,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420395,7 +416126,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420403,7 +416134,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -420411,7 +416142,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -420419,483 +416150,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-10-26 11:50" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-24 11:50" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732465903" + "finding": "1733071343" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -420903,7 +416634,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -420912,7 +416643,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -420921,7 +416652,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -420930,7 +416661,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -420939,7 +416670,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -420947,7 +416678,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -420956,7 +416687,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -420965,7 +416696,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -420974,7 +416705,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -420983,14 +416714,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -420999,7 +416730,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -421008,7 +416739,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421017,7 +416748,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421026,7 +416757,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421035,7 +416766,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421044,7 +416775,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -421053,7 +416784,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -421062,7 +416793,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -421071,7 +416802,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -421080,392 +416811,1307 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { - "id": "service", + "id": "scanTime", "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", + "finding": "386" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://ga.jspm.io/npm:es-module-shims@1.10.0/dist/es-module-shims.js" + } + ], + "cookies": [ + { + "name": "_pk_ses.27.0c8d", + "value": "1", + "domain": "aplypro.beta.gouv.fr", + "path": "/", + "expires": 1733072746, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.27.0c8d", + "value": "aa7a8485bf2607ca.1733070946.", + "domain": "aplypro.beta.gouv.fr", + "path": "/", + "expires": 1767026146, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_aplypro_session", + "value": "MqcQhyrb2mmweg5WQt6nyCrTnREm5Bj50V5W9EAV%2Fucx%2FqmYMpH%2BbieqH27RfLwUg6QMtjvLYUx2b0fsDKuTkpf%2FVnBucvTj4OjsqieJU7M1HF8HiP1zHOphE6ni2i29YMOb2jgGvXlekrw6e41QMRPdunyUvM3NFjeUzYl30xrBrC816En9QrTEYEP4mcqy09tWYBHetR044rjgqnnkFeSRBsJ9UF%2FaMkRQ2SqSQdOzGZr3ggAwCeKu9mdwfniUTONn%2BTfTq4YqREr7n%2F0EkW3cnXZjsdvM--Lnd4GNTG41aCj1YT--FmvH6RDlnQrNa6BDkq3zog%3D%3D", + "domain": "aplypro.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 366, + "httpOnly": true, + "secure": false, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 16:35:43 GMT", + "etag": "W/\"c73cd743126adac152ab480f1a5b685f\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_aplypro_session=MqcQhyrb2mmweg5WQt6nyCrTnREm5Bj50V5W9EAV%2Fucx%2FqmYMpH%2BbieqH27RfLwUg6QMtjvLYUx2b0fsDKuTkpf%2FVnBucvTj4OjsqieJU7M1HF8HiP1zHOphE6ni2i29YMOb2jgGvXlekrw6e41QMRPdunyUvM3NFjeUzYl30xrBrC816En9QrTEYEP4mcqy09tWYBHetR044rjgqnnkFeSRBsJ9UF%2FaMkRQ2SqSQdOzGZr3ggAwCeKu9mdwfniUTONn%2BTfTq4YqREr7n%2F0EkW3cnXZjsdvM--Lnd4GNTG41aCj1YT--FmvH6RDlnQrNa6BDkq3zog%3D%3D; path=/; httponly; samesite=lax", + "strict-transport-security": "max-age=31536000", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "44ffca9d-38ee-4eaa-88fa-8d0895f5154d\n44ffca9d-38ee-4eaa-88fa-8d0895f5154d", + "x-runtime": "0.008489", + "x-xss-protection": "0" + }, + "endpoints": [ + { + "hostname": "aplypro.beta.gouv.fr", + "ip": "185.21.194.105", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "ga.jspm.io", + "ip": "205.234.175.175", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://aplypro.beta.gouv.fr/": { + "status": 302 + }, + "https://aplypro.beta.gouv.fr/login": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 50, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 50, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://aplypro.beta.gouv.fr/", + "finalUrl": "https://aplypro.beta.gouv.fr/login", + "fetchTime": "2024-12-01T16:35:15.982Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://aplypro.beta.gouv.fr/) was redirected to https://aplypro.beta.gouv.fr/login. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.85 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.89 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.77 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 6245, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2472, + "firstMeaningfulPaint": 2472, + "largestContentfulPaint": 3204, + "interactive": 6245, + "speedIndex": 3221, + "totalBlockingTime": 65, + "maxPotentialFID": 112, + "cumulativeLayoutShift": 0.017945624457465278, + "cumulativeLayoutShiftMainFrame": 0.017945624457465278, + "totalCumulativeLayoutShift": 0.017945624457465278, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 448571366, + "observedNavigationStart": 0, + "observedNavigationStartTs": 448571366, + "observedFirstPaint": 1312, + "observedFirstPaintTs": 449882916, + "observedFirstContentfulPaint": 1312, + "observedFirstContentfulPaintTs": 449882916, + "observedFirstContentfulPaintAllFrames": 1312, + "observedFirstContentfulPaintAllFramesTs": 449882916, + "observedFirstMeaningfulPaint": 1312, + "observedFirstMeaningfulPaintTs": 449882916, + "observedLargestContentfulPaint": 1312, + "observedLargestContentfulPaintTs": 449882916, + "observedLargestContentfulPaintAllFrames": 1312, + "observedLargestContentfulPaintAllFramesTs": 449882916, + "observedTraceEnd": 4567, + "observedTraceEndTs": 453138464, + "observedLoad": 2099, + "observedLoadTs": 450670002, + "observedDomContentLoaded": 1429, + "observedDomContentLoadedTs": 450000551, + "observedCumulativeLayoutShift": 0.017945624457465278, + "observedCumulativeLayoutShiftMainFrame": 0.017945624457465278, + "observedTotalCumulativeLayoutShift": 0.017945624457465278, + "observedFirstVisualChange": 1310, + "observedFirstVisualChangeTs": 449881366, + "observedLastVisualChange": 1910, + "observedLastVisualChangeTs": 450481366, + "observedSpeedIndex": 1332, + "observedSpeedIndexTs": 449903170 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 46, + "numScripts": 22, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 1147, + "numTasksOver10ms": 9, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 8.174, + "throughput": 5983746.4376615025, + "maxRtt": 155.954, + "maxServerLatency": 120.999, + "totalByteWeight": 707943, + "totalTaskTime": 321.5049999999976, + "mainDocumentTransferSize": 6091 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://aplypro.beta.gouv.fr/accessibility" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 0, + "missingWords": [ + "directeur (ou) directrice", + "publication", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://aplypro.beta.gouv.fr/legal" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 3, + "missingWords": [ + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://aplypro.beta.gouv.fr/legal" + } + ], + "betagouv": { + "id": "valorisation.des.stages.pro", + "type": "startup", + "attributes": { + "name": "APLyPro", + "pitch": "Valoriser les périodes de formation en milieu professionnel (PFMP) réalisées par les lycéens et lycéennes pro.", + "stats_url": "https://aplypro.beta.gouv.fr/stats", + "link": "https://aplypro.beta.gouv.fr/", + "repository": "https://github.com/betagouv/aplypro", + "contact": "aplypro@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%27une%20des%20volont%C3%A9s%20affirm%C3%A9es%20par%20le%20Pr%C3%A9sident%20de%20la%20R%C3%A9publique%20pour%20son%20deuxi%C3%A8me%20quinquennat%20est%20de%20transformer%20de%20mani%C3%A8re%20profonde%20les%20lyc%C3%A9es%20professionnels%2C%20notamment%20en%20r%C3%A9mun%C3%A9rant%20toutes%20les%20p%C3%A9riodes%20de%20stage%20en%20entreprise%20effectu%C3%A9es%20par%20les%20%C3%A9l%C3%A8ves.%0A%0ACela%20permettrait%20de%20mieux%20de%20pr%C3%A9parer%20les%20jeunes%20au%20monde%20de%20l%27entreprise%20et%20de%20faire%20converger%20l%27ensemble%20des%20voies%20professionnelles.%0A%0A%23%23%20Probl%C3%A8me%0A%0AActuellement%2C%20seules%20les%20p%C3%A9riodes%20de%20stages%20d%C3%A9passant%20une%20dur%C3%A9e%20de%20deux%20mois%20sont%20r%C3%A9mun%C3%A9r%C3%A9es.%20Aucune%20aide%20n%27est%20vers%C3%A9e%20aux%20lyc%C3%A9ens%20et%20lyc%C3%A9ennes%20pro%20qui%20effectuent%20des%20p%C3%A9riodes%20de%20stages%20plus%20courtes.%0A%0A%23%23%20Solution%0A%0AFournir%20une%20plateforme%20qui%20permet%20aux%20%C3%A9tablissements%20de%20renseigner%20la%20dur%C3%A9e%20effective%20des%20stages%2C%20les%20coordonn%C3%A9es%20bancaires%20des%20%C3%A9l%C3%A8ves%20et%20de%20g%C3%A9n%C3%A9rer%20les%20d%C3%A9cisions%20d%27attribution%20%28%3D%20document%20annuel%20ouvrant%20les%20droits%20de%20l%27%C3%A9l%C3%A8ve%20%C3%A0%20son%20allocation%20et%20l%27informant%20sur%20les%20modalit%C3%A9s%20de%20calcul%20et%20plafond%20de%20montant%29.%20APLyPro%20peut%20ainsi%20calculer%20le%20montant%20%C3%A0%20verser%20%C3%A0%20chaque%20%C3%A9l%C3%A8ve%20et%20transmettre%20les%20donn%C3%A9es%20n%C3%A9cessaires%20%C3%A0%20l%27Agence%20de%20services%20et%20de%20paiement%20%28ASP%29%20pour%20le%20versement.%0A%0ALe%20p%C3%A9rim%C3%A8tre%20du%20%22produit%20minimum%20viable%22%20en%20vue%20du%20lancement%20d%27APLyPro%20%28rentr%C3%A9e%202023%29%20est%20pr%C3%A9sent%C3%A9%20sur%20le%20sch%C3%A9ma%20ci-dessous.%20Les%20versements%20interviendront%20%C3%A0%20compter%20de%202024%20%28budget%20pr%C3%A9vu%20par%20le%20projet%20de%20loi%20finances%20pour%202024%29.%0A%0A%21%5BSch%C3%A9ma%20pr%C3%A9sentant%20l%27architecture%20fonctionnelle%20du%20Produit%20minimum%20viable%20en%20vue%20du%20lancement%20national%5D%28https%3A%2F%2Fstorage.gra.cloud.ovh.net%2Fv1%2FAUTH_0f20d409cb2a4c9786c769e2edec0e06%2Fpadnumerique%2Fuploads%2F7940ba08-8042-496a-9f48-e66b69776f9d.jpg%20%22Sch%C3%A9ma%20d%27architecture%20fonctionnelle%22%29%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%20mars%20%C3%A0%20octobre%202023%20%3A%20d%C3%A9veloppement%20d%27APLyPro%20%22produit%20minimum%20viable%22%0A%2A%20octobre%202023%20%3A%20lancement%20aupr%C3%A8s%20de%2040%20%C3%A9tablissements%20pilotes%0A%2A%20novembre%202023%20%3A%20lancement%20%C3%A0%20l%27%C3%A9chelle%20nationale%0A%2A%20novembre%20%C3%A0%20d%C3%A9cembre%202023%20%3A%20d%C3%A9veloppement%20du%20syst%C3%A8me%20d%27envoi%20en%20paiement%0A%2A%20%EF%BB%BFjanvier%202024%20%3A%20premiers%20versements%20aux%20%C3%A9l%C3%A8ves%0A%2A%20juin%202024%20%3A%20internalisation%20du%20produit%20par%20la%20Direction%20du%20num%C3%A9rique%20pour%20l%27%C3%A9ducation%20%28DNE%29%0A", + "events": [ + { + "name": "committee", + "date": "2023-02-03", + "comment": "Comité de fin d'investigation" + }, + { + "name": "other", + "date": "2023-08-11", + "comment": "Publication du décret n° 2023-765 relatif au versement d’une allocation en faveur des lycéens de la voie professionnelle dans le cadre de la valorisation des périodes de formation en milieu professionnel ainsi que de l’arrêté déterminant les montants et les conditions de versement de l’allocation aux lycéens de la voie professionnelle engagés dans des périodes de formation en milieu professionnel" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2022-09-21", + "end": "2023-03-01" + }, + { + "name": "construction", + "start": "2023-03-01", + "end": "" + }, + { + "name": "alumni", + "start": "2024-07-01", + "end": "" + } + ], + "sponsors": [ + "dgesco" + ], + "thematiques": [ + "Formation" + ], + "analyse_risques": "true", + "analyse_risques_url": "https://pad.numerique.gouv.fr/PN0XQ98MQSWDMyhAS_dE6g", + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://aplypro.beta.gouv.fr", + "size": 734.1, + "nodes": 153, + "requests": 31, + "grade": "A", + "score": 82, + "ges": 1.36, + "water": 2.04, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:32:01.079333", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "C+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.127, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-24T11:50:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.85, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.89, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.77, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "A", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "category": "lab-innov-anssi", + "betaId": "MonAideCyber", + "http": { + "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:34:18 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Cache-Control": "public, max-age=0", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 12:34:17 GMT", + "ETag": "W/\"422-1929b31dbc8\"", + "Last-Modified": "Thu, 17 Oct 2024 15:56:29 GMT", + "RateLimit-Limit": "100", + "RateLimit-Remaining": "98", + "RateLimit-Reset": "26", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-Request-ID": "ac2628e0-c886-45d5-902c-a8cb2de87164" + }, + "scan_id": 57063494, + "score": 110, + "start_time": "Sun, 20 Oct 2024 12:34:16 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://stats.beta.gouv.fr", + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'none'" + ], + "frame-src": [ + "https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io", + "'self'" + ], + "img-src": [ + "data:", + "https", + "'self'" + ], + "manifest-src": [ + "'self'" + ], + "media-src": [ + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'report-sample'", + "https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/", + "https://stats.beta.gouv.fr/matomo.js", + "'self'", + "https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js" + ], + "style-src": [ + "'report-sample'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "redirects": true, + "route": [ + "http://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "nicu", + "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "alias": null, + "last_status": 200, + "uptime": 99.995, + "down": false, + "down_since": null, + "up_since": "2024-11-28T21:59:57Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:42:22Z", + "next_check_at": "2024-12-01T16:43:21Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:40:22Z", + "expires_at": "2025-01-12T23:59:59Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 10, + "connection": 120, + "handshake": 124, + "response": 125, + "total": 380 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421473,7 +418119,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421481,7 +418127,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421489,7 +418135,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421497,7 +418143,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421505,7 +418151,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421513,483 +418159,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-26 11:50" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "2025-01-24 11:50" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732465954" + "finding": "1733071139" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "id": "Content-Security-Policy", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "OK", + "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -421997,7 +418636,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -422006,7 +418645,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -422015,7 +418654,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -422024,7 +418663,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -422033,7 +418672,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -422041,7 +418680,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -422050,7 +418689,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -422059,16 +418698,16 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -422077,14 +418716,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -422093,7 +418732,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -422102,7 +418741,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -422111,16 +418750,16 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -422129,7 +418768,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -422138,7 +418777,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -422147,7 +418786,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -422156,7 +418795,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -422165,7 +418804,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -422174,392 +418813,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422567,7 +419206,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422575,7 +419214,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422583,7 +419222,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422591,7 +419230,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -422599,7 +419238,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -422607,483 +419246,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-26 11:50" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "2025-01-24 11:50" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732466004" + "finding": "1733071194" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "id": "Content-Security-Policy", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "OK", + "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -423091,7 +419723,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -423100,7 +419732,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -423109,7 +419741,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -423118,7 +419750,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -423127,7 +419759,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -423135,7 +419767,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -423144,7 +419776,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -423153,16 +419785,16 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -423171,14 +419803,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -423187,7 +419819,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -423196,7 +419828,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -423205,16 +419837,16 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -423223,7 +419855,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -423232,7 +419864,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -423241,7 +419873,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -423250,7 +419882,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -423259,7 +419891,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -423268,392 +419900,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423661,7 +420293,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423669,7 +420301,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423677,7 +420309,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423685,7 +420317,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -423693,7 +420325,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -423701,483 +420333,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-26 11:50" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "2025-01-24 11:50" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732466053" + "finding": "1733071251" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "id": "Content-Security-Policy", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" + "severity": "OK", + "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no-cache" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -424185,7 +420810,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -424194,7 +420819,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -424203,7 +420828,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -424212,7 +420837,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -424221,7 +420846,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -424229,7 +420854,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -424238,7 +420863,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -424247,16 +420872,16 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -424265,14 +420890,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -424281,7 +420906,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -424290,7 +420915,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -424299,16 +420924,16 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4374B40BCE3C1EB919BC53B5A74CCD359309842AA50C1253F8549ACC7DCA8357" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -424317,7 +420942,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -424326,7 +420951,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -424335,7 +420960,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -424344,7 +420969,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -424353,7 +420978,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -424362,1307 +420987,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "203" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://ga.jspm.io/npm:es-module-shims@1.10.0/dist/es-module-shims.js" - } - ], - "cookies": [ - { - "name": "_pk_ses.27.0c8d", - "value": "1", - "domain": "aplypro.beta.gouv.fr", - "path": "/", - "expires": 1732467631, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.27.0c8d", - "value": "4f755edb43e65711.1732465832.", - "domain": "aplypro.beta.gouv.fr", - "path": "/", - "expires": 1766421032, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_aplypro_session", - "value": "r9RhN0qnPTnx34S%2Bl1gsg%2BvJjaz%2FamXISOa%2FIdDMOQxVkL3sl4BdsqzXjDUg3aF7IkBEbxO4ogqWdYtDvysAkpbFBaEvM5%2FVZO%2BEfYudDHq5Ak8vdbRd8uIbEdB6vdyd%2B%2BMpfp89a8RsRYXNctMdTmvLVfU%2BjIoSjub1fXAKnDC220OmYomJSIAgKP5uFksdhslgOjFRmYt2EVxFDhgJfy2duyG9oD%2FtkU7rtpnoU8T15d0m3vGVdK7vq1GIYWKNDpXdKs1YLEJUyjFU7S%2Bqg9QtZoChcc9U--%2BO31VOnVwMbe2GQu--qaSGi7I3MuN62CFM23wp5A%3D%3D", - "domain": "aplypro.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 376, - "httpOnly": true, - "secure": false, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 16:30:30 GMT", - "etag": "W/\"3c1efbe6835436b0182ef6fd75012218\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_aplypro_session=r9RhN0qnPTnx34S%2Bl1gsg%2BvJjaz%2FamXISOa%2FIdDMOQxVkL3sl4BdsqzXjDUg3aF7IkBEbxO4ogqWdYtDvysAkpbFBaEvM5%2FVZO%2BEfYudDHq5Ak8vdbRd8uIbEdB6vdyd%2B%2BMpfp89a8RsRYXNctMdTmvLVfU%2BjIoSjub1fXAKnDC220OmYomJSIAgKP5uFksdhslgOjFRmYt2EVxFDhgJfy2duyG9oD%2FtkU7rtpnoU8T15d0m3vGVdK7vq1GIYWKNDpXdKs1YLEJUyjFU7S%2Bqg9QtZoChcc9U--%2BO31VOnVwMbe2GQu--qaSGi7I3MuN62CFM23wp5A%3D%3D; path=/; httponly; samesite=lax", - "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "4b75c1e2-3b0a-470a-821c-c1122b1d1cff\n4b75c1e2-3b0a-470a-821c-c1122b1d1cff", - "x-runtime": "0.010715", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "aplypro.beta.gouv.fr", - "ip": "185.21.194.105", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "ga.jspm.io", - "ip": "205.234.175.175", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://aplypro.beta.gouv.fr/": { - "status": 302 - }, - "https://aplypro.beta.gouv.fr/login": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "ruby", - "name": "Ruby", - "description": "Ruby is an open-source object-oriented programming language.", - "confidence": 50, - "version": null, - "icon": "Ruby.png", - "website": "https://ruby-lang.org", - "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ruby-on-rails", - "name": "Ruby on Rails", - "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", - "confidence": 50, - "version": null, - "icon": "Ruby on Rails.svg", - "website": "https://rubyonrails.org", - "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://aplypro.beta.gouv.fr/", - "finalUrl": "https://aplypro.beta.gouv.fr/login", - "fetchTime": "2024-11-24T16:30:03.776Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://aplypro.beta.gouv.fr/) was redirected to https://aplypro.beta.gouv.fr/login. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.85 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.89 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.77 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 5765, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2570, - "firstMeaningfulPaint": 2797, - "largestContentfulPaint": 3137, - "interactive": 5765, - "speedIndex": 2570, - "totalBlockingTime": 132, - "maxPotentialFID": 133, - "cumulativeLayoutShift": 0.015834730360243056, - "cumulativeLayoutShiftMainFrame": 0.015834730360243056, - "totalCumulativeLayoutShift": 0.015834730360243056, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 386685771, - "observedNavigationStart": 0, - "observedNavigationStartTs": 386685771, - "observedFirstPaint": 782, - "observedFirstPaintTs": 387468159, - "observedFirstContentfulPaint": 782, - "observedFirstContentfulPaintTs": 387468159, - "observedFirstContentfulPaintAllFrames": 782, - "observedFirstContentfulPaintAllFramesTs": 387468159, - "observedFirstMeaningfulPaint": 782, - "observedFirstMeaningfulPaintTs": 387468159, - "observedLargestContentfulPaint": 782, - "observedLargestContentfulPaintTs": 387468159, - "observedLargestContentfulPaintAllFrames": 782, - "observedLargestContentfulPaintAllFramesTs": 387468159, - "observedTraceEnd": 3621, - "observedTraceEndTs": 390306658, - "observedLoad": 1227, - "observedLoadTs": 387912657, - "observedDomContentLoaded": 747, - "observedDomContentLoadedTs": 387433014, - "observedCumulativeLayoutShift": 0.015834730360243056, - "observedCumulativeLayoutShiftMainFrame": 0.015834730360243056, - "observedTotalCumulativeLayoutShift": 0.015834730360243056, - "observedFirstVisualChange": 782, - "observedFirstVisualChangeTs": 387467771, - "observedLastVisualChange": 1382, - "observedLastVisualChangeTs": 388067771, - "observedSpeedIndex": 800, - "observedSpeedIndexTs": 387485667 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 46, - "numScripts": 22, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 1080, - "numTasksOver10ms": 9, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 5.0520000000000005, - "throughput": 10817533.534606617, - "maxRtt": 86.49600000000001, - "maxServerLatency": 3.8600000000000136, - "totalByteWeight": 708015, - "totalTaskTime": 309.79099999999784, - "mainDocumentTransferSize": 6090 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://aplypro.beta.gouv.fr/accessibility" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://aplypro.beta.gouv.fr/legal" - }, - { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 3, - "missingWords": [ - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://aplypro.beta.gouv.fr/legal" - } - ], - "betagouv": { - "id": "valorisation.des.stages.pro", - "type": "startup", - "attributes": { - "name": "APLyPro", - "pitch": "Valoriser les périodes de formation en milieu professionnel (PFMP) réalisées par les lycéens et lycéennes pro.", - "stats_url": "https://aplypro.beta.gouv.fr/stats", - "link": "https://aplypro.beta.gouv.fr/", - "repository": "https://github.com/betagouv/aplypro", - "contact": "aplypro@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%27une%20des%20volont%C3%A9s%20affirm%C3%A9es%20par%20le%20Pr%C3%A9sident%20de%20la%20R%C3%A9publique%20pour%20son%20deuxi%C3%A8me%20quinquennat%20est%20de%20transformer%20de%20mani%C3%A8re%20profonde%20les%20lyc%C3%A9es%20professionnels%2C%20notamment%20en%20r%C3%A9mun%C3%A9rant%20toutes%20les%20p%C3%A9riodes%20de%20stage%20en%20entreprise%20effectu%C3%A9es%20par%20les%20%C3%A9l%C3%A8ves.%0A%0ACela%20permettrait%20de%20mieux%20de%20pr%C3%A9parer%20les%20jeunes%20au%20monde%20de%20l%27entreprise%20et%20de%20faire%20converger%20l%27ensemble%20des%20voies%20professionnelles.%0A%0A%23%23%20Probl%C3%A8me%0A%0AActuellement%2C%20seules%20les%20p%C3%A9riodes%20de%20stages%20d%C3%A9passant%20une%20dur%C3%A9e%20de%20deux%20mois%20sont%20r%C3%A9mun%C3%A9r%C3%A9es.%20Aucune%20aide%20n%27est%20vers%C3%A9e%20aux%20lyc%C3%A9ens%20et%20lyc%C3%A9ennes%20pro%20qui%20effectuent%20des%20p%C3%A9riodes%20de%20stages%20plus%20courtes.%0A%0A%23%23%20Solution%0A%0AFournir%20une%20plateforme%20qui%20permet%20aux%20%C3%A9tablissements%20de%20renseigner%20la%20dur%C3%A9e%20effective%20des%20stages%2C%20les%20coordonn%C3%A9es%20bancaires%20des%20%C3%A9l%C3%A8ves%20et%20de%20g%C3%A9n%C3%A9rer%20les%20d%C3%A9cisions%20d%27attribution%20%28%3D%20document%20annuel%20ouvrant%20les%20droits%20de%20l%27%C3%A9l%C3%A8ve%20%C3%A0%20son%20allocation%20et%20l%27informant%20sur%20les%20modalit%C3%A9s%20de%20calcul%20et%20plafond%20de%20montant%29.%20APLyPro%20peut%20ainsi%20calculer%20le%20montant%20%C3%A0%20verser%20%C3%A0%20chaque%20%C3%A9l%C3%A8ve%20et%20transmettre%20les%20donn%C3%A9es%20n%C3%A9cessaires%20%C3%A0%20l%27Agence%20de%20services%20et%20de%20paiement%20%28ASP%29%20pour%20le%20versement.%0A%0ALe%20p%C3%A9rim%C3%A8tre%20du%20%22produit%20minimum%20viable%22%20en%20vue%20du%20lancement%20d%27APLyPro%20%28rentr%C3%A9e%202023%29%20est%20pr%C3%A9sent%C3%A9%20sur%20le%20sch%C3%A9ma%20ci-dessous.%20Les%20versements%20interviendront%20%C3%A0%20compter%20de%202024%20%28budget%20pr%C3%A9vu%20par%20le%20projet%20de%20loi%20finances%20pour%202024%29.%0A%0A%21%5BSch%C3%A9ma%20pr%C3%A9sentant%20l%27architecture%20fonctionnelle%20du%20Produit%20minimum%20viable%20en%20vue%20du%20lancement%20national%5D%28https%3A%2F%2Fstorage.gra.cloud.ovh.net%2Fv1%2FAUTH_0f20d409cb2a4c9786c769e2edec0e06%2Fpadnumerique%2Fuploads%2F7940ba08-8042-496a-9f48-e66b69776f9d.jpg%20%22Sch%C3%A9ma%20d%27architecture%20fonctionnelle%22%29%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%20mars%20%C3%A0%20octobre%202023%20%3A%20d%C3%A9veloppement%20d%27APLyPro%20%22produit%20minimum%20viable%22%0A%2A%20octobre%202023%20%3A%20lancement%20aupr%C3%A8s%20de%2040%20%C3%A9tablissements%20pilotes%0A%2A%20novembre%202023%20%3A%20lancement%20%C3%A0%20l%27%C3%A9chelle%20nationale%0A%2A%20novembre%20%C3%A0%20d%C3%A9cembre%202023%20%3A%20d%C3%A9veloppement%20du%20syst%C3%A8me%20d%27envoi%20en%20paiement%0A%2A%20%EF%BB%BFjanvier%202024%20%3A%20premiers%20versements%20aux%20%C3%A9l%C3%A8ves%0A%2A%20juin%202024%20%3A%20internalisation%20du%20produit%20par%20la%20Direction%20du%20num%C3%A9rique%20pour%20l%27%C3%A9ducation%20%28DNE%29%0A", - "events": [ - { - "name": "committee", - "date": "2023-02-03", - "comment": "Comité de fin d'investigation" - }, - { - "name": "other", - "date": "2023-08-11", - "comment": "Publication du décret n° 2023-765 relatif au versement d’une allocation en faveur des lycéens de la voie professionnelle dans le cadre de la valorisation des périodes de formation en milieu professionnel ainsi que de l’arrêté déterminant les montants et les conditions de versement de l’allocation aux lycéens de la voie professionnelle engagés dans des périodes de formation en milieu professionnel" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2022-09-21", - "end": "2023-03-01" - }, - { - "name": "construction", - "start": "2023-03-01", - "end": "" - }, - { - "name": "alumni", - "start": "2024-07-01", - "end": "" - } - ], - "sponsors": [ - "dgesco" - ], - "thematiques": [ - "Formation" - ], - "analyse_risques": "true", - "analyse_risques_url": "https://pad.numerique.gouv.fr/PN0XQ98MQSWDMyhAS_dE6g", - "accessibility_status": "partiellement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://aplypro.beta.gouv.fr", - "size": 734.037, - "nodes": 153, - "requests": 31, - "grade": "A", - "score": 82, - "ges": 1.36, - "water": 2.04, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:27:06.015511", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "C+", - "apdex": 0.997, - "apdexGrade": "A", - "uptime": 99.077, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-24T11:50:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.85, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.89, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.77, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "A", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "category": "lab-innov-anssi", - "betaId": "MonAideCyber", - "http": { - "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:34:18 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Cache-Control": "public, max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 12:34:17 GMT", - "ETag": "W/\"422-1929b31dbc8\"", - "Last-Modified": "Thu, 17 Oct 2024 15:56:29 GMT", - "RateLimit-Limit": "100", - "RateLimit-Remaining": "98", - "RateLimit-Reset": "26", - "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", - "Transfer-Encoding": "chunked", - "X-Content-Type-Options": "nosniff", - "X-Request-ID": "ac2628e0-c886-45d5-902c-a8cb2de87164" - }, - "scan_id": 57063494, - "score": 110, - "start_time": "Sun, 20 Oct 2024 12:34:16 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://stats.beta.gouv.fr", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'none'" - ], - "frame-src": [ - "https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io", - "'self'" - ], - "img-src": [ - "data:", - "https", - "'self'" - ], - "manifest-src": [ - "'self'" - ], - "media-src": [ - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'report-sample'", - "https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/", - "https://stats.beta.gouv.fr/matomo.js", - "'self'", - "https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js" - ], - "style-src": [ - "'report-sample'", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-no-unsafe", - "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", - "score_modifier": 5 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "redirects": true, - "route": [ - "http://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 63072000, - "preload": true, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "nicu", - "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-22T14:21:37Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:39:26Z", - "next_check_at": "2024-11-24T16:40:26Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": null, - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:38:27Z", - "expires_at": "2025-01-12T23:59:59Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 10, - "connection": 138, - "handshake": 142, - "response": 141, - "total": 431 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425670,7 +421380,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425678,7 +421388,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425686,7 +421396,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425694,7 +421404,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425702,7 +421412,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425710,476 +421420,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732466182" + "finding": "1733071306" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" }, { "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -426187,7 +421897,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -426196,7 +421906,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -426205,7 +421915,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -426214,7 +421924,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -426223,7 +421933,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -426231,7 +421941,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -426240,7 +421950,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -426249,7 +421959,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -426258,7 +421968,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -426267,14 +421977,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -426283,7 +421993,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -426292,7 +422002,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426301,7 +422011,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426310,7 +422020,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426319,7 +422029,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426328,7 +422038,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -426337,7 +422047,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -426346,7 +422056,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -426355,7 +422065,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -426364,392 +422074,1161 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { - "id": "service", + "id": "scanTime", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", + "finding": "226" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "cache-control": "public, max-age=0", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 16:37:57 GMT", + "etag": "W/\"46f-193783061e8\"", + "last-modified": "Fri, 29 Nov 2024 13:50:57 GMT", + "ratelimit-limit": "100", + "ratelimit-remaining": "84", + "ratelimit-reset": "39", + "strict-transport-security": "max-age=63072000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-request-id": "fa8f8919-f116-4d28-a5e6-8f9ee748d7a7" + }, + "endpoints": [ + { + "hostname": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", + "ip": "80.247.13.145", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "finalUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "fetchTime": "2024-12-01T16:37:31.323Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.78 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.99 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 5194, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3387, + "firstMeaningfulPaint": 4137, + "largestContentfulPaint": 3677, + "interactive": 5194, + "speedIndex": 3633, + "totalBlockingTime": 135, + "maxPotentialFID": 158, + "cumulativeLayoutShift": 0.07112055460611978, + "cumulativeLayoutShiftMainFrame": 0.07112055460611978, + "totalCumulativeLayoutShift": 0.07112055460611978, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 411782964, + "observedNavigationStart": 0, + "observedNavigationStartTs": 411782964, + "observedFirstPaint": 880, + "observedFirstPaintTs": 412662794, + "observedFirstContentfulPaint": 880, + "observedFirstContentfulPaintTs": 412662794, + "observedFirstContentfulPaintAllFrames": 880, + "observedFirstContentfulPaintAllFramesTs": 412662794, + "observedFirstMeaningfulPaint": 1004, + "observedFirstMeaningfulPaintTs": 412787166, + "observedLargestContentfulPaint": 880, + "observedLargestContentfulPaintTs": 412662794, + "observedLargestContentfulPaintAllFrames": 880, + "observedLargestContentfulPaintAllFramesTs": 412662794, + "observedTraceEnd": 3576, + "observedTraceEndTs": 415359315, + "observedLoad": 797, + "observedLoadTs": 412579771, + "observedDomContentLoaded": 797, + "observedDomContentLoadedTs": 412579568, + "observedCumulativeLayoutShift": 0.07112055460611978, + "observedCumulativeLayoutShiftMainFrame": 0.07112055460611978, + "observedTotalCumulativeLayoutShift": 0.07112055460611978, + "observedFirstVisualChange": 883, + "observedFirstVisualChangeTs": 412665964, + "observedLastVisualChange": 1617, + "observedLastVisualChangeTs": 413399964, + "observedSpeedIndex": 923, + "observedSpeedIndexTs": 412706324 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 45, + "numScripts": 4, + "numStylesheets": 1, + "numFonts": 6, + "numTasks": 1543, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 81.789, + "throughput": 20286905.75912024, + "maxRtt": 87.70899999999999, + "maxServerLatency": 86.69599999999998, + "totalByteWeight": 1959644, + "totalTaskTime": 314.65399999999755, + "mainDocumentTransferSize": 1253 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/mentions-legales" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "size": 1993.951, + "nodes": 299, + "requests": 39, + "grade": "C", + "score": 69, + "ges": 1.62, + "water": 2.43, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:34:31.821423", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.995, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-12T23:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.78, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.99, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://vae.gouv.fr", + "category": "sgmas", + "betaId": "reva", + "repositories": [ + "SocialGouv/reva" + ], + "pages": [ + "/admin" + ], + "http": { + "url": "https://vae.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:46:27 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr 'unsafe-inline'; connect-src 'self' https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 12:46:26 GMT", + "Etag": "\"14fjck200doi0i\"", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Powered-By": "Next.js", + "X-Request-ID": "187c08c1-2f55-4619-a19d-0409e0c59c0d", + "strict-transport-security": "max-age=31536000" + }, + "scan_id": 57063713, + "score": 80, + "start_time": "Sun, 20 Oct 2024 12:46:24 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'none'" + ], + "connect-src": [ + "'self'", + "https://auth.vae.gouv.fr", + "https://strapi.vae.gouv.fr", + "https://api-adresse.data.gouv.fr", + "https://sessions.bugsnag.com", + "https://api.produktly.com", + "https://matomo.fabrique.social.gouv.fr" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "data:", + "'self'" + ], + "form-action": [ + "'none'" + ], + "frame-ancestors": [ + "'self'" + ], + "frame-src": [ + "https://plugins.crisp.chat", + "blob:", + "https://auth.vae.gouv.fr", + "'self'" + ], + "img-src": [ + "data:", + "https:", + "'self'" + ], + "media-src": [ + "https://dailymotion.com", + "https://healing-nature-bb0384846f.media.strapiapp.com", + "https://youtube.com", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'unsafe-inline'", + "'self'", + "https://static.userguiding.com", + "https://public.produktly.com", + "https://matomo.fabrique.social.gouv.fr" + ], + "style-src": [ + "'unsafe-inline'", + "'self'", + "https://static.userguiding.com", + "https://public.produktly.com", + "https://matomo.fabrique.social.gouv.fr" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": true, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://vae.gouv.fr/", + "redirects": true, + "route": [ + "http://vae.gouv.fr/", + "https://vae.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "ciqr", + "url": "https://vae.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T16:06:09Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:53:27Z", + "next_check_at": "2024-12-01T16:54:27Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": "https://vae.gouv.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:52:26Z", + "expires_at": "2025-01-12T07:22:40Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 245, + "connection": 122, + "handshake": 132, + "response": 127, + "total": 627 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "vae.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "vae.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426757,7 +423236,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426765,7 +423244,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426773,7 +423252,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426781,7 +423260,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426789,7 +423268,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426797,476 +423276,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-14 07:22" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-12 07:22" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732466235" + "finding": "1733071808" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "id": "X-Frame-Options", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "SAMEORIGIN" }, { - "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "id": "X-Content-Type-Options", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "id": "Content-Security-Policy", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "OK", + "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -427274,7 +423746,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -427283,7 +423755,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -427292,7 +423764,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -427301,7 +423773,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -427310,7 +423782,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -427318,7 +423790,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -427327,7 +423799,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -427336,16 +423808,16 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -427354,14 +423826,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -427370,7 +423842,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -427379,7 +423851,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -427388,16 +423860,16 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427406,7 +423878,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427415,7 +423887,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -427424,7 +423896,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -427433,7 +423905,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -427442,7 +423914,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -427451,392 +423923,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427844,7 +424316,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427852,7 +424324,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427860,7 +424332,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427868,7 +424340,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427876,7 +424348,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427884,476 +424356,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-14 07:22" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-12 07:22" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732466289" + "finding": "1733071869" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "id": "X-Frame-Options", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "SAMEORIGIN" }, { - "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "id": "X-Content-Type-Options", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "id": "Content-Security-Policy", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "OK", + "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -428361,7 +424826,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -428370,7 +424835,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -428379,7 +424844,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -428388,7 +424853,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -428397,7 +424862,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -428405,7 +424870,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -428414,7 +424879,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -428423,16 +424888,16 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -428441,14 +424906,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -428457,7 +424922,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -428466,7 +424931,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -428475,16 +424940,16 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -428493,7 +424958,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -428502,7 +424967,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -428511,7 +424976,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -428520,7 +424985,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -428529,7 +424994,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -428538,392 +425003,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428931,7 +425396,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428939,7 +425404,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428947,7 +425412,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428955,7 +425420,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -428963,7 +425428,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -428971,476 +425436,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-14 07:22" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-12 07:22" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732466342" + "finding": "1733071929" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "id": "X-Frame-Options", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "SAMEORIGIN" }, { - "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "id": "X-Content-Type-Options", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';" + "finding": "nosniff" }, { - "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "id": "Content-Security-Policy", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "OK", + "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -429448,7 +425906,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -429457,7 +425915,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -429466,7 +425924,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -429475,7 +425933,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -429484,7 +425942,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -429492,7 +425950,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -429501,7 +425959,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -429510,16 +425968,16 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -429528,14 +425986,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -429544,7 +426002,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -429553,7 +426011,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -429562,16 +426020,16 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -429580,7 +426038,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -429589,7 +426047,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -429598,7 +426056,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -429607,7 +426065,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -429616,7 +426074,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -429625,1192 +426083,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "217" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.116.e5db", - "value": "1", - "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "path": "/", - "expires": 1732467924, - "size": 17, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.116.e5db", - "value": "596dd6ef1a87d0e1.1732466124.", - "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "path": "/", - "expires": 1766421324, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "public, max-age=0", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' https://stats.beta.gouv.fr/matomo.js https://stats.beta.gouv.fr/js/container_5FRF0Y8m.js https://stats.beta.gouv.fr/plugins/HeatmapSessionRecording/; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' https://stats.beta.gouv.fr; font-src 'self'; frame-src 'self' https://anssi-mac-journal-prod.osc-secnum-fr1.scalingo.io; img-src 'self' data: https; manifest-src 'self'; media-src 'self'; frame-ancestors 'none'; form-action 'self';", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 16:35:22 GMT", - "etag": "W/\"46f-1934a95fd60\"", - "last-modified": "Wed, 20 Nov 2024 17:19:24 GMT", - "ratelimit-limit": "100", - "ratelimit-remaining": "85", - "ratelimit-reset": "91", - "strict-transport-security": "max-age=63072000; includeSubDomains; preload", - "x-content-type-options": "nosniff", - "x-request-id": "1c954537-15e4-4839-9f23-09723beb80cb" - }, - "endpoints": [ - { - "hostname": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "finalUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-11-24T16:34:58.054Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.79 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.99 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 5154, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3387, - "firstMeaningfulPaint": 4962, - "largestContentfulPaint": 3676, - "interactive": 5154, - "speedIndex": 3601, - "totalBlockingTime": 96, - "maxPotentialFID": 125, - "cumulativeLayoutShift": 0.07105160183376735, - "cumulativeLayoutShiftMainFrame": 0.07105160183376735, - "totalCumulativeLayoutShift": 0.07105160183376735, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 505745838, - "observedNavigationStart": 0, - "observedNavigationStartTs": 505745838, - "observedFirstPaint": 856, - "observedFirstPaintTs": 506602277, - "observedFirstContentfulPaint": 856, - "observedFirstContentfulPaintTs": 506602277, - "observedFirstContentfulPaintAllFrames": 856, - "observedFirstContentfulPaintAllFramesTs": 506602277, - "observedFirstMeaningfulPaint": 1065, - "observedFirstMeaningfulPaintTs": 506810338, - "observedLargestContentfulPaint": 856, - "observedLargestContentfulPaintTs": 506602277, - "observedLargestContentfulPaintAllFrames": 856, - "observedLargestContentfulPaintAllFramesTs": 506602277, - "observedTraceEnd": 3546, - "observedTraceEndTs": 509291921, - "observedLoad": 784, - "observedLoadTs": 506529739, - "observedDomContentLoaded": 784, - "observedDomContentLoadedTs": 506529552, - "observedCumulativeLayoutShift": 0.07105160183376735, - "observedCumulativeLayoutShiftMainFrame": 0.07105160183376735, - "observedTotalCumulativeLayoutShift": 0.07105160183376735, - "observedFirstVisualChange": 867, - "observedFirstVisualChangeTs": 506612838, - "observedLastVisualChange": 1683, - "observedLastVisualChangeTs": 507428838, - "observedSpeedIndex": 924, - "observedSpeedIndexTs": 506669399 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 45, - "numScripts": 4, - "numStylesheets": 1, - "numFonts": 6, - "numTasks": 1540, - "numTasksOver10ms": 5, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 81.514, - "throughput": 20523732.068462946, - "maxRtt": 87.033, - "maxServerLatency": 86.843, - "totalByteWeight": 1956729, - "totalTaskTime": 282.0969999999974, - "mainDocumentTransferSize": 1254 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/mentions-legales" - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "size": 1991.236, - "nodes": 299, - "requests": 39, - "grade": "C", - "score": 69, - "ges": 1.62, - "water": 2.43, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:32:01.155286", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T23:59:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.79, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.99, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://vae.gouv.fr", - "category": "sgmas", - "betaId": "reva", - "repositories": [ - "SocialGouv/reva" - ], - "pages": [ - "/admin" - ], - "http": { - "url": "https://vae.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:46:27 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr 'unsafe-inline'; connect-src 'self' https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr; font-src 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 12:46:26 GMT", - "Etag": "\"14fjck200doi0i\"", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-Powered-By": "Next.js", - "X-Request-ID": "187c08c1-2f55-4619-a19d-0409e0c59c0d", - "strict-transport-security": "max-age=31536000" - }, - "scan_id": 57063713, - "score": 80, - "start_time": "Sun, 20 Oct 2024 12:46:24 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'none'" - ], - "connect-src": [ - "'self'", - "https://auth.vae.gouv.fr", - "https://strapi.vae.gouv.fr", - "https://api-adresse.data.gouv.fr", - "https://sessions.bugsnag.com", - "https://api.produktly.com", - "https://matomo.fabrique.social.gouv.fr" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "data:", - "'self'" - ], - "form-action": [ - "'none'" - ], - "frame-ancestors": [ - "'self'" - ], - "frame-src": [ - "https://plugins.crisp.chat", - "blob:", - "https://auth.vae.gouv.fr", - "'self'" - ], - "img-src": [ - "data:", - "https:", - "'self'" - ], - "media-src": [ - "https://dailymotion.com", - "https://healing-nature-bb0384846f.media.strapiapp.com", - "https://youtube.com", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'unsafe-inline'", - "'self'", - "https://static.userguiding.com", - "https://public.produktly.com", - "https://matomo.fabrique.social.gouv.fr" - ], - "style-src": [ - "'unsafe-inline'", - "'self'", - "https://static.userguiding.com", - "https://public.produktly.com", - "https://matomo.fabrique.social.gouv.fr" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": true, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://vae.gouv.fr/", - "redirects": true, - "route": [ - "http://vae.gouv.fr/", - "https://vae.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "ciqr", - "url": "https://vae.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T02:15:43Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:51:32Z", - "next_check_at": "2024-11-24T16:52:32Z", - "created_at": "2024-01-15T14:02:08Z", - "mute_until": null, - "favicon_url": "https://vae.gouv.fr/_next/static/media/favicon.8c087985.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:47:32Z", - "expires_at": "2025-01-12T07:22:40Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 319, - "connection": 139, - "handshake": 143, - "response": 146, - "total": 747 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "vae.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430818,7 +426476,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430826,7 +426484,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430834,7 +426492,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430842,7 +426500,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -430850,7 +426508,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -430858,469 +426516,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-10-14 07:22" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-12 07:22" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732466877" + "finding": "1733071988" }, { "id": "HSTS_time", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -431328,7 +426986,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -431337,7 +426995,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -431346,7 +427004,7 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -431355,7 +427013,7 @@ }, { "id": "ROBOT", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -431364,7 +427022,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -431372,7 +427030,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -431381,7 +427039,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -431390,7 +427048,7 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -431399,7 +427057,7 @@ }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -431408,14 +427066,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -431424,7 +427082,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -431433,7 +427091,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -431442,7 +427100,7 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -431451,7 +427109,7 @@ }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -431460,7 +427118,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -431469,7 +427127,7 @@ }, { "id": "BEAST", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -431478,7 +427136,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -431487,7 +427145,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -431496,7 +427154,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -431505,392 +427163,1475 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, + { + "id": "scanTime", + "ip": "vae.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "242" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://healing-nature-bb0384846f.media.strapiapp.com/linkedin_sales_solutions_Npy_F7rjqmq4_unsplash_99e2c7f185.jpg" + }, + { + "type": "unknown", + "url": "https://healing-nature-bb0384846f.media.strapiapp.com/pexels_kampus_production_5940721_1e7dfd5c70.jpg" + }, + { + "type": "unknown", + "url": "https://healing-nature-bb0384846f.media.strapiapp.com/brooke_cagle_No_Rsy_Xm_H_Gp_I_unsplash_4280658fad.jpg" + } + ], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-security-policy": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 16:48:49 GMT", + "etag": "\"n6d57gsvyjq0\"", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-powered-by": "Next.js", + "x-request-id": "b182f5dd-0d3a-464b-b053-8dab20216ac9" + }, + "endpoints": [ + { + "hostname": "vae.gouv.fr", + "ip": "80.247.12.255", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "healing-nature-bb0384846f.media.strapiapp.com", + "ip": "172.64.145.29", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://vae.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.16", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://vae.gouv.fr/", + "finalUrl": "https://vae.gouv.fr/", + "fetchTime": "2024-07-21T12:30:54.346Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.54 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.92 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.6 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12020, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1731, + "firstMeaningfulPaint": 2648, + "largestContentfulPaint": 8329, + "interactive": 12020, + "speedIndex": 6542, + "totalBlockingTime": 287, + "maxPotentialFID": 306, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 450479321, + "observedNavigationStart": 0, + "observedNavigationStartTs": 450479321, + "observedFirstPaint": 747, + "observedFirstPaintTs": 451226223, + "observedFirstContentfulPaint": 747, + "observedFirstContentfulPaintTs": 451226223, + "observedFirstContentfulPaintAllFrames": 747, + "observedFirstContentfulPaintAllFramesTs": 451226223, + "observedFirstMeaningfulPaint": 1046, + "observedFirstMeaningfulPaintTs": 451525192, + "observedLargestContentfulPaint": 1046, + "observedLargestContentfulPaintTs": 451525192, + "observedLargestContentfulPaintAllFrames": 1046, + "observedLargestContentfulPaintAllFramesTs": 451525192, + "observedTraceEnd": 3476, + "observedTraceEndTs": 453955108, + "observedLoad": 1168, + "observedLoadTs": 451647226, + "observedDomContentLoaded": 748, + "observedDomContentLoadedTs": 451227547, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 735, + "observedFirstVisualChangeTs": 451214321, + "observedLastVisualChange": 1435, + "observedLastVisualChangeTs": 451914321, + "observedSpeedIndex": 1324, + "observedSpeedIndexTs": 451803260 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 59, + "numScripts": 16, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 1481, + "numTasksOver10ms": 8, + "numTasksOver25ms": 5, + "numTasksOver50ms": 3, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.2970000000000002, + "throughput": 96530869.80589302, + "maxRtt": 80.63499999999999, + "maxServerLatency": 101.482, + "totalByteWeight": 6321686, + "totalTaskTime": 480.81299999999857, + "mainDocumentTransferSize": 7768 + } + ] + } + } + } + }, + { + "requestedUrl": "https://vae.gouv.fr/admin", + "finalUrl": "https://auth.vae.gouv.fr/realms/reva/protocol/openid-connect/auth?client_id=reva-admin&redirect_uri=https%3A%2F%2Fvae.gouv.fr%2Fadmin&state=2af84c90-ce88-4379-87d0-68bceeb3f01e&response_mode=fragment&response_type=code&scope=openid&nonce=38797422-fb13-4495-8375-63da985ec7b0", + "fetchTime": "2024-07-21T12:31:11.295Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://vae.gouv.fr/admin) was redirected to https://auth.vae.gouv.fr/realms/reva/protocol/openid-connect/auth?client_id=reva-admin&redirect_uri=https%3A%2F%2Fvae.gouv.fr%2Fadmin&state=2af84c90-ce88-4379-87d0-68bceeb3f01e&response_mode=fragment&response_type=code&scope=openid&nonce=38797422-fb13-4495-8375-63da985ec7b0. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.35 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.5 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 8413, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 5444, + "firstMeaningfulPaint": 5560, + "largestContentfulPaint": 10426, + "interactive": 8413, + "speedIndex": 5444, + "totalBlockingTime": 848, + "maxPotentialFID": 727, + "cumulativeLayoutShift": 0.027272961934407557, + "cumulativeLayoutShiftMainFrame": 0.027272961934407557, + "totalCumulativeLayoutShift": 0.028014673868815107, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 469344779, + "observedNavigationStart": 0, + "observedNavigationStartTs": 469344779, + "observedFirstPaint": 460, + "observedFirstPaintTs": 469804499, + "observedFirstContentfulPaint": 460, + "observedFirstContentfulPaintTs": 469804499, + "observedFirstContentfulPaintAllFrames": 460, + "observedFirstContentfulPaintAllFramesTs": 469804499, + "observedFirstMeaningfulPaint": 460, + "observedFirstMeaningfulPaintTs": 469804499, + "observedLargestContentfulPaint": 695, + "observedLargestContentfulPaintTs": 470039573, + "observedLargestContentfulPaintAllFrames": 695, + "observedLargestContentfulPaintAllFramesTs": 470039573, + "observedTraceEnd": 2996, + "observedTraceEndTs": 472340744, + "observedLoad": 436, + "observedLoadTs": 469780695, + "observedDomContentLoaded": 101, + "observedDomContentLoadedTs": 469445744, + "observedCumulativeLayoutShift": 0.027272961934407557, + "observedCumulativeLayoutShiftMainFrame": 0.027272961934407557, + "observedTotalCumulativeLayoutShift": 0.028014673868815107, + "observedFirstVisualChange": 3, + "observedFirstVisualChangeTs": 469347779, + "observedLastVisualChange": 2952, + "observedLastVisualChangeTs": 472296779, + "observedSpeedIndex": 482, + "observedSpeedIndexTs": 469826706 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 56, + "numScripts": 3, + "numStylesheets": 5, + "numFonts": 8, + "numTasks": 1108, + "numTasksOver10ms": 10, + "numTasksOver25ms": 7, + "numTasksOver50ms": 5, + "numTasksOver100ms": 3, + "numTasksOver500ms": 0, + "rtt": 1.3279999999999994, + "throughput": 11509377.606239893, + "maxRtt": 83.875, + "maxServerLatency": 124.373, + "totalByteWeight": 1053982, + "totalTaskTime": 833.9089999999974, + "mainDocumentTransferSize": 1078 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://vae.gouv.fr/declaration-accessibilite/" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://vae.gouv.fr/mentions-legales/" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://vae.gouv.fr/confidentialite/" + } + ], + "betagouv": { + "id": "reva", + "type": "startup", + "attributes": { + "name": "France VAE", + "pitch": "Faciliter l'obtention d'un diplôme en Validation des Acquis d'Expérience (VAE)", + "stats_url": "https://metabase.vae.gouv.fr/public/dashboard/951df0e6-757d-4491-928e-2cd2d6beafec", + "link": "https://vae.gouv.fr", + "repository": "https://github.com/SocialGouv/reva", + "contact": "olivier.gerard@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0AInstaur%C3%A9e%20par%20la%20loi%20de%20modernisation%20sociale%20du%2017%2F01%2F2002%2C%20la%20VAE%20est%20la%203%E1%B5%89%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification%20en%20France.%20Elle%20repose%20sur%20un%20principe%20fort%C2%A0%3A%20celui%20de%20reconna%C3%AEtre%20que%20les%20comp%C3%A9tences%20acquises%20en%20vie%20active%20conf%C3%A8rent%20les%20m%C3%AAmes%20comp%C3%A9tences%20que%20celles%20acquises%20en%20formation%20initiale%20et%20continue%20et%20en%20alternance.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0A%20Or%20cette%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification%20peine%20%C3%A0%20trouver%20sa%20place%20dans%20l%E2%80%99%C3%A9cosyst%C3%A8me%20de%20la%20formation%20professionnelle%20du%20fait%2C%20entre%20autres%2C%20de%20la%20multiplicit%C3%A9%20de%20ses%20intervenants%2C%20de%20ses%20process%20et%20du%20fait%20de%20ses%20d%C3%A9lais.%0A%0A%23%23%20Notre%20solution%0A%0AFrance%20VAE%20%28anciennement%20REVA%29%20porte%20l%E2%80%99ambition%20de%20d%C3%A9velopper%20et%20fluidifier%20l%E2%80%99acc%C3%A8s%20%C3%A0%20la%20VAE%20et%20d%E2%80%99engager%20la%20soci%C3%A9t%C3%A9%20fran%C3%A7aise%20dans%20un%20syst%C3%A8me%20de%20reconnaissance%20des%20comp%C3%A9tences%20tout%20au%20long%20de%20la%20vie.%0A%0A%C3%80%20partir%20d%E2%80%99un%20%C3%A9chantillon%20d%E2%80%99utilisateurs%20accompagn%C3%A9s%20de%20bout%20en%20bout%2C%20une%201re%20phase%20d%E2%80%99investigation%20%28septembre%202021%2F%20f%C3%A9vrier%202022%29%20a%20%C3%A9t%C3%A9%20conduite%20afin%20de%20proposer%20au%20Ministre%20du%20Travail%2C%20la%20cr%C3%A9ation%20d%E2%80%99un%20plateforme%20num%C3%A9rique%20qui%20pourrait%20accompagner%20une%20reforme%20l%C3%A9gislative%20et%20r%C3%A9glementaire%20en%20profondeur%20de%20la%20VAE.%20L%E2%80%99ambition%20est%20de%20cr%C3%A9er%20un%20espace%20centr%C3%A9%20utilisateur%20dans%20lequel%20l%E2%80%99ensemble%20de%20l%E2%80%99%C3%A9cosyst%C3%A8me%20pourra%20s%E2%80%99interfacer%20avec%20l%E2%80%99usager%20candidat%20%C3%A0%20la%20VAE.%0A%0AUne%201re%20exp%C3%A9rimentation%20%22dite%20en%20droits%20futurs%22%20%282700%20usagers%29%20a%20%C3%A9t%C3%A9%20conduite%20de%20juin%202022%20%C3%A0%20juin%202023%20afin%20de%20permettre%20la%20mise%20en%20test%20d%E2%80%99une%20plateforme%20num%C3%A9rique%20partag%C3%A9e%20entre%20les%20certificateurs%2C%20les%20services%20publics%2C%20les%20organismes%20de%20formation%20et%20l%E2%80%99utilisateur%2C%20posant%20les%20bases%20de%20la%20future%20r%C3%A9forme%20de%20la%20VAE.%0A%0AL%E2%80%99objectif%20de%20ce%20nouveau%20portail%20%C3%A9tait%20de%20lever%20les%20irritants%2C%20d%E2%80%99assurer%20une%20mise%20en%20visibilit%C3%A9%20des%20comp%C3%A9tences%20tout%20au%20long%20de%20la%20vie%20au%20service%20de%20la%20s%C3%A9curisation%20des%20parcours%2C%20mais%20%C3%A9galement%20d%E2%80%99apporter%20une%20transparence%20de%20la%20mesure%20de%20l%E2%80%99efficience%20du%20nouveau%20dispositif.%20%0A%0AIl%20a%20%C3%A9t%C3%A9%20con%C3%A7u%20comme%20une%20offre%20de%20service%20compl%C3%A8te%20permettant%20la%20convergence%2C%20au%20sein%20d%E2%80%99un%20syst%C3%A8me%20d%C3%A9di%C3%A9%2C%20des%20attentes%20du%20candidat%20vis-%C3%A0-vis%20de%20son%20parcours%20et%20de%20celles%20des%20parties%20prenantes.%20La%20plateforme%20num%C3%A9rique%20rend%20possible%20une%20v%C3%A9ritable%20logique%20de%20parcours%20pour%20le%20candidat%20et%20facilite%20la%20gestion%20de%20cette%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification.%0A%0ASuite%20%C3%A0%20la%20remise%20de%20deux%20rapports%20d%E2%80%99%C3%A9valuation%20et%20de%20mesure%20d%E2%80%99impacts%20%C3%A0%20la%20Ministre%20du%20travail%20et%20conduits%20par%20un%20cabinet%20externe%2C%20le%20parlement%20a%20%C3%A9t%C3%A9%20saisi%20d%E2%80%99un%20nouveau%20projet%20de%20loi%20sur%20la%20VAE%20qui%20a%20%C3%A9t%C3%A9%20d%C3%A9finitivement%20approuv%C3%A9%20et%20publi%C3%A9%20au%20JO%20le%2021%20d%C3%A9cembre%202022.%20Outre%20les%20simplifications%20r%C3%A9glementaires%20inscrites%20dans%20la%20loi%2C%20le%20texte%20pr%C3%A9voit%20la%20cr%C3%A9ation%20d%E2%80%99un%20nouveau%20service%20public%20de%20la%20VAE%20dont%20le%20pivot%20central%20sera%20la%20plateforme%20num%C3%A9rique%20France%20VAE.%0A%0AL%E2%80%99%C3%A9quipe%20a%20donc%20lanc%C3%A9%20en%20juillet%202023%20une%20derni%C3%A8re%20et%203eme%20phase%20dite%20de%20pr%C3%A9figuration%20du%20service%20public%20avec%20220%20certifications%20disponibles%20et%20plus%20de%20500%20architectes%20Accompagnateurs%20de%20Parcours%20qui%20permettent%20d%E2%80%99accompagner%20pr%C3%A8s%20de%205000%20usagers%20par%20mois.%20Reva%20a%20donc%20disparu%20au%20profit%20de%20France%20VAE.%20Cette%203eme%20phrase%20a%20permis%20de%20continuer%20d%E2%80%99it%C3%A9rer%20pour%20am%C3%A9liorer%20le%20service%20aux%20usagers%2C%20%C3%A9prouver%20la%20plateforme%2C%20mais%20%C3%A9galement%20alimenter%20la%20r%C3%A9flexion%20du%20Minist%C3%A8re%20du%20Travail%20en%20vue%20d%E2%80%99%C3%A9crire%20le%20d%C3%A9cret%20d%E2%80%99application%20de%20la%20loi%20qui%20a%20%C3%A9t%C3%A9%20publi%C3%A9%20au%20JO%20le%20%2028%20d%C3%A9cembre%202023.%0A%0ALa%20p%C3%A9riode%20de%20pr%C3%A9figuration%20de%20France%20VAE%20va%20se%20d%C3%A9rouler%20une%20grande%20partie%20de%20l%E2%80%99ann%C3%A9e%202024%2C%20ce%20qui%20permettra%20%C3%A0%20l%E2%80%99%C3%A9quipe%20de%20poursuivre%20son%20travail%20d%E2%80%99it%C3%A9ration%20afin%20de%20contribuer%20%C3%A0%20l%E2%80%99%C3%A9criture%20des%20Arr%C3%AAt%C3%A9s%20de%20mise%20en%20oeuvre%20du%20service%20public%20et%20de%20sa%20g%C3%A9n%C3%A9ralisation%20en%202025.%0A%0ALa%20r%C3%A9forme%20de%20la%20VAE%20a%20%C3%A9t%C3%A9%20int%C3%A9gr%C3%A9e%20comme%20une%20politique%20prioritaire%20du%20Gouvernement.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-05-17", + "end": "2022-03-01" + }, + { + "name": "construction", + "start": "2022-06-01", + "end": "2023-06-01" + }, + { + "name": "acceleration", + "start": "2023-07-01", + "end": "2024-04-01" + }, + { + "name": "success", + "start": "2024-04-01", + "end": "" + } + ], + "sponsors": [ + "mtei" + ], + "thematiques": [ + "Travail / Emploi", + "Formation" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/vae-gouv-fr/", + "accessibility_status": "partiellement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "sgmas" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://vae.gouv.fr", + "size": 7630.159, + "nodes": 463, + "requests": 63, + "grade": "D", + "score": 52, + "ges": 1.96, + "water": 2.94, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:44:56.041211", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-12T07:22:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.54, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.92, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.6, + "lighthouse_pwaGrade": "C", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "D", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://selexpert.anje-justice.fr", + "category": "justice", + "betaId": "experts", + "http": { + "url": "https://selexpert.anje-justice.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 12:47:06 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Access-Control-Allow-Credentials": "true", + "Access-Control-Allow-Headers": "*", + "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS", + "Access-Control-Allow-Origin": "*", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 12:47:05 GMT", + "ETag": "W/\"6707eb9a-e1ea\"", + "Last-Modified": "Thu, 10 Oct 2024 14:58:34 GMT", + "Server": "nginx/1.27.2", + "Sozu-Id": "01JAMZF2Z8FVAHB184DK69W8EW", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding" + }, + "scan_id": 57063716, + "score": 30, + "start_time": "Sun, 20 Oct 2024 12:47:04 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://selexpert.anje-justice.fr/", + "redirects": true, + "route": [ + "http://selexpert.anje-justice.fr/", + "https://selexpert.anje-justice.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "etzs", + "url": "https://selexpert.anje-justice.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T08:00:00Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T16:57:58Z", + "next_check_at": "2024-12-01T16:58:57Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://selexpert.anje-justice.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:53:59Z", + "expires_at": "2025-01-20T11:39:20Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 41, + "connection": 101, + "handshake": 106, + "response": 104, + "total": 351 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "selexpert.anje-justice.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431898,7 +428639,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431906,7 +428647,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431914,7 +428655,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431922,7 +428663,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -431930,7 +428671,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -431938,469 +428679,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "id": "cipher-tls1_2_xc02f", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:22" + "finding": "2024-10-22 11:39" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:22" + "finding": "2025-01-20 11:39" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1732466936" - }, - { - "id": "HSTS_time", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733072125" }, { - "id": "HSTS_preload", - "ip": "vae.gouv.fr/185.21.194.105", + "id": "HSTS", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.27.2" }, { "id": "banner_application", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "vae.gouv.fr/185.21.194.105", + "id": "Access-Control-Allow-Origin", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" + "severity": "INFO", + "finding": "*" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -432408,7 +429135,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -432417,7 +429144,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -432426,16 +429153,16 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -432444,7 +429171,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -432452,16 +429179,16 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -432470,16 +429197,16 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -432488,14 +429215,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -432504,7 +429231,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -432513,7 +429240,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -432522,16 +429249,16 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9275A6DE9ECDA274903575B8FD41DE0854DDCDF291A8FEAA561C807247B3FE20" }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -432540,16 +429267,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -432558,7 +429285,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -432567,7 +429294,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -432576,7 +429303,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -432585,392 +429312,1990 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "selexpert.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "id": "clientsimulation-apple_mail_16_0", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "selexpert.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "57" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://prod.backend.selexpert.app.cc.anje-justice.fr/api/auth/user-info" + } + ], + "cookies": [ + { + "name": "_pk_ses.47.3a5f", + "value": "1", + "domain": "selexpert.anje-justice.fr", + "path": "/", + "expires": 1733073849, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.47.3a5f", + "value": "0ff474e9c17cb413.1733072050.", + "domain": "selexpert.anje-justice.fr", + "path": "/", + "expires": 1767027250, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "access-control-allow-credentials": "true", + "access-control-allow-headers": "*", + "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS", + "access-control-allow-origin": "*", + "connection": "keep-alive", + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 16:54:08 GMT", + "etag": "W/\"673a2fda-e1ea\"", + "last-modified": "Sun, 17 Nov 2024 18:03:06 GMT", + "server": "nginx/1.27.2", + "sozu-id": "01JE1J9MABWSAPS8XM6SB5TE22", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding" + }, + "endpoints": [ + { + "hostname": "selexpert.anje-justice.fr", + "ip": "91.208.207.214", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "prod.backend.selexpert.app.cc.anje-justice.fr", + "ip": "91.208.207.214", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://selexpert.anje-justice.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "typescript", + "name": "TypeScript", + "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", + "confidence": 100, + "version": null, + "icon": "TypeScript.svg", + "website": "https://www.typescriptlang.org", + "cpe": null, + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "angular", + "name": "Angular", + "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", + "confidence": 100, + "version": null, + "icon": "Angular.svg", + "website": "https://angular.io", + "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "zone-js", + "name": "Zone.js", + "description": null, + "confidence": 100, + "version": null, + "icon": "Angular.svg", + "website": "https://github.com/angular/angular/tree/master/packages/zone.js", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.27.2", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://selexpert.anje-justice.fr/", + "finalUrl": "https://selexpert.anje-justice.fr/", + "fetchTime": "2024-12-01T16:53:42.321Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.69 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.85 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4551, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3834, + "firstMeaningfulPaint": 4059, + "largestContentfulPaint": 5302, + "interactive": 4551, + "speedIndex": 4049, + "totalBlockingTime": 69, + "maxPotentialFID": 182, + "cumulativeLayoutShift": 0.004247568766276043, + "cumulativeLayoutShiftMainFrame": 0.004247568766276043, + "totalCumulativeLayoutShift": 0.004247568766276043, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 372600884, + "observedNavigationStart": 0, + "observedNavigationStartTs": 372600884, + "observedFirstPaint": 1215, + "observedFirstPaintTs": 373815628, + "observedFirstContentfulPaint": 1215, + "observedFirstContentfulPaintTs": 373815628, + "observedFirstContentfulPaintAllFrames": 1215, + "observedFirstContentfulPaintAllFramesTs": 373815628, + "observedFirstMeaningfulPaint": 1215, + "observedFirstMeaningfulPaintTs": 373815628, + "observedLargestContentfulPaint": 1307, + "observedLargestContentfulPaintTs": 373908101, + "observedLargestContentfulPaintAllFrames": 1307, + "observedLargestContentfulPaintAllFramesTs": 373908101, + "observedTraceEnd": 3825, + "observedTraceEndTs": 376425567, + "observedLoad": 1426, + "observedLoadTs": 374026534, + "observedDomContentLoaded": 866, + "observedDomContentLoadedTs": 373466842, + "observedCumulativeLayoutShift": 0.004247568766276043, + "observedCumulativeLayoutShiftMainFrame": 0.004247568766276043, + "observedTotalCumulativeLayoutShift": 0.004247568766276043, + "observedFirstVisualChange": 1217, + "observedFirstVisualChangeTs": 373817884, + "observedLastVisualChange": 1450, + "observedLastVisualChangeTs": 374050884, + "observedSpeedIndex": 1237, + "observedSpeedIndexTs": 373837713 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 25, + "numScripts": 5, + "numStylesheets": 3, + "numFonts": 6, + "numTasks": 950, + "numTasksOver10ms": 5, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 84.666, + "throughput": 7210388.807295627, + "maxRtt": 88.018, + "maxServerLatency": 2.8729999999999762, + "totalByteWeight": 699606, + "totalTaskTime": 318.0009999999986, + "mainDocumentTransferSize": 11259 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://selexpert.anje-justice.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://selexpert.anje-justice.fr/mentions-legales" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://selexpert.anje-justice.fr/donnees-personnelles" + } + ], + "betagouv": { + "id": "experts", + "type": "startup", + "attributes": { + "name": "seLEXpert", + "pitch": "Conçu pour les magistrats, les greffiers et les experts, seLEXpert permet une meilleure gestion des procédures grâce à la pré-sélection et la désignation dématérialisées du bon expert, en un temps limité.", + "stats_url": "https://selexpert.anje-justice.fr/stats", + "link": "https://selexpert.anje-justice.fr/", + "repository": "https://git.anje-justice.fr/selexpert", + "contact": "contact@selexpert.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ADans%20le%20cadre%20d%E2%80%99une%20proc%C3%A9dure%20judiciaire%2C%2040%20%25%20des%20missions%20sont%20refus%C3%A9es%20par%20les%20experts%2C%20faute%20de%20disponibilit%C3%A9%20ou%20d%E2%80%99ad%C3%A9quation%20avec%20leurs%20domaines%20de%20comp%C3%A9tence.%20En%20r%C3%A9sultent%20une%20charge%20de%20travail%20suppl%C3%A9mentaire%20pour%20les%20magistrats%20et%20les%20greffiers%2C%20et%20donc%20des%20retards%20importants%20sur%20le%20d%C3%A9marrage%20des%20proc%C3%A9dures%20pour%20le%20justiciable.%0A%0A%23%23%20Solution%0A%0AUn%20outil%20permettant%20la%20s%C3%A9lection%20%C3%A9clair%C3%A9e%20et%20la%20d%C3%A9signation%20rapide%20des%20experts%20judiciaires%20gr%C3%A2ce%20%C3%A0%20%3A%0A-%20Une%20recherche%20plus%20efficace%20des%20experts%20compatibles%20et%20disponibles%0A-%20Une%20pr%C3%A9-s%C3%A9lection%20d%C3%A9mat%C3%A9rialis%C3%A9e%20garantissant%20l%E2%80%99accord%20de%20principe%20de%20l%E2%80%99expert%20en%20un%20temps%20pr%C3%A9cis%0A-%20Une%20solution%20%C3%A9labor%C3%A9e%20en%20co-construction%20avec%20les%20utilisateurs%0A-%20Une%20interface%20ergonomique%2C%20simple%20et%20rapide%20d%E2%80%99utilisation%0A-%20Des%20informations%20fiables%20et%20mises%20%C3%A0%20jour%20en%20temps%20r%C3%A9el%0A%0A%0A", + "events": [], + "phases": [ + { + "name": "acceleration", + "start": "2024-01-01", + "end": "" + } + ], + "sponsors": [ + "mj" + ], + "thematiques": [ + "Justice" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/selexpert-anje-justice-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "justice" + } + } + } + }, + "ecoindex": [ { - "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "width": 1920, + "height": 1080, + "url": "https://selexpert.anje-justice.fr", + "size": 834.122, + "nodes": 127, + "requests": 22, + "grade": "A", + "score": 84, + "ges": 1.32, + "water": 1.98, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 16:50:41.698448", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "D", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-20T11:39:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.69, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.85, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "A", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://element.preprod.eimis.incubateur.net/", + "category": "dinum_produits_interministeriels", + "repositories": [ + "eimis-ans/eimis-synapse" + ], + "tags": [ + "staging", + "ans" + ], + "betaId": "eimis", + "http": { + "url": "https://element.preprod.eimis.incubateur.net/", + "algorithm_version": 3, + "end_time": "Sun, 15 Sep 2024 12:28:01 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Cache-Control": "no-cache", + "Connection": "keep-alive", + "Content-Length": "7818", + "Content-Type": "text/html", + "Date": "Sun, 15 Sep 2024 12:28:00 GMT", + "ETag": "\"6615175c-1e8a\"", + "Last-Modified": "Tue, 09 Apr 2024 10:24:28 GMT", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains" }, - { - "id": "rating_spec", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "scan_id": 55667278, + "score": 75, + "start_time": "Sun, 15 Sep 2024 12:27:49 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "child-src": [ + "blob:", + "data:", + "*" + ], + "connect-src": [ + "blob:", + "*" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "data:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-src": [ + "blob:", + "data:", + "*" + ], + "img-src": [ + "blob:", + "data:", + "*" + ], + "manifest-src": [ + "'self'" + ], + "media-src": [ + "blob:", + "data:", + "*" + ], + "script-src": [ + "https://www.gstatic.com/recaptcha/", + "https://www.recaptcha.net/recaptcha/", + "'wasm-unsafe-eval'", + "'self'" + ], + "style-src": [ + "'unsafe-inline'", + "'self'" + ], + "worker-src": [ + "blob:", + "'self'" + ] + }, + "http": false, + "meta": true, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": true, + "insecureBaseUri": true, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://element.preprod.eimis.incubateur.net", + "redirects": true, + "route": [ + "http://element.preprod.eimis.incubateur.net/", + "https://element.preprod.eimis.incubateur.net" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": false, + "meta": true + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "sbs0", + "url": "https://element.preprod.eimis.incubateur.net/", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-09-14T17:40:18Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-09-15T12:30:58Z", + "next_check_at": "2024-09-15T12:31:58Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://element.preprod.eimis.incubateur.net/vector-icons/favicon.4c70c2b.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-09-15T12:26:01Z", + "expires_at": "2024-12-10T21:15:17Z", + "valid": true, + "error": null }, - { - "id": "rating_doc", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 209, + "connection": 134, + "handshake": 146, + "response": 138, + "total": 627 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "element.preprod.eimis.incubateur.net", + "protocol": "tcp", + "closed_ports": "996", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "NFS-or-IIS", + "id": "1025", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "LSA-or-nterm", + "id": "1026", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { - "id": "protocol_support_score", - "ip": "vae.gouv.fr/185.21.194.105", + "id": "scanProblem", + "ip": "element.preprod.eimis.incubateur.net/", "port": "443", - "severity": "INFO", - "finding": "100" + "severity": "FATAL", + "finding": "No IPv4/IPv6 address(es) for 'element.preprod.eimis.incubateur.net' available" }, { - "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", + "id": "scanTime", + "ip": "element.preprod.eimis.incubateur.net/", "port": "443", - "severity": "INFO", - "finding": "30" + "severity": "WARN", + "finding": "Scan interrupted" + } + ], + "thirdparties": { + "trackers": null, + "cookies": null, + "headers": null + }, + "wappalyzer": { + "urls": { + "https://element.preprod.eimis.incubateur.net/": { + "status": 0, + "error": "Hostname could not be resolved (element.preprod.eimis.incubateur.net)" + } }, + "technologies": [] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "requestedUrl": "https://element.preprod.eimis.incubateur.net/", + "finalUrl": "https://element.preprod.eimis.incubateur.net/mobile_guide/", + "fetchTime": "2024-09-15T12:27:36.702Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://element.preprod.eimis.incubateur.net/) was redirected to https://element.preprod.eimis.incubateur.net/mobile_guide/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.43 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.91 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 37125, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 32661, + "firstMeaningfulPaint": 32661, + "largestContentfulPaint": 41190, + "interactive": 37125, + "speedIndex": 32661, + "totalBlockingTime": 160, + "maxPotentialFID": 210, + "cumulativeLayoutShift": 0.04476708306206598, + "cumulativeLayoutShiftMainFrame": 0.04476708306206598, + "totalCumulativeLayoutShift": 0.04476708306206598, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 481183809, + "observedNavigationStart": 0, + "observedNavigationStartTs": 481183809, + "observedFirstPaint": 181, + "observedFirstPaintTs": 481364756, + "observedFirstContentfulPaint": 181, + "observedFirstContentfulPaintTs": 481364756, + "observedFirstContentfulPaintAllFrames": 181, + "observedFirstContentfulPaintAllFramesTs": 481364756, + "observedFirstMeaningfulPaint": 181, + "observedFirstMeaningfulPaintTs": 481364756, + "observedLargestContentfulPaint": 475, + "observedLargestContentfulPaintTs": 481659105, + "observedLargestContentfulPaintAllFrames": 475, + "observedLargestContentfulPaintAllFramesTs": 481659105, + "observedTraceEnd": 2820, + "observedTraceEndTs": 484003791, + "observedLoad": 313, + "observedLoadTs": 481496369, + "observedDomContentLoaded": 312, + "observedDomContentLoadedTs": 481496028, + "observedCumulativeLayoutShift": 0.04476708306206598, + "observedCumulativeLayoutShiftMainFrame": 0.04476708306206598, + "observedTotalCumulativeLayoutShift": 0.04476708306206598, + "observedFirstVisualChange": 180, + "observedFirstVisualChangeTs": 481363809, + "observedLastVisualChange": 480, + "observedLastVisualChangeTs": 481663809, + "observedSpeedIndex": 201, + "observedSpeedIndexTs": 481385077 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 37, + "numScripts": 9, + "numStylesheets": 1, + "numFonts": 8, + "numTasks": 989, + "numTasksOver10ms": 2, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 144.873, + "throughput": 51024901.687390074, + "maxRtt": 144.873, + "maxServerLatency": 90.29600000000002, + "totalByteWeight": 8152983, + "totalTaskTime": 297.36099999999914, + "mainDocumentTransferSize": 8027 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "eimis", + "type": "startup", + "attributes": { + "name": "EIMIS", + "pitch": "Faciliter et sécuriser les communications des professionnels de santé", + "stats_url": "", + "contact": "juliette.dixmier@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AComment%20fluidifier%20et%20s%C3%A9curiser%20les%20communications%20instantan%C3%A9es%20entre%20professionnels%20de%20sant%C3%A9%20%3F%0A%0AC%E2%80%99est%20sur%20cette%20probl%C3%A9matique%20que%20beta.gouv.fr%20et%20l%E2%80%99Agence%20du%20Num%C3%A9rique%20en%20Sant%C3%A9%20collaborent%20depuis%20l%E2%80%99automne%202022%2C%20en%20exp%C3%A9rimentant%20la%20construction%20d%27un%20Espace%20d%27Interop%C3%A9rabilit%C3%A9%20des%20Messageries%20Instantan%C3%A9es%20de%20Sant%C3%A9%20%28EIMIS%29%0A%0A%0A%23%23%20Probl%C3%A8me%0A%0ADe%20multiples%20obstacles%20rendent%20difficile%20la%20communication%20entre%20professionnels%20de%20sant%C3%A9%20%3A%0A%0A%2A%20Faible%20taux%20d%E2%80%99%C3%A9quipement%20professionnels%20%28t%C3%A9l%C3%A9phones%20mobiles%2C%20ordinateurs%29%0A%2A%20Fragmentation%20des%20usagers%20sur%20une%20multitudes%20d%E2%80%99outils%20incompatibles%20entre%20eux%0A%2A%20Contraintes%20fortes%20li%C3%A9es%20%C3%A0%20la%20n%C3%A9cessit%C3%A9%20de%20prot%C3%A9ger%20les%20donn%C3%A9es%20de%20patients%20contenues%20dans%20les%20%C3%A9changes%0A%0ACeci%20conduit%20%C3%A0%20une%20situation%20dans%20laquelle%20les%20professionnels%20de%20sant%C3%A9%20privil%C3%A9gient%20%3A%0A%0A%2A%20les%20communications%20orales%0A%2A%20les%20courriers%20papiers%0A%2A%20les%20outils%20grand%20public%0A%0ACes%20divers%20modes%20de%20communication%2C%20malgr%C3%A9%20leurs%20avantages%20respectifs%2C%20comportent%20plusieurs%20risques%20%3A%0A%0A%2A%20perte%20de%20l%E2%80%99information%0A%2A%20perte%20de%20temps%0A%2A%20exposition%20des%20donn%C3%A9es%20de%20sant%C3%A9%20des%20patients%0A%0AIl%20est%20donc%20n%C3%A9c%C3%A9ssaire%20de%20favoriser%20l%27adoption%20des%20outils%20professionnels%2C%20sp%C3%A9cifiquement%20adapt%C3%A9s%20%C3%A0%20l%27%C3%A9change%20de%20donn%C3%A9es%20de%20sant%C3%A9.%20%0A%0A%23%23%20Strat%C3%A9gie%0A%0AApr%C3%A8s%20plus%20d%27une%20quarantaine%20d%27entretiens%20men%C3%A9s%20avec%20divers%20professionnels%20de%20l%27%C3%A9cosyst%C3%A8me%20de%20la%20sant%C3%A9%2C%20une%20solution%20est%20d%C3%A9sormais%20en%20cours%20de%20construction%20et%20d%27exp%C3%A9rimentation.%0A%0AL%27objectif%20de%20cette%20exp%C3%A9rimentation%20%3F%20%0A%0AFavoriser%20l%27adoption%20des%20outils%20de%20messagerie%20instantan%C3%A9e%20de%20sant%C3%A9%20en%20s%27appuyant%20sur%20les%20leviers%20suivants%20%3A%0A%0A-%20Permettre%20%C3%A0%20tous%20les%20professionnels%20de%20sant%C3%A9%20de%20communiquer%2C%20m%C3%AAme%20lorsqu%27ils%20utilisent%20des%20outils%20diff%C3%A9rents%2C%20gr%C3%A2ce%20%C3%A0%20la%20mise%20en%20oeuvre%20d%27une%20inter-op%C3%A9rabilit%C3%A9%20entre%20les%20messageries%20instantan%C3%A9es%20de%20sant%C3%A9%20existantes%0A-%20Constituer%20un%20r%C3%A9f%C3%A9rentiel%20de%20qualit%C3%A9%20pour%20les%20outils%20afin%20d%27offrir%20une%20exp%C3%A9rience%20utilisateur%20r%C3%A9pondant%20aux%20besoins%20et%20usages%20r%C3%A9els%20des%20professionnels%20de%20sant%C3%A9%0A-%20Tester%20diverses%20hypoth%C3%A8ses%20d%27am%C3%A9liorations%20en%20mettant%20une%20application%20mobile%20de%20messagerie%20instantan%C3%A9e%20%C3%A0%20disposition%20d%27une%20communaut%C3%A9%20de%20beta-testeurs%0A%0ACette%20exp%C3%A9rimentation%20se%20fait%20en%20partenariat%20avec%20les%20%C3%A9diteurs%20de%20logiciels%20sant%C3%A9%2C%20n%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20pour%20participer%20%21", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2022-10-24", + "end": "2023-01-02" + }, + { + "name": "construction", + "start": "2023-01-02", + "end": "" + } + ], + "sponsors": [ + "ans" + ], + "thematiques": [ + "Santé", + "Sécurité informatique", + "Outil technique" + ], + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum_produits_interministeriels" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://element.preprod.eimis.incubateur.net/", + "size": 10305.409, + "nodes": 120, + "requests": 58, + "grade": "C", + "score": 66, + "ges": 1.68, + "water": 2.52, + "ecoindex_version": "5.4.2", + "date": "2024-09-15 12:24:26.666267", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, + "lighthouse_performance": 0.43, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.91, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://world.openfoodfacts.org/", + "category": "startup", + "http": { + "url": "https://world.openfoodfacts.org/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:03:11 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 13:03:09 GMT", + "Expires": "Sat, 19 Oct 2024 13:03:09 GMT", + "Server": "nginx/1.18.0", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Download-Options": "noopen", + "X-Request-ID": "zLj5TdsqXGNFbgMF", + "X-XSS-Protection": "1; mode=block" }, - { - "id": "final_score", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57064035, + "score": 35, + "start_time": "Sun, 20 Oct 2024 13:03:07 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://world.openfoodfacts.org/", + "redirects": true, + "route": [ + "http://world.openfoodfacts.org/", + "https://world.openfoodfacts.org/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "8crm", + "url": "https://world.openfoodfacts.org/", + "alias": "", + "last_status": 200, + "uptime": 99.695, + "down": false, + "down_since": null, + "up_since": "2024-12-01T14:16:35Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:06:00Z", + "next_check_at": "2024-12-01T17:10:59Z", + "created_at": "2024-01-15T14:01:08Z", + "mute_until": null, + "favicon_url": "https://world.openfoodfacts.org/images/favicon/off/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T16:46:08Z", + "expires_at": "2025-01-25T10:15:49Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "vae.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.781, + "timings": { + "redirect": 0, + "namelookup": 264, + "connection": 173, + "handshake": 177, + "response": 495, + "total": 1108 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "world.openfoodfacts.org", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.4p1 Debian 5+deb11u2", + "vulnerabilities": [ + { + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-38408", + "is_exploit": "false" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true" + }, + { + "cvss": "9.8", + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "seebug", + "id": "SSV:92579", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "packetstorm", + "id": "PACKETSTORM:173661", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "zdt", + "id": "1337DAY-ID-26576", + "is_exploit": "true" + }, + { + "cvss": "7.1", + "type": "cve", + "id": "CVE-2021-28041", + "is_exploit": "false" + }, + { + "cvss": "7.0", + "type": "cve", + "id": "CVE-2021-41617", + "is_exploit": "false" + }, + { + "cvss": "6.5", + "type": "cve", + "id": "CVE-2023-51385", + "is_exploit": "false" + }, + { + "cvss": "5.9", + "type": "cve", + "id": "CVE-2023-48795", + "is_exploit": "false" + }, + { + "cvss": "5.9", + "type": "cve", + "id": "CVE-2020-14145", + "is_exploit": "false" + }, + { + "cvss": "5.3", + "type": "cve", + "id": "CVE-2016-20012", + "is_exploit": "false" + }, + { + "cvss": "0.0", + "type": "packetstorm", + "id": "PACKETSTORM:140261", + "is_exploit": "true" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + } + ], + "grade": "E" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432978,7 +431303,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432986,7 +431311,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432994,7 +431319,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433002,7 +431327,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -433010,477 +431335,498 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:22" + "finding": "2024-10-27 10:15" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:22" + "finding": "2025-01-25 10:15" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1732466993" - }, - { - "id": "HSTS_time", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733072795" }, { - "id": "HSTS_preload", - "ip": "vae.gouv.fr/80.247.13.145", + "id": "HSTS", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.18.0" }, { "id": "banner_application", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, { "id": "X-Content-Type-Options", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { - "id": "Content-Security-Policy", - "ip": "vae.gouv.fr/80.247.13.145", + "id": "X-XSS-Protection", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "OK", - "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" + "severity": "INFO", + "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -433488,7 +431834,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -433497,7 +431843,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -433506,16 +431852,16 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -433524,7 +431870,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -433532,7 +431878,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -433541,7 +431887,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -433550,16 +431896,16 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -433568,14 +431914,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -433584,7 +431930,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -433593,7 +431939,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -433602,16 +431948,16 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=59913AD359EC773C482CEAA99C7BC262F36DFBA07B060356967C017D086395A2" }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -433620,34 +431966,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST_CBC_TLS1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-RSA-AES256-SHA" }, { "id": "BEAST", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -433656,7 +432011,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -433665,392 +432020,1206 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES256-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/80.247.13.145", + "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" + "id": "key_exchange_score_weighted", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "79" + }, + { + "id": "overall_grade", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "grade_cap_reason_3", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "world.openfoodfacts.org/213.36.253.214", + "port": "443", + "severity": "INFO", + "finding": "64" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 17:05:44 GMT", + "expires": "Sat, 30 Nov 2024 17:05:44 GMT", + "server": "nginx/1.18.0", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-request-id": "0mushhrIJaqfHXPA", + "x-xss-protection": "1; mode=block" + }, + "endpoints": [ + { + "hostname": "world.openfoodfacts.org", + "ip": "213.36.253.214", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75008" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://world.openfoodfacts.org/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "zurb-foundation", + "name": "ZURB Foundation", + "description": "Zurb Foundation is used to prototype in the browser. Allows rapid creation of websites or applications while leveraging mobile and responsive technology. The front end framework is the collection of HTML, CSS, and Javascript containing design patterns.", + "confidence": 100, + "version": "5.5.3", + "icon": "ZURB Foundation.png", + "website": "https://foundation.zurb.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "select2", + "name": "Select2", + "description": "Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.", + "confidence": 100, + "version": null, + "icon": "Select2.png", + "website": "https://select2.org/", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "modernizr", + "name": "Modernizr", + "description": "Modernizr is a JavaScript library that detects the features available in a user's browser.", + "confidence": 100, + "version": "2.8.3", + "icon": "Modernizr.svg", + "website": "https://modernizr.com", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "jquery-ui", + "name": "jQuery UI", + "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", + "confidence": 100, + "version": "1.13.3", + "icon": "jQuery UI.svg", + "website": "https://jqueryui.com", + "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "2.1.4", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://world.openfoodfacts.org/", + "finalUrl": "https://world.openfoodfacts.org/", + "fetchTime": "2024-12-01T17:05:13.519Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.75 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.94 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.77 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.6 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 7780, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3017, + "firstMeaningfulPaint": 4020, + "largestContentfulPaint": 3242, + "interactive": 7780, + "speedIndex": 5581, + "totalBlockingTime": 169, + "maxPotentialFID": 329, + "cumulativeLayoutShift": 0.002825705210367839, + "cumulativeLayoutShiftMainFrame": 0.002825705210367839, + "totalCumulativeLayoutShift": 0.002825705210367839, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 334775725, + "observedNavigationStart": 0, + "observedNavigationStartTs": 334775725, + "observedFirstPaint": 985, + "observedFirstPaintTs": 335760836, + "observedFirstContentfulPaint": 985, + "observedFirstContentfulPaintTs": 335760836, + "observedFirstContentfulPaintAllFrames": 985, + "observedFirstContentfulPaintAllFramesTs": 335760836, + "observedFirstMeaningfulPaint": 1327, + "observedFirstMeaningfulPaintTs": 336102285, + "observedLargestContentfulPaint": 985, + "observedLargestContentfulPaintTs": 335760836, + "observedLargestContentfulPaintAllFrames": 985, + "observedLargestContentfulPaintAllFramesTs": 335760836, + "observedTraceEnd": 4102, + "observedTraceEndTs": 338877373, + "observedLoad": 1702, + "observedLoadTs": 336477460, + "observedDomContentLoaded": 1258, + "observedDomContentLoadedTs": 336034193, + "observedCumulativeLayoutShift": 0.002825705210367839, + "observedCumulativeLayoutShiftMainFrame": 0.002825705210367839, + "observedTotalCumulativeLayoutShift": 0.002825705210367839, + "observedFirstVisualChange": 994, + "observedFirstVisualChangeTs": 335769725, + "observedLastVisualChange": 1610, + "observedLastVisualChangeTs": 336385725, + "observedSpeedIndex": 1070, + "observedSpeedIndexTs": 335845232 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 70, + "numScripts": 13, + "numStylesheets": 3, + "numFonts": 2, + "numTasks": 1868, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 0, + "rtt": 81.536, + "throughput": 16689344.173559029, + "maxRtt": 83.82799999999999, + "maxServerLatency": 31.00100000000002, + "totalByteWeight": 1560873, + "totalTaskTime": 464.4349999999957, + "mainDocumentTransferSize": 34078 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": null, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://world.openfoodfacts.org/", + "size": 3789.398, + "nodes": 1576, + "requests": 133, + "grade": "F", + "score": 18, + "ges": 2.64, + "water": 3.96, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:02:11.106233", + "page_type": "food" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D", + "apdex": 0.781, + "apdexGrade": "F", + "uptime": 99.695, + "uptimeGrade": "A", + "nmapGrade": "E", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-25T10:15:00.000Z", + "testsslGrade": "B", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.75, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.94, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.77, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.6, + "lighthouse_pwaGrade": "C", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "F", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://panoramax.fr", + "title": "Homepage presentation panoramax", + "betaId": "vues-immersives-libres", + "category": "fab-geocommuns", + "tags": [ + "geocommun" + ], + "tools": { + "dsfr": false + }, + "repositories": [ + "panoramax-project/panoramax-website" + ], + "http": { + "url": "https://panoramax.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:09:14 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=600", + "Content-Length": "1352", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 13:09:14 GMT", + "Etag": "\"2d4b2d2a98f5669cd15924e9e39189af3221624d56ea24f235cdc5ee1e9c1191\"", + "Expires": "Sun, 20 Oct 2024 13:19:14 UTC", + "Last-Modified": "Tue, 17 Sep 2024 13:35:10 GMT", + "Permissions-Policy": "interest-cohort=()", + "Vary": "Origin" }, - { - "id": "final_score", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57064481, + "score": 30, + "start_time": "Sun, 20 Oct 2024 13:09:13 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://panoramax.fr/", + "redirects": true, + "route": [ + "http://panoramax.fr/", + "https://panoramax.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "p8f0", + "url": "https://panoramax.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T09:18:48Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:13:13Z", + "next_check_at": "2024-12-01T17:14:12Z", + "created_at": "2024-01-28T01:09:37Z", + "mute_until": null, + "favicon_url": "https://panoramax.fr/assets/favicon.ed901574.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:05:16Z", + "expires_at": "2025-02-07T14:22:36Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "vae.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 87, + "connection": 57, + "handshake": 140, + "response": 202, + "total": 486 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "panoramax.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -434058,7 +433227,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -434066,7 +433235,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -434074,7 +433243,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -434082,7 +433251,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -434090,7 +433259,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -434098,469 +433267,448 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "2024-10-14 07:22" + "finding": "2024-11-09 14:22" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", - "finding": "2025-01-12 07:22" + "finding": "2025-02-07 14:22" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732467052" - }, - { - "id": "HSTS_time", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733073062" }, { - "id": "HSTS_preload", - "ip": "vae.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "panoramax.fr/35.185.44.232", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "vae.gouv.fr/80.247.12.255", + "id": "Permissions-Policy", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "interest-cohort=()" }, { - "id": "Content-Security-Policy", - "ip": "vae.gouv.fr/80.247.12.255", + "id": "Cache-Control", + "ip": "panoramax.fr/35.185.44.232", "port": "443", - "severity": "OK", - "finding": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com" + "severity": "INFO", + "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -434568,7 +433716,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -434577,7 +433725,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -434586,7 +433734,7 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -434595,7 +433743,7 @@ }, { "id": "ROBOT", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -434604,7 +433752,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -434612,7 +433760,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -434621,7 +433769,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -434630,16 +433778,16 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -434648,14 +433796,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -434664,7 +433812,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -434673,7 +433821,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -434682,16 +433830,16 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D741626F2E0F7806C92B18CE98C629D95E9A01879D376BB8BBAEA77D68DC1ED" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1B4E54EF17A87E7CD5564ABDD075BF5FF68F677CBBE7A357CBB372F687A0282F" }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -434700,16 +433848,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -434718,7 +433866,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -434727,7 +433875,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -434736,7 +433884,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -434745,360 +433893,568 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "30" }, { "id": "cipher_strength_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "84" }, { "id": "overall_grade", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "panoramax.fr/35.185.44.232", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "panoramax.fr/35.185.44.232", "port": "443", "severity": "INFO", - "finding": "237" + "finding": "45" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://healing-nature-bb0384846f.media.strapiapp.com/linkedin_sales_solutions_Npy_F7rjqmq4_unsplash_99e2c7f185.jpg" + "url": "https://matomo.panoramax.xyz//matomo.js" }, { "type": "unknown", - "url": "https://healing-nature-bb0384846f.media.strapiapp.com/pexels_kampus_production_5940721_1e7dfd5c70.jpg" + "url": "https://api.panoramax.xyz/api/" + }, + { + "type": "unknown", + "url": "https://api.panoramax.xyz/api/stats/" + }, + { + "type": "unknown", + "url": "https://api.panoramax.xyz/api/map/style.json" + }, + { + "type": "unknown", + "url": "https://panoramax.openstreetmap.fr/pmtiles/basic.json" + }, + { + "type": "unknown", + "url": "https://matomo.panoramax.xyz//matomo.php?action_name=L%E2%80%99alternative%20libre%20pour%20photo-cartographier%20les%20territoires&idsite=2&rec=1&r=199341&h=17&m=10&s=3&url=https%3A%2F%2Fpanoramax.fr%2F&_id=074a35e46ecc5247&_idn=1&send_image=0&_refts=0&pv_id=yiEgsX&pf_net=128&pf_srv=183&pf_tfr=2&pf_dm1=6&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "unknown", + "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" + }, + { + "type": "unknown", + "url": "https://tile-vect.openstreetmap.fr/styles/basic/sprite.json" + }, + { + "type": "unknown", + "url": "https://tile-vect.openstreetmap.fr/styles/basic/sprite.png" + }, + { + "type": "unknown", + "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" + }, + { + "type": "unknown", + "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" + } + ], + "cookies": [ + { + "name": "_pk_ses.2.8046", + "value": "1", + "domain": "panoramax.fr", + "path": "/", + "expires": 1733074803, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.2.8046", + "value": "074a35e46ecc5247.1733073003.", + "domain": "panoramax.fr", + "path": "/", + "expires": 1767028203, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "max-age=600", + "content-length": "1352", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 17:10:01 GMT", + "etag": "\"79c7cf89660066989765e6f8e70bfc60b382b65a6858f8513c3655eb2158bcba\"", + "expires": "Sun, 01 Dec 2024 17:20:01 UTC", + "last-modified": "Tue, 12 Nov 2024 12:05:23 GMT", + "permissions-policy": "interest-cohort=()", + "vary": "Origin" + }, + "endpoints": [ + { + "hostname": "panoramax.fr", + "ip": "35.185.44.232", + "geoip": { + "city": { + "geoname_id": 4589387, + "names": { + "en": "North Charleston", + "ja": "ノースチャールストン", + "pt-BR": "North Charleston", + "ru": "Норт-Чарлстон", + "zh-CN": "北查尔斯顿" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 32.8608, + "longitude": -79.9746, + "metro_code": 519, + "time_zone": "America/New_York" + }, + "postal": { + "code": "29415" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4597040, + "iso_code": "SC", + "names": { + "de": "South Carolina", + "en": "South Carolina", + "es": "Carolina del Sur", + "fr": "Caroline du Sud", + "ja": "サウスカロライナ州", + "pt-BR": "Carolina do Sul", + "ru": "Южная Каролина", + "zh-CN": "南卡罗来纳州" + } + } + ] + } }, { - "type": "unknown", - "url": "https://healing-nature-bb0384846f.media.strapiapp.com/brooke_cagle_No_Rsy_Xm_H_Gp_I_unsplash_4280658fad.jpg" - } - ], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-security-policy": "default-src 'none'; form-action 'none'; base-uri 'none'; frame-ancestors 'self'; object-src 'none'; img-src https://client.crisp.chat 'self' data: https: ; script-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; style-src 'self' https://static.userguiding.com https://public.produktly.com https://matomo.fabrique.social.gouv.fr https://client.crisp.chat 'unsafe-inline'; connect-src 'self' https://client.crisp.chat https://api.produktly.com https://sessions.bugsnag.com https://strapi.vae.gouv.fr https://matomo.fabrique.social.gouv.fr https://auth.vae.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat; font-src https://client.crisp.chat 'self' data:; frame-src 'self' blob: https://auth.vae.gouv.fr https://plugins.crisp.chat; media-src 'self' https://healing-nature-bb0384846f.media.strapiapp.com https://youtube.com https://dailymotion.com", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 16:46:39 GMT", - "etag": "\"vaw84qyglojq0\"", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN", - "x-powered-by": "Next.js", - "x-request-id": "28b4838e-d7d9-46d2-8e05-e61157d5f830" - }, - "endpoints": [ + "hostname": "matomo.panoramax.xyz", + "ip": "193.200.42.122", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, { - "hostname": "vae.gouv.fr", - "ip": "148.253.96.193", + "hostname": "api.panoramax.xyz", + "ip": "193.200.42.124", "geoip": { "continent": { "code": "EU", @@ -435153,214 +434509,257 @@ } }, { - "hostname": "healing-nature-bb0384846f.media.strapiapp.com", - "ip": "172.64.145.29", + "hostname": "panoramax.openstreetmap.fr", + "ip": "193.200.42.122", "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } } } + }, + { + "hostname": "tile-vect.openstreetmap.fr", + "ip": "213.36.253.212", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75008" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "ru": "Иль-де-Франс", + "zh-CN": "法兰西岛" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } } ] }, "wappalyzer": { "urls": { - "https://vae.gouv.fr/": { + "https://panoramax.fr/": { "status": 200 } }, "technologies": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", "confidence": 100, "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" } - ] + ], + "rootPath": true }, { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "slug": "three-js", + "name": "Three.js", + "description": "Three.js is a cross-browser JavaScript library and application programming interface used to create and display animated 3D computer graphics in a web browser using WebGL.", "confidence": 100, - "version": "8.6.2", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "version": "168", + "icon": "Three.js.svg", + "website": "https://threejs.org", + "cpe": null, "categories": [ { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" + "id": 25, + "slug": "javascript-graphics", + "name": "JavaScript graphics" } - ] + ], + "rootPath": true }, { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.16", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" } ], "rootPath": true }, { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" + "id": 10, + "slug": "analytics", + "name": "Analytics" } ], "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "font-awesome", + "name": "Font Awesome", + "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Font Awesome.svg", + "website": "https://fontawesome.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" } ], "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -435368,9 +434767,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://vae.gouv.fr/", - "finalUrl": "https://vae.gouv.fr/", - "fetchTime": "2024-07-21T12:30:54.346Z", + "requestedUrl": "https://panoramax.fr/", + "finalUrl": "https://panoramax.fr/", + "fetchTime": "2024-12-01T17:09:29.703Z", "runWarnings": [], "categories": { "performance": { @@ -435381,7 +434780,7 @@ "snapshot" ], "id": "performance", - "score": 0.54 + "score": 0.15 }, "accessibility": { "title": "Accessibility", @@ -435392,7 +434791,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.92 + "score": 0.79 }, "best-practices": { "title": "Best Practices", @@ -435413,162 +434812,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.6 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 12020, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1731, - "firstMeaningfulPaint": 2648, - "largestContentfulPaint": 8329, - "interactive": 12020, - "speedIndex": 6542, - "totalBlockingTime": 287, - "maxPotentialFID": 306, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 450479321, - "observedNavigationStart": 0, - "observedNavigationStartTs": 450479321, - "observedFirstPaint": 747, - "observedFirstPaintTs": 451226223, - "observedFirstContentfulPaint": 747, - "observedFirstContentfulPaintTs": 451226223, - "observedFirstContentfulPaintAllFrames": 747, - "observedFirstContentfulPaintAllFramesTs": 451226223, - "observedFirstMeaningfulPaint": 1046, - "observedFirstMeaningfulPaintTs": 451525192, - "observedLargestContentfulPaint": 1046, - "observedLargestContentfulPaintTs": 451525192, - "observedLargestContentfulPaintAllFrames": 1046, - "observedLargestContentfulPaintAllFramesTs": 451525192, - "observedTraceEnd": 3476, - "observedTraceEndTs": 453955108, - "observedLoad": 1168, - "observedLoadTs": 451647226, - "observedDomContentLoaded": 748, - "observedDomContentLoadedTs": 451227547, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 735, - "observedFirstVisualChangeTs": 451214321, - "observedLastVisualChange": 1435, - "observedLastVisualChangeTs": 451914321, - "observedSpeedIndex": 1324, - "observedSpeedIndexTs": 451803260 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 59, - "numScripts": 16, - "numStylesheets": 2, - "numFonts": 4, - "numTasks": 1481, - "numTasksOver10ms": 8, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.2970000000000002, - "throughput": 96530869.80589302, - "maxRtt": 80.63499999999999, - "maxServerLatency": 101.482, - "totalByteWeight": 6321686, - "totalTaskTime": 480.81299999999857, - "mainDocumentTransferSize": 7768 - } - ] - } - } - } - }, - { - "requestedUrl": "https://vae.gouv.fr/admin", - "finalUrl": "https://auth.vae.gouv.fr/realms/reva/protocol/openid-connect/auth?client_id=reva-admin&redirect_uri=https%3A%2F%2Fvae.gouv.fr%2Fadmin&state=2af84c90-ce88-4379-87d0-68bceeb3f01e&response_mode=fragment&response_type=code&scope=openid&nonce=38797422-fb13-4495-8375-63da985ec7b0", - "fetchTime": "2024-07-21T12:31:11.295Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://vae.gouv.fr/admin) was redirected to https://auth.vae.gouv.fr/realms/reva/protocol/openid-connect/auth?client_id=reva-admin&redirect_uri=https%3A%2F%2Fvae.gouv.fr%2Fadmin&state=2af84c90-ce88-4379-87d0-68bceeb3f01e&response_mode=fragment&response_type=code&scope=openid&nonce=38797422-fb13-4495-8375-63da985ec7b0. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.35 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 + "score": 0.88 }, "pwa": { "title": "PWA", @@ -435578,7 +434822,7 @@ "navigation" ], "id": "pwa", - "score": 0.5 + "score": 0.3 } }, "audits": { @@ -435588,53 +434832,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8413, + "numericValue": 25609, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5444, - "firstMeaningfulPaint": 5560, - "largestContentfulPaint": 10426, - "interactive": 8413, - "speedIndex": 5444, - "totalBlockingTime": 848, - "maxPotentialFID": 727, - "cumulativeLayoutShift": 0.027272961934407557, - "cumulativeLayoutShiftMainFrame": 0.027272961934407557, - "totalCumulativeLayoutShift": 0.028014673868815107, + "firstContentfulPaint": 16564, + "firstMeaningfulPaint": 19189, + "largestContentfulPaint": 21589, + "interactive": 25609, + "speedIndex": 16564, + "totalBlockingTime": 7865, + "maxPotentialFID": 5877, + "cumulativeLayoutShift": 0.0016300862630208332, + "cumulativeLayoutShiftMainFrame": 0.0016300862630208332, + "totalCumulativeLayoutShift": 0.0016300862630208332, "observedTimeOrigin": 0, - "observedTimeOriginTs": 469344779, + "observedTimeOriginTs": 416325805, "observedNavigationStart": 0, - "observedNavigationStartTs": 469344779, - "observedFirstPaint": 460, - "observedFirstPaintTs": 469804499, - "observedFirstContentfulPaint": 460, - "observedFirstContentfulPaintTs": 469804499, - "observedFirstContentfulPaintAllFrames": 460, - "observedFirstContentfulPaintAllFramesTs": 469804499, - "observedFirstMeaningfulPaint": 460, - "observedFirstMeaningfulPaintTs": 469804499, - "observedLargestContentfulPaint": 695, - "observedLargestContentfulPaintTs": 470039573, - "observedLargestContentfulPaintAllFrames": 695, - "observedLargestContentfulPaintAllFramesTs": 470039573, - "observedTraceEnd": 2996, - "observedTraceEndTs": 472340744, - "observedLoad": 436, - "observedLoadTs": 469780695, - "observedDomContentLoaded": 101, - "observedDomContentLoadedTs": 469445744, - "observedCumulativeLayoutShift": 0.027272961934407557, - "observedCumulativeLayoutShiftMainFrame": 0.027272961934407557, - "observedTotalCumulativeLayoutShift": 0.028014673868815107, - "observedFirstVisualChange": 3, - "observedFirstVisualChangeTs": 469347779, - "observedLastVisualChange": 2952, - "observedLastVisualChangeTs": 472296779, - "observedSpeedIndex": 482, - "observedSpeedIndexTs": 469826706 + "observedNavigationStartTs": 416325805, + "observedFirstPaint": 854, + "observedFirstPaintTs": 417179757, + "observedFirstContentfulPaint": 854, + "observedFirstContentfulPaintTs": 417179757, + "observedFirstContentfulPaintAllFrames": 854, + "observedFirstContentfulPaintAllFramesTs": 417179757, + "observedFirstMeaningfulPaint": 1028, + "observedFirstMeaningfulPaintTs": 417353603, + "observedLargestContentfulPaint": 1028, + "observedLargestContentfulPaintTs": 417353603, + "observedLargestContentfulPaintAllFrames": 1028, + "observedLargestContentfulPaintAllFramesTs": 417353603, + "observedTraceEnd": 8121, + "observedTraceEndTs": 424446651, + "observedLoad": 1152, + "observedLoadTs": 417477846, + "observedDomContentLoaded": 842, + "observedDomContentLoadedTs": 417168267, + "observedCumulativeLayoutShift": 0.0016300862630208332, + "observedCumulativeLayoutShiftMainFrame": 0.0016300862630208332, + "observedTotalCumulativeLayoutShift": 0.0016300862630208332, + "observedFirstVisualChange": 857, + "observedFirstVisualChangeTs": 417182805, + "observedLastVisualChange": 1040, + "observedLastVisualChangeTs": 417365805, + "observedSpeedIndex": 990, + "observedSpeedIndexTs": 417315307 }, { "lcpInvalidated": false @@ -435652,23 +434896,23 @@ "type": "debugdata", "items": [ { - "numRequests": 56, + "numRequests": 52, "numScripts": 3, - "numStylesheets": 5, - "numFonts": 8, - "numTasks": 1108, - "numTasksOver10ms": 10, - "numTasksOver25ms": 7, - "numTasksOver50ms": 5, - "numTasksOver100ms": 3, - "numTasksOver500ms": 0, - "rtt": 1.3279999999999994, - "throughput": 11509377.606239893, - "maxRtt": 83.875, - "maxServerLatency": 124.373, - "totalByteWeight": 1053982, - "totalTaskTime": 833.9089999999974, - "mainDocumentTransferSize": 1078 + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 2064, + "numTasksOver10ms": 21, + "numTasksOver25ms": 14, + "numTasksOver50ms": 8, + "numTasksOver100ms": 6, + "numTasksOver500ms": 1, + "rtt": 28.769, + "throughput": 16820751.715602797, + "maxRtt": 106.34, + "maxServerLatency": 63.64600000000001, + "totalByteWeight": 6714028, + "totalTaskTime": 3186.878999999999, + "mainDocumentTransferSize": 1569 } ] } @@ -435678,7 +434922,7 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { "grade": "A" @@ -435687,78 +434931,102 @@ "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : partiellement conforme", - "declarationUrl": "https://vae.gouv.fr/declaration-accessibilite/" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://panoramax.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", "maxScore": 4, - "score": 4, - "missingWords": [], + "score": 2, + "missingWords": [ + "directeur (ou) directrice", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement" + ], "missingTrackers": [], - "declarationUrl": "https://vae.gouv.fr/mentions-legales/" + "declarationUrl": "https://panoramax.fr/mentions-legales" }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://vae.gouv.fr/confidentialite/" + "missingTrackers": [] } ], "betagouv": { - "id": "reva", + "id": "vues-immersives-libres", "type": "startup", "attributes": { - "name": "France VAE", - "pitch": "Faciliter l'obtention d'un diplôme en Validation des Acquis d'Expérience (VAE)", - "stats_url": "https://metabase.vae.gouv.fr/public/dashboard/951df0e6-757d-4491-928e-2cd2d6beafec", - "link": "https://vae.gouv.fr", - "repository": "https://github.com/SocialGouv/reva", - "contact": "olivier.gerard@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20contexte%0A%0AInstaur%C3%A9e%20par%20la%20loi%20de%20modernisation%20sociale%20du%2017%2F01%2F2002%2C%20la%20VAE%20est%20la%203%E1%B5%89%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification%20en%20France.%20Elle%20repose%20sur%20un%20principe%20fort%C2%A0%3A%20celui%20de%20reconna%C3%AEtre%20que%20les%20comp%C3%A9tences%20acquises%20en%20vie%20active%20conf%C3%A8rent%20les%20m%C3%AAmes%20comp%C3%A9tences%20que%20celles%20acquises%20en%20formation%20initiale%20et%20continue%20et%20en%20alternance.%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0A%20Or%20cette%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification%20peine%20%C3%A0%20trouver%20sa%20place%20dans%20l%E2%80%99%C3%A9cosyst%C3%A8me%20de%20la%20formation%20professionnelle%20du%20fait%2C%20entre%20autres%2C%20de%20la%20multiplicit%C3%A9%20de%20ses%20intervenants%2C%20de%20ses%20process%20et%20du%20fait%20de%20ses%20d%C3%A9lais.%0A%0A%23%23%20Notre%20solution%0A%0AFrance%20VAE%20%28anciennement%20REVA%29%20porte%20l%E2%80%99ambition%20de%20d%C3%A9velopper%20et%20fluidifier%20l%E2%80%99acc%C3%A8s%20%C3%A0%20la%20VAE%20et%20d%E2%80%99engager%20la%20soci%C3%A9t%C3%A9%20fran%C3%A7aise%20dans%20un%20syst%C3%A8me%20de%20reconnaissance%20des%20comp%C3%A9tences%20tout%20au%20long%20de%20la%20vie.%0A%0A%C3%80%20partir%20d%E2%80%99un%20%C3%A9chantillon%20d%E2%80%99utilisateurs%20accompagn%C3%A9s%20de%20bout%20en%20bout%2C%20une%201re%20phase%20d%E2%80%99investigation%20%28septembre%202021%2F%20f%C3%A9vrier%202022%29%20a%20%C3%A9t%C3%A9%20conduite%20afin%20de%20proposer%20au%20Ministre%20du%20Travail%2C%20la%20cr%C3%A9ation%20d%E2%80%99un%20plateforme%20num%C3%A9rique%20qui%20pourrait%20accompagner%20une%20reforme%20l%C3%A9gislative%20et%20r%C3%A9glementaire%20en%20profondeur%20de%20la%20VAE.%20L%E2%80%99ambition%20est%20de%20cr%C3%A9er%20un%20espace%20centr%C3%A9%20utilisateur%20dans%20lequel%20l%E2%80%99ensemble%20de%20l%E2%80%99%C3%A9cosyst%C3%A8me%20pourra%20s%E2%80%99interfacer%20avec%20l%E2%80%99usager%20candidat%20%C3%A0%20la%20VAE.%0A%0AUne%201re%20exp%C3%A9rimentation%20%22dite%20en%20droits%20futurs%22%20%282700%20usagers%29%20a%20%C3%A9t%C3%A9%20conduite%20de%20juin%202022%20%C3%A0%20juin%202023%20afin%20de%20permettre%20la%20mise%20en%20test%20d%E2%80%99une%20plateforme%20num%C3%A9rique%20partag%C3%A9e%20entre%20les%20certificateurs%2C%20les%20services%20publics%2C%20les%20organismes%20de%20formation%20et%20l%E2%80%99utilisateur%2C%20posant%20les%20bases%20de%20la%20future%20r%C3%A9forme%20de%20la%20VAE.%0A%0AL%E2%80%99objectif%20de%20ce%20nouveau%20portail%20%C3%A9tait%20de%20lever%20les%20irritants%2C%20d%E2%80%99assurer%20une%20mise%20en%20visibilit%C3%A9%20des%20comp%C3%A9tences%20tout%20au%20long%20de%20la%20vie%20au%20service%20de%20la%20s%C3%A9curisation%20des%20parcours%2C%20mais%20%C3%A9galement%20d%E2%80%99apporter%20une%20transparence%20de%20la%20mesure%20de%20l%E2%80%99efficience%20du%20nouveau%20dispositif.%20%0A%0AIl%20a%20%C3%A9t%C3%A9%20con%C3%A7u%20comme%20une%20offre%20de%20service%20compl%C3%A8te%20permettant%20la%20convergence%2C%20au%20sein%20d%E2%80%99un%20syst%C3%A8me%20d%C3%A9di%C3%A9%2C%20des%20attentes%20du%20candidat%20vis-%C3%A0-vis%20de%20son%20parcours%20et%20de%20celles%20des%20parties%20prenantes.%20La%20plateforme%20num%C3%A9rique%20rend%20possible%20une%20v%C3%A9ritable%20logique%20de%20parcours%20pour%20le%20candidat%20et%20facilite%20la%20gestion%20de%20cette%20voie%20d%E2%80%99acc%C3%A8s%20%C3%A0%20la%20certification.%0A%0ASuite%20%C3%A0%20la%20remise%20de%20deux%20rapports%20d%E2%80%99%C3%A9valuation%20et%20de%20mesure%20d%E2%80%99impacts%20%C3%A0%20la%20Ministre%20du%20travail%20et%20conduits%20par%20un%20cabinet%20externe%2C%20le%20parlement%20a%20%C3%A9t%C3%A9%20saisi%20d%E2%80%99un%20nouveau%20projet%20de%20loi%20sur%20la%20VAE%20qui%20a%20%C3%A9t%C3%A9%20d%C3%A9finitivement%20approuv%C3%A9%20et%20publi%C3%A9%20au%20JO%20le%2021%20d%C3%A9cembre%202022.%20Outre%20les%20simplifications%20r%C3%A9glementaires%20inscrites%20dans%20la%20loi%2C%20le%20texte%20pr%C3%A9voit%20la%20cr%C3%A9ation%20d%E2%80%99un%20nouveau%20service%20public%20de%20la%20VAE%20dont%20le%20pivot%20central%20sera%20la%20plateforme%20num%C3%A9rique%20France%20VAE.%0A%0AL%E2%80%99%C3%A9quipe%20a%20donc%20lanc%C3%A9%20en%20juillet%202023%20une%20derni%C3%A8re%20et%203eme%20phase%20dite%20de%20pr%C3%A9figuration%20du%20service%20public%20avec%20220%20certifications%20disponibles%20et%20plus%20de%20500%20architectes%20Accompagnateurs%20de%20Parcours%20qui%20permettent%20d%E2%80%99accompagner%20pr%C3%A8s%20de%205000%20usagers%20par%20mois.%20Reva%20a%20donc%20disparu%20au%20profit%20de%20France%20VAE.%20Cette%203eme%20phrase%20a%20permis%20de%20continuer%20d%E2%80%99it%C3%A9rer%20pour%20am%C3%A9liorer%20le%20service%20aux%20usagers%2C%20%C3%A9prouver%20la%20plateforme%2C%20mais%20%C3%A9galement%20alimenter%20la%20r%C3%A9flexion%20du%20Minist%C3%A8re%20du%20Travail%20en%20vue%20d%E2%80%99%C3%A9crire%20le%20d%C3%A9cret%20d%E2%80%99application%20de%20la%20loi%20qui%20a%20%C3%A9t%C3%A9%20publi%C3%A9%20au%20JO%20le%20%2028%20d%C3%A9cembre%202023.%0A%0ALa%20p%C3%A9riode%20de%20pr%C3%A9figuration%20de%20France%20VAE%20va%20se%20d%C3%A9rouler%20une%20grande%20partie%20de%20l%E2%80%99ann%C3%A9e%202024%2C%20ce%20qui%20permettra%20%C3%A0%20l%E2%80%99%C3%A9quipe%20de%20poursuivre%20son%20travail%20d%E2%80%99it%C3%A9ration%20afin%20de%20contribuer%20%C3%A0%20l%E2%80%99%C3%A9criture%20des%20Arr%C3%AAt%C3%A9s%20de%20mise%20en%20oeuvre%20du%20service%20public%20et%20de%20sa%20g%C3%A9n%C3%A9ralisation%20en%202025.%0A%0ALa%20r%C3%A9forme%20de%20la%20VAE%20a%20%C3%A9t%C3%A9%20int%C3%A9gr%C3%A9e%20comme%20une%20politique%20prioritaire%20du%20Gouvernement.", - "events": [], + "name": "Panoramax - Base vues immersives libres", + "pitch": "L’alternative libre pour photo-cartographier les territoires", + "stats_url": "https://panoramax.fr/stats", + "link": "https://panoramax.fr/", + "repository": "https://gitlab.com/panoramax", + "contact": "panoramax@panoramax.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALes%20collectivit%C3%A9s%20locales%2C%20les%20gestionnaires%20de%20r%C3%A9seaux%20et%20d%E2%80%99autres%20acteurs%20ont%20besoin%20d%E2%80%99actualiser%20en%20permanence%20l%E2%80%99%2A%2Ainventaire%20du%20patrimoine%20mobilier%20urbain%20et%20des%20voiries%2A%2A%20%3A%20panneaux%2C%20poteaux%2C%20affleurants%2C%20%C3%A9quipements%2C%20pistes%20cyclables%2C%20trottoirs%20etc.%0A%0A%23%23%20Probl%C3%A8me%0A%0AHistoriquement%20et%20encore%20majoritairement%20aujourd%E2%80%99hui%20cela%20se%20traduit%20par%20la%20mobilisation%20de%20nombreux%20agents%20qui%20vont%20lever%2Fv%C3%A9rifier%20ces%20%C3%A9l%C3%A9ments%20sur%20le%20terrain%20engendrant%20des%20co%C3%BBts%20et%20d%C3%A9placements%20inutiles%2C%20la%20mise%20en%20danger%20des%20personnels%2C%20des%20pertes%20de%20temps%E2%80%A6%0AAujourd%27hui%20l%27utilisation%20de%20photos%2Fvues%20immersives%20de%20rues%20via%20Google%20StreetView%20et%2Fou%20Mapillary%2C%20ou%20via%20des%20prestations%20priv%C3%A9es%20%28ESRI%2FCyclom%C3%A9dia%2C%20SOGEFI%20etc.%29%20ouvre%20pas%20mal%20d%27opportunit%C3%A9s%20en%20termes%20de%20rationalisation%20des%20d%C3%A9placements%2C%20facilitation%20et%20acc%C3%A9l%C3%A9ration%20du%20recueil%20d%27information%20n%C3%A9cessaire%20aux%20traitements%20de%20certaines%20proc%C3%A9dures%20et%20finalement%20d%27am%C3%A9lioration%20de%20la%20connaissance%20du%20territoire.%0ALa%20collecte%2C%20le%20partage%20et%20l%27utilisation%20de%20ces%20donn%C3%A9es%20restent%20compliqu%C3%A9s%20%3A%20probl%C3%A8me%20de%20licences%2C%20d%C3%A9pendance%20%C3%A0%20des%20soci%C3%A9t%C3%A9s%20priv%C3%A9es%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20orient%C3%A9e%20vers%20l%27ouverture%20des%20donn%C3%A9es%20ou%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20claire%2C%20difficult%C3%A9%20%C3%A0%20partager%20des%20bonnes%20pratiques%2C%20%C3%A0%20s%27assurer%20de%20la%20p%C3%A9rennit%C3%A9%20d%27une%20solution%20pour%20y%20appuyer%20des%20usages%20m%C3%A9tiers%20%C3%A0%20partager%20etc.%0A%0A%23%23%20Investigation%20-%20termin%C3%A9e%0A%0A%2A%2AConstat%20initial%20%3A%2A%2A%20Les%20diff%C3%A9rentes%20communaut%C3%A9s%20%28AITF%2C%20OSM%2C%20Gestionnaires%20de%20r%C3%A9seaux%2C%20IGN%2C%20etc.%29%20bouillonnent%20d%27initiatives%20sur%20le%20sujet%2C%20mais%20pour%20le%20moment%20rien%20de%20p%C3%A9renne%20ne%20semble%20se%20d%C3%A9gager.%0AL%27investigation%20doit%20permettre%20d%27identifier%20s%27il%20y%20a%20la%20place%20pour%20cr%C3%A9er%20un%20g%C3%A9ocommun%20de%20base%20de%20vues%20immersives%20libres%20%C3%A0%20c%C3%B4t%C3%A9%20des%20solutions%20non%20libres%20existantes%2C%20et%20le%20cas%20%C3%A9ch%C3%A9ant%20d%27identifier%20ce%20qui%20bloque%20l%27%C3%A9mergence%20du%20commun%20%28manques%20%C3%A0%20combler%20ou%20freins%29%20pour%20y%20trouver%20des%20rem%C3%A8des%20permettant%20de%20rassembler%20les%20%C3%A9nergies%20des%20diff%C3%A9rents%20acteurs%20et%20proposer%20enfin%20une%20alternative%20libre%20pour%20tous%2C%20sur%20laquelle%20on%20construira%20des%20usages%20partag%C3%A9s.%0A%0ALors%20de%20l%27investigation%20ont%20%C3%A9t%C3%A9%20interrog%C3%A9es%20%3A%0A%2A%20%2A%2Ades%20collectivit%C3%A9s%2A%2A%20%3A%20premi%C3%A8res%20utilisatrices%20du%20produit%2C%20et%20premi%C3%A8res%20contibutrices%20sans%20doute%20en%20terme%20de%20collecte%20%0A%2A%20%2A%2Ades%20d%C3%A9veloppeurs%2A%2A%20%3A%20ceux%20qui%20pourront%20faire%20vivre%20le%20projet%20en%20y%20adossant%20des%20nouveaux%20services%0A%2A%20%2A%2Ades%20communaut%C3%A9s%20%28OSM%2C%20AITF%29%2A%2A%20%3A%20celles%20qui%20pourront%20animer%20le%20commun%2C%20le%20faire%20conna%C3%AEtre%2C%20pousser%20%C3%A0%20le%20faire%20%C3%A9voluer%0A%2A%20%2A%2Ades%20gestionnaires%20de%20r%C3%A9seaux%2A%2A%20%3A%20utilisateurs%20et%20%C3%A9ventuels%20contributeurs%20%C3%A9galement%0A%2A%20%2A%2Ades%20acteurs%20du%20secteurs%20priv%C3%A9s%20%28logiciels%20et%2Fou%20collecte%29%2A%2A%20%3A%20ceux%20qui%20peuvent%20faire%20%C3%A9voluer%20leurs%20pratiques%20pour%20faciliter%20la%20mise%20en%20place%20du%20commun%20ou%20le%20rendre%20inutile.%0A%2A%20%2A%2Ales%20plate-formes%20priv%C3%A9es%2A%2A%20%3A%20Mapillary%20et%20Kartaview%20pour%20voir%20si%20on%20pouvait%20pr%C3%A9voir%20de%20travailler%20ensemble%0A%2A%20%2A%2AAutres%20projets%2A%2A%20%3A%20qui%20pourraient%20proposer%20des%20nouveaux%20usages%20et%20aider%20%C3%A0%20valoriser%2Ffaire%20vivre%20le%20commun%0A%0AL%27investigation%20a%20permis%20de%20convaincre%20le%20sponsor%20qu%27il%20%C3%A9tait%20pertinent%20de%20favoriser%20l%27%C3%A9mergence%20d%27un%20g%C3%A9ocommun%20de%20vues%20immersives.%20Beaucoup%20de%20contributeurs%2Fr%C3%A9utilisateurs%20potentiels%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9s.%20Un%20noyau%20d%27outils%20num%C3%A9riques%20et%20de%20r%C3%A8gles%20de%20bases%20%C3%A0%20sp%C3%A9cifier%20pour%20permettre%20%C3%A0%20ce%20commun%20de%20pleinement%20exister%20a%20%C3%A9t%C3%A9%20d%C3%A9termin%C3%A9%20%3A%20il%20sera%20l%27objet%20de%20la%20phase%20de%20construction.%0APendant%20la%20phase%20d%27investigation%2C%20un%20nom%20a%20%C3%A9t%C3%A9%20trouv%C3%A9%20au%20%22produit%22%20%28commun%29%20via%20un%20processus%20participatif%20%3A%20Panoramax%21%0A%0A%23%23%20Strat%C3%A9gie%0A%0ADeux%20axes%20forts%20%3A%20%0A%2A%20%2A%2ACr%C3%A9er%20une%20bo%C3%AEte%20%C3%A0%20outils%20num%C3%A9riques%20de%20base%20pour%20alimenter%2C%20g%C3%A9rer%20et%20partager%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9velopper%20un%20applicatif%20ou%20d%27une%20brique%20logicielle%20pour%20cr%C3%A9er%28d%C3%A9ployer%29%20une%20instance%20et%20son%20catalogue%0A%20%20%20%20-%20Mettre%20en%20place%20une%20brique%20logicielle%20d%27anonymisation%20des%20images%20%28floutage%20personnes%20et%20v%C3%A9hicules%29%0A%20%20%20%20-%20D%C3%A9velopper%20des%20utils%2FAPI%20pour%20alimenter%2Finterroger%20la%20base%20de%20vues%20de%20Panoramax%0A%20%20%20%20-%20Proposer%20une%20ou%20plusieurs%20instances%20de%20stockage%20ouvertes%0A%0A%2A%20%2A%2AAnimer%20le%20g%C3%A9ocommun%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9finir%20la%20gouvernance%20et%20ses%20r%C3%A8gles%0A%20%20%20%20-%20D%C3%A9finir%20les%20standards%20du%20commun%20%28catalogue%2C%20donn%C3%A9es%29%20et%20les%20licences%20%28codes%2C%20donn%C3%A9es%29%0A%20%20%20%20-%20Proposer%20des%20guides%20de%20bonnes%20pratiques%2C%20des%20outils%20de%20r%C3%A9f%C3%A9rence%20et%20des%20r%C3%A9sultats%20de%20tests%20de%20ces%20outils%20%28performance%29%2C%20des%20tutoriels%20et%20des%20exemples%20de%20cas%20d%27usages%0A%20%20%20%20-%20Mettre%20en%20place%20des%20argumentaires%20pour%20donner%20envie%20de%20contribuer%20et%20proposer%20des%20mod%C3%A8les%20%C3%A9conomiques%20adapt%C3%A9s%20%C3%A0%20diff%C3%A9rentes%20situations%20pour%20faciliter%20la%20contribution%0A%20%20%20%20-%20Organiser%20des%20%C3%A9v%C3%A9nements%20pour%20faire%20conna%C3%AEtre%20Panoramax%20et%20encourager%20la%20contribution%20%28GT%2C%20Openlabs%2C%20Panoramax%20Party%20etc.%29%0A%20%20%20%20-%20R%C3%A9aliser%20un%20support%20technique%20%0A%20%20%20%20-%20Cr%C3%A9er%20un%20site%20web%20vitrine%20du%20commun%20comme%20point%20central%20pour%20trouver%20les%20informations%20et%20outils%20relatifs%20%C3%A0%20Panoramax%0A%0A%23%23%20Indicateurs%0A%0ADes%20indicateurs%20encore%20en%20cours%20de%20d%C3%A9finition%20pour%20mesurer%20la%20mont%C3%A9e%20en%20puissance%20du%20commun%20%28nombre%20de%20vues%2C%20de%20contributions%2C%20de%20km%20lin%C3%A9aires%20couverts%2C%20de%20services%20%C3%A0%20valeur%20ajout%C3%A9e%20cr%C3%A9%C3%A9s%20%C3%A0%20partir%20des%20donn%C3%A9es%20du%20commun%20etc.%29%20et%20l%27impact%20en%20termes%20de%20solution%20%28r%C3%A9duction%20des%20d%C3%A9placements%20d%27agents%20publics%2C%20r%C3%A9utilisations%20diff%C3%A9rentes%2C%20etc.%29.", + "events": [ + { + "name": "committee", + "date": "2022-10-17", + "comment": "Lancement en phase de construction" + }, + { + "name": "committee", + "date": "2023-07-12", + "comment": "" + }, + { + "name": "committee", + "date": "2023-11-06", + "comment": "Lancement en phase d'accélération" + }, + { + "name": "committee", + "date": "2024-06-03", + "comment": "" + }, + { + "name": "committee", + "date": "2024-11-13", + "comment": "" + } + ], "phases": [ { "name": "investigation", - "start": "2021-05-17", - "end": "2022-03-01" + "start": "2022-06-24", + "end": "" }, { "name": "construction", - "start": "2022-06-01", - "end": "2023-06-01" + "start": "2022-10-17", + "end": "" }, { "name": "acceleration", - "start": "2023-07-01", - "end": "2024-04-01" - }, - { - "name": "success", - "start": "2024-04-01", + "start": "2023-11-06", "end": "" } ], "sponsors": [ - "mtei" + "dinum", + "ign" ], "thematiques": [ - "Travail / Emploi", - "Formation" + "Open-Data", + "Outil technique" ], - "dashlord_url": "https://dashlord.incubateur.net/url/vae-gouv-fr/", - "accessibility_status": "partiellement conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/panoramax-fr/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "sgmas" + "id": "fab-geocommuns" } } } @@ -435767,25 +435035,23 @@ { "width": 1920, "height": 1080, - "url": "https://vae.gouv.fr", - "size": 7630.243, - "nodes": 463, - "requests": 63, + "url": "https://panoramax.fr", + "size": 10790.678, + "nodes": 628, + "requests": 69, "grade": "D", - "score": 52, - "ges": 1.96, - "water": 2.94, + "score": 44, + "ges": 2.12, + "water": 3.18, "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:42:47.930025", + "date": "2024-12-01 17:06:13.529581", "page_type": null } ], "sonarcloud": null, - "dsfr": { - "detected": true - }, + "dsfr": null, "summary": { - "httpGrade": "B+", + "httpGrade": "D", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -435794,67 +435060,74 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T07:22:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.54, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.92, - "lighthouse_accessibilityGrade": "A", + "testsslExpireDate": "2025-02-07T14:22:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "F", + "trackersCount": 11, + "lighthouse_performance": 0.15, + "lighthouse_performanceGrade": "F", + "lighthouse_accessibility": 0.79, + "lighthouse_accessibilityGrade": "B", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 0.88, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.6, - "lighthouse_pwaGrade": "C", - "statsGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "B", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "D", - "dsfrGrade": "A" + "declaration-a11y": "C", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "D" } }, { "404": null, - "url": "https://selexpert.anje-justice.fr", - "category": "justice", - "betaId": "experts", + "url": "https://panoramax.ign.fr", + "title": "Instance panoramax de l'IGN", + "category": "fab-geocommuns", + "betaId": "vues-immersives-libres", + "tags": [ + "geocommun" + ], + "tools": { + "dsfr": false + }, + "docker": [ + "geovisio/api", + "geovisio/website" + ], "http": { - "url": "https://selexpert.anje-justice.fr", + "url": "https://panoramax.ign.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 12:47:06 GMT", - "grade": "D", + "end_time": "Sun, 20 Oct 2024 13:14:00 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Access-Control-Allow-Credentials": "true", - "Access-Control-Allow-Headers": "*", - "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS", - "Access-Control-Allow-Origin": "*", + "Cache-Control": "public, max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 12:47:05 GMT", - "ETag": "W/\"6707eb9a-e1ea\"", - "Last-Modified": "Thu, 10 Oct 2024 14:58:34 GMT", - "Server": "nginx/1.27.2", - "Sozu-Id": "01JAMZF2Z8FVAHB184DK69W8EW", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 13:13:59 GMT", + "ETag": "W/\"56a-1929a944408\"", + "Last-Modified": "Thu, 17 Oct 2024 13:04:21 GMT", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding" + "X-Powered-By": "Express", + "X-Request-ID": "6ec8100e-def0-4bba-8d55-6e2924f3b61a, 6ec8100e-def0-4bba-8d55-6e2924f3b61a", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57063716, - "score": 30, - "start_time": "Sun, 20 Oct 2024 12:47:04 GMT", + "scan_id": 57065013, + "score": 50, + "start_time": "Sun, 20 Oct 2024 13:13:58 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, + "tests_failed": 3, + "tests_passed": 7, "tests_quantity": 10, "details": { "content-security-policy": { @@ -435889,25 +435162,25 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "*", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://selexpert.anje-justice.fr/", + "destination": "https://panoramax.ign.fr/", "redirects": true, "route": [ - "http://selexpert.anje-justice.fr/", - "https://selexpert.anje-justice.fr/" + "http://panoramax.ign.fr/", + "https://panoramax.ign.fr/" ], "status_code": 200 }, @@ -435933,16 +435206,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, + "data": "max-age=31536000", "includeSubDomains": false, - "max-age": null, + "max-age": 31536000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -435969,251 +435242,172 @@ "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "etzs", - "url": "https://selexpert.anje-justice.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T00:31:36Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:56:58Z", - "next_check_at": "2024-11-24T16:57:58Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://selexpert.anje-justice.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:53:59Z", - "expires_at": "2025-01-20T11:39:20Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 35, - "connection": 121, - "handshake": 125, - "response": 123, - "total": 404 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "selexpert.anje-justice.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "n4us", + "url": "https://panoramax.ign.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T10:55:42Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:19:00Z", + "next_check_at": "2024-12-01T17:19:59Z", + "created_at": "2024-01-28T01:09:37Z", + "mute_until": null, + "favicon_url": "https://panoramax.ign.fr/assets/favicon--EcUXM57.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:13:00Z", + "expires_at": "2025-02-28T07:17:40Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 116, + "connection": 131, + "handshake": 137, + "response": 150, + "total": 535 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "panoramax.ign.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ { "service": { - "name": "unknown", - "id": "5962", + "name": "http", + "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "tcpwrapped", - "id": "9999", + "name": "https", + "id": "443", "vulnerabilities": [] } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436221,7 +435415,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436229,7 +435423,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436237,7 +435431,7 @@ }, { "id": "cipherlist_LOW", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436245,7 +435439,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436253,7 +435447,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436261,455 +435455,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "id": "cipherorder_TLSv1_2", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-10-22 11:39" + "finding": "2024-11-30 07:17" }, { "id": "cert_notAfter", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-20 11:39" + "finding": "2025-02-28 07:17" }, { "id": "cert_extlifeSpan", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1732467239" + "finding": "1733073317" }, { - "id": "HSTS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "id": "HSTS_time", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "nginx/1.27.2" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "Access-Control-Allow-Origin", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "id": "Cache-Control", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "*" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -436717,7 +435911,7 @@ }, { "id": "heartbleed", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -436726,7 +435920,7 @@ }, { "id": "CCS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -436735,16 +435929,16 @@ }, { "id": "ticketbleed", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -436753,7 +435947,7 @@ }, { "id": "secure_renego", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -436761,16 +435955,16 @@ }, { "id": "secure_client_renego", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -436779,7 +435973,7 @@ }, { "id": "BREACH", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -436788,7 +435982,7 @@ }, { "id": "POODLE_SSL", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -436797,14 +435991,14 @@ }, { "id": "fallback_SCSV", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -436813,7 +436007,7 @@ }, { "id": "FREAK", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -436822,7 +436016,7 @@ }, { "id": "DROWN", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -436831,16 +436025,16 @@ }, { "id": "DROWN_hint", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9275A6DE9ECDA274903575B8FD41DE0854DDCDF291A8FEAA561C807247B3FE20" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A2FE372A1260849D21A8E7E500E57F97709191B03DFEEC43A66EDC5D8CA6852E" }, { "id": "LOGJAM", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -436849,16 +436043,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -436867,7 +436061,7 @@ }, { "id": "LUCKY13", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -436876,7 +436070,7 @@ }, { "id": "winshock", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -436885,7 +436079,7 @@ }, { "id": "RC4", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -436894,1990 +436088,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "selexpert.anje-justice.fr/91.208.207.214", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "selexpert.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "102" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://prod.backend.selexpert.app.cc.anje-justice.fr/api/auth/user-info" - } - ], - "cookies": [ - { - "name": "_pk_ses.47.3a5f", - "value": "1", - "domain": "selexpert.anje-justice.fr", - "path": "/", - "expires": 1732468926, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.47.3a5f", - "value": "9ec6dbe367d63658.1732467127.", - "domain": "selexpert.anje-justice.fr", - "path": "/", - "expires": 1766422327, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "access-control-allow-credentials": "true", - "access-control-allow-headers": "*", - "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS", - "access-control-allow-origin": "*", - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 16:52:04 GMT", - "etag": "W/\"673a2fda-e1ea\"", - "last-modified": "Sun, 17 Nov 2024 18:03:06 GMT", - "server": "nginx/1.27.2", - "sozu-id": "01JDFHCSTN1QTEH8RN8X2TRJ4Q", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding" - }, - "endpoints": [ - { - "hostname": "selexpert.anje-justice.fr", - "ip": "91.208.207.214", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "prod.backend.selexpert.app.cc.anje-justice.fr", - "ip": "91.208.207.214", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://selexpert.anje-justice.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "typescript", - "name": "TypeScript", - "description": "TypeScript is an open-source language which builds on JavaScript by adding static type definitions.", - "confidence": 100, - "version": null, - "icon": "TypeScript.svg", - "website": "https://www.typescriptlang.org", - "cpe": null, - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "angular", - "name": "Angular", - "description": "Angular is a TypeScript-based open-source web application framework led by the Angular Team at Google.", - "confidence": 100, - "version": null, - "icon": "Angular.svg", - "website": "https://angular.io", - "cpe": "cpe:2.3:a:angularjs:angular:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "zone-js", - "name": "Zone.js", - "description": null, - "confidence": 100, - "version": null, - "icon": "Angular.svg", - "website": "https://github.com/angular/angular/tree/master/packages/zone.js", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.27.2", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://selexpert.anje-justice.fr/", - "finalUrl": "https://selexpert.anje-justice.fr/", - "fetchTime": "2024-11-24T16:51:37.425Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.67 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.85 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4581, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3819, - "firstMeaningfulPaint": 4048, - "largestContentfulPaint": 5147, - "interactive": 4581, - "speedIndex": 5453, - "totalBlockingTime": 79, - "maxPotentialFID": 174, - "cumulativeLayoutShift": 0.004247568766276042, - "cumulativeLayoutShiftMainFrame": 0.004247568766276042, - "totalCumulativeLayoutShift": 0.004247568766276042, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 430919485, - "observedNavigationStart": 0, - "observedNavigationStartTs": 430919485, - "observedFirstPaint": 2166, - "observedFirstPaintTs": 433085724, - "observedFirstContentfulPaint": 2166, - "observedFirstContentfulPaintTs": 433085724, - "observedFirstContentfulPaintAllFrames": 2166, - "observedFirstContentfulPaintAllFramesTs": 433085724, - "observedFirstMeaningfulPaint": 2166, - "observedFirstMeaningfulPaintTs": 433085724, - "observedLargestContentfulPaint": 2320, - "observedLargestContentfulPaintTs": 433239062, - "observedLargestContentfulPaintAllFrames": 2320, - "observedLargestContentfulPaintAllFramesTs": 433239062, - "observedTraceEnd": 5057, - "observedTraceEndTs": 435976349, - "observedLoad": 2580, - "observedLoadTs": 433499526, - "observedDomContentLoaded": 1617, - "observedDomContentLoadedTs": 432536752, - "observedCumulativeLayoutShift": 0.004247568766276042, - "observedCumulativeLayoutShiftMainFrame": 0.004247568766276042, - "observedTotalCumulativeLayoutShift": 0.004247568766276042, - "observedFirstVisualChange": 2179, - "observedFirstVisualChangeTs": 433098485, - "observedLastVisualChange": 2596, - "observedLastVisualChangeTs": 433515485, - "observedSpeedIndex": 2218, - "observedSpeedIndexTs": 433137840 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 25, - "numScripts": 5, - "numStylesheets": 3, - "numFonts": 6, - "numTasks": 1111, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 149.878, - "throughput": 5294829.600548696, - "maxRtt": 152.348, - "maxServerLatency": 3.222000000000037, - "totalByteWeight": 699629, - "totalTaskTime": 338.985999999998, - "mainDocumentTransferSize": 11259 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://selexpert.anje-justice.fr/accessibilite" - }, - "declaration-rgpd": [ + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://selexpert.anje-justice.fr/mentions-legales" + "id": "clientsimulation-java1703", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://selexpert.anje-justice.fr/donnees-personnelles" - } - ], - "betagouv": { - "id": "experts", - "type": "startup", - "attributes": { - "name": "seLEXpert", - "pitch": "Conçu pour les magistrats, les greffiers et les experts, seLEXpert permet une meilleure gestion des procédures grâce à la pré-sélection et la désignation dématérialisées du bon expert, en un temps limité.", - "stats_url": "https://selexpert.anje-justice.fr/stats", - "link": "https://selexpert.anje-justice.fr/", - "repository": "https://git.anje-justice.fr/selexpert", - "contact": "contact@selexpert.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0ADans%20le%20cadre%20d%E2%80%99une%20proc%C3%A9dure%20judiciaire%2C%2040%20%25%20des%20missions%20sont%20refus%C3%A9es%20par%20les%20experts%2C%20faute%20de%20disponibilit%C3%A9%20ou%20d%E2%80%99ad%C3%A9quation%20avec%20leurs%20domaines%20de%20comp%C3%A9tence.%20En%20r%C3%A9sultent%20une%20charge%20de%20travail%20suppl%C3%A9mentaire%20pour%20les%20magistrats%20et%20les%20greffiers%2C%20et%20donc%20des%20retards%20importants%20sur%20le%20d%C3%A9marrage%20des%20proc%C3%A9dures%20pour%20le%20justiciable.%0A%0A%23%23%20Solution%0A%0AUn%20outil%20permettant%20la%20s%C3%A9lection%20%C3%A9clair%C3%A9e%20et%20la%20d%C3%A9signation%20rapide%20des%20experts%20judiciaires%20gr%C3%A2ce%20%C3%A0%20%3A%0A-%20Une%20recherche%20plus%20efficace%20des%20experts%20compatibles%20et%20disponibles%0A-%20Une%20pr%C3%A9-s%C3%A9lection%20d%C3%A9mat%C3%A9rialis%C3%A9e%20garantissant%20l%E2%80%99accord%20de%20principe%20de%20l%E2%80%99expert%20en%20un%20temps%20pr%C3%A9cis%0A-%20Une%20solution%20%C3%A9labor%C3%A9e%20en%20co-construction%20avec%20les%20utilisateurs%0A-%20Une%20interface%20ergonomique%2C%20simple%20et%20rapide%20d%E2%80%99utilisation%0A-%20Des%20informations%20fiables%20et%20mises%20%C3%A0%20jour%20en%20temps%20r%C3%A9el%0A%0A%0A", - "events": [], - "phases": [ - { - "name": "acceleration", - "start": "2024-01-01", - "end": "" - } - ], - "sponsors": [ - "mj" - ], - "thematiques": [ - "Justice" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/selexpert-anje-justice-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-go_1178", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "justice" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://selexpert.anje-justice.fr", - "size": 834.109, - "nodes": 127, - "requests": 21, - "grade": "A", - "score": 84, - "ges": 1.32, - "water": 1.98, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 16:48:33.092311", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "D", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-20T11:39:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.67, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "A", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://element.preprod.eimis.incubateur.net/", - "category": "dinum_produits_interministeriels", - "repositories": [ - "eimis-ans/eimis-synapse" - ], - "tags": [ - "staging", - "ans" - ], - "betaId": "eimis", - "http": { - "url": "https://element.preprod.eimis.incubateur.net/", - "algorithm_version": 3, - "end_time": "Sun, 15 Sep 2024 12:28:01 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Accept-Ranges": "bytes", - "Cache-Control": "no-cache", - "Connection": "keep-alive", - "Content-Length": "7818", - "Content-Type": "text/html", - "Date": "Sun, 15 Sep 2024 12:28:00 GMT", - "ETag": "\"6615175c-1e8a\"", - "Last-Modified": "Tue, 09 Apr 2024 10:24:28 GMT", - "Strict-Transport-Security": "max-age=31536000; includeSubDomains" + "id": "clientsimulation-libressl_283", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "scan_id": 55667278, - "score": 75, - "start_time": "Sun, 15 Sep 2024 12:27:49 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "child-src": [ - "blob:", - "data:", - "*" - ], - "connect-src": [ - "blob:", - "*" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "data:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-src": [ - "blob:", - "data:", - "*" - ], - "img-src": [ - "blob:", - "data:", - "*" - ], - "manifest-src": [ - "'self'" - ], - "media-src": [ - "blob:", - "data:", - "*" - ], - "script-src": [ - "https://www.gstatic.com/recaptcha/", - "https://www.recaptcha.net/recaptcha/", - "'wasm-unsafe-eval'", - "'self'" - ], - "style-src": [ - "'unsafe-inline'", - "'self'" - ], - "worker-src": [ - "blob:", - "'self'" - ] - }, - "http": false, - "meta": true, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://element.preprod.eimis.incubateur.net", - "redirects": true, - "route": [ - "http://element.preprod.eimis.incubateur.net/", - "https://element.preprod.eimis.incubateur.net" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": false, - "meta": true - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "sbs0", - "url": "https://element.preprod.eimis.incubateur.net/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-09-14T17:40:18Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-09-15T12:30:58Z", - "next_check_at": "2024-09-15T12:31:58Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://element.preprod.eimis.incubateur.net/vector-icons/favicon.4c70c2b.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-09-15T12:26:01Z", - "expires_at": "2024-12-10T21:15:17Z", - "valid": true, - "error": null + { + "id": "clientsimulation-openssl_102e", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 209, - "connection": 134, - "handshake": 146, - "response": 138, - "total": 627 - } + { + "id": "clientsimulation-openssl_110l", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "element.preprod.eimis.incubateur.net", - "protocol": "tcp", - "closed_ports": "996", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "NFS-or-IIS", - "id": "1025", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "LSA-or-nterm", - "id": "1026", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "scanProblem", - "ip": "element.preprod.eimis.incubateur.net/", + "id": "clientsimulation-openssl_111d", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", - "severity": "FATAL", - "finding": "No IPv4/IPv6 address(es) for 'element.preprod.eimis.incubateur.net' available" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanTime", - "ip": "element.preprod.eimis.incubateur.net/", + "id": "clientsimulation-openssl_303", + "ip": "panoramax.ign.fr/148.253.75.120", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], - "thirdparties": { - "trackers": null, - "cookies": null, - "headers": null - }, - "wappalyzer": { - "urls": { - "https://element.preprod.eimis.incubateur.net/": { - "status": 0, - "error": "Hostname could not be resolved (element.preprod.eimis.incubateur.net)" - } + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://element.preprod.eimis.incubateur.net/", - "finalUrl": "https://element.preprod.eimis.incubateur.net/mobile_guide/", - "fetchTime": "2024-09-15T12:27:36.702Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://element.preprod.eimis.incubateur.net/) was redirected to https://element.preprod.eimis.incubateur.net/mobile_guide/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.43 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.86 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.91 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 37125, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 32661, - "firstMeaningfulPaint": 32661, - "largestContentfulPaint": 41190, - "interactive": 37125, - "speedIndex": 32661, - "totalBlockingTime": 160, - "maxPotentialFID": 210, - "cumulativeLayoutShift": 0.04476708306206598, - "cumulativeLayoutShiftMainFrame": 0.04476708306206598, - "totalCumulativeLayoutShift": 0.04476708306206598, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 481183809, - "observedNavigationStart": 0, - "observedNavigationStartTs": 481183809, - "observedFirstPaint": 181, - "observedFirstPaintTs": 481364756, - "observedFirstContentfulPaint": 181, - "observedFirstContentfulPaintTs": 481364756, - "observedFirstContentfulPaintAllFrames": 181, - "observedFirstContentfulPaintAllFramesTs": 481364756, - "observedFirstMeaningfulPaint": 181, - "observedFirstMeaningfulPaintTs": 481364756, - "observedLargestContentfulPaint": 475, - "observedLargestContentfulPaintTs": 481659105, - "observedLargestContentfulPaintAllFrames": 475, - "observedLargestContentfulPaintAllFramesTs": 481659105, - "observedTraceEnd": 2820, - "observedTraceEndTs": 484003791, - "observedLoad": 313, - "observedLoadTs": 481496369, - "observedDomContentLoaded": 312, - "observedDomContentLoadedTs": 481496028, - "observedCumulativeLayoutShift": 0.04476708306206598, - "observedCumulativeLayoutShiftMainFrame": 0.04476708306206598, - "observedTotalCumulativeLayoutShift": 0.04476708306206598, - "observedFirstVisualChange": 180, - "observedFirstVisualChangeTs": 481363809, - "observedLastVisualChange": 480, - "observedLastVisualChangeTs": 481663809, - "observedSpeedIndex": 201, - "observedSpeedIndexTs": 481385077 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 37, - "numScripts": 9, - "numStylesheets": 1, - "numFonts": 8, - "numTasks": 989, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 144.873, - "throughput": 51024901.687390074, - "maxRtt": 144.873, - "maxServerLatency": 90.29600000000002, - "totalByteWeight": 8152983, - "totalTaskTime": 297.36099999999914, - "mainDocumentTransferSize": 8027 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "clientsimulation-apple_mail_16_0", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-thunderbird_91_9", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "eimis", - "type": "startup", - "attributes": { - "name": "EIMIS", - "pitch": "Faciliter et sécuriser les communications des professionnels de santé", - "stats_url": "", - "contact": "juliette.dixmier@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AComment%20fluidifier%20et%20s%C3%A9curiser%20les%20communications%20instantan%C3%A9es%20entre%20professionnels%20de%20sant%C3%A9%20%3F%0A%0AC%E2%80%99est%20sur%20cette%20probl%C3%A9matique%20que%20beta.gouv.fr%20et%20l%E2%80%99Agence%20du%20Num%C3%A9rique%20en%20Sant%C3%A9%20collaborent%20depuis%20l%E2%80%99automne%202022%2C%20en%20exp%C3%A9rimentant%20la%20construction%20d%27un%20Espace%20d%27Interop%C3%A9rabilit%C3%A9%20des%20Messageries%20Instantan%C3%A9es%20de%20Sant%C3%A9%20%28EIMIS%29%0A%0A%0A%23%23%20Probl%C3%A8me%0A%0ADe%20multiples%20obstacles%20rendent%20difficile%20la%20communication%20entre%20professionnels%20de%20sant%C3%A9%20%3A%0A%0A%2A%20Faible%20taux%20d%E2%80%99%C3%A9quipement%20professionnels%20%28t%C3%A9l%C3%A9phones%20mobiles%2C%20ordinateurs%29%0A%2A%20Fragmentation%20des%20usagers%20sur%20une%20multitudes%20d%E2%80%99outils%20incompatibles%20entre%20eux%0A%2A%20Contraintes%20fortes%20li%C3%A9es%20%C3%A0%20la%20n%C3%A9cessit%C3%A9%20de%20prot%C3%A9ger%20les%20donn%C3%A9es%20de%20patients%20contenues%20dans%20les%20%C3%A9changes%0A%0ACeci%20conduit%20%C3%A0%20une%20situation%20dans%20laquelle%20les%20professionnels%20de%20sant%C3%A9%20privil%C3%A9gient%20%3A%0A%0A%2A%20les%20communications%20orales%0A%2A%20les%20courriers%20papiers%0A%2A%20les%20outils%20grand%20public%0A%0ACes%20divers%20modes%20de%20communication%2C%20malgr%C3%A9%20leurs%20avantages%20respectifs%2C%20comportent%20plusieurs%20risques%20%3A%0A%0A%2A%20perte%20de%20l%E2%80%99information%0A%2A%20perte%20de%20temps%0A%2A%20exposition%20des%20donn%C3%A9es%20de%20sant%C3%A9%20des%20patients%0A%0AIl%20est%20donc%20n%C3%A9c%C3%A9ssaire%20de%20favoriser%20l%27adoption%20des%20outils%20professionnels%2C%20sp%C3%A9cifiquement%20adapt%C3%A9s%20%C3%A0%20l%27%C3%A9change%20de%20donn%C3%A9es%20de%20sant%C3%A9.%20%0A%0A%23%23%20Strat%C3%A9gie%0A%0AApr%C3%A8s%20plus%20d%27une%20quarantaine%20d%27entretiens%20men%C3%A9s%20avec%20divers%20professionnels%20de%20l%27%C3%A9cosyst%C3%A8me%20de%20la%20sant%C3%A9%2C%20une%20solution%20est%20d%C3%A9sormais%20en%20cours%20de%20construction%20et%20d%27exp%C3%A9rimentation.%0A%0AL%27objectif%20de%20cette%20exp%C3%A9rimentation%20%3F%20%0A%0AFavoriser%20l%27adoption%20des%20outils%20de%20messagerie%20instantan%C3%A9e%20de%20sant%C3%A9%20en%20s%27appuyant%20sur%20les%20leviers%20suivants%20%3A%0A%0A-%20Permettre%20%C3%A0%20tous%20les%20professionnels%20de%20sant%C3%A9%20de%20communiquer%2C%20m%C3%AAme%20lorsqu%27ils%20utilisent%20des%20outils%20diff%C3%A9rents%2C%20gr%C3%A2ce%20%C3%A0%20la%20mise%20en%20oeuvre%20d%27une%20inter-op%C3%A9rabilit%C3%A9%20entre%20les%20messageries%20instantan%C3%A9es%20de%20sant%C3%A9%20existantes%0A-%20Constituer%20un%20r%C3%A9f%C3%A9rentiel%20de%20qualit%C3%A9%20pour%20les%20outils%20afin%20d%27offrir%20une%20exp%C3%A9rience%20utilisateur%20r%C3%A9pondant%20aux%20besoins%20et%20usages%20r%C3%A9els%20des%20professionnels%20de%20sant%C3%A9%0A-%20Tester%20diverses%20hypoth%C3%A8ses%20d%27am%C3%A9liorations%20en%20mettant%20une%20application%20mobile%20de%20messagerie%20instantan%C3%A9e%20%C3%A0%20disposition%20d%27une%20communaut%C3%A9%20de%20beta-testeurs%0A%0ACette%20exp%C3%A9rimentation%20se%20fait%20en%20partenariat%20avec%20les%20%C3%A9diteurs%20de%20logiciels%20sant%C3%A9%2C%20n%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20pour%20participer%20%21", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2022-10-24", - "end": "2023-01-02" - }, - { - "name": "construction", - "start": "2023-01-02", - "end": "" - } - ], - "sponsors": [ - "ans" - ], - "thematiques": [ - "Santé", - "Sécurité informatique", - "Outil technique" - ], - "accessibility_status": "non conforme" + "id": "rating_spec", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum_produits_interministeriels" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://element.preprod.eimis.incubateur.net/", - "size": 10305.409, - "nodes": 120, - "requests": 58, - "grade": "C", - "score": 66, - "ges": 1.68, - "water": 2.52, - "ecoindex_version": "5.4.2", - "date": "2024-09-15 12:24:26.666267", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "cookiesGrade": null, - "cookiesCount": null, - "trackersGrade": null, - "trackersCount": null, - "lighthouse_performance": 0.43, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.86, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.91, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://world.openfoodfacts.org/", - "category": "startup", - "http": { - "url": "https://world.openfoodfacts.org/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:03:11 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 13:03:09 GMT", - "Expires": "Sat, 19 Oct 2024 13:03:09 GMT", - "Server": "nginx/1.18.0", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Download-Options": "noopen", - "X-Request-ID": "zLj5TdsqXGNFbgMF", - "X-XSS-Protection": "1; mode=block" + "id": "rating_doc", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "scan_id": 57064035, - "score": 35, - "start_time": "Sun, 20 Oct 2024 13:03:07 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://world.openfoodfacts.org/", - "redirects": true, - "route": [ - "http://world.openfoodfacts.org/", - "https://world.openfoodfacts.org/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "1; mode=block" - }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "Deprecated X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "8crm", - "url": "https://world.openfoodfacts.org/", - "alias": "", - "last_status": 200, - "uptime": 99.766, - "down": false, - "down_since": null, - "up_since": "2024-11-24T16:49:11Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:04:04Z", - "next_check_at": "2024-11-24T17:09:02Z", - "created_at": "2024-01-15T14:01:08Z", - "mute_until": null, - "favicon_url": "https://world.openfoodfacts.org/images/favicon/off/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T16:29:36Z", - "expires_at": "2025-01-25T10:15:49Z", - "valid": true, - "error": null + { + "id": "protocol_support_score", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "81" }, - "metrics": { - "apdex": 0.618, - "timings": { - "redirect": 0, - "namelookup": 186, - "connection": 113, - "handshake": 118, - "response": 6269, - "total": 6686 - } + { + "id": "overall_grade", + "ip": "panoramax.ign.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "world.openfoodfacts.org", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.4p1 Debian 5+deb11u2", - "vulnerabilities": [ - { - "id": "CVE-2023-38408", - "cvss": "9.8", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "cvss": "9.8", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "cvss": "9.8", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "cvss": "9.8", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "cvss": "9.8", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "cvss": "9.8", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "SSV:92579", - "cvss": "7.5", - "is_exploit": "true", - "type": "seebug" - }, - { - "id": "PACKETSTORM:173661", - "cvss": "7.5", - "is_exploit": "true", - "type": "packetstorm" - }, - { - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "cvss": "7.5", - "is_exploit": "true", - "type": "githubexploit" - }, - { - "id": "1337DAY-ID-26576", - "cvss": "7.5", - "is_exploit": "true", - "type": "zdt" - }, - { - "id": "CVE-2021-28041", - "cvss": "7.1", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "CVE-2021-41617", - "cvss": "7.0", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "CVE-2023-51385", - "cvss": "6.5", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "CVE-2023-48795", - "cvss": "5.9", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "CVE-2020-14145", - "cvss": "5.9", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "CVE-2016-20012", - "cvss": "5.3", - "is_exploit": "false", - "type": "cve" - }, - { - "id": "PACKETSTORM:140261", - "cvss": "0.0", - "is_exploit": "true", - "type": "packetstorm" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.18.0", - "vulnerabilities": [] - } - } - ], - "grade": "E" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438885,7 +436481,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438893,7 +436489,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438901,7 +436497,7 @@ }, { "id": "cipherlist_LOW", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438909,7 +436505,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -438917,498 +436513,463 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-27 10:15" + "finding": "2024-11-30 07:17" }, { "id": "cert_notAfter", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-25 10:15" + "finding": "2025-02-28 07:17" }, { "id": "cert_extlifeSpan", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1732467891" + "finding": "1733073382" }, { - "id": "HSTS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "id": "HSTS_time", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "nginx/1.18.0" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Content-Type-Options", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "world.openfoodfacts.org/213.36.253.214", + "id": "Cache-Control", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1; mode=block" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -439416,7 +436977,7 @@ }, { "id": "heartbleed", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -439425,7 +436986,7 @@ }, { "id": "CCS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -439434,16 +436995,16 @@ }, { "id": "ticketbleed", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -439452,7 +437013,7 @@ }, { "id": "secure_renego", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -439460,7 +437021,7 @@ }, { "id": "secure_client_renego", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -439469,7 +437030,7 @@ }, { "id": "CRIME_TLS", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -439478,7 +437039,7 @@ }, { "id": "BREACH", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -439487,7 +437048,7 @@ }, { "id": "POODLE_SSL", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -439496,14 +437057,14 @@ }, { "id": "fallback_SCSV", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "supported" + "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -439512,7 +437073,7 @@ }, { "id": "FREAK", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -439521,7 +437082,7 @@ }, { "id": "DROWN", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -439530,16 +437091,16 @@ }, { "id": "DROWN_hint", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=59913AD359EC773C482CEAA99C7BC262F36DFBA07B060356967C017D086395A2" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A2FE372A1260849D21A8E7E500E57F97709191B03DFEEC43A66EDC5D8CA6852E" }, { "id": "LOGJAM", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -439548,43 +437109,34 @@ }, { "id": "LOGJAM-common_primes", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST_CBC_TLS1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-RSA-AES256-SHA" + "finding": "--" }, { "id": "BEAST", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" + "finding": "not vulnerable, no SSL3 or TLS1" }, { "id": "LUCKY13", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -439593,7 +437145,7 @@ }, { "id": "RC4", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -439602,1206 +437154,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES256-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "world.openfoodfacts.org/213.36.253.214", + "ip": "panoramax.ign.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "95" - }, - { - "id": "protocol_support_score_weighted", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "28" - }, - { - "id": "key_exchange_score", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "79" - }, - { - "id": "overall_grade", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "MEDIUM", - "finding": "B" - }, - { - "id": "grade_cap_reason_1", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" - }, - { - "id": "grade_cap_reason_2", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" - }, - { - "id": "grade_cap_reason_3", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "world.openfoodfacts.org/213.36.253.214", - "port": "443", - "severity": "INFO", - "finding": "63" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "content-encoding": "gzip", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 17:04:00 GMT", - "expires": "Sat, 23 Nov 2024 17:04:00 GMT", - "server": "nginx/1.18.0", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-request-id": "1mSfrTSRVXDsYrX3", - "x-xss-protection": "1; mode=block" - }, - "endpoints": [ - { - "hostname": "world.openfoodfacts.org", - "ip": "213.36.253.214", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75008" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://world.openfoodfacts.org/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "zurb-foundation", - "name": "ZURB Foundation", - "description": "Zurb Foundation is used to prototype in the browser. Allows rapid creation of websites or applications while leveraging mobile and responsive technology. The front end framework is the collection of HTML, CSS, and Javascript containing design patterns.", - "confidence": 100, - "version": "5.5.3", - "icon": "ZURB Foundation.png", - "website": "https://foundation.zurb.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "select2", - "name": "Select2", - "description": "Select2 is a jQuery based replacement for select boxes. It supports searching, remote data sets, and infinite scrolling of results.", - "confidence": 100, - "version": null, - "icon": "Select2.png", - "website": "https://select2.org/", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "modernizr", - "name": "Modernizr", - "description": "Modernizr is a JavaScript library that detects the features available in a user's browser.", - "confidence": 100, - "version": "2.8.3", - "icon": "Modernizr.svg", - "website": "https://modernizr.com", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "jquery-ui", - "name": "jQuery UI", - "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", - "confidence": 100, - "version": "1.13.3", - "icon": "jQuery UI.svg", - "website": "https://jqueryui.com", - "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "2.1.4", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, { - "requestedUrl": "https://world.openfoodfacts.org/", - "finalUrl": "https://world.openfoodfacts.org/", - "fetchTime": "2024-11-24T17:03:30.028Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.76 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.94 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.83 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.77 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.6 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 7785, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3013, - "firstMeaningfulPaint": 4025, - "largestContentfulPaint": 3238, - "interactive": 7785, - "speedIndex": 5494, - "totalBlockingTime": 170, - "maxPotentialFID": 315, - "cumulativeLayoutShift": 0.002825705210367839, - "cumulativeLayoutShiftMainFrame": 0.002825705210367839, - "totalCumulativeLayoutShift": 0.002825705210367839, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 474305417, - "observedNavigationStart": 0, - "observedNavigationStartTs": 474305417, - "observedFirstPaint": 948, - "observedFirstPaintTs": 475253514, - "observedFirstContentfulPaint": 948, - "observedFirstContentfulPaintTs": 475253514, - "observedFirstContentfulPaintAllFrames": 948, - "observedFirstContentfulPaintAllFramesTs": 475253514, - "observedFirstMeaningfulPaint": 1295, - "observedFirstMeaningfulPaintTs": 475600487, - "observedLargestContentfulPaint": 948, - "observedLargestContentfulPaintTs": 475253514, - "observedLargestContentfulPaintAllFrames": 948, - "observedLargestContentfulPaintAllFramesTs": 475253514, - "observedTraceEnd": 4052, - "observedTraceEndTs": 478357448, - "observedLoad": 1655, - "observedLoadTs": 475960190, - "observedDomContentLoaded": 1219, - "observedDomContentLoadedTs": 475524828, - "observedCumulativeLayoutShift": 0.002825705210367839, - "observedCumulativeLayoutShiftMainFrame": 0.002825705210367839, - "observedTotalCumulativeLayoutShift": 0.002825705210367839, - "observedFirstVisualChange": 958, - "observedFirstVisualChangeTs": 475263417, - "observedLastVisualChange": 1592, - "observedLastVisualChangeTs": 475897417, - "observedSpeedIndex": 1036, - "observedSpeedIndexTs": 475340986 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 70, - "numScripts": 13, - "numStylesheets": 3, - "numFonts": 2, - "numTasks": 1910, - "numTasksOver10ms": 8, - "numTasksOver25ms": 4, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 80.40899999999999, - "throughput": 17162737.483628895, - "maxRtt": 86.161, - "maxServerLatency": 20.218999999999994, - "totalByteWeight": 1560110, - "totalTaskTime": 465.03299999999706, - "mainDocumentTransferSize": 34121 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "clientsimulation-java_8u161", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-java1102", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": null, - "ecoindex": [ + "id": "clientsimulation-java1703", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "width": 1920, - "height": 1080, - "url": "https://world.openfoodfacts.org/", - "size": 3799.467, - "nodes": 1576, - "requests": 133, - "grade": "F", - "score": 18, - "ges": 2.64, - "water": 3.96, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:00:26.843151", - "page_type": "food" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "apdex": 0.618, - "apdexGrade": "F", - "uptime": 99.766, - "uptimeGrade": "A", - "nmapGrade": "E", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-25T10:15:00.000Z", - "testsslGrade": "B", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.76, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.94, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.77, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.6, - "lighthouse_pwaGrade": "C", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://panoramax.fr", - "title": "Homepage presentation panoramax", - "betaId": "vues-immersives-libres", - "category": "fab-geocommuns", - "tags": [ - "geocommun" - ], - "tools": { - "dsfr": false - }, - "repositories": [ - "panoramax-project/panoramax-website" - ], - "http": { - "url": "https://panoramax.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:09:14 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "max-age=600", - "Content-Length": "1352", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 13:09:14 GMT", - "Etag": "\"2d4b2d2a98f5669cd15924e9e39189af3221624d56ea24f235cdc5ee1e9c1191\"", - "Expires": "Sun, 20 Oct 2024 13:19:14 UTC", - "Last-Modified": "Tue, 17 Sep 2024 13:35:10 GMT", - "Permissions-Policy": "interest-cohort=()", - "Vary": "Origin" + "id": "clientsimulation-go_1178", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 57064481, - "score": 30, - "start_time": "Sun, 20 Oct 2024 13:09:13 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "*", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://panoramax.fr/", - "redirects": true, - "route": [ - "http://panoramax.fr/", - "https://panoramax.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "p8f0", - "url": "https://panoramax.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T15:09:58Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:11:43Z", - "next_check_at": "2024-11-24T17:12:42Z", - "created_at": "2024-01-28T01:09:37Z", - "mute_until": null, - "favicon_url": "https://panoramax.fr/assets/favicon.ed901574.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:03:46Z", - "expires_at": "2025-02-07T14:22:36Z", - "valid": true, - "error": null + { + "id": "clientsimulation-libressl_283", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 74, - "connection": 57, - "handshake": 140, - "response": 204, - "total": 475 - } + { + "id": "clientsimulation-openssl_102e", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "panoramax.ign.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "panoramax.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -440809,7 +437547,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -440817,7 +437555,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -440825,7 +437563,7 @@ }, { "id": "cipherlist_LOW", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -440833,7 +437571,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -440841,7 +437579,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -440849,448 +437587,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-11-09 14:22" + "finding": "2024-11-30 07:17" }, { "id": "cert_notAfter", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2025-02-07 14:22" + "finding": "2025-02-28 07:17" }, { "id": "cert_extlifeSpan", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732468212" + "finding": "1733073447" }, { - "id": "HSTS", - "ip": "panoramax.fr/35.185.44.232", + "id": "HSTS_time", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "Permissions-Policy", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "OK", - "finding": "interest-cohort=()" - }, { "id": "Cache-Control", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "max-age=600" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -441298,7 +438043,7 @@ }, { "id": "heartbleed", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -441307,7 +438052,7 @@ }, { "id": "CCS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -441316,7 +438061,7 @@ }, { "id": "ticketbleed", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -441325,7 +438070,7 @@ }, { "id": "ROBOT", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -441334,7 +438079,7 @@ }, { "id": "secure_renego", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -441342,7 +438087,7 @@ }, { "id": "secure_client_renego", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -441351,7 +438096,7 @@ }, { "id": "CRIME_TLS", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -441360,16 +438105,16 @@ }, { "id": "BREACH", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -441378,14 +438123,14 @@ }, { "id": "fallback_SCSV", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -441394,7 +438139,7 @@ }, { "id": "FREAK", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -441403,7 +438148,7 @@ }, { "id": "DROWN", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -441412,16 +438157,16 @@ }, { "id": "DROWN_hint", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1B4E54EF17A87E7CD5564ABDD075BF5FF68F677CBBE7A357CBB372F687A0282F" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A2FE372A1260849D21A8E7E500E57F97709191B03DFEEC43A66EDC5D8CA6852E" }, { "id": "LOGJAM", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -441430,16 +438175,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -441448,7 +438193,7 @@ }, { "id": "LUCKY13", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -441457,7 +438202,7 @@ }, { "id": "winshock", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -441466,7 +438211,7 @@ }, { "id": "RC4", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -441475,1521 +438220,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "key_exchange_score_weighted", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "cipher_strength_score", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "INFO", - "finding": "84" - }, - { - "id": "overall_grade", - "ip": "panoramax.fr/35.185.44.232", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "panoramax.fr/35.185.44.232", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "100" }, { - "id": "scanTime", - "ip": "panoramax.fr/35.185.44.232", + "id": "protocol_support_score_weighted", + "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "59" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://matomo.panoramax.xyz//matomo.js" - }, - { - "type": "unknown", - "url": "https://api.panoramax.xyz/api/" - }, - { - "type": "unknown", - "url": "https://api.panoramax.xyz/api/stats/" - }, - { - "type": "unknown", - "url": "https://api.panoramax.xyz/api/map/style.json" - }, - { - "type": "unknown", - "url": "https://panoramax.openstreetmap.fr/pmtiles/basic.json" - }, - { - "type": "unknown", - "url": "https://matomo.panoramax.xyz//matomo.php?action_name=L%E2%80%99alternative%20libre%20pour%20photo-cartographier%20les%20territoires&idsite=2&rec=1&r=586434&h=17&m=9&s=1&url=https%3A%2F%2Fpanoramax.fr%2F&_id=f2e0f913ae211c45&_idn=1&send_image=0&_refts=0&pv_id=EHBp4t&pf_net=181&pf_srv=110&pf_tfr=1&pf_dm1=6&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - }, - { - "type": "unknown", - "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" - }, - { - "type": "unknown", - "url": "https://tile-vect.openstreetmap.fr/styles/basic/sprite.json" - }, - { - "type": "unknown", - "url": "https://tile-vect.openstreetmap.fr/styles/basic/sprite.png" - }, - { - "type": "unknown", - "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" - }, - { - "type": "unknown", - "url": "https://panoramax.openstreetmap.fr/pmtiles/planet.pmtiles" - } - ], - "cookies": [ - { - "name": "_pk_ses.2.8046", - "value": "1", - "domain": "panoramax.fr", - "path": "/", - "expires": 1732469941, - "size": 15, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.2.8046", - "value": "f2e0f913ae211c45.1732468141.", - "domain": "panoramax.fr", - "path": "/", - "expires": 1766423341, - "size": 41, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "max-age=600", - "content-length": "1352", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 17:08:59 GMT", - "etag": "\"79c7cf89660066989765e6f8e70bfc60b382b65a6858f8513c3655eb2158bcba\"", - "expires": "Sun, 24 Nov 2024 17:18:59 UTC", - "last-modified": "Tue, 12 Nov 2024 12:05:23 GMT", - "permissions-policy": "interest-cohort=()", - "vary": "Origin" - }, - "endpoints": [ - { - "hostname": "panoramax.fr", - "ip": "35.185.44.232", - "geoip": { - "city": { - "geoname_id": 4589387, - "names": { - "en": "North Charleston", - "ja": "ノースチャールストン", - "pt-BR": "North Charleston", - "ru": "Норт-Чарлстон", - "zh-CN": "北查尔斯顿" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 32.8608, - "longitude": -79.9746, - "metro_code": 519, - "time_zone": "America/New_York" - }, - "postal": { - "code": "29415" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4597040, - "iso_code": "SC", - "names": { - "de": "South Carolina", - "en": "South Carolina", - "es": "Carolina del Sur", - "fr": "Caroline du Sud", - "ja": "サウスカロライナ州", - "pt-BR": "Carolina do Sul", - "ru": "Южная Каролина", - "zh-CN": "南卡罗来纳州" - } - } - ] - } - }, - { - "hostname": "matomo.panoramax.xyz", - "ip": "193.200.42.122", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "api.panoramax.xyz", - "ip": "193.200.42.124", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "panoramax.openstreetmap.fr", - "ip": "193.200.42.122", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "tile-vect.openstreetmap.fr", - "ip": "213.36.253.212", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75008" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "ja": "イル・ド・フランス", - "pt-BR": "Ilha de França", - "ru": "Иль-де-Франс", - "zh-CN": "法兰西岛" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://panoramax.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", - "confidence": 100, - "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", - "cpe": null, - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "three-js", - "name": "Three.js", - "description": "Three.js is a cross-browser JavaScript library and application programming interface used to create and display animated 3D computer graphics in a web browser using WebGL.", - "confidence": 100, - "version": "168", - "icon": "Three.js.svg", - "website": "https://threejs.org", - "cpe": null, - "categories": [ - { - "id": 25, - "slug": "javascript-graphics", - "name": "JavaScript graphics" - } - ], - "rootPath": true - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "font-awesome", - "name": "Font Awesome", - "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", - "confidence": 100, - "version": null, - "icon": "Font Awesome.svg", - "website": "https://fontawesome.com/", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://panoramax.fr/", - "finalUrl": "https://panoramax.fr/", - "fetchTime": "2024-11-24T17:08:26.035Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.15 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.79 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.88 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 28039, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 16563, - "firstMeaningfulPaint": 19188, - "largestContentfulPaint": 21438, - "interactive": 28039, - "speedIndex": 16563, - "totalBlockingTime": 10096, - "maxPotentialFID": 7509, - "cumulativeLayoutShift": 0.0013626302083333333, - "cumulativeLayoutShiftMainFrame": 0.0013626302083333333, - "totalCumulativeLayoutShift": 0.0013626302083333333, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 372262010, - "observedNavigationStart": 0, - "observedNavigationStartTs": 372262010, - "observedFirstPaint": 1573, - "observedFirstPaintTs": 373834992, - "observedFirstContentfulPaint": 1573, - "observedFirstContentfulPaintTs": 373834992, - "observedFirstContentfulPaintAllFrames": 1573, - "observedFirstContentfulPaintAllFramesTs": 373834992, - "observedFirstMeaningfulPaint": 1782, - "observedFirstMeaningfulPaintTs": 374044111, - "observedLargestContentfulPaint": 1753, - "observedLargestContentfulPaintTs": 374014790, - "observedLargestContentfulPaintAllFrames": 1753, - "observedLargestContentfulPaintAllFramesTs": 374014790, - "observedTraceEnd": 10437, - "observedTraceEndTs": 382698541, - "observedLoad": 2189, - "observedLoadTs": 374451347, - "observedDomContentLoaded": 1560, - "observedDomContentLoadedTs": 373821805, - "observedCumulativeLayoutShift": 0.0013626302083333333, - "observedCumulativeLayoutShiftMainFrame": 0.0013626302083333333, - "observedTotalCumulativeLayoutShift": 0.0013626302083333333, - "observedFirstVisualChange": 1573, - "observedFirstVisualChangeTs": 373835010, - "observedLastVisualChange": 1789, - "observedLastVisualChangeTs": 374051010, - "observedSpeedIndex": 1722, - "observedSpeedIndexTs": 373984373 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 52, - "numScripts": 3, - "numStylesheets": 1, - "numFonts": 4, - "numTasks": 2367, - "numTasksOver10ms": 27, - "numTasksOver25ms": 14, - "numTasksOver50ms": 9, - "numTasksOver100ms": 6, - "numTasksOver500ms": 1, - "rtt": 77.195, - "throughput": 11244752.716490543, - "maxRtt": 155.844, - "maxServerLatency": 63.30200000000002, - "totalByteWeight": 6713964, - "totalTaskTime": 3775.8529999999937, - "mainDocumentTransferSize": 1569 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://panoramax.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 2, - "missingWords": [ - "directeur (ou) directrice", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement" - ], - "missingTrackers": [], - "declarationUrl": "https://panoramax.fr/mentions-legales" + "finding": "30" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "vues-immersives-libres", - "type": "startup", - "attributes": { - "name": "Panoramax - Base vues immersives libres", - "pitch": "L’alternative libre pour photo-cartographier les territoires", - "stats_url": "https://panoramax.fr/stats", - "link": "https://panoramax.fr/", - "repository": "https://gitlab.com/panoramax", - "contact": "panoramax@panoramax.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALes%20collectivit%C3%A9s%20locales%2C%20les%20gestionnaires%20de%20r%C3%A9seaux%20et%20d%E2%80%99autres%20acteurs%20ont%20besoin%20d%E2%80%99actualiser%20en%20permanence%20l%E2%80%99%2A%2Ainventaire%20du%20patrimoine%20mobilier%20urbain%20et%20des%20voiries%2A%2A%20%3A%20panneaux%2C%20poteaux%2C%20affleurants%2C%20%C3%A9quipements%2C%20pistes%20cyclables%2C%20trottoirs%20etc.%0A%0A%23%23%20Probl%C3%A8me%0A%0AHistoriquement%20et%20encore%20majoritairement%20aujourd%E2%80%99hui%20cela%20se%20traduit%20par%20la%20mobilisation%20de%20nombreux%20agents%20qui%20vont%20lever%2Fv%C3%A9rifier%20ces%20%C3%A9l%C3%A9ments%20sur%20le%20terrain%20engendrant%20des%20co%C3%BBts%20et%20d%C3%A9placements%20inutiles%2C%20la%20mise%20en%20danger%20des%20personnels%2C%20des%20pertes%20de%20temps%E2%80%A6%0AAujourd%27hui%20l%27utilisation%20de%20photos%2Fvues%20immersives%20de%20rues%20via%20Google%20StreetView%20et%2Fou%20Mapillary%2C%20ou%20via%20des%20prestations%20priv%C3%A9es%20%28ESRI%2FCyclom%C3%A9dia%2C%20SOGEFI%20etc.%29%20ouvre%20pas%20mal%20d%27opportunit%C3%A9s%20en%20termes%20de%20rationalisation%20des%20d%C3%A9placements%2C%20facilitation%20et%20acc%C3%A9l%C3%A9ration%20du%20recueil%20d%27information%20n%C3%A9cessaire%20aux%20traitements%20de%20certaines%20proc%C3%A9dures%20et%20finalement%20d%27am%C3%A9lioration%20de%20la%20connaissance%20du%20territoire.%0ALa%20collecte%2C%20le%20partage%20et%20l%27utilisation%20de%20ces%20donn%C3%A9es%20restent%20compliqu%C3%A9s%20%3A%20probl%C3%A8me%20de%20licences%2C%20d%C3%A9pendance%20%C3%A0%20des%20soci%C3%A9t%C3%A9s%20priv%C3%A9es%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20orient%C3%A9e%20vers%20l%27ouverture%20des%20donn%C3%A9es%20ou%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20claire%2C%20difficult%C3%A9%20%C3%A0%20partager%20des%20bonnes%20pratiques%2C%20%C3%A0%20s%27assurer%20de%20la%20p%C3%A9rennit%C3%A9%20d%27une%20solution%20pour%20y%20appuyer%20des%20usages%20m%C3%A9tiers%20%C3%A0%20partager%20etc.%0A%0A%23%23%20Investigation%20-%20termin%C3%A9e%0A%0A%2A%2AConstat%20initial%20%3A%2A%2A%20Les%20diff%C3%A9rentes%20communaut%C3%A9s%20%28AITF%2C%20OSM%2C%20Gestionnaires%20de%20r%C3%A9seaux%2C%20IGN%2C%20etc.%29%20bouillonnent%20d%27initiatives%20sur%20le%20sujet%2C%20mais%20pour%20le%20moment%20rien%20de%20p%C3%A9renne%20ne%20semble%20se%20d%C3%A9gager.%0AL%27investigation%20doit%20permettre%20d%27identifier%20s%27il%20y%20a%20la%20place%20pour%20cr%C3%A9er%20un%20g%C3%A9ocommun%20de%20base%20de%20vues%20immersives%20libres%20%C3%A0%20c%C3%B4t%C3%A9%20des%20solutions%20non%20libres%20existantes%2C%20et%20le%20cas%20%C3%A9ch%C3%A9ant%20d%27identifier%20ce%20qui%20bloque%20l%27%C3%A9mergence%20du%20commun%20%28manques%20%C3%A0%20combler%20ou%20freins%29%20pour%20y%20trouver%20des%20rem%C3%A8des%20permettant%20de%20rassembler%20les%20%C3%A9nergies%20des%20diff%C3%A9rents%20acteurs%20et%20proposer%20enfin%20une%20alternative%20libre%20pour%20tous%2C%20sur%20laquelle%20on%20construira%20des%20usages%20partag%C3%A9s.%0A%0ALors%20de%20l%27investigation%20ont%20%C3%A9t%C3%A9%20interrog%C3%A9es%20%3A%0A%2A%20%2A%2Ades%20collectivit%C3%A9s%2A%2A%20%3A%20premi%C3%A8res%20utilisatrices%20du%20produit%2C%20et%20premi%C3%A8res%20contibutrices%20sans%20doute%20en%20terme%20de%20collecte%20%0A%2A%20%2A%2Ades%20d%C3%A9veloppeurs%2A%2A%20%3A%20ceux%20qui%20pourront%20faire%20vivre%20le%20projet%20en%20y%20adossant%20des%20nouveaux%20services%0A%2A%20%2A%2Ades%20communaut%C3%A9s%20%28OSM%2C%20AITF%29%2A%2A%20%3A%20celles%20qui%20pourront%20animer%20le%20commun%2C%20le%20faire%20conna%C3%AEtre%2C%20pousser%20%C3%A0%20le%20faire%20%C3%A9voluer%0A%2A%20%2A%2Ades%20gestionnaires%20de%20r%C3%A9seaux%2A%2A%20%3A%20utilisateurs%20et%20%C3%A9ventuels%20contributeurs%20%C3%A9galement%0A%2A%20%2A%2Ades%20acteurs%20du%20secteurs%20priv%C3%A9s%20%28logiciels%20et%2Fou%20collecte%29%2A%2A%20%3A%20ceux%20qui%20peuvent%20faire%20%C3%A9voluer%20leurs%20pratiques%20pour%20faciliter%20la%20mise%20en%20place%20du%20commun%20ou%20le%20rendre%20inutile.%0A%2A%20%2A%2Ales%20plate-formes%20priv%C3%A9es%2A%2A%20%3A%20Mapillary%20et%20Kartaview%20pour%20voir%20si%20on%20pouvait%20pr%C3%A9voir%20de%20travailler%20ensemble%0A%2A%20%2A%2AAutres%20projets%2A%2A%20%3A%20qui%20pourraient%20proposer%20des%20nouveaux%20usages%20et%20aider%20%C3%A0%20valoriser%2Ffaire%20vivre%20le%20commun%0A%0AL%27investigation%20a%20permis%20de%20convaincre%20le%20sponsor%20qu%27il%20%C3%A9tait%20pertinent%20de%20favoriser%20l%27%C3%A9mergence%20d%27un%20g%C3%A9ocommun%20de%20vues%20immersives.%20Beaucoup%20de%20contributeurs%2Fr%C3%A9utilisateurs%20potentiels%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9s.%20Un%20noyau%20d%27outils%20num%C3%A9riques%20et%20de%20r%C3%A8gles%20de%20bases%20%C3%A0%20sp%C3%A9cifier%20pour%20permettre%20%C3%A0%20ce%20commun%20de%20pleinement%20exister%20a%20%C3%A9t%C3%A9%20d%C3%A9termin%C3%A9%20%3A%20il%20sera%20l%27objet%20de%20la%20phase%20de%20construction.%0APendant%20la%20phase%20d%27investigation%2C%20un%20nom%20a%20%C3%A9t%C3%A9%20trouv%C3%A9%20au%20%22produit%22%20%28commun%29%20via%20un%20processus%20participatif%20%3A%20Panoramax%21%0A%0A%23%23%20Strat%C3%A9gie%0A%0ADeux%20axes%20forts%20%3A%20%0A%2A%20%2A%2ACr%C3%A9er%20une%20bo%C3%AEte%20%C3%A0%20outils%20num%C3%A9riques%20de%20base%20pour%20alimenter%2C%20g%C3%A9rer%20et%20partager%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9velopper%20un%20applicatif%20ou%20d%27une%20brique%20logicielle%20pour%20cr%C3%A9er%28d%C3%A9ployer%29%20une%20instance%20et%20son%20catalogue%0A%20%20%20%20-%20Mettre%20en%20place%20une%20brique%20logicielle%20d%27anonymisation%20des%20images%20%28floutage%20personnes%20et%20v%C3%A9hicules%29%0A%20%20%20%20-%20D%C3%A9velopper%20des%20utils%2FAPI%20pour%20alimenter%2Finterroger%20la%20base%20de%20vues%20de%20Panoramax%0A%20%20%20%20-%20Proposer%20une%20ou%20plusieurs%20instances%20de%20stockage%20ouvertes%0A%0A%2A%20%2A%2AAnimer%20le%20g%C3%A9ocommun%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9finir%20la%20gouvernance%20et%20ses%20r%C3%A8gles%0A%20%20%20%20-%20D%C3%A9finir%20les%20standards%20du%20commun%20%28catalogue%2C%20donn%C3%A9es%29%20et%20les%20licences%20%28codes%2C%20donn%C3%A9es%29%0A%20%20%20%20-%20Proposer%20des%20guides%20de%20bonnes%20pratiques%2C%20des%20outils%20de%20r%C3%A9f%C3%A9rence%20et%20des%20r%C3%A9sultats%20de%20tests%20de%20ces%20outils%20%28performance%29%2C%20des%20tutoriels%20et%20des%20exemples%20de%20cas%20d%27usages%0A%20%20%20%20-%20Mettre%20en%20place%20des%20argumentaires%20pour%20donner%20envie%20de%20contribuer%20et%20proposer%20des%20mod%C3%A8les%20%C3%A9conomiques%20adapt%C3%A9s%20%C3%A0%20diff%C3%A9rentes%20situations%20pour%20faciliter%20la%20contribution%0A%20%20%20%20-%20Organiser%20des%20%C3%A9v%C3%A9nements%20pour%20faire%20conna%C3%AEtre%20Panoramax%20et%20encourager%20la%20contribution%20%28GT%2C%20Openlabs%2C%20Panoramax%20Party%20etc.%29%0A%20%20%20%20-%20R%C3%A9aliser%20un%20support%20technique%20%0A%20%20%20%20-%20Cr%C3%A9er%20un%20site%20web%20vitrine%20du%20commun%20comme%20point%20central%20pour%20trouver%20les%20informations%20et%20outils%20relatifs%20%C3%A0%20Panoramax%0A%0A%23%23%20Indicateurs%0A%0ADes%20indicateurs%20encore%20en%20cours%20de%20d%C3%A9finition%20pour%20mesurer%20la%20mont%C3%A9e%20en%20puissance%20du%20commun%20%28nombre%20de%20vues%2C%20de%20contributions%2C%20de%20km%20lin%C3%A9aires%20couverts%2C%20de%20services%20%C3%A0%20valeur%20ajout%C3%A9e%20cr%C3%A9%C3%A9s%20%C3%A0%20partir%20des%20donn%C3%A9es%20du%20commun%20etc.%29%20et%20l%27impact%20en%20termes%20de%20solution%20%28r%C3%A9duction%20des%20d%C3%A9placements%20d%27agents%20publics%2C%20r%C3%A9utilisations%20diff%C3%A9rentes%2C%20etc.%29.", - "events": [ - { - "name": "committee", - "date": "2022-10-17", - "comment": "Lancement en phase de construction" - }, - { - "name": "committee", - "date": "2023-07-12", - "comment": "" - }, - { - "name": "committee", - "date": "2023-11-06", - "comment": "Lancement en phase d'accélération" - }, - { - "name": "committee", - "date": "2024-06-03", - "comment": "" - }, - { - "name": "committee", - "date": "2024-11-13", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2022-06-24", - "end": "" - }, - { - "name": "construction", - "start": "2022-10-17", - "end": "" - }, - { - "name": "acceleration", - "start": "2023-11-06", - "end": "" - } - ], - "sponsors": [ - "dinum", - "ign" - ], - "thematiques": [ - "Open-Data", - "Outil technique" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/panoramax-fr/", - "accessibility_status": "non conforme" + "id": "key_exchange_score", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fab-geocommuns" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://panoramax.fr", - "size": 11004.352, - "nodes": 632, - "requests": 69, - "grade": "D", - "score": 43, - "ges": 2.14, - "water": 3.21, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:04:59.765284", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": null, - "summary": { - "httpGrade": "D", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-07T14:22:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "F", - "trackersCount": 11, - "lighthouse_performance": 0.15, - "lighthouse_performanceGrade": "F", - "lighthouse_accessibility": 0.79, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.88, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "D" - } - }, - { - "404": null, - "url": "https://panoramax.ign.fr", - "title": "Instance panoramax de l'IGN", - "category": "fab-geocommuns", - "betaId": "vues-immersives-libres", - "tags": [ - "geocommun" - ], - "tools": { - "dsfr": false - }, - "docker": [ - "geovisio/api", - "geovisio/website" - ], - "http": { - "url": "https://panoramax.ign.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:14:00 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "public, max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 13:13:59 GMT", - "ETag": "W/\"56a-1929a944408\"", - "Last-Modified": "Thu, 17 Oct 2024 13:04:21 GMT", - "Transfer-Encoding": "chunked", - "X-Powered-By": "Express", - "X-Request-ID": "6ec8100e-def0-4bba-8d55-6e2924f3b61a, 6ec8100e-def0-4bba-8d55-6e2924f3b61a", - "strict-transport-security": "max-age=31536000" - }, - "scan_id": 57065013, - "score": 50, - "start_time": "Sun, 20 Oct 2024 13:13:58 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://panoramax.ign.fr/", - "redirects": true, - "route": [ - "http://panoramax.ign.fr/", - "https://panoramax.ign.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "n4us", - "url": "https://panoramax.ign.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T06:22:05Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:18:12Z", - "next_check_at": "2024-11-24T17:19:12Z", - "created_at": "2024-01-28T01:09:37Z", - "mute_until": null, - "favicon_url": "https://panoramax.ign.fr/assets/favicon--EcUXM57.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:13:13Z", - "expires_at": "2024-12-30T07:16:41Z", - "valid": true, - "error": null + "id": "key_exchange_score_weighted", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "27" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 129, - "connection": 139, - "handshake": 147, - "response": 157, - "total": 571 - } + { + "id": "cipher_strength_score", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "60" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "panoramax.ign.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { - "id": "service", + "id": "cipher_strength_score_weighted", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", "ip": "panoramax.ign.fr/109.232.236.90", "port": "443", "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "panoramax.ign.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "panoramax.ign.fr/109.232.233.130", + "port": "443", + "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -442997,7 +438613,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -443005,7 +438621,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -443013,7 +438629,7 @@ }, { "id": "cipherlist_LOW", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -443021,7 +438637,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -443029,7 +438645,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -443037,455 +438653,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-10-01 07:16" + "finding": "2024-11-30 07:17" }, { "id": "cert_notAfter", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2024-12-30 07:16" + "finding": "2025-02-28 07:17" }, { "id": "cert_extlifeSpan", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1732468330" + "finding": "1733073509" }, { "id": "HSTS_time", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -443493,7 +439109,7 @@ }, { "id": "heartbleed", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -443502,7 +439118,7 @@ }, { "id": "CCS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -443511,7 +439127,7 @@ }, { "id": "ticketbleed", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -443520,7 +439136,7 @@ }, { "id": "ROBOT", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -443529,7 +439145,7 @@ }, { "id": "secure_renego", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -443537,7 +439153,7 @@ }, { "id": "secure_client_renego", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -443546,7 +439162,7 @@ }, { "id": "CRIME_TLS", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -443555,7 +439171,7 @@ }, { "id": "BREACH", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -443564,7 +439180,7 @@ }, { "id": "POODLE_SSL", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -443573,14 +439189,14 @@ }, { "id": "fallback_SCSV", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -443589,7 +439205,7 @@ }, { "id": "FREAK", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -443598,7 +439214,7 @@ }, { "id": "DROWN", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -443607,16 +439223,16 @@ }, { "id": "DROWN_hint", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90DCD0BEA7101C6993A7A357CC4569DF155124479A84AE40F25DF248E14B7EEF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A2FE372A1260849D21A8E7E500E57F97709191B03DFEEC43A66EDC5D8CA6852E" }, { "id": "LOGJAM", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -443625,7 +439241,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -443634,7 +439250,7 @@ }, { "id": "BEAST", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -443643,7 +439259,7 @@ }, { "id": "LUCKY13", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -443652,7 +439268,7 @@ }, { "id": "winshock", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -443661,7 +439277,7 @@ }, { "id": "RC4", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -443670,392 +439286,1482 @@ }, { "id": "clientsimulation-android_60", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "panoramax.ign.fr/109.232.236.90", + "ip": "panoramax.ign.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, - { - "id": "final_score", - "ip": "panoramax.ign.fr/109.232.236.90", - "port": "443", - "severity": "INFO", - "finding": "81" + { + "id": "final_score", + "ip": "panoramax.ign.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "panoramax.ign.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "panoramax.ign.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "258" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://matomo.panoramax.xyz//matomo.js" + }, + { + "type": "unknown", + "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/gris.json" + }, + { + "type": "unknown", + "url": "https://matomo.panoramax.xyz//matomo.php?action_name=Panoramax%20IGN%20%3A%20photo-cartographier%20les%20territoires&idsite=4&rec=1&r=476039&h=17&m=14&s=11&url=https%3A%2F%2Fpanoramax.ign.fr%2F&_id=2098168a02511a58&_idn=1&send_image=0&_refts=0&pv_id=iobtQi&pf_net=220&pf_srv=118&pf_tfr=1&pf_dm1=5&pf_dm2=924&pf_onl=0&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "unknown", + "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/sprite/PlanIgn-Gris.json" + }, + { + "type": "unknown", + "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/sprite/PlanIgn-Gris.png" + } + ], + "cookies": [], + "headers": { + "cache-control": "public, max-age=0", + "content-encoding": "gzip", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 17:14:09 GMT", + "etag": "W/\"56a-1937769ed38\"", + "last-modified": "Fri, 29 Nov 2024 10:14:11 GMT", + "strict-transport-security": "max-age=31536000", + "x-powered-by": "Express", + "x-request-id": "8fd0ca9b-920d-4456-abe4-bf149101a01b\n8fd0ca9b-920d-4456-abe4-bf149101a01b" + }, + "endpoints": [ + { + "hostname": "panoramax.ign.fr", + "ip": "109.232.236.90", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "matomo.panoramax.xyz", + "ip": "193.200.42.122", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "data.geopf.fr", + "ip": "145.239.193.231", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://panoramax.ign.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "three-js", + "name": "Three.js", + "description": "Three.js is a cross-browser JavaScript library and application programming interface used to create and display animated 3D computer graphics in a web browser using WebGL.", + "confidence": 100, + "version": "168", + "icon": "Three.js.svg", + "website": "https://threejs.org", + "cpe": null, + "categories": [ + { + "id": 25, + "slug": "javascript-graphics", + "name": "JavaScript graphics" + } + ], + "rootPath": true + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "express", + "name": "Express", + "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", + "confidence": 100, + "version": null, + "icon": "Express.svg", + "website": "https://expressjs.com", + "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "font-awesome", + "name": "Font Awesome", + "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", + "confidence": 100, + "version": null, + "icon": "Font Awesome.svg", + "website": "https://fontawesome.com/", + "cpe": null, + "categories": [ + { + "id": 17, + "slug": "font-scripts", + "name": "Font scripts" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://panoramax.ign.fr/", + "finalUrl": "https://panoramax.ign.fr/", + "fetchTime": "2024-12-01T17:13:40.881Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.17 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.78 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 14194, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 7602, + "firstMeaningfulPaint": 8067, + "largestContentfulPaint": 9233, + "interactive": 14194, + "speedIndex": 11855, + "totalBlockingTime": 5241, + "maxPotentialFID": 1040, + "cumulativeLayoutShift": 0.0033065066867404513, + "cumulativeLayoutShiftMainFrame": 0.0033065066867404513, + "totalCumulativeLayoutShift": 0.0033590935601128472, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 393577920, + "observedNavigationStart": 0, + "observedNavigationStartTs": 393577920, + "observedFirstPaint": 1428, + "observedFirstPaintTs": 395006261, + "observedFirstContentfulPaint": 1428, + "observedFirstContentfulPaintTs": 395006261, + "observedFirstContentfulPaintAllFrames": 1428, + "observedFirstContentfulPaintAllFramesTs": 395006261, + "observedFirstMeaningfulPaint": 2541, + "observedFirstMeaningfulPaintTs": 396118911, + "observedLargestContentfulPaint": 2075, + "observedLargestContentfulPaintTs": 395652871, + "observedLargestContentfulPaintAllFrames": 2075, + "observedLargestContentfulPaintAllFramesTs": 395652871, + "observedTraceEnd": 6966, + "observedTraceEndTs": 400544142, + "observedLoad": 1164, + "observedLoadTs": 394741457, + "observedDomContentLoaded": 1163, + "observedDomContentLoadedTs": 394741308, + "observedCumulativeLayoutShift": 0.0033065066867404513, + "observedCumulativeLayoutShiftMainFrame": 0.0033065066867404513, + "observedTotalCumulativeLayoutShift": 0.0033590935601128472, + "observedFirstVisualChange": 2072, + "observedFirstVisualChangeTs": 395649920, + "observedLastVisualChange": 4689, + "observedLastVisualChangeTs": 398266920, + "observedSpeedIndex": 4346, + "observedSpeedIndexTs": 397924082 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 42, + "numScripts": 10, + "numStylesheets": 1, + "numFonts": 1, + "numTasks": 1573, + "numTasksOver10ms": 21, + "numTasksOver25ms": 19, + "numTasksOver50ms": 14, + "numTasksOver100ms": 7, + "numTasksOver500ms": 0, + "rtt": 100.75699999999999, + "throughput": 11071797.28793271, + "maxRtt": 108.872, + "maxServerLatency": 123.492, + "totalByteWeight": 1898679, + "totalTaskTime": 2266.1559999999913, + "mainDocumentTransferSize": 769 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://panoramax.ign.fr/accessibility" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://panoramax.ign.fr/terms-of-service" + }, + { + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "vues-immersives-libres", + "type": "startup", + "attributes": { + "name": "Panoramax - Base vues immersives libres", + "pitch": "L’alternative libre pour photo-cartographier les territoires", + "stats_url": "https://panoramax.fr/stats", + "link": "https://panoramax.fr/", + "repository": "https://gitlab.com/panoramax", + "contact": "panoramax@panoramax.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALes%20collectivit%C3%A9s%20locales%2C%20les%20gestionnaires%20de%20r%C3%A9seaux%20et%20d%E2%80%99autres%20acteurs%20ont%20besoin%20d%E2%80%99actualiser%20en%20permanence%20l%E2%80%99%2A%2Ainventaire%20du%20patrimoine%20mobilier%20urbain%20et%20des%20voiries%2A%2A%20%3A%20panneaux%2C%20poteaux%2C%20affleurants%2C%20%C3%A9quipements%2C%20pistes%20cyclables%2C%20trottoirs%20etc.%0A%0A%23%23%20Probl%C3%A8me%0A%0AHistoriquement%20et%20encore%20majoritairement%20aujourd%E2%80%99hui%20cela%20se%20traduit%20par%20la%20mobilisation%20de%20nombreux%20agents%20qui%20vont%20lever%2Fv%C3%A9rifier%20ces%20%C3%A9l%C3%A9ments%20sur%20le%20terrain%20engendrant%20des%20co%C3%BBts%20et%20d%C3%A9placements%20inutiles%2C%20la%20mise%20en%20danger%20des%20personnels%2C%20des%20pertes%20de%20temps%E2%80%A6%0AAujourd%27hui%20l%27utilisation%20de%20photos%2Fvues%20immersives%20de%20rues%20via%20Google%20StreetView%20et%2Fou%20Mapillary%2C%20ou%20via%20des%20prestations%20priv%C3%A9es%20%28ESRI%2FCyclom%C3%A9dia%2C%20SOGEFI%20etc.%29%20ouvre%20pas%20mal%20d%27opportunit%C3%A9s%20en%20termes%20de%20rationalisation%20des%20d%C3%A9placements%2C%20facilitation%20et%20acc%C3%A9l%C3%A9ration%20du%20recueil%20d%27information%20n%C3%A9cessaire%20aux%20traitements%20de%20certaines%20proc%C3%A9dures%20et%20finalement%20d%27am%C3%A9lioration%20de%20la%20connaissance%20du%20territoire.%0ALa%20collecte%2C%20le%20partage%20et%20l%27utilisation%20de%20ces%20donn%C3%A9es%20restent%20compliqu%C3%A9s%20%3A%20probl%C3%A8me%20de%20licences%2C%20d%C3%A9pendance%20%C3%A0%20des%20soci%C3%A9t%C3%A9s%20priv%C3%A9es%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20orient%C3%A9e%20vers%20l%27ouverture%20des%20donn%C3%A9es%20ou%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20claire%2C%20difficult%C3%A9%20%C3%A0%20partager%20des%20bonnes%20pratiques%2C%20%C3%A0%20s%27assurer%20de%20la%20p%C3%A9rennit%C3%A9%20d%27une%20solution%20pour%20y%20appuyer%20des%20usages%20m%C3%A9tiers%20%C3%A0%20partager%20etc.%0A%0A%23%23%20Investigation%20-%20termin%C3%A9e%0A%0A%2A%2AConstat%20initial%20%3A%2A%2A%20Les%20diff%C3%A9rentes%20communaut%C3%A9s%20%28AITF%2C%20OSM%2C%20Gestionnaires%20de%20r%C3%A9seaux%2C%20IGN%2C%20etc.%29%20bouillonnent%20d%27initiatives%20sur%20le%20sujet%2C%20mais%20pour%20le%20moment%20rien%20de%20p%C3%A9renne%20ne%20semble%20se%20d%C3%A9gager.%0AL%27investigation%20doit%20permettre%20d%27identifier%20s%27il%20y%20a%20la%20place%20pour%20cr%C3%A9er%20un%20g%C3%A9ocommun%20de%20base%20de%20vues%20immersives%20libres%20%C3%A0%20c%C3%B4t%C3%A9%20des%20solutions%20non%20libres%20existantes%2C%20et%20le%20cas%20%C3%A9ch%C3%A9ant%20d%27identifier%20ce%20qui%20bloque%20l%27%C3%A9mergence%20du%20commun%20%28manques%20%C3%A0%20combler%20ou%20freins%29%20pour%20y%20trouver%20des%20rem%C3%A8des%20permettant%20de%20rassembler%20les%20%C3%A9nergies%20des%20diff%C3%A9rents%20acteurs%20et%20proposer%20enfin%20une%20alternative%20libre%20pour%20tous%2C%20sur%20laquelle%20on%20construira%20des%20usages%20partag%C3%A9s.%0A%0ALors%20de%20l%27investigation%20ont%20%C3%A9t%C3%A9%20interrog%C3%A9es%20%3A%0A%2A%20%2A%2Ades%20collectivit%C3%A9s%2A%2A%20%3A%20premi%C3%A8res%20utilisatrices%20du%20produit%2C%20et%20premi%C3%A8res%20contibutrices%20sans%20doute%20en%20terme%20de%20collecte%20%0A%2A%20%2A%2Ades%20d%C3%A9veloppeurs%2A%2A%20%3A%20ceux%20qui%20pourront%20faire%20vivre%20le%20projet%20en%20y%20adossant%20des%20nouveaux%20services%0A%2A%20%2A%2Ades%20communaut%C3%A9s%20%28OSM%2C%20AITF%29%2A%2A%20%3A%20celles%20qui%20pourront%20animer%20le%20commun%2C%20le%20faire%20conna%C3%AEtre%2C%20pousser%20%C3%A0%20le%20faire%20%C3%A9voluer%0A%2A%20%2A%2Ades%20gestionnaires%20de%20r%C3%A9seaux%2A%2A%20%3A%20utilisateurs%20et%20%C3%A9ventuels%20contributeurs%20%C3%A9galement%0A%2A%20%2A%2Ades%20acteurs%20du%20secteurs%20priv%C3%A9s%20%28logiciels%20et%2Fou%20collecte%29%2A%2A%20%3A%20ceux%20qui%20peuvent%20faire%20%C3%A9voluer%20leurs%20pratiques%20pour%20faciliter%20la%20mise%20en%20place%20du%20commun%20ou%20le%20rendre%20inutile.%0A%2A%20%2A%2Ales%20plate-formes%20priv%C3%A9es%2A%2A%20%3A%20Mapillary%20et%20Kartaview%20pour%20voir%20si%20on%20pouvait%20pr%C3%A9voir%20de%20travailler%20ensemble%0A%2A%20%2A%2AAutres%20projets%2A%2A%20%3A%20qui%20pourraient%20proposer%20des%20nouveaux%20usages%20et%20aider%20%C3%A0%20valoriser%2Ffaire%20vivre%20le%20commun%0A%0AL%27investigation%20a%20permis%20de%20convaincre%20le%20sponsor%20qu%27il%20%C3%A9tait%20pertinent%20de%20favoriser%20l%27%C3%A9mergence%20d%27un%20g%C3%A9ocommun%20de%20vues%20immersives.%20Beaucoup%20de%20contributeurs%2Fr%C3%A9utilisateurs%20potentiels%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9s.%20Un%20noyau%20d%27outils%20num%C3%A9riques%20et%20de%20r%C3%A8gles%20de%20bases%20%C3%A0%20sp%C3%A9cifier%20pour%20permettre%20%C3%A0%20ce%20commun%20de%20pleinement%20exister%20a%20%C3%A9t%C3%A9%20d%C3%A9termin%C3%A9%20%3A%20il%20sera%20l%27objet%20de%20la%20phase%20de%20construction.%0APendant%20la%20phase%20d%27investigation%2C%20un%20nom%20a%20%C3%A9t%C3%A9%20trouv%C3%A9%20au%20%22produit%22%20%28commun%29%20via%20un%20processus%20participatif%20%3A%20Panoramax%21%0A%0A%23%23%20Strat%C3%A9gie%0A%0ADeux%20axes%20forts%20%3A%20%0A%2A%20%2A%2ACr%C3%A9er%20une%20bo%C3%AEte%20%C3%A0%20outils%20num%C3%A9riques%20de%20base%20pour%20alimenter%2C%20g%C3%A9rer%20et%20partager%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9velopper%20un%20applicatif%20ou%20d%27une%20brique%20logicielle%20pour%20cr%C3%A9er%28d%C3%A9ployer%29%20une%20instance%20et%20son%20catalogue%0A%20%20%20%20-%20Mettre%20en%20place%20une%20brique%20logicielle%20d%27anonymisation%20des%20images%20%28floutage%20personnes%20et%20v%C3%A9hicules%29%0A%20%20%20%20-%20D%C3%A9velopper%20des%20utils%2FAPI%20pour%20alimenter%2Finterroger%20la%20base%20de%20vues%20de%20Panoramax%0A%20%20%20%20-%20Proposer%20une%20ou%20plusieurs%20instances%20de%20stockage%20ouvertes%0A%0A%2A%20%2A%2AAnimer%20le%20g%C3%A9ocommun%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9finir%20la%20gouvernance%20et%20ses%20r%C3%A8gles%0A%20%20%20%20-%20D%C3%A9finir%20les%20standards%20du%20commun%20%28catalogue%2C%20donn%C3%A9es%29%20et%20les%20licences%20%28codes%2C%20donn%C3%A9es%29%0A%20%20%20%20-%20Proposer%20des%20guides%20de%20bonnes%20pratiques%2C%20des%20outils%20de%20r%C3%A9f%C3%A9rence%20et%20des%20r%C3%A9sultats%20de%20tests%20de%20ces%20outils%20%28performance%29%2C%20des%20tutoriels%20et%20des%20exemples%20de%20cas%20d%27usages%0A%20%20%20%20-%20Mettre%20en%20place%20des%20argumentaires%20pour%20donner%20envie%20de%20contribuer%20et%20proposer%20des%20mod%C3%A8les%20%C3%A9conomiques%20adapt%C3%A9s%20%C3%A0%20diff%C3%A9rentes%20situations%20pour%20faciliter%20la%20contribution%0A%20%20%20%20-%20Organiser%20des%20%C3%A9v%C3%A9nements%20pour%20faire%20conna%C3%AEtre%20Panoramax%20et%20encourager%20la%20contribution%20%28GT%2C%20Openlabs%2C%20Panoramax%20Party%20etc.%29%0A%20%20%20%20-%20R%C3%A9aliser%20un%20support%20technique%20%0A%20%20%20%20-%20Cr%C3%A9er%20un%20site%20web%20vitrine%20du%20commun%20comme%20point%20central%20pour%20trouver%20les%20informations%20et%20outils%20relatifs%20%C3%A0%20Panoramax%0A%0A%23%23%20Indicateurs%0A%0ADes%20indicateurs%20encore%20en%20cours%20de%20d%C3%A9finition%20pour%20mesurer%20la%20mont%C3%A9e%20en%20puissance%20du%20commun%20%28nombre%20de%20vues%2C%20de%20contributions%2C%20de%20km%20lin%C3%A9aires%20couverts%2C%20de%20services%20%C3%A0%20valeur%20ajout%C3%A9e%20cr%C3%A9%C3%A9s%20%C3%A0%20partir%20des%20donn%C3%A9es%20du%20commun%20etc.%29%20et%20l%27impact%20en%20termes%20de%20solution%20%28r%C3%A9duction%20des%20d%C3%A9placements%20d%27agents%20publics%2C%20r%C3%A9utilisations%20diff%C3%A9rentes%2C%20etc.%29.", + "events": [ + { + "name": "committee", + "date": "2022-10-17", + "comment": "Lancement en phase de construction" + }, + { + "name": "committee", + "date": "2023-07-12", + "comment": "" + }, + { + "name": "committee", + "date": "2023-11-06", + "comment": "Lancement en phase d'accélération" + }, + { + "name": "committee", + "date": "2024-06-03", + "comment": "" + }, + { + "name": "committee", + "date": "2024-11-13", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2022-06-24", + "end": "" + }, + { + "name": "construction", + "start": "2022-10-17", + "end": "" + }, + { + "name": "acceleration", + "start": "2023-11-06", + "end": "" + } + ], + "sponsors": [ + "dinum", + "ign" + ], + "thematiques": [ + "Open-Data", + "Outil technique" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/panoramax-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fab-geocommuns" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://panoramax.ign.fr", + "size": 1601.843, + "nodes": 99, + "requests": 18, + "grade": "A", + "score": 81, + "ges": 1.38, + "water": 2.07, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:10:29.403677", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": null, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-28T07:17:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 5, + "lighthouse_performance": 0.17, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.78, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "A" + } + }, + { + "404": null, + "url": "https://api.gouv.fr", + "category": "dinum_produits_interministeriels", + "betaId": "api.gouv.fr", + "repositories": [ + "betagouv/api.gouv.fr" + ], + "http": { + "url": "https://api.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 03:04:20 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 03:04:18 GMT", + "ETag": "\"hthbk5qkdq13a4\"", + "Server": "nginx/1.18.0 (Ubuntu)", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Powered-By": "Next.js", + "x-nextjs-cache": "HIT" + }, + "scan_id": 57048519, + "score": 30, + "start_time": "Sun, 20 Oct 2024 03:04:17 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://api.gouv.fr/", + "redirects": true, + "route": [ + "http://api.gouv.fr/", + "https://api.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "z6jn", + "url": "https://api.gouv.fr", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-21T08:27:08Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:19:35Z", + "next_check_at": "2024-12-01T17:24:32Z", + "created_at": "2021-04-22T19:48:42Z", + "mute_until": null, + "favicon_url": "https://api.gouv.fr/favicons/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:14:37Z", + "expires_at": "2025-01-29T02:02:02Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "panoramax.ign.fr/109.232.236.90", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 141, + "connection": 134, + "handshake": 278, + "response": 140, + "total": 694 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "api.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ + { + "id": "CVE-2023-38408", + "is_exploit": "false", + "cvss": "9.8", + "type": "cve" + }, + { + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "CVE-2020-15778", + "is_exploit": "false", + "cvss": "7.8", + "type": "cve" + }, + { + "id": "SSV:92579", + "is_exploit": "true", + "cvss": "7.5", + "type": "seebug" + }, + { + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "cvss": "7.5", + "type": "packetstorm" + }, + { + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "cvss": "7.5", + "type": "githubexploit" + }, + { + "id": "CVE-2020-12062", + "is_exploit": "false", + "cvss": "7.5", + "type": "cve" + }, + { + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "cvss": "7.5", + "type": "zdt" + }, + { + "id": "CVE-2021-28041", + "is_exploit": "false", + "cvss": "7.1", + "type": "cve" + }, + { + "id": "CVE-2021-41617", + "is_exploit": "false", + "cvss": "7.0", + "type": "cve" + }, + { + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "is_exploit": "true", + "cvss": "6.8", + "type": "githubexploit" + }, + { + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "is_exploit": "true", + "cvss": "6.8", + "type": "githubexploit" + }, + { + "id": "CVE-2023-51385", + "is_exploit": "false", + "cvss": "6.5", + "type": "cve" + }, + { + "id": "CVE-2023-48795", + "is_exploit": "false", + "cvss": "5.9", + "type": "cve" + }, + { + "id": "CVE-2020-14145", + "is_exploit": "false", + "cvss": "5.9", + "type": "cve" + }, + { + "id": "CVE-2016-20012", + "is_exploit": "false", + "cvss": "5.3", + "type": "cve" + }, + { + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "cvss": "0.0", + "type": "packetstorm" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "OK", - "finding": "offered with final" + "severity": "INFO", + "finding": "not offered + downgraded to weaker protocol" }, { "id": "ALPN_HTTP2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -444063,7 +440769,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -444071,7 +440777,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -444079,7 +440785,7 @@ }, { "id": "cipherlist_LOW", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -444087,7 +440793,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -444095,463 +440801,456 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "2024-10-01 07:16" + "finding": "2024-10-31 02:02" }, { "id": "cert_notAfter", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", - "finding": "2024-12-30 07:16" + "finding": "2025-01-29 02:02" }, { "id": "cert_extlifeSpan", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1732468427" - }, - { - "id": "HSTS_time", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733073619" }, { - "id": "HSTS_preload", - "ip": "panoramax.ign.fr/109.232.233.130", + "id": "HSTS", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.18.0 (Ubuntu)" }, { "id": "banner_application", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "public, max-age=0" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -444559,7 +441258,7 @@ }, { "id": "heartbleed", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -444568,7 +441267,7 @@ }, { "id": "CCS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -444577,25 +441276,25 @@ }, { "id": "ticketbleed", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -444603,7 +441302,7 @@ }, { "id": "secure_client_renego", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -444612,7 +441311,7 @@ }, { "id": "CRIME_TLS", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -444621,16 +441320,16 @@ }, { "id": "BREACH", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -444639,14 +441338,14 @@ }, { "id": "fallback_SCSV", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -444655,7 +441354,7 @@ }, { "id": "FREAK", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -444664,7 +441363,7 @@ }, { "id": "DROWN", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -444673,16 +441372,16 @@ }, { "id": "DROWN_hint", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90DCD0BEA7101C6993A7A357CC4569DF155124479A84AE40F25DF248E14B7EEF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=97AD7D6517F248F71E112EA2449C47F939AB2FEAAC5CC8AE469089ABF6444E7E" }, { "id": "LOGJAM", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -444691,16 +441390,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -444709,16 +441408,16 @@ }, { "id": "LUCKY13", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -444727,7 +441426,7 @@ }, { "id": "RC4", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -444736,392 +441435,1338 @@ }, { "id": "clientsimulation-android_60", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_90", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_X", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_11", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-android_12", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-ie_6_xp", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-java_7u25", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1703", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-go_1178", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-libressl_283", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_303", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "rating_spec", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "panoramax.ign.fr/109.232.233.130", + "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "api.gouv.fr/149.202.190.28", + "port": "443", + "severity": "INFO", + "finding": "123" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "_pk_ses.22.382f", + "value": "1", + "domain": "api.gouv.fr", + "path": "/", + "expires": 1733075334, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.22.382f", + "value": "34c84d916561cc9d.1733073534.", + "domain": "api.gouv.fr", + "path": "/", + "expires": 1767028734, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 17:18:52 GMT", + "etag": "\"4hevl235ak1ar1\"", + "server": "nginx/1.18.0 (Ubuntu)", + "vary": "Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "api.gouv.fr", + "ip": "149.202.190.28", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://api.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ubuntu", + "name": "Ubuntu", + "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", + "confidence": 100, + "version": null, + "icon": "Ubuntu.svg", + "website": "https://www.ubuntu.com/server", + "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 28, + "slug": "operating-systems", + "name": "Operating systems" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.5.6", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hubspot", + "name": "HubSpot", + "description": "HubSpot is a marketing and sales software that helps companies attract visitors, convert leads, and close customers.", + "confidence": 100, + "version": null, + "icon": "HubSpot.svg", + "website": "https://www.hubspot.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://api.gouv.fr/", + "finalUrl": "https://api.gouv.fr/", + "fetchTime": "2024-12-01T17:18:23.532Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.91 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.99 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 2277, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1770, + "firstMeaningfulPaint": 2220, + "largestContentfulPaint": 2895, + "interactive": 2277, + "speedIndex": 2513, + "totalBlockingTime": 24, + "maxPotentialFID": 97, + "cumulativeLayoutShift": 0.14012170749240455, + "cumulativeLayoutShiftMainFrame": 0.14012170749240455, + "totalCumulativeLayoutShift": 0.15660333591037331, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 346759124, + "observedNavigationStart": 0, + "observedNavigationStartTs": 346759124, + "observedFirstPaint": 983, + "observedFirstPaintTs": 347742516, + "observedFirstContentfulPaint": 983, + "observedFirstContentfulPaintTs": 347742516, + "observedFirstContentfulPaintAllFrames": 983, + "observedFirstContentfulPaintAllFramesTs": 347742516, + "observedFirstMeaningfulPaint": 1219, + "observedFirstMeaningfulPaintTs": 347978514, + "observedLargestContentfulPaint": 1154, + "observedLargestContentfulPaintTs": 347913445, + "observedLargestContentfulPaintAllFrames": 1154, + "observedLargestContentfulPaintAllFramesTs": 347913445, + "observedTraceEnd": 4245, + "observedTraceEndTs": 351003648, + "observedLoad": 1779, + "observedLoadTs": 348538092, + "observedDomContentLoaded": 1096, + "observedDomContentLoadedTs": 347854973, + "observedCumulativeLayoutShift": 0.14012170749240455, + "observedCumulativeLayoutShiftMainFrame": 0.14012170749240455, + "observedTotalCumulativeLayoutShift": 0.15660333591037331, + "observedFirstVisualChange": 993, + "observedFirstVisualChangeTs": 347752124, + "observedLastVisualChange": 4243, + "observedLastVisualChangeTs": 351002124, + "observedSpeedIndex": 1151, + "observedSpeedIndexTs": 347910583 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 35, + "numScripts": 12, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 1353, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 147.203, + "throughput": 6335188.77324712, + "maxRtt": 150.644, + "maxServerLatency": 269.96900000000005, + "totalByteWeight": 538283, + "totalTaskTime": 258.0889999999977, + "mainDocumentTransferSize": 17518 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://api.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://api.gouv.fr/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "api.gouv.fr", + "type": "startup", + "attributes": { + "name": "api.gouv.fr", + "pitch": "Référencer toutes les APIs du service public", + "stats_url": "https://stats.data.gouv.fr/index.php?module=CoreHome&action=index&idSite=22&period=range&date=previous30&updated=1#?idSite=22&period=range&date=previous30&category=Dashboard_Dashboard&subcategory=1", + "link": "https://api.gouv.fr", + "repository": "https://github.com/betagouv/api.gouv.fr", + "contact": "contact@api.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20%3A%0A%0AAu%20sein%20des%20administrations%2C%20la%20donn%C3%A9e%20est%20une%20ressource%20dispers%C3%A9e%2C%20h%C3%A9t%C3%A9rog%C3%A8ne%20et%20difficile%20d%27acc%C3%A8s.%0ALes%20organisations%20qui%20construisent%20des%20services%20num%C3%A9riques%20pour%20les%20citoyens%20ou%20les%20agents%20de%20la%20fonction%20publique%20ont%20besoin%20de%20cette%20donn%C3%A9e%20et%20doivent%20faire%20face%20%C3%A0%20%3A%0A%0A-%20la%20multiplicit%C3%A9%20des%20sources%20de%20donn%C3%A9es%20et%20des%20interlocuteurs%0A-%20la%20difficult%C3%A9%20d%E2%80%99identifier%20la%20bonne%20source%20de%20donn%C3%A9e%20adapt%C3%A9e%20au%20besoin%0A-%20la%20difficult%C3%A9%20d%E2%80%99obtenir%20l%27acc%C3%A8s%20%C3%A0%20la%20donn%C3%A9e%0A-%20la%20difficult%C3%A9%20de%20construire%20un%20service%20fiable%20avec%20la%20donn%C3%A9e%0A%0A%23%23%20La%20solution%20%3A%0A%0A%5Bapi.gouv.fr%5D%28https%3A%2F%2Fapi.gouv.fr%29%20est%20d%E2%80%99abord%20un%20site%20internet%20public%20mais%20c%E2%80%99est%20aussi%20une%20%C3%A9quipe%20qui%20%3A%0A%0A-%20recense%20les%20apis%20existantes%0A-%20conseille%20et%20accompagne%20les%20administrations%20qui%20construisent%20des%20services%20num%C3%A9riques%0A-%20facilite%20et%20d%C3%A9mat%C3%A9rialise%20l%27acc%C3%A8s%20aux%20donn%C3%A9es%20entre%20administrations%20habilit%C3%A9es%0A-%20rassure%20et%20%C3%A9tablit%20une%20relation%20de%20confiance%20entre%20les%20administrations%20qui%20construisent%20des%20services%20num%C3%A9riques%20et%20celles%20qui%20mettent%20%C3%A0%20disposition%20leurs%20donn%C3%A9es%0A%0A%5Bapi.gouv.fr%5D%28https%3A%2F%2Fapi.gouv.fr%29%20est%20une%20startup%20d%C3%A9ja%20incub%C3%A9e%2C%20riche%20d%27une%20exp%C3%A9rience%20de%20plusieurs%20ann%C3%A9es%20et%20des%20dizaines%20de%20services%20d%C3%A9ja%20accompagn%C3%A9s.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2016-01-25", + "end": "" + }, + { + "name": "construction", + "start": "2016-01-25", + "end": "" + }, + { + "name": "success", + "start": "2020-07-01", + "end": "" + } + ], + "sponsors": [ + "dinum" + ], + "thematiques": [ + "Open-Data" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/api-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum_produits_interministeriels" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://api.gouv.fr", + "size": 775.915, + "nodes": 302, + "requests": 32, + "grade": "B", + "score": 76, + "ges": 1.48, + "water": 2.22, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:15:20.181849", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "D", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-29T02:02:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.91, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://urbanvitaliz.fr", + "category": "dinum", + "betaId": "urbanvitaliz", + "repositories": [ + "betagouv/urbanvitaliz-django" + ], + "http": { + "url": "https://urbanvitaliz.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:23:32 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Length": "38064", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 20 Oct 2024 13:23:31 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=wNhDc6wDw8vMtNmu7BExmGTxjgb3aMIw; expires=Sun, 19 Oct 2025 13:23:31 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Cookie", + "via": "1.1 alproxy", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN" }, - { - "id": "final_score", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57065237, + "score": 70, + "start_time": "Sun, 20 Oct 2024 13:23:30 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "urbanvitaliz.fr", + "expires": 1760880211, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "None", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://urbanvitaliz.fr/", + "redirects": true, + "route": [ + "http://urbanvitaliz.fr/", + "https://urbanvitaliz.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.jsdelivr.net/npm/js-cookie@3.0.1/dist/js.cookie.min.js": { + "crossorigin": "anonymous", + "integrity": "sha256-0H3Nuz3aug3afVbUlsu12Puxva3CP4EhJtPExqs54Vg=" + }, + "https://sentry.incubateur.net/js-sdk-loader/5b872cee93efddce4396cc52605838c1.min.js": { + "crossorigin": "anonymous", + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "luwn", + "url": "https://urbanvitaliz.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T10:54:06Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:25:53Z", + "next_check_at": "2024-12-01T17:26:52Z", + "created_at": "2024-02-07T18:36:46Z", + "mute_until": null, + "favicon_url": "https://urbanvitaliz.fr/static/img/favicons/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:21:54Z", + "expires_at": "2025-01-14T07:02:42Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "panoramax.ign.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.887, + "timings": { + "redirect": 0, + "namelookup": 91, + "connection": 122, + "handshake": 134, + "response": 326, + "total": 673 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "urbanvitaliz.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -445129,7 +442774,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -445137,7 +442782,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -445145,7 +442790,7 @@ }, { "id": "cipherlist_LOW", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -445153,7 +442798,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -445161,7 +442806,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -445169,463 +442814,491 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "43 >= 30 days" }, { "id": "cert_notBefore", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "2024-10-01 07:16" + "finding": "2024-10-16 07:02" }, { "id": "cert_notAfter", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "2024-12-30 07:16" + "finding": "2025-01-14 07:02" }, { "id": "cert_extlifeSpan", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "1732468525" + "finding": "1733073940" }, { "id": "HSTS_time", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "Cache-Control", - "ip": "panoramax.ign.fr/148.253.75.120", + "id": "cookie_secure", + "ip": "urbanvitaliz.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "public, max-age=0" + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "urbanvitaliz.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "urbanvitaliz.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "urbanvitaliz.fr/185.31.40.13", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -445634,7 +443307,7 @@ }, { "id": "CCS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -445643,7 +443316,7 @@ }, { "id": "ticketbleed", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -445652,7 +443325,7 @@ }, { "id": "ROBOT", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -445661,7 +443334,7 @@ }, { "id": "secure_renego", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -445669,7 +443342,7 @@ }, { "id": "secure_client_renego", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -445678,7 +443351,7 @@ }, { "id": "CRIME_TLS", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -445687,16 +443360,16 @@ }, { "id": "BREACH", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -445705,14 +443378,14 @@ }, { "id": "fallback_SCSV", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -445721,7 +443394,7 @@ }, { "id": "FREAK", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -445730,7 +443403,7 @@ }, { "id": "DROWN", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -445739,16 +443412,16 @@ }, { "id": "DROWN_hint", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90DCD0BEA7101C6993A7A357CC4569DF155124479A84AE40F25DF248E14B7EEF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EEFDCE5C119B38F1BF74FA2A6155F2778D328B20769A4BBAC473A418D0888470" }, { "id": "LOGJAM", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -445757,16 +443430,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -445775,7 +443448,7 @@ }, { "id": "LUCKY13", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -445784,7 +443457,7 @@ }, { "id": "winshock", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -445793,7 +443466,7 @@ }, { "id": "RC4", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -445802,392 +443475,1237 @@ }, { "id": "clientsimulation-android_60", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "panoramax.ign.fr/148.253.75.120", + "ip": "urbanvitaliz.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "A+" }, + { + "id": "scanTime", + "ip": "urbanvitaliz.fr/185.31.40.13", + "port": "443", + "severity": "INFO", + "finding": "54" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://stats.recoconseil.fr/matomo.js" + }, + { + "type": "unknown", + "url": "https://stats.recoconseil.fr/matomo.php?action_name=R%C3%A9habiliter%20une%20friche%20-%20UrbanVitaliz&idsite=2&rec=1&r=094420&h=17&m=24&s=25&url=https%3A%2F%2Furbanvitaliz.fr%2F&_id=8116876e5649909f&_idn=1&send_image=0&_refts=0&pv_id=iDODBO&pf_net=184&pf_srv=127&pf_tfr=86&pf_dm1=896&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + } + ], + "cookies": [ + { + "name": "_pk_ses.2.30f1", + "value": "1", + "domain": "urbanvitaliz.fr", + "path": "/", + "expires": 1733075665, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.2.30f1", + "value": "8116876e5649909f.1733073866.", + "domain": "urbanvitaliz.fr", + "path": "/", + "expires": 1767029066, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "csrftoken", + "value": "jjXnJkaSaQwBxIKcV2bN0g24sOqyqCvG", + "domain": "urbanvitaliz.fr", + "path": "/", + "expires": 1764523464.701422, + "size": 41, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-length": "39276", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 17:24:24 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=jjXnJkaSaQwBxIKcV2bN0g24sOqyqCvG; expires=Sun, 30 Nov 2025 17:24:24 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Cookie", + "via": "2.0 alproxy", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN" + }, + "endpoints": [ + { + "hostname": "urbanvitaliz.fr", + "ip": "185.31.40.13", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "stats.recoconseil.fr", + "ip": "185.31.40.13", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://urbanvitaliz.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "alpine-js", + "name": "Alpine.js", + "description": null, + "confidence": 100, + "version": "3.13.9", + "icon": "Alpine.js.png", + "website": "https://github.com/alpinejs/alpine", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://urbanvitaliz.fr/", + "finalUrl": "https://urbanvitaliz.fr/", + "fetchTime": "2024-12-01T17:23:57.035Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.47 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.96 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12066, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 11766, + "firstMeaningfulPaint": 12066, + "largestContentfulPaint": 25116, + "interactive": 12066, + "speedIndex": 11766, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.0037564620971679685, + "cumulativeLayoutShiftMainFrame": 0.0037564620971679685, + "totalCumulativeLayoutShift": 0.0037564620971679685, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 339509478, + "observedNavigationStart": 0, + "observedNavigationStartTs": 339509478, + "observedFirstPaint": 947, + "observedFirstPaintTs": 340456951, + "observedFirstContentfulPaint": 947, + "observedFirstContentfulPaintTs": 340456951, + "observedFirstContentfulPaintAllFrames": 947, + "observedFirstContentfulPaintAllFramesTs": 340456951, + "observedFirstMeaningfulPaint": 1050, + "observedFirstMeaningfulPaintTs": 340559920, + "observedLargestContentfulPaint": 1318, + "observedLargestContentfulPaintTs": 340827087, + "observedLargestContentfulPaintAllFrames": 1318, + "observedLargestContentfulPaintAllFramesTs": 340827087, + "observedTraceEnd": 3824, + "observedTraceEndTs": 343333070, + "observedLoad": 1342, + "observedLoadTs": 340851468, + "observedDomContentLoaded": 1310, + "observedDomContentLoadedTs": 340819092, + "observedCumulativeLayoutShift": 0.0037564620971679685, + "observedCumulativeLayoutShiftMainFrame": 0.0037564620971679685, + "observedTotalCumulativeLayoutShift": 0.0037564620971679685, + "observedFirstVisualChange": 960, + "observedFirstVisualChangeTs": 340469478, + "observedLastVisualChange": 1676, + "observedLastVisualChangeTs": 341185478, + "observedSpeedIndex": 1096, + "observedSpeedIndexTs": 340605875 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 64, + "numScripts": 20, + "numStylesheets": 15, + "numFonts": 4, + "numTasks": 17, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 84.31899999999999, + "throughput": 50827261.95016808, + "maxRtt": 84.881, + "maxServerLatency": 66.25600000000003, + "totalByteWeight": 5214642, + "totalTaskTime": 3510.0719999999997, + "mainDocumentTransferSize": 39627 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://urbanvitaliz.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://urbanvitaliz.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://urbanvitaliz.fr/confidentialite" + } + ], + "betagouv": { + "id": "urbanvitaliz", + "type": "startup", + "attributes": { + "name": "UrbanVitaliz (Friches)", + "pitch": "Faciliter la réhabilitation des friches urbaines", + "stats_url": "https://urbanvitaliz.fr/stats", + "budget_url": "https://urbanvitaliz.fr/p/budget/", + "link": "https://urbanvitaliz.fr/", + "repository": "https://github.com/betagouv/urbanvitaliz-django", + "contact": "friches@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20%3A%20beaucoup%20de%20friches%20restent%20inutilis%C3%A9es%20pendant%20qu%27on%20artificialise%20des%20sols%20naturels%20et%20agricoles.%20Les%20collectivit%C3%A9s%20sont%20souvent%20bloqu%C3%A9es%20dans%20leurs%20projets%20de%20r%C3%A9habilitation%20par%20la%20complexit%C3%A9%20%C3%A0%20affronter.%0A%0A%23%23%23%20L%27enjeu%20de%20la%20lutte%20contre%20l%27artificialisation%20des%20sols%0A%0AL%E2%80%99artificialisation%20des%20sols%20pose%20de%20nombreux%20probl%C3%A8mes%20%C3%A9cologiques%20%3A%20perte%20de%20surfaces%20agricoles%2C%20de%20biodiversit%C3%A9%2C%20imperm%C3%A9abilisation%20des%20sols%20%3B%20ainsi%20que%20des%20difficult%C3%A9s%20d%E2%80%99am%C3%A9nagement%20%3A%20augmentation%20des%20besoins%20en%20d%C3%A9placements%2C%20en%20infrastructures%E2%80%A6%20%0A%0ALe%20gisement%20foncier%20en%20friche%20repr%C3%A9sente%20un%20excellent%20potentiel%20de%20surfaces%20d%C3%A9j%C3%A0%20artificialis%C3%A9s%20pour%20l%E2%80%99accueil%20de%20nouveaux%20projets%2C%20d%E2%80%99autant%20que%20les%20volumes%20sont%20cons%C3%A9quents.%20On%20estime%20que%206.500%20friches%20font%20l%E2%80%99objet%20d%E2%80%99une%20volont%C3%A9%20de%20r%C3%A9habilitation%20en%20m%C3%A9tropole%20%C3%A0%20l%E2%80%99instant%20T.%0A%0A%23%23%23%20Les%20territoires%20peu%20denses%20et%20au%20march%C3%A9%20foncier%20d%C3%A9tendu%20ne%20se%20r%C3%A9approprient%20pas%20leurs%20friches%0A%0ABeaucoup%20de%20friches%20situ%C3%A9es%20dans%20des%20%22petites%22%20communes%20et%20intercommunalit%C3%A9s%20restent%20%C3%A0%20l%27abandon%20pendant%20des%20ann%C3%A9es.%20En%20zone%20au%20march%C3%A9%20foncier%20d%C3%A9tendu%2C%20ces%20espaces%20ne%20se%20renouvellent%20pas%20sans%20intervention%20de%20la%20puissance%20publique%20car%20les%20couts%20de%20remise%20en%20%C3%A9tat%20empechent%20la%20rentabilit%C3%A9%20de%20tels%20projets.%0A%0ALes%20%C3%A9lu%C2%B7e%C2%B7s%20et%20technicien%C2%B7ne%C2%B7s%20de%20la%20collectivit%C3%A9%2C%20lorsqu%27iels%20ont%20la%20volont%C3%A9%20de%20voir%20une%20friche%20r%C3%A9sorb%C3%A9e%2C%20font%20alors%20face%20%C3%A0%20une%20grande%20complexit%C3%A9.%20Ce%20ne%20sont%20pas%20des%20sp%C3%A9cialistes%20des%20friches%2C%20ils%20vont%20rencontrer%20de%20nombreux%20blocages%20%3A%20par%20o%C3%B9%20commencer%2C%20quelle%20est%20la%20prochaine%20%C3%A9tape%20%3F%20Quels%20financements%20existent%2C%20sont%20disponibles%20pour%20mon%20projet%20%3F%20Quels%20acteurs%20publics%20ou%20priv%C3%A9s%20peuvent%20m%27aider%2C%20avec%20quelles%20prestations%20%3F%20Quels%20outils%20m%27aideraient%20%3F%20etc.%0A%0A%2A%2ALe%20probl%C3%A8me%20principal%20adress%C3%A9%20par%20UrbanVitaliz%20%3A%20%20les%20collectivit%C3%A9s%20et%20porteurs%20de%20projet%20en%20zones%20d%C3%A9tendues%20sont%20souvent%20d%C3%A9munis%20face%20%C3%A0%20la%20complexit%C3%A9%20des%20d%C3%A9marches%20%C3%A0%20mener%2C%20la%20diversit%C3%A9%20des%20outils%20et%20acteurs%20%C3%A0%20contacter%20pour%20enclencher%20la%20revitalisation%20d%27une%20friche.%2A%2A%0A%0ADans%20la%20situation%20actuelle%2C%20certaines%20collectivit%C3%A9s%20renoncent%20%C3%A0%20d%C3%A9bloquer%20les%20gisements%20foncier%20en%20friche%2C%20ou%20perdent%20beaucoup%20de%20temps%20et%20d%27argent%20%C3%A0%20d%C3%A9faut%20de%20ma%C3%AEtriser%20les%20processus.%0A%0A%2A%2ACot%C3%A9%20acteurs%20publics%20locaux%20qui%20interviennent%20sur%20les%20friches%2A%2A%2C%20beaucoup%20d%C3%A9plorent%20un%20manque%20de%20visibilit%C3%A9%20sur%20les%20projets%20friche%20des%20territoires%2C%20une%20difficult%C3%A9%20%C3%A0%20la%20suivre%20dans%20la%20dur%C3%A9e%20et%20l%27enjeu%20de%20la%20coordination%20%C3%A0%20plusieurs%20acteurs%20intervenant.%0A%0A%23%23%20La%20solution%20%3A%20UrbanVitaliz%20oriente%20les%20collectivit%C3%A9s%20de%20mani%C3%A8re%20personnalis%C3%A9e%20sur%20leurs%20projets%20de%20r%C3%A9habilitation%20de%20friche%2C%20en%20collaboration%20avec%20les%20acteurs%20publics%20locaux%0A%0AApr%C3%A8s%20une%20phase%20d%27investigation%20de%20mars%20%C3%A0%20mai%202020%2C%20la%20construction%20du%20service%20a%20d%C3%A9but%C3%A9%20fin%202020.%0A%0AGrace%20%C3%A0%20une%20plateforme%20num%C3%A9rique%20sur-mesure%20et%20une%20%C3%A9quipe%20compos%C3%A9e%20notamment%20d%27urbanistes%2C%20UrbanVitaliz%20donne%20des%20recommandations%20d%27actions%20%C3%A0%20la%20collectivit%C3%A9%2C%20en%20fonction%20du%20projet%20qu%27elle%20lui%20a%20soumis%20et%20des%20caract%C3%A9ristiques%20de%20la%20friches.%20%2A%2AElle%20oriente%20ainsi%20vers%20les%20acteurs%2C%20dispositifs%2C%20financements%2C%20prestations%2C%20outils%20et%20strat%C3%A9gies%20disponibles%2A%2A%2C%20susceptibles%20de%20d%C3%A9bloquer%20le%20porteur%20de%20projet.%20En%20moyenne%2C%20une%20collectivit%C3%A9%20qui%20sollicit%C3%A9%20UrbanVitaliz%20re%C3%A7oit%205%20recommandations%20qu%27elle%20sera%20libre%20de%20mettre%20en%20pratique%20comme%20elle%20le%20souhaite.%0A%0A%2A%2ADe%20plus%20en%20plus%2C%20les%20acteurs%20de%20l%27ing%C3%A9nierie%20publique%20locale%20prennent%20part%20%C3%A0%20cet%20accompagnement%20des%20dossiers-friche%20d%C3%A9pos%C3%A9s%20sur%20la%20plateforme.%2A%2A%20Il%20s%27agit%20notamment%2C%20selon%20les%20territoires%2C%20des%20DDT%2C%20EPF%2C%20agences%20d%27urbanisme%20etc.%20Ces%20acteurs%20y%20trouvent%20plusieurs%20b%C3%A9n%C3%A9fices%20%3A%20connaissance%20approfondie%20des%20dossiers%20d%C3%A9pos%C3%A9s%20sur%20leur%20territoire%2C%20historisation%20et%20suivi%20dans%20le%20temps%2C%20coordination%20multi-acteurs%20etc.%20Leur%20participation%20permet%20aussi%20d%27enrichir%20le%20suivi%20des%20projets%20grace%20%C3%A0%20une%20connaissance%20locale%2C%20une%20vision%20de%20territoire%20et%20une%20pr%C3%A9sence%20sur%20le%20terrain.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9veloppement%20et%20d%C3%A9ploiement%20du%20produit%0A%0AEn%20date%20de%20novembre%202024%2C%20le%20d%C3%A9veloppement%20d%27UrbanVitaliz%20repose%20sur%203%20axes%20%3A%0A%0A%2A%20%2A%2APoursuivre%20le%20d%C3%A9ploiement%20aupr%C3%A8s%20des%20collectivit%C3%A9s%2A%2A.%20Depuis%20janvier%202021%2C%20500%20projets%20ont%20%C3%A9t%C3%A9%20soumis%20pour%20recevoir%20de%20l%27aide.%20Les%20principaux%20canaux%20de%20communication%20sont%20les%20r%C3%A9seaux%20locaux%2C%20notamment%20anim%C3%A9s%20par%20les%20DDT%2C%20pr%C3%A9fectures%20et%20antennes%20ANCT%2C%20les%20r%C3%A9seaux%20type%20Petite%20Ville%20de%20Demain%20%28PVD%29%2C%20les%20associations%20d%27%C3%A9lus.%0A%2A%20%2A%2AEmbarquer%20davantage%20d%27acteurs%20publics%20locaux%20dans%20le%20suivi%20des%20projets%20d%C3%A9pos%C3%A9s%20sur%20la%20plateforme%2A%2A.%20L%27%C3%A9quipe%20d%27UrbanVitaliz%20contacte%20en%20direct%20certains%20acteurs%20locaux%20en%20fonction%20des%20dossiers%20re%C3%A7us%20%28DDT%20notamment%29.%20D%27autres%20sollicitent%20un%20acc%C3%A8s%20apr%C3%A8s%20avoir%20d%C3%A9couvert%20le%20service%20via%20des%20r%C3%A9seaux%20locaux%2C%20des%20communications%20des%20minist%C3%A8res%20de%20tutelle%2C%20sur%20les%20r%C3%A9seaux%20sociaux...%0A%2A%20%2A%2AAgr%C3%A9ger%20une%20vision%20nationale%20des%20friches%20%22qui%20bougent%22%20%C3%A0%20disposition%20des%20d%C3%A9cideurs%20publics%2A%2A.%20UrbanVitaliz%20rassemble%20une%20quantit%C3%A9%20importante%20de%20donn%C3%A9es%20sur%20les%20projets%20re%C3%A7us%20et%20a%20vocation%2C%20%C3%A0%20terme%2C%20%C3%A0%20voir%20passer%20la%20majorit%C3%A9%20des%20projets%20de%20r%C3%A9habilitation%20de%20friches%20en%20France.%20C%27est%20donc%20une%20opportunit%C3%A9%20unique%20de%20faire%20parler%20ces%20donn%C3%A9es%2C%20notamment%20en%20cr%C3%A9ant%20des%20tableaux%20de%20bord%20et%20analyses%20th%C3%A9matiques%20%3A%20principaux%20freins%2C%20typologie%20de%20projet%20etc.%0A%0A%23%23%20Un%20pas%20de%20c%C3%B4t%C3%A9%20%3A%20Recommandations-collaboratives%2C%20pour%20permettre%20%C3%A0%20d%E2%80%99autres%20secteurs%20th%C3%A9matiques%20de%20b%C3%A9n%C3%A9ficier%20du%20m%C3%AAme%20outil%20de%20travail%20pour%20conseiller%20des%20projets%20complexes%0A%0APlusieurs%20interlocuteurs%20sur%20d%E2%80%99autres%20th%C3%A9matiques%20%28mobilit%C3%A9%2C%20%C3%A9coquartiers%2C%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%E2%80%A6%29%20ont%20manifest%C3%A9%20leur%20int%C3%A9r%C3%AAt%20%C3%A0%20utiliser%20UrbanVitaliz%20pour%20faire%20de%20l%E2%80%99accompagnement%20dans%20la%20dur%C3%A9e%20sur%20d%E2%80%99autres%20sujets%20que%20les%20friches.%20Face%20au%20manque%20d%E2%80%99outils%20sur%20ce%20sujet%20complexe%2C%20l%E2%80%99%C3%A9quipe%20UrbanVitaliz%20a%20produit%20une%20version%20minimale%20de%20l%E2%80%99outil%20g%C3%A9n%C3%A9rique%2C%20nomm%C3%A9%20Recommandations-collaboratives%2C%20qui%20permet%20de%20cr%C3%A9er%20d%E2%80%99autres%20portails%20th%C3%A9matiques%20de%20recommandations%2C%20%C3%A0%20l%E2%80%99initiative%20d%E2%80%99autres%20m%C3%A9tiers%20et%20organisations%20publiques.%20%0A%0ALa%20mise%20en%20place%20d%27un%20portail%20Recommandations-collaboratives%20est%20r%C3%A9alis%C3%A9e%20pour%20des%20administrations%20publiques%20qui%20disposent%20d%C3%A9j%C3%A0%20d%27une%20communaut%C3%A9%20susceptible%20de%20l%27utiliser.%20%0A%0AFiche%20produit%20%3A%20https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2Frecommandations-collaboratives.html%0A%0A%E2%80%94%0A%0AContact%20de%20l%27%C3%A9quipe%20%3A%20friches%40beta.gouv.fr", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2020-02-12", + "end": "2020-05-19" + }, + { + "name": "construction", + "start": "2020-09-14", + "end": "" + }, + { + "name": "acceleration", + "start": "2021-12-01", + "end": "" + }, + { + "name": "success", + "start": "2023-11-01", + "end": "" + } + ], + "sponsors": [ + "anct", + "cerema", + "dgaln", + "dinum" + ], + "thematiques": [ + "Collectivités", + "Territoires", + "Écologie", + "Logement" + ], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "accelerema" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://urbanvitaliz.fr", + "size": 5289.654, + "nodes": 328, + "requests": 63, + "grade": "C", + "score": 58, + "ges": 1.84, + "water": 2.76, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:20:57.007565", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 0.887, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-14T07:02:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.47, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.96, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://devoirs-faits-communaute.beta.gouv.fr", + "category": "dinum", + "betaId": "devoirs-faits-communaute", + "repositories": [ + "betagouv/ClasseA12" + ], + "http": { + "url": "https://devoirs-faits-communaute.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:30:03 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "date": "Sun, 20 Oct 2024 13:30:02 GMT", + "transfer-encoding": "chunked", + "via": "1.1 alproxy" + }, + "scan_id": 57065313, + "score": 10, + "start_time": "Sun, 20 Oct 2024 13:30:02 GMT", + "state": "FINISHED", + "status_code": 502, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": false, + "route": [ + "http://devoirs-faits-communaute.beta.gouv.fr/" + ], + "status_code": null + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": null, + "nmap": { + "host": "devoirs-faits-communaute.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446195,7 +444713,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446203,7 +444721,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446211,7 +444729,7 @@ }, { "id": "cipherlist_LOW", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446219,7 +444737,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -446227,7 +444745,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -446235,463 +444753,449 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "2024-10-01 07:16" + "finding": "2024-11-06 07:39" }, { "id": "cert_notAfter", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", - "finding": "2024-12-30 07:16" + "finding": "2025-02-04 07:39" }, { "id": "cert_extlifeSpan", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "WARN", + "finding": "Unexpected 502 Bad Gateway @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "panoramax.ign.fr/5.104.101.30", - "port": "443", - "severity": "INFO", - "finding": "1732468623" - }, - { - "id": "HSTS_time", - "ip": "panoramax.ign.fr/5.104.101.30", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733074300" }, { - "id": "HSTS_preload", - "ip": "panoramax.ign.fr/5.104.101.30", + "id": "HSTS", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "panoramax.ign.fr/5.104.101.30", + "id": "security_headers", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -446700,7 +445204,7 @@ }, { "id": "CCS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -446709,7 +445213,7 @@ }, { "id": "ticketbleed", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -446718,7 +445222,7 @@ }, { "id": "ROBOT", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -446727,7 +445231,7 @@ }, { "id": "secure_renego", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -446735,7 +445239,7 @@ }, { "id": "secure_client_renego", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -446744,7 +445248,7 @@ }, { "id": "CRIME_TLS", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -446753,16 +445257,16 @@ }, { "id": "BREACH", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -446771,14 +445275,14 @@ }, { "id": "fallback_SCSV", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -446787,7 +445291,7 @@ }, { "id": "FREAK", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -446796,7 +445300,7 @@ }, { "id": "DROWN", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -446805,16 +445309,16 @@ }, { "id": "DROWN_hint", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90DCD0BEA7101C6993A7A357CC4569DF155124479A84AE40F25DF248E14B7EEF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6A18DBF56AC9D967CEA01D67E9E9F31F7C11E738D3EB579167B70C67A45762A1" }, { "id": "LOGJAM", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -446823,16 +445327,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -446841,7 +445345,7 @@ }, { "id": "LUCKY13", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -446850,7 +445354,7 @@ }, { "id": "winshock", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -446859,7 +445363,7 @@ }, { "id": "RC4", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -446868,478 +445372,345 @@ }, { "id": "clientsimulation-android_60", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "panoramax.ign.fr/5.104.101.30", + "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "395" + "finding": "54" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://matomo.panoramax.xyz//matomo.js" - }, - { - "type": "unknown", - "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/gris.json" - }, - { - "type": "unknown", - "url": "https://matomo.panoramax.xyz//matomo.php?action_name=Panoramax%20IGN%20%3A%20photo-cartographier%20les%20territoires&idsite=4&rec=1&r=971166&h=17&m=10&s=34&url=https%3A%2F%2Fpanoramax.ign.fr%2F&_id=95739730b9e3cbe6&_idn=1&send_image=0&_refts=0&pv_id=uC20yo&pf_net=317&pf_srv=167&pf_tfr=1&pf_dm1=6&pf_dm2=1316&pf_onl=0&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - }, - { - "type": "unknown", - "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/sprite/PlanIgn-Gris.json" - }, - { - "type": "unknown", - "url": "https://data.geopf.fr/annexes/ressources/vectorTiles/styles/PLAN.IGN/sprite/PlanIgn-Gris.png" - } - ], + "trackers": [], "cookies": [], "headers": { - "cache-control": "public, max-age=0", - "content-encoding": "gzip", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 17:10:32 GMT", - "etag": "W/\"56a-19344176460\"", - "last-modified": "Tue, 19 Nov 2024 11:03:24 GMT", - "strict-transport-security": "max-age=31536000", - "x-powered-by": "Express", - "x-request-id": "fc3433ec-1630-4825-9ada-ffbee0cdc149\nfc3433ec-1630-4825-9ada-ffbee0cdc149" + "date": "Sun, 01 Dec 2024 17:30:54 GMT", + "via": "2.0 alproxy" }, "endpoints": [ { - "hostname": "panoramax.ign.fr", - "ip": "109.232.236.90", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "matomo.panoramax.xyz", - "ip": "193.200.42.122", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "data.geopf.fr", - "ip": "145.239.193.231", + "hostname": "devoirs-faits-communaute.beta.gouv.fr", + "ip": "185.31.40.21", "geoip": { "continent": { "code": "EU", @@ -447397,335 +445768,15 @@ }, "wappalyzer": { "urls": { - "https://panoramax.ign.fr/": { - "status": 200 + "https://devoirs-faits-communaute.beta.gouv.fr/": { + "status": 502 } }, - "technologies": [ - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "three-js", - "name": "Three.js", - "description": "Three.js is a cross-browser JavaScript library and application programming interface used to create and display animated 3D computer graphics in a web browser using WebGL.", - "confidence": 100, - "version": "168", - "icon": "Three.js.svg", - "website": "https://threejs.org", - "cpe": null, - "categories": [ - { - "id": 25, - "slug": "javascript-graphics", - "name": "JavaScript graphics" - } - ], - "rootPath": true - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "express", - "name": "Express", - "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", - "confidence": 100, - "version": null, - "icon": "Express.svg", - "website": "https://expressjs.com", - "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "font-awesome", - "name": "Font Awesome", - "description": "Font Awesome is a font and icon toolkit based on CSS and Less.", - "confidence": 100, - "version": null, - "icon": "Font Awesome.svg", - "website": "https://fontawesome.com/", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] + "technologies": [] }, "zap": null, "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://panoramax.ign.fr/", - "finalUrl": "https://panoramax.ign.fr/", - "fetchTime": "2024-11-24T17:10:02.670Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.16 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.78 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 16205, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 7531, - "firstMeaningfulPaint": 7606, - "largestContentfulPaint": 9192, - "interactive": 16205, - "speedIndex": 14762, - "totalBlockingTime": 7180, - "maxPotentialFID": 1127, - "cumulativeLayoutShift": 0.009647039201524522, - "cumulativeLayoutShiftMainFrame": 0.009647039201524522, - "totalCumulativeLayoutShift": 0.01031548351711697, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 429292825, - "observedNavigationStart": 0, - "observedNavigationStartTs": 429292825, - "observedFirstPaint": 1992, - "observedFirstPaintTs": 431285212, - "observedFirstContentfulPaint": 1992, - "observedFirstContentfulPaintTs": 431285212, - "observedFirstContentfulPaintAllFrames": 1992, - "observedFirstContentfulPaintAllFramesTs": 431285212, - "observedFirstMeaningfulPaint": 1992, - "observedFirstMeaningfulPaintTs": 431285212, - "observedLargestContentfulPaint": 3228, - "observedLargestContentfulPaintTs": 432520426, - "observedLargestContentfulPaintAllFrames": 3228, - "observedLargestContentfulPaintAllFramesTs": 432520426, - "observedTraceEnd": 8705, - "observedTraceEndTs": 437998239, - "observedLoad": 1669, - "observedLoadTs": 430961407, - "observedDomContentLoaded": 1668, - "observedDomContentLoadedTs": 430961266, - "observedCumulativeLayoutShift": 0.009647039201524522, - "observedCumulativeLayoutShiftMainFrame": 0.009647039201524522, - "observedTotalCumulativeLayoutShift": 0.01031548351711697, - "observedFirstVisualChange": 3239, - "observedFirstVisualChangeTs": 432531825, - "observedLastVisualChange": 6406, - "observedLastVisualChangeTs": 435698825, - "observedSpeedIndex": 5990, - "observedSpeedIndexTs": 435282921 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 42, - "numScripts": 10, - "numStylesheets": 1, - "numFonts": 1, - "numTasks": 1612, - "numTasksOver10ms": 25, - "numTasksOver25ms": 23, - "numTasksOver50ms": 18, - "numTasksOver100ms": 9, - "numTasksOver500ms": 0, - "rtt": 151.278, - "throughput": 9068748.361206017, - "maxRtt": 157.172, - "maxServerLatency": 140.60999999999993, - "totalByteWeight": 1893170, - "totalTaskTime": 3054.8880000000013, - "mainDocumentTransferSize": 774 - } - ] - } - } - } - } - ], + "lhr": null, "screenshot": true, "stats": { "grade": "F" @@ -447737,18 +445788,16 @@ "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://panoramax.ign.fr/accessibility" + "mention": null }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://panoramax.ign.fr/terms-of-service" + "missingTrackers": [] }, { "slug": "pc", @@ -447760,165 +445809,103 @@ } ], "betagouv": { - "id": "vues-immersives-libres", + "id": "devoirs-faits-communaute", "type": "startup", "attributes": { - "name": "Panoramax - Base vues immersives libres", - "pitch": "L’alternative libre pour photo-cartographier les territoires", - "stats_url": "https://panoramax.fr/stats", - "link": "https://panoramax.fr/", - "repository": "https://gitlab.com/panoramax", - "contact": "panoramax@panoramax.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALes%20collectivit%C3%A9s%20locales%2C%20les%20gestionnaires%20de%20r%C3%A9seaux%20et%20d%E2%80%99autres%20acteurs%20ont%20besoin%20d%E2%80%99actualiser%20en%20permanence%20l%E2%80%99%2A%2Ainventaire%20du%20patrimoine%20mobilier%20urbain%20et%20des%20voiries%2A%2A%20%3A%20panneaux%2C%20poteaux%2C%20affleurants%2C%20%C3%A9quipements%2C%20pistes%20cyclables%2C%20trottoirs%20etc.%0A%0A%23%23%20Probl%C3%A8me%0A%0AHistoriquement%20et%20encore%20majoritairement%20aujourd%E2%80%99hui%20cela%20se%20traduit%20par%20la%20mobilisation%20de%20nombreux%20agents%20qui%20vont%20lever%2Fv%C3%A9rifier%20ces%20%C3%A9l%C3%A9ments%20sur%20le%20terrain%20engendrant%20des%20co%C3%BBts%20et%20d%C3%A9placements%20inutiles%2C%20la%20mise%20en%20danger%20des%20personnels%2C%20des%20pertes%20de%20temps%E2%80%A6%0AAujourd%27hui%20l%27utilisation%20de%20photos%2Fvues%20immersives%20de%20rues%20via%20Google%20StreetView%20et%2Fou%20Mapillary%2C%20ou%20via%20des%20prestations%20priv%C3%A9es%20%28ESRI%2FCyclom%C3%A9dia%2C%20SOGEFI%20etc.%29%20ouvre%20pas%20mal%20d%27opportunit%C3%A9s%20en%20termes%20de%20rationalisation%20des%20d%C3%A9placements%2C%20facilitation%20et%20acc%C3%A9l%C3%A9ration%20du%20recueil%20d%27information%20n%C3%A9cessaire%20aux%20traitements%20de%20certaines%20proc%C3%A9dures%20et%20finalement%20d%27am%C3%A9lioration%20de%20la%20connaissance%20du%20territoire.%0ALa%20collecte%2C%20le%20partage%20et%20l%27utilisation%20de%20ces%20donn%C3%A9es%20restent%20compliqu%C3%A9s%20%3A%20probl%C3%A8me%20de%20licences%2C%20d%C3%A9pendance%20%C3%A0%20des%20soci%C3%A9t%C3%A9s%20priv%C3%A9es%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20orient%C3%A9e%20vers%20l%27ouverture%20des%20donn%C3%A9es%20ou%20dont%20la%20strat%C3%A9gie%20n%27est%20pas%20claire%2C%20difficult%C3%A9%20%C3%A0%20partager%20des%20bonnes%20pratiques%2C%20%C3%A0%20s%27assurer%20de%20la%20p%C3%A9rennit%C3%A9%20d%27une%20solution%20pour%20y%20appuyer%20des%20usages%20m%C3%A9tiers%20%C3%A0%20partager%20etc.%0A%0A%23%23%20Investigation%20-%20termin%C3%A9e%0A%0A%2A%2AConstat%20initial%20%3A%2A%2A%20Les%20diff%C3%A9rentes%20communaut%C3%A9s%20%28AITF%2C%20OSM%2C%20Gestionnaires%20de%20r%C3%A9seaux%2C%20IGN%2C%20etc.%29%20bouillonnent%20d%27initiatives%20sur%20le%20sujet%2C%20mais%20pour%20le%20moment%20rien%20de%20p%C3%A9renne%20ne%20semble%20se%20d%C3%A9gager.%0AL%27investigation%20doit%20permettre%20d%27identifier%20s%27il%20y%20a%20la%20place%20pour%20cr%C3%A9er%20un%20g%C3%A9ocommun%20de%20base%20de%20vues%20immersives%20libres%20%C3%A0%20c%C3%B4t%C3%A9%20des%20solutions%20non%20libres%20existantes%2C%20et%20le%20cas%20%C3%A9ch%C3%A9ant%20d%27identifier%20ce%20qui%20bloque%20l%27%C3%A9mergence%20du%20commun%20%28manques%20%C3%A0%20combler%20ou%20freins%29%20pour%20y%20trouver%20des%20rem%C3%A8des%20permettant%20de%20rassembler%20les%20%C3%A9nergies%20des%20diff%C3%A9rents%20acteurs%20et%20proposer%20enfin%20une%20alternative%20libre%20pour%20tous%2C%20sur%20laquelle%20on%20construira%20des%20usages%20partag%C3%A9s.%0A%0ALors%20de%20l%27investigation%20ont%20%C3%A9t%C3%A9%20interrog%C3%A9es%20%3A%0A%2A%20%2A%2Ades%20collectivit%C3%A9s%2A%2A%20%3A%20premi%C3%A8res%20utilisatrices%20du%20produit%2C%20et%20premi%C3%A8res%20contibutrices%20sans%20doute%20en%20terme%20de%20collecte%20%0A%2A%20%2A%2Ades%20d%C3%A9veloppeurs%2A%2A%20%3A%20ceux%20qui%20pourront%20faire%20vivre%20le%20projet%20en%20y%20adossant%20des%20nouveaux%20services%0A%2A%20%2A%2Ades%20communaut%C3%A9s%20%28OSM%2C%20AITF%29%2A%2A%20%3A%20celles%20qui%20pourront%20animer%20le%20commun%2C%20le%20faire%20conna%C3%AEtre%2C%20pousser%20%C3%A0%20le%20faire%20%C3%A9voluer%0A%2A%20%2A%2Ades%20gestionnaires%20de%20r%C3%A9seaux%2A%2A%20%3A%20utilisateurs%20et%20%C3%A9ventuels%20contributeurs%20%C3%A9galement%0A%2A%20%2A%2Ades%20acteurs%20du%20secteurs%20priv%C3%A9s%20%28logiciels%20et%2Fou%20collecte%29%2A%2A%20%3A%20ceux%20qui%20peuvent%20faire%20%C3%A9voluer%20leurs%20pratiques%20pour%20faciliter%20la%20mise%20en%20place%20du%20commun%20ou%20le%20rendre%20inutile.%0A%2A%20%2A%2Ales%20plate-formes%20priv%C3%A9es%2A%2A%20%3A%20Mapillary%20et%20Kartaview%20pour%20voir%20si%20on%20pouvait%20pr%C3%A9voir%20de%20travailler%20ensemble%0A%2A%20%2A%2AAutres%20projets%2A%2A%20%3A%20qui%20pourraient%20proposer%20des%20nouveaux%20usages%20et%20aider%20%C3%A0%20valoriser%2Ffaire%20vivre%20le%20commun%0A%0AL%27investigation%20a%20permis%20de%20convaincre%20le%20sponsor%20qu%27il%20%C3%A9tait%20pertinent%20de%20favoriser%20l%27%C3%A9mergence%20d%27un%20g%C3%A9ocommun%20de%20vues%20immersives.%20Beaucoup%20de%20contributeurs%2Fr%C3%A9utilisateurs%20potentiels%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9s.%20Un%20noyau%20d%27outils%20num%C3%A9riques%20et%20de%20r%C3%A8gles%20de%20bases%20%C3%A0%20sp%C3%A9cifier%20pour%20permettre%20%C3%A0%20ce%20commun%20de%20pleinement%20exister%20a%20%C3%A9t%C3%A9%20d%C3%A9termin%C3%A9%20%3A%20il%20sera%20l%27objet%20de%20la%20phase%20de%20construction.%0APendant%20la%20phase%20d%27investigation%2C%20un%20nom%20a%20%C3%A9t%C3%A9%20trouv%C3%A9%20au%20%22produit%22%20%28commun%29%20via%20un%20processus%20participatif%20%3A%20Panoramax%21%0A%0A%23%23%20Strat%C3%A9gie%0A%0ADeux%20axes%20forts%20%3A%20%0A%2A%20%2A%2ACr%C3%A9er%20une%20bo%C3%AEte%20%C3%A0%20outils%20num%C3%A9riques%20de%20base%20pour%20alimenter%2C%20g%C3%A9rer%20et%20partager%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9velopper%20un%20applicatif%20ou%20d%27une%20brique%20logicielle%20pour%20cr%C3%A9er%28d%C3%A9ployer%29%20une%20instance%20et%20son%20catalogue%0A%20%20%20%20-%20Mettre%20en%20place%20une%20brique%20logicielle%20d%27anonymisation%20des%20images%20%28floutage%20personnes%20et%20v%C3%A9hicules%29%0A%20%20%20%20-%20D%C3%A9velopper%20des%20utils%2FAPI%20pour%20alimenter%2Finterroger%20la%20base%20de%20vues%20de%20Panoramax%0A%20%20%20%20-%20Proposer%20une%20ou%20plusieurs%20instances%20de%20stockage%20ouvertes%0A%0A%2A%20%2A%2AAnimer%20le%20g%C3%A9ocommun%20Panoramax%2A%2A%0A%20%20%20%20-%20D%C3%A9finir%20la%20gouvernance%20et%20ses%20r%C3%A8gles%0A%20%20%20%20-%20D%C3%A9finir%20les%20standards%20du%20commun%20%28catalogue%2C%20donn%C3%A9es%29%20et%20les%20licences%20%28codes%2C%20donn%C3%A9es%29%0A%20%20%20%20-%20Proposer%20des%20guides%20de%20bonnes%20pratiques%2C%20des%20outils%20de%20r%C3%A9f%C3%A9rence%20et%20des%20r%C3%A9sultats%20de%20tests%20de%20ces%20outils%20%28performance%29%2C%20des%20tutoriels%20et%20des%20exemples%20de%20cas%20d%27usages%0A%20%20%20%20-%20Mettre%20en%20place%20des%20argumentaires%20pour%20donner%20envie%20de%20contribuer%20et%20proposer%20des%20mod%C3%A8les%20%C3%A9conomiques%20adapt%C3%A9s%20%C3%A0%20diff%C3%A9rentes%20situations%20pour%20faciliter%20la%20contribution%0A%20%20%20%20-%20Organiser%20des%20%C3%A9v%C3%A9nements%20pour%20faire%20conna%C3%AEtre%20Panoramax%20et%20encourager%20la%20contribution%20%28GT%2C%20Openlabs%2C%20Panoramax%20Party%20etc.%29%0A%20%20%20%20-%20R%C3%A9aliser%20un%20support%20technique%20%0A%20%20%20%20-%20Cr%C3%A9er%20un%20site%20web%20vitrine%20du%20commun%20comme%20point%20central%20pour%20trouver%20les%20informations%20et%20outils%20relatifs%20%C3%A0%20Panoramax%0A%0A%23%23%20Indicateurs%0A%0ADes%20indicateurs%20encore%20en%20cours%20de%20d%C3%A9finition%20pour%20mesurer%20la%20mont%C3%A9e%20en%20puissance%20du%20commun%20%28nombre%20de%20vues%2C%20de%20contributions%2C%20de%20km%20lin%C3%A9aires%20couverts%2C%20de%20services%20%C3%A0%20valeur%20ajout%C3%A9e%20cr%C3%A9%C3%A9s%20%C3%A0%20partir%20des%20donn%C3%A9es%20du%20commun%20etc.%29%20et%20l%27impact%20en%20termes%20de%20solution%20%28r%C3%A9duction%20des%20d%C3%A9placements%20d%27agents%20publics%2C%20r%C3%A9utilisations%20diff%C3%A9rentes%2C%20etc.%29.", - "events": [ - { - "name": "committee", - "date": "2022-10-17", - "comment": "Lancement en phase de construction" - }, - { - "name": "committee", - "date": "2023-07-12", - "comment": "" - }, - { - "name": "committee", - "date": "2023-11-06", - "comment": "Lancement en phase d'accélération" - }, - { - "name": "committee", - "date": "2024-06-03", - "comment": "" - }, - { - "name": "committee", - "date": "2024-11-13", - "comment": "" - } - ], + "name": "Devoirs Faits la Communauté", + "pitch": "Faciliter les échanges de pratiques entre pairs autour du dispositif « devoirs faits ».", + "stats_url": "", + "link": "https://devoirs-faits-communaute.beta.gouv.fr/", + "repository": "https://github.com/betagouv/ClasseA12/tree/devoirs-faits", + "contact": "camille.martinelli@ac-creteil.fr", + "content_url_encoded_markdown": "%23%23%20Le%20contexte%20du%20projet%0A%0A%C3%80%20la%20rentr%C3%A9e%20scolaire%202017%2C%20le%20ministre%20de%20l%27%C3%89ducation%20nationale%2C%20de%20la%20Jeunesse%20et%20des%20Sports%2C%20Jean-Michel%20Blanquer%2C%20a%20lanc%C3%A9%20le%20dispositif%20%E2%80%9CDevoirs%20faits%E2%80%9D%20dans%20les%20coll%C3%A8ges.%0A%22Devoirs%20faits%20est%20un%20temps%20d%C3%A9di%C3%A9%2C%20en%20dehors%20des%20heures%20de%20classe%2C%20%C3%A0%20l%E2%80%99accomplissement%20par%20l%E2%80%99%C3%A9l%C3%A8ve%20des%20t%C3%A2ches%20demand%C3%A9es%20par%20ses%20professeurs.%20Il%20a%20lieu%20dans%20l%E2%80%99%C3%A9tablissement%20sur%20des%20horaires%20appropri%C3%A9s.%20L%27objectif%20est%20de%20faire%20b%C3%A9n%C3%A9ficier%20les%20coll%C3%A9giens%20d%27une%20aide%20appropri%C3%A9e%20au%20sein%20du%20coll%C3%A8ge%20afin%20de%20rentrer%20chez%20eux%20%22Devoirs%20faits%22%20%28site%20du%20MENJ%29.%0A%0AEn%20d%C3%A9cembre%202020%2C%20le%20minist%C3%A8re%20de%20l%E2%80%99%C3%A9ducation%20nationale%20a%20sollicit%C3%A9%20le%20Lab%20110%20bis%20de%20l%E2%80%99innovation%20afin%20qu%E2%80%99il%20m%C3%A8ne%20une%20investigation%20aupr%C3%A8s%20des%20enseignants%20concern%C3%A9s%20par%20%E2%80%9CDevoirs%20faits%E2%80%9D.%20Cette%20investigation%20a%20pour%20but%20d%E2%80%99une%20part%2C%20de%20mettre%20en%20exergue%20les%20probl%C3%A8mes%20rencontr%C3%A9s%20par%20les%20professeurs%20lors%20de%20la%20mise%20en%20%C5%93uvre%20du%20dispositif%20et%20d%E2%80%99autre%20part%2C%20d%E2%80%99%C3%A9valuer%20leurs%20besoins%2C%20et%20leur%20proposer%20%C3%A9ventuellement%20une%20solution%20leur%20permettant%20d%27acqu%C3%A9rir%20de%20nouvelles%20pratiques%20professionnelles.%20Ces%20pratiques%20leur%20permettraient%20de%20maximiser%20l%E2%80%99impact%20du%20dispositif%20aupr%C3%A8s%20des%20%C3%A9l%C3%A8ves%20de%20coll%C3%A8ge.%0A%0A%23%23%20La%20solution%20initiale%20propos%C3%A9e%0A%0ALa%20probl%C3%A9matique%20suppos%C3%A9e%20est%20la%20suivante%20%3A%20les%20professeurs%20manquent%20de%20ressources%20p%C3%A9dagogiques%20et%20d%E2%80%99outils%20sp%C3%A9cifiques%20%C3%A0%20%E2%80%9CDevoirs%20faits%E2%80%9D%2C%20et%20compte%20tenu%20de%20la%20crise%20sanitaire%2C%20il%20est%20difficile%20de%20maintenir%20l%27organisation%20du%20dispositif%20au%20sein%20des%20%C3%A9tablissements.%0ALa%20solution%20initiale%20propos%C3%A9e%20est%20d%E2%80%99adapter%20le%20site%20%E2%80%9CClasse%20%C3%A0%2012%E2%80%9D%20qui%20fonctionne%20tr%C3%A8s%20bien%20%C3%A0%20%E2%80%9Cdevoirs%20faits%E2%80%9D.%20%E2%80%9CClasse%20%C3%A0%2012%E2%80%9D%20est%20un%20site%20permettant%20aux%20enseignants%20des%20classes%20%C3%A0%20faible%20effectif%20de%20grande%20section%2C%20CP%20et%20CE1%20des%20r%C3%A9seaux%20d%E2%80%99%C3%A9ducation%20prioritaire%20de%20partager%20des%20pratiques%20p%C3%A9dagogiques%20au%20moyen%20de%20courtes%20vid%C3%A9os%20de%20moins%20de%20deux%20minutes.%20%0A%0AL%E2%80%99id%C3%A9e%20serait%20donc%20de%20d%C3%A9terminer%20si%20Classe%20%C3%A0%2012%20peut%20%C3%AAtre%20transf%C3%A9r%C3%A9%20et%20adapt%C3%A9%20au%20dispositif%20%E2%80%9Cdevoirs%20faits%E2%80%9D.%20En%20d%E2%80%99autres%20termes%2C%20un%20site%20de%20type%20Classe%20%C3%A0%2012%20peut-il%20r%C3%A9pondre%20aux%20besoins%20des%20professeurs%20de%20coll%C3%A8ge%20dans%20le%20cadre%20du%20dispositif%20%E2%80%9CDevoirs%20faits%E2%80%9D%20%3F%0ACette%20solution%20s%E2%80%99adresse%20%C3%A0%20tous%20les%20acteurs%20du%20dispositif%3A%20professeurs%2C%20A.E.D%2C%20CPE%2C%20%C3%A9tudiants%2C%20personnels%20de%20direction.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9ploiement%0A%0ANotre%20phase%20d%27investigation%20%28f%C3%A9vrier%20%C3%A0%20avril%202021%29%20nous%20a%20permis%20de%20mettre%20en%20exergue%20les%20besoins%20et%20probl%C3%A9matiques%20rencontr%C3%A9s%20au%20quotidien%20par%20les%20acteurs%20du%20dispositif%20%C2%AB%20devoirs%20faits%20%C2%BB%20%28les%20professeurs%2C%20les%20CPE%2C%20les%20AED%2C%20les%20AP%20et%20les%20personnels%20de%20direction%29.%0AUn%20focus%20groupe%20r%C3%A9unissant%20tous%20les%20acteurs%20du%20dispositif%20a%20valid%C3%A9%20les%20premi%C3%A8res%20observations%20et%20la%20proposition%20de%20solution.%0AUn%20site%20MVP%20%20%E2%80%9CDevoirs%20faits%20la%20communaut%C3%A9%E2%80%9D%20est%20en%20cours%20de%20construction.%20%0A%0A%23%23%20Mesures%20d%E2%80%99impact%0A%0ANous%20supposons%20que%2020%20%25%20des%20animateurs%20du%20dispositif%20%C2%AB%20Devoirs%20faits%20%C2%BB%20%28professeurs%2C%20CPE%2C%20assistants%20p%C3%A9dagogiques%29%20vont%20regarder%20des%20vid%C3%A9os%20de%202%20minutes%20maximum%20au%20cours%20des%20deux%20premi%C3%A8res%20semaines%20de%20test.%0APour%20v%C3%A9rifier%20cela%2C%20nous%20allons%20mettre%20en%20ligne%2010%20vid%C3%A9os%20sur%20le%20site%20MVP%20et%20en%20assurer%20la%20promotion%20au%20sein%20des%20%C3%A9tablissements%20et%20sur%20les%20r%C3%A9seaux%20sociaux%20%28twitter%2C%20Instagram%20et%20facebook%20%20pour%20commencer%29.%0APour%20mesurer%20l%E2%80%99impact%20de%20notre%20solution%20initiale%20nous%20allons%20d%E2%80%99une%20part%20comptabiliser%20le%20nombre%20de%20vues%20uniques%20de%20vid%C3%A9os%20et%20d%E2%80%99autre%20part%20organiser%20un%20sondage%20aupr%C3%A8s%20des%20%C3%A9tablissements%20permettant%20de%20savoir%20combien%20de%20professeurs%20ont%20vu%20les%20vid%C3%A9os.%0ANotre%20solution%20initiale%20sera%20valid%C3%A9e%20si%20nous%20avons%2020000%20vues%20sur%20trois%20semaines%20et%2010000%20personnes%20ayant%20vu%20au%20moins%20deux%20vid%C3%A9os.%0A%0A%23%23%20Arr%C3%AAt%20du%20produit%0ALe%20produit%20a%20d%27abord%20%C3%A9t%C3%A9%20plac%C3%A9%20en%20maintenance%20au%20sein%20du%20minist%C3%A8re.%20Son%20usage%20a%20chut%C3%A9%20jusqu%27%C3%A0%20devenir%20nul.%20Le%20service%20a%20%C3%A9t%C3%A9%20totalement%20coup%C3%A9%20le%209%20f%C3%A9vrier%202024.%20", + "events": [], "phases": [ { "name": "investigation", - "start": "2022-06-24", + "start": "2021-02-01", "end": "" }, { "name": "construction", - "start": "2022-10-17", + "start": "2021-09-01", "end": "" }, { - "name": "acceleration", - "start": "2023-11-06", + "name": "alumni", + "start": "2024-02-09", "end": "" } ], "sponsors": [ - "dinum", - "ign" + "dgesco" ], "thematiques": [ - "Open-Data", - "Outil technique" + "Education" ], - "dashlord_url": "https://dashlord.incubateur.net/url/panoramax-fr/", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "fab-geocommuns" + "id": "dinum" } } } }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://panoramax.ign.fr", - "size": 1921.871, - "nodes": 140, - "requests": 23, - "grade": "B", - "score": 78, - "ges": 1.44, - "water": 2.16, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:06:49.004224", - "page_type": null - } - ], + "ecoindex": null, "sonarcloud": null, - "dsfr": null, + "dsfr": { + "detected": false + }, "summary": { - "httpGrade": "C", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", + "httpGrade": "F", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-30T07:16:00.000Z", - "testsslGrade": "A+", + "testsslExpireDate": "2025-02-04T07:39:00.000Z", + "testsslGrade": "A", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 5, - "lighthouse_performance": 0.16, - "lighthouse_performanceGrade": "F", - "lighthouse_accessibility": 0.78, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", + "trackersGrade": "A", + "trackersCount": 0, "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F", - "ecoindexGrade": "B" + "dsfrGrade": "F" } }, { "404": null, - "url": "https://api.gouv.fr", - "category": "dinum_produits_interministeriels", - "betaId": "api.gouv.fr", - "repositories": [ - "betagouv/api.gouv.fr" - ], + "url": "https://declare-douane.beta.gouv.fr", + "category": "dinum", + "betaId": "delta.v", "http": { - "url": "https://api.gouv.fr", + "url": "https://declare-douane.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 03:04:20 GMT", + "end_time": "Sun, 20 Oct 2024 13:31:07 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "s-maxage=31536000, stale-while-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 03:04:18 GMT", - "ETag": "\"hthbk5qkdq13a4\"", - "Server": "nginx/1.18.0 (Ubuntu)", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Powered-By": "Next.js", - "x-nextjs-cache": "HIT" + "Sozu-Id": "01JAN1ZM3FFGFRBEFV9MQDMQG4", + "connection": "close", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 20 Oct 2024 13:31:04 GMT", + "etag": "\"atpob2uw1n7yg\"", + "keep-alive": "timeout=5", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding" }, - "scan_id": 57048519, + "scan_id": 57065424, "score": 30, - "start_time": "Sun, 20 Oct 2024 03:04:17 GMT", + "start_time": "Sun, 20 Oct 2024 13:31:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -447971,11 +445958,11 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://api.gouv.fr/", + "destination": "https://declare-douane.beta.gouv.fr/", "redirects": true, "route": [ - "http://api.gouv.fr/", - "https://api.gouv.fr/" + "http://declare-douane.beta.gouv.fr/", + "https://declare-douane.beta.gouv.fr/" ], "status_code": 200 }, @@ -448059,36 +446046,35 @@ } }, "updownio": { - "token": "z6jn", - "url": "https://api.gouv.fr", - "alias": "", + "token": "jjs0", + "url": "https://declare-douane.beta.gouv.fr", + "alias": null, "last_status": 200, - "uptime": 100, + "uptime": 99.975, "down": false, "down_since": null, - "up_since": "2024-11-21T08:27:08Z", + "up_since": "2024-12-01T07:51:21Z", "error": null, - "period": 300, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": false, + "published": true, "disabled_locations": [], "recipients": [ - "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T17:17:47Z", - "next_check_at": "2024-11-24T17:22:47Z", - "created_at": "2021-04-22T19:48:42Z", + "last_check_at": "2024-12-01T17:44:51Z", + "next_check_at": "2024-12-01T17:45:51Z", + "created_at": "2024-02-07T18:36:46Z", "mute_until": null, - "favicon_url": "https://api.gouv.fr/favicons/favicon.ico", + "favicon_url": "https://declare-douane.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T16:47:56Z", - "expires_at": "2025-01-29T02:02:02Z", + "tested_at": "2024-12-01T17:41:54Z", + "expires_at": "2025-01-18T15:54:29Z", "valid": true, "error": null }, @@ -448096,254 +446082,1259 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 169, - "connection": 148, - "handshake": 303, - "response": 156, - "total": 777 + "namelookup": 156, + "connection": 126, + "handshake": 131, + "response": 132, + "total": 545 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "api.gouv.fr", + "host": "declare-douane.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "997", + "closed_ports": "986", "open_ports": [ { "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", - "vulnerabilities": [ - { - "cvss": "9.8", - "id": "CVE-2023-38408", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "9.8", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "9.8", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.8", - "id": "CVE-2020-15778", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.5", - "id": "SSV:92579", - "type": "seebug", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "7.5", - "id": "CVE-2020-12062", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.5", - "id": "1337DAY-ID-26576", - "type": "zdt", - "is_exploit": "true" - }, - { - "cvss": "7.1", - "id": "CVE-2021-28041", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "7.0", - "id": "CVE-2021-41617", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "6.8", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.8", - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "type": "githubexploit", - "is_exploit": "true" - }, - { - "cvss": "6.5", - "id": "CVE-2023-51385", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2023-48795", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.9", - "id": "CVE-2020-14145", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "5.3", - "id": "CVE-2016-20012", - "type": "cve", - "is_exploit": "false" - }, - { - "cvss": "0.0", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "is_exploit": "true" - } - ] + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.18.0", + "name": "pvuniwien", + "id": "1081", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.18.0", + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", "vulnerabilities": [] } } ], - "grade": "F" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "supported" + }, + { + "id": "TLS_timestamp", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" + }, + { + "id": "cert_serialNumberLen", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + }, + { + "id": "cert", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "declare-douane.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "declare-douane.beta.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "47 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "2024-10-20 15:54" + }, + { + "id": "cert_notAfter", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "2025-01-18 15:54" + }, + { + "id": "cert_extlifeSpan", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "http://r11.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "R11 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "R11 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "1733074465" + }, + { + "id": "HSTS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "security_headers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "MEDIUM", + "finding": "--" + }, + { + "id": "banner_reverseproxy", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + }, + { + "id": "LOGJAM", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "service", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "not offered + downgraded to weaker protocol" - }, - { - "id": "ALPN_HTTP2", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "h2" + "finding": "offered with final" }, { "id": "ALPN", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448351,7 +447342,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448359,7 +447350,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448367,7 +447358,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448375,7 +447366,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -448383,456 +447374,463 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "api.gouv.fr/149.202.190.28", + "id": "cipher-tls1_2_xc02f", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { - "id": "cert_compression", - "ip": "api.gouv.fr/149.202.190.28", + "id": "certificate_compression", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "N/A" + "finding": "none" }, { "id": "clientAuth", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "03A0D92A92D9B4ACC2D8DE55841B01CF122E" + "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" }, { "id": "cert_serialNumberLen", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1D0623C825AF61135DDDDA1F46DA0357105C93E1" + "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" }, { "id": "cert_fingerprintSHA256", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "97AD7D6517F248F71E112EA2449C47F939AB2FEAAC5CC8AE469089ABF6444E7E" + "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "cert", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISBNXl3VPSNciun2PIYsQ5s1Y2MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMDIwMTU1NDMwWhcNMjUwMTE4MTU1NDI5WjAmMSQwIgYDVQQDExtkZWNsYXJlLWRvdWFuZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCELNaGpXGZx8kR0tqnTXlP7MAypdybH56K3X7OvaouFvFEIScfGUO0lK1n7qZFMlHhFyBb2py6bP1cRqT1gyRIrFkQwQO5MllmbWybqN7pOptxtklqnS8+/o/o8O9BG4u2Hyn9qIKsPOi6j/yy+HqMxqv8DPhHBRtNN4FEwYpVJKO5oNk+AtkLxtdiPfZSYtnnlg4OtwF9JtluGdx7jOhhyn5i96bYcFLy1WfCJW64/08+C0lV+kzpbFXtq1a7+dY2nNly1PG421qMVKnR+35o6fkFD9MyOJwb95cU43mrQYuN+7lELr4RtKHoCgZI6ex+fiKoC5YojcE6hQPi4eu/AgMBAAGjggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLPBKhtgcxzkiLR6dXmBVmUj3FmPMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wJgYDVR0RBB8wHYIbZGVjbGFyZS1kb3VhbmUuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGSqtiwpAAABAMARjBEAiB9VxpIbCKjMT1s+rJghL2ks2GaFcMiY1QgdoLSsGEKrwIgcpNt7F79LcZz7hvOX0sPCHUoChWvRtPTV8lEII/ryFcAdgATSt8atZhCCXgMb+9MepGkFrcjSc5YV2rfrtqnwqvgIgAAAZKq2LEoAAAEAwBHMEUCIGTdDm5uiVax/N3Vdq+nu4hmcEHqPgaG+QcH44iii4LeAiEAx8IkGpnKZlSwvJF8/WICeD6gux+eUdMvE/Z3SLQbVwQwDQYJKoZIhvcNAQELBQADggEBAJMuD42ORpLEcPcuAgv94MzdK4JqDWIFItf6cmuz2E/Xx063GE0vVyqI4x74Bseg9BNZ4tKURrhnPVwL3reohm6hP+K2x/Zev3sdvJyNkzndh+7ozb74R4hUu72QAFfQmUK3IGTTd57ut5nzdjXd+/446bH5gOjHIu6a6I3Y/cRENQ3XDVPbJya1fGJGJHkg9u/qeiD8uiZ7zuQtyQnqcHAFSdq6e6zruPyXLIbx6btFRFK+pRfFgnCL0vxgopq+ObvMXTWlgElJ2JCRipsn49Ci9s0AzTHKvqhxtDpQMjlo1b08dPEwVmj48JU5fv3VCbuKyASMVO3GkWzT87XV4SI=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "api.gouv.fr" + "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "api.gouv.fr" + "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "api.gouv.fr www.api.gouv.fr" + "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "2024-10-31 02:02" + "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "2025-01-29 02:02" + "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1732468712" + "finding": "1733074519" }, { "id": "HSTS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "nginx/1.18.0 (Ubuntu)" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "Cache-Control", - "ip": "api.gouv.fr/149.202.190.28", + "id": "security_headers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "INFO", - "finding": "s-maxage=31536000, stale-while-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -448840,7 +447838,7 @@ }, { "id": "heartbleed", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -448849,7 +447847,7 @@ }, { "id": "CCS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -448858,7 +447856,7 @@ }, { "id": "ticketbleed", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -448867,16 +447865,16 @@ }, { "id": "ROBOT", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -448884,16 +447882,16 @@ }, { "id": "secure_client_renego", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -448902,7 +447900,7 @@ }, { "id": "BREACH", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -448911,7 +447909,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -448920,14 +447918,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -448936,7 +447934,7 @@ }, { "id": "FREAK", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -448945,7 +447943,7 @@ }, { "id": "DROWN", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -448954,16 +447952,16 @@ }, { "id": "DROWN_hint", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=97AD7D6517F248F71E112EA2449C47F939AB2FEAAC5CC8AE469089ABF6444E7E" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "LOGJAM", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448972,7 +447970,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448981,7 +447979,7 @@ }, { "id": "BEAST", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -448990,16 +447988,16 @@ }, { "id": "LUCKY13", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -449008,7 +448006,7 @@ }, { "id": "RC4", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -449017,1338 +448015,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.gouv.fr/149.202.190.28", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "rating_spec", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "api.gouv.fr/149.202.190.28", - "port": "443", - "severity": "INFO", - "finding": "77" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.22.382f", - "value": "1", - "domain": "api.gouv.fr", - "path": "/", - "expires": 1732470450, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.22.382f", - "value": "240f8134b183024f.1732468651.", - "domain": "api.gouv.fr", - "path": "/", - "expires": 1766423851, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "cache-control": "s-maxage=31536000, stale-while-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 17:17:30 GMT", - "etag": "\"4hevl235ak1ar1\"", - "server": "nginx/1.18.0 (Ubuntu)", - "vary": "Accept-Encoding", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "api.gouv.fr", - "ip": "149.202.190.28", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://api.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ubuntu", - "name": "Ubuntu", - "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", - "confidence": 100, - "version": null, - "icon": "Ubuntu.svg", - "website": "https://www.ubuntu.com/server", - "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 28, - "slug": "operating-systems", - "name": "Operating systems" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "13.5.6", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hubspot", - "name": "HubSpot", - "description": "HubSpot is a marketing and sales software that helps companies attract visitors, convert leads, and close customers.", - "confidence": 100, - "version": null, - "icon": "HubSpot.svg", - "website": "https://www.hubspot.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "requestedUrl": "https://api.gouv.fr/", - "finalUrl": "https://api.gouv.fr/", - "fetchTime": "2024-11-24T17:17:04.527Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.88 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.96 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.99 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 3155, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1696, - "firstMeaningfulPaint": 2153, - "largestContentfulPaint": 3240, - "interactive": 3155, - "speedIndex": 2114, - "totalBlockingTime": 88, - "maxPotentialFID": 119, - "cumulativeLayoutShift": 0.13573331790500218, - "cumulativeLayoutShiftMainFrame": 0.13573331790500218, - "totalCumulativeLayoutShift": 0.13573331790500218, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 371527513, - "observedNavigationStart": 0, - "observedNavigationStartTs": 371527513, - "observedFirstPaint": 721, - "observedFirstPaintTs": 372248116, - "observedFirstContentfulPaint": 721, - "observedFirstContentfulPaintTs": 372248116, - "observedFirstContentfulPaintAllFrames": 721, - "observedFirstContentfulPaintAllFramesTs": 372248116, - "observedFirstMeaningfulPaint": 853, - "observedFirstMeaningfulPaintTs": 372380541, - "observedLargestContentfulPaint": 853, - "observedLargestContentfulPaintTs": 372380541, - "observedLargestContentfulPaintAllFrames": 853, - "observedLargestContentfulPaintAllFramesTs": 372380541, - "observedTraceEnd": 3576, - "observedTraceEndTs": 375103529, - "observedLoad": 1157, - "observedLoadTs": 372684365, - "observedDomContentLoaded": 766, - "observedDomContentLoadedTs": 372293488, - "observedCumulativeLayoutShift": 0.13573331790500218, - "observedCumulativeLayoutShiftMainFrame": 0.13573331790500218, - "observedTotalCumulativeLayoutShift": 0.13573331790500218, - "observedFirstVisualChange": 724, - "observedFirstVisualChangeTs": 372251513, - "observedLastVisualChange": 3574, - "observedLastVisualChangeTs": 375101513, - "observedSpeedIndex": 901, - "observedSpeedIndexTs": 372428436 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 35, - "numScripts": 12, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 1242, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 99.353, - "throughput": 7582391.496631954, - "maxRtt": 101.67099999999999, - "maxServerLatency": 177.81, - "totalByteWeight": 538283, - "totalTaskTime": 256.904999999998, - "mainDocumentTransferSize": 17518 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://api.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-openssl_111d", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://api.gouv.fr/mentions-legales" + "id": "clientsimulation-openssl_303", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "api.gouv.fr", - "type": "startup", - "attributes": { - "name": "api.gouv.fr", - "pitch": "Référencer toutes les APIs du service public", - "stats_url": "https://stats.data.gouv.fr/index.php?module=CoreHome&action=index&idSite=22&period=range&date=previous30&updated=1#?idSite=22&period=range&date=previous30&category=Dashboard_Dashboard&subcategory=1", - "link": "https://api.gouv.fr", - "repository": "https://github.com/betagouv/api.gouv.fr", - "contact": "contact@api.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20%3A%0A%0AAu%20sein%20des%20administrations%2C%20la%20donn%C3%A9e%20est%20une%20ressource%20dispers%C3%A9e%2C%20h%C3%A9t%C3%A9rog%C3%A8ne%20et%20difficile%20d%27acc%C3%A8s.%0ALes%20organisations%20qui%20construisent%20des%20services%20num%C3%A9riques%20pour%20les%20citoyens%20ou%20les%20agents%20de%20la%20fonction%20publique%20ont%20besoin%20de%20cette%20donn%C3%A9e%20et%20doivent%20faire%20face%20%C3%A0%20%3A%0A%0A-%20la%20multiplicit%C3%A9%20des%20sources%20de%20donn%C3%A9es%20et%20des%20interlocuteurs%0A-%20la%20difficult%C3%A9%20d%E2%80%99identifier%20la%20bonne%20source%20de%20donn%C3%A9e%20adapt%C3%A9e%20au%20besoin%0A-%20la%20difficult%C3%A9%20d%E2%80%99obtenir%20l%27acc%C3%A8s%20%C3%A0%20la%20donn%C3%A9e%0A-%20la%20difficult%C3%A9%20de%20construire%20un%20service%20fiable%20avec%20la%20donn%C3%A9e%0A%0A%23%23%20La%20solution%20%3A%0A%0A%5Bapi.gouv.fr%5D%28https%3A%2F%2Fapi.gouv.fr%29%20est%20d%E2%80%99abord%20un%20site%20internet%20public%20mais%20c%E2%80%99est%20aussi%20une%20%C3%A9quipe%20qui%20%3A%0A%0A-%20recense%20les%20apis%20existantes%0A-%20conseille%20et%20accompagne%20les%20administrations%20qui%20construisent%20des%20services%20num%C3%A9riques%0A-%20facilite%20et%20d%C3%A9mat%C3%A9rialise%20l%27acc%C3%A8s%20aux%20donn%C3%A9es%20entre%20administrations%20habilit%C3%A9es%0A-%20rassure%20et%20%C3%A9tablit%20une%20relation%20de%20confiance%20entre%20les%20administrations%20qui%20construisent%20des%20services%20num%C3%A9riques%20et%20celles%20qui%20mettent%20%C3%A0%20disposition%20leurs%20donn%C3%A9es%0A%0A%5Bapi.gouv.fr%5D%28https%3A%2F%2Fapi.gouv.fr%29%20est%20une%20startup%20d%C3%A9ja%20incub%C3%A9e%2C%20riche%20d%27une%20exp%C3%A9rience%20de%20plusieurs%20ann%C3%A9es%20et%20des%20dizaines%20de%20services%20d%C3%A9ja%20accompagn%C3%A9s.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2016-01-25", - "end": "" - }, - { - "name": "construction", - "start": "2016-01-25", - "end": "" - }, - { - "name": "success", - "start": "2020-07-01", - "end": "" - } - ], - "sponsors": [ - "dinum" - ], - "thematiques": [ - "Open-Data" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/api-gouv-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-apple_mail_16_0", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum_produits_interministeriels" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://api.gouv.fr", - "size": 775.951, - "nodes": 302, - "requests": 32, - "grade": "B", - "score": 76, - "ges": 1.48, - "water": 2.22, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:14:06.464090", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "D", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-29T02:02:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.88, - "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.96, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://urbanvitaliz.fr", - "category": "dinum", - "betaId": "urbanvitaliz", - "repositories": [ - "betagouv/urbanvitaliz-django" - ], - "http": { - "url": "https://urbanvitaliz.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:23:32 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Length": "38064", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 20 Oct 2024 13:23:31 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=wNhDc6wDw8vMtNmu7BExmGTxjgb3aMIw; expires=Sun, 19 Oct 2025 13:23:31 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Cookie", - "via": "1.1 alproxy", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" + "id": "clientsimulation-thunderbird_91_9", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, - "scan_id": 57065237, - "score": 70, - "start_time": "Sun, 20 Oct 2024 13:23:30 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "csrftoken": { - "domain": "urbanvitaliz.fr", - "expires": 1760880211, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "None", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://urbanvitaliz.fr/", - "redirects": true, - "route": [ - "http://urbanvitaliz.fr/", - "https://urbanvitaliz.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/js-cookie@3.0.1/dist/js.cookie.min.js": { - "crossorigin": "anonymous", - "integrity": "sha256-0H3Nuz3aug3afVbUlsu12Puxva3CP4EhJtPExqs54Vg=" - }, - "https://sentry.incubateur.net/js-sdk-loader/5b872cee93efddce4396cc52605838c1.min.js": { - "crossorigin": "anonymous", - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "luwn", - "url": "https://urbanvitaliz.fr", - "alias": null, - "last_status": 200, - "uptime": 99.995, - "down": false, - "down_since": null, - "up_since": "2024-11-23T03:32:41Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:28:07Z", - "next_check_at": "2024-11-24T17:29:06Z", - "created_at": "2024-02-07T18:36:46Z", - "mute_until": null, - "favicon_url": "https://urbanvitaliz.fr/static/img/favicons/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:20:07Z", - "expires_at": "2025-01-14T07:02:42Z", - "valid": true, - "error": null + { + "id": "rating_spec", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "metrics": { - "apdex": 0.938, - "timings": { - "redirect": 0, - "namelookup": 83, - "connection": 118, - "handshake": 122, - "response": 291, - "total": 614 - } + { + "id": "rating_doc", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "urbanvitaliz.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450356,7 +448408,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450364,7 +448416,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450372,7 +448424,7 @@ }, { "id": "cipherlist_LOW", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450380,7 +448432,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -450388,7 +448440,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -450396,491 +448448,463 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "urbanvitaliz.fr/185.31.40.13", + "id": "cipher-tls1_2_xc02f", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "2024-10-16 07:02" + "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "2025-01-14 07:02" + "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1732469213" - }, - { - "id": "HSTS_time", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1733074574" }, { - "id": "HSTS_preload", - "ip": "urbanvitaliz.fr/185.31.40.13", + "id": "HSTS", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "urbanvitaliz.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "nosniff" + "finding": "0 at '/'" }, { - "id": "Referrer-Policy", - "ip": "urbanvitaliz.fr/185.31.40.13", + "id": "security_headers", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "--" }, { "id": "heartbleed", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -450889,7 +448913,7 @@ }, { "id": "CCS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -450898,16 +448922,16 @@ }, { "id": "ticketbleed", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -450916,7 +448940,7 @@ }, { "id": "secure_renego", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -450924,16 +448948,16 @@ }, { "id": "secure_client_renego", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -450942,16 +448966,16 @@ }, { "id": "BREACH", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -450960,14 +448984,14 @@ }, { "id": "fallback_SCSV", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -450976,7 +449000,7 @@ }, { "id": "FREAK", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -450985,7 +449009,7 @@ }, { "id": "DROWN", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -450994,16 +449018,16 @@ }, { "id": "DROWN_hint", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EEFDCE5C119B38F1BF74FA2A6155F2778D328B20769A4BBAC473A418D0888470" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "LOGJAM", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -451012,7 +449036,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -451021,7 +449045,7 @@ }, { "id": "BEAST", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -451030,7 +449054,7 @@ }, { "id": "LUCKY13", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -451039,7 +449063,7 @@ }, { "id": "winshock", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -451048,7 +449072,7 @@ }, { "id": "RC4", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -451057,1237 +449081,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "urbanvitaliz.fr/185.31.40.13", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" }, { - "id": "scanTime", - "ip": "urbanvitaliz.fr/185.31.40.13", + "id": "grade_cap_reason_1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "96" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://stats.recoconseil.fr/matomo.js" - }, - { - "type": "unknown", - "url": "https://stats.recoconseil.fr/matomo.php?action_name=R%C3%A9habiliter%20une%20friche%20-%20UrbanVitaliz&idsite=2&rec=1&r=680176&h=17&m=25&s=2&url=https%3A%2F%2Furbanvitaliz.fr%2F&_id=6e8561fd70b5c705&_idn=1&send_image=0&_refts=0&pv_id=aCxTLc&pf_net=292&pf_srv=252&pf_tfr=137&pf_dm1=1434&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - } - ], - "cookies": [ - { - "name": "_pk_ses.2.30f1", - "value": "1", - "domain": "urbanvitaliz.fr", - "path": "/", - "expires": 1732470902, - "size": 15, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.2.30f1", - "value": "6e8561fd70b5c705.1732469102.", - "domain": "urbanvitaliz.fr", - "path": "/", - "expires": 1766424302, - "size": 41, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "csrftoken", - "value": "FDGr8GsQDrx0Bd4V1eHJY863RdJp4og9", - "domain": "urbanvitaliz.fr", - "path": "/", - "expires": 1763918700.461087, - "size": 41, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-length": "39271", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 17:25:00 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=FDGr8GsQDrx0Bd4V1eHJY863RdJp4og9; expires=Sun, 23 Nov 2025 17:25:00 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Cookie", - "via": "2.0 alproxy", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" - }, - "endpoints": [ - { - "hostname": "urbanvitaliz.fr", - "ip": "185.31.40.13", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "stats.recoconseil.fr", - "ip": "185.31.40.13", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://urbanvitaliz.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", - "confidence": 100, - "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", - "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "alpine-js", - "name": "Alpine.js", - "description": null, - "confidence": 100, - "version": "3.13.9", - "icon": "Alpine.js.png", - "website": "https://github.com/alpinejs/alpine", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://urbanvitaliz.fr/", - "finalUrl": "https://urbanvitaliz.fr/", - "fetchTime": "2024-11-24T17:24:32.095Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.47 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.96 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 11830, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 11830, - "firstMeaningfulPaint": 11830, - "largestContentfulPaint": 25219, - "interactive": 11830, - "speedIndex": 11830, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0388120215733846, - "cumulativeLayoutShiftMainFrame": 0.0388120215733846, - "totalCumulativeLayoutShift": 0.0388120215733846, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 434715835, - "observedNavigationStart": 0, - "observedNavigationStartTs": 434715835, - "observedFirstPaint": 1470, - "observedFirstPaintTs": 436186268, - "observedFirstContentfulPaint": 1470, - "observedFirstContentfulPaintTs": 436186268, - "observedFirstContentfulPaintAllFrames": 1470, - "observedFirstContentfulPaintAllFramesTs": 436186268, - "observedFirstMeaningfulPaint": 1592, - "observedFirstMeaningfulPaintTs": 436307495, - "observedLargestContentfulPaint": 2029, - "observedLargestContentfulPaintTs": 436744538, - "observedLargestContentfulPaintAllFrames": 2029, - "observedLargestContentfulPaintAllFramesTs": 436744538, - "observedTraceEnd": 4645, - "observedTraceEndTs": 439361160, - "observedLoad": 2059, - "observedLoadTs": 436774422, - "observedDomContentLoaded": 2020, - "observedDomContentLoadedTs": 436736051, - "observedCumulativeLayoutShift": 0.0388120215733846, - "observedCumulativeLayoutShiftMainFrame": 0.0388120215733846, - "observedTotalCumulativeLayoutShift": 0.0388120215733846, - "observedFirstVisualChange": 1483, - "observedFirstVisualChangeTs": 436198835, - "observedLastVisualChange": 2350, - "observedLastVisualChangeTs": 437065835, - "observedSpeedIndex": 1668, - "observedSpeedIndexTs": 436384211 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 64, - "numScripts": 20, - "numStylesheets": 15, - "numFonts": 4, - "numTasks": 18, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 136.578, - "throughput": 31423622.770845033, - "maxRtt": 143.14600000000002, - "maxServerLatency": 95.88300000000001, - "totalByteWeight": 5214652, - "totalTaskTime": 4172.92, - "mainDocumentTransferSize": 39624 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://urbanvitaliz.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://urbanvitaliz.fr/mentions-legales" - }, - { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://urbanvitaliz.fr/confidentialite" - } - ], - "betagouv": { - "id": "urbanvitaliz", - "type": "startup", - "attributes": { - "name": "UrbanVitaliz (Friches)", - "pitch": "Faciliter la réhabilitation des friches urbaines", - "stats_url": "https://urbanvitaliz.fr/stats", - "budget_url": "https://urbanvitaliz.fr/p/budget/", - "link": "https://urbanvitaliz.fr/", - "repository": "https://github.com/betagouv/urbanvitaliz-django", - "contact": "friches@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%20%3A%20beaucoup%20de%20friches%20restent%20inutilis%C3%A9es%20pendant%20qu%27on%20artificialise%20des%20sols%20naturels%20et%20agricoles.%20Les%20collectivit%C3%A9s%20sont%20souvent%20bloqu%C3%A9es%20dans%20leurs%20projets%20de%20r%C3%A9habilitation%20par%20la%20complexit%C3%A9%20%C3%A0%20affronter.%0A%0A%23%23%23%20L%27enjeu%20de%20la%20lutte%20contre%20l%27artificialisation%20des%20sols%0A%0AL%E2%80%99artificialisation%20des%20sols%20pose%20de%20nombreux%20probl%C3%A8mes%20%C3%A9cologiques%20%3A%20perte%20de%20surfaces%20agricoles%2C%20de%20biodiversit%C3%A9%2C%20imperm%C3%A9abilisation%20des%20sols%20%3B%20ainsi%20que%20des%20difficult%C3%A9s%20d%E2%80%99am%C3%A9nagement%20%3A%20augmentation%20des%20besoins%20en%20d%C3%A9placements%2C%20en%20infrastructures%E2%80%A6%20%0A%0ALe%20gisement%20foncier%20en%20friche%20repr%C3%A9sente%20un%20excellent%20potentiel%20de%20surfaces%20d%C3%A9j%C3%A0%20artificialis%C3%A9s%20pour%20l%E2%80%99accueil%20de%20nouveaux%20projets%2C%20d%E2%80%99autant%20que%20les%20volumes%20sont%20cons%C3%A9quents.%20On%20estime%20que%206.500%20friches%20font%20l%E2%80%99objet%20d%E2%80%99une%20volont%C3%A9%20de%20r%C3%A9habilitation%20en%20m%C3%A9tropole%20%C3%A0%20l%E2%80%99instant%20T.%0A%0A%23%23%23%20Les%20territoires%20peu%20denses%20et%20au%20march%C3%A9%20foncier%20d%C3%A9tendu%20ne%20se%20r%C3%A9approprient%20pas%20leurs%20friches%0A%0ABeaucoup%20de%20friches%20situ%C3%A9es%20dans%20des%20%22petites%22%20communes%20et%20intercommunalit%C3%A9s%20restent%20%C3%A0%20l%27abandon%20pendant%20des%20ann%C3%A9es.%20En%20zone%20au%20march%C3%A9%20foncier%20d%C3%A9tendu%2C%20ces%20espaces%20ne%20se%20renouvellent%20pas%20sans%20intervention%20de%20la%20puissance%20publique%20car%20les%20couts%20de%20remise%20en%20%C3%A9tat%20empechent%20la%20rentabilit%C3%A9%20de%20tels%20projets.%0A%0ALes%20%C3%A9lu%C2%B7e%C2%B7s%20et%20technicien%C2%B7ne%C2%B7s%20de%20la%20collectivit%C3%A9%2C%20lorsqu%27iels%20ont%20la%20volont%C3%A9%20de%20voir%20une%20friche%20r%C3%A9sorb%C3%A9e%2C%20font%20alors%20face%20%C3%A0%20une%20grande%20complexit%C3%A9.%20Ce%20ne%20sont%20pas%20des%20sp%C3%A9cialistes%20des%20friches%2C%20ils%20vont%20rencontrer%20de%20nombreux%20blocages%20%3A%20par%20o%C3%B9%20commencer%2C%20quelle%20est%20la%20prochaine%20%C3%A9tape%20%3F%20Quels%20financements%20existent%2C%20sont%20disponibles%20pour%20mon%20projet%20%3F%20Quels%20acteurs%20publics%20ou%20priv%C3%A9s%20peuvent%20m%27aider%2C%20avec%20quelles%20prestations%20%3F%20Quels%20outils%20m%27aideraient%20%3F%20etc.%0A%0A%2A%2ALe%20probl%C3%A8me%20principal%20adress%C3%A9%20par%20UrbanVitaliz%20%3A%20%20les%20collectivit%C3%A9s%20et%20porteurs%20de%20projet%20en%20zones%20d%C3%A9tendues%20sont%20souvent%20d%C3%A9munis%20face%20%C3%A0%20la%20complexit%C3%A9%20des%20d%C3%A9marches%20%C3%A0%20mener%2C%20la%20diversit%C3%A9%20des%20outils%20et%20acteurs%20%C3%A0%20contacter%20pour%20enclencher%20la%20revitalisation%20d%27une%20friche.%2A%2A%0A%0ADans%20la%20situation%20actuelle%2C%20certaines%20collectivit%C3%A9s%20renoncent%20%C3%A0%20d%C3%A9bloquer%20les%20gisements%20foncier%20en%20friche%2C%20ou%20perdent%20beaucoup%20de%20temps%20et%20d%27argent%20%C3%A0%20d%C3%A9faut%20de%20ma%C3%AEtriser%20les%20processus.%0A%0A%2A%2ACot%C3%A9%20acteurs%20publics%20locaux%20qui%20interviennent%20sur%20les%20friches%2A%2A%2C%20beaucoup%20d%C3%A9plorent%20un%20manque%20de%20visibilit%C3%A9%20sur%20les%20projets%20friche%20des%20territoires%2C%20une%20difficult%C3%A9%20%C3%A0%20la%20suivre%20dans%20la%20dur%C3%A9e%20et%20l%27enjeu%20de%20la%20coordination%20%C3%A0%20plusieurs%20acteurs%20intervenant.%0A%0A%23%23%20La%20solution%20%3A%20UrbanVitaliz%20oriente%20les%20collectivit%C3%A9s%20de%20mani%C3%A8re%20personnalis%C3%A9e%20sur%20leurs%20projets%20de%20r%C3%A9habilitation%20de%20friche%2C%20en%20collaboration%20avec%20les%20acteurs%20publics%20locaux%0A%0AApr%C3%A8s%20une%20phase%20d%27investigation%20de%20mars%20%C3%A0%20mai%202020%2C%20la%20construction%20du%20service%20a%20d%C3%A9but%C3%A9%20fin%202020.%0A%0AGrace%20%C3%A0%20une%20plateforme%20num%C3%A9rique%20sur-mesure%20et%20une%20%C3%A9quipe%20compos%C3%A9e%20notamment%20d%27urbanistes%2C%20UrbanVitaliz%20donne%20des%20recommandations%20d%27actions%20%C3%A0%20la%20collectivit%C3%A9%2C%20en%20fonction%20du%20projet%20qu%27elle%20lui%20a%20soumis%20et%20des%20caract%C3%A9ristiques%20de%20la%20friches.%20%2A%2AElle%20oriente%20ainsi%20vers%20les%20acteurs%2C%20dispositifs%2C%20financements%2C%20prestations%2C%20outils%20et%20strat%C3%A9gies%20disponibles%2A%2A%2C%20susceptibles%20de%20d%C3%A9bloquer%20le%20porteur%20de%20projet.%20En%20moyenne%2C%20une%20collectivit%C3%A9%20qui%20sollicit%C3%A9%20UrbanVitaliz%20re%C3%A7oit%205%20recommandations%20qu%27elle%20sera%20libre%20de%20mettre%20en%20pratique%20comme%20elle%20le%20souhaite.%0A%0A%2A%2ADe%20plus%20en%20plus%2C%20les%20acteurs%20de%20l%27ing%C3%A9nierie%20publique%20locale%20prennent%20part%20%C3%A0%20cet%20accompagnement%20des%20dossiers-friche%20d%C3%A9pos%C3%A9s%20sur%20la%20plateforme.%2A%2A%20Il%20s%27agit%20notamment%2C%20selon%20les%20territoires%2C%20des%20DDT%2C%20EPF%2C%20agences%20d%27urbanisme%20etc.%20Ces%20acteurs%20y%20trouvent%20plusieurs%20b%C3%A9n%C3%A9fices%20%3A%20connaissance%20approfondie%20des%20dossiers%20d%C3%A9pos%C3%A9s%20sur%20leur%20territoire%2C%20historisation%20et%20suivi%20dans%20le%20temps%2C%20coordination%20multi-acteurs%20etc.%20Leur%20participation%20permet%20aussi%20d%27enrichir%20le%20suivi%20des%20projets%20grace%20%C3%A0%20une%20connaissance%20locale%2C%20une%20vision%20de%20territoire%20et%20une%20pr%C3%A9sence%20sur%20le%20terrain.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9veloppement%20et%20d%C3%A9ploiement%20du%20produit%0A%0AEn%20date%20de%20novembre%202024%2C%20le%20d%C3%A9veloppement%20d%27UrbanVitaliz%20repose%20sur%203%20axes%20%3A%0A%0A%2A%20%2A%2APoursuivre%20le%20d%C3%A9ploiement%20aupr%C3%A8s%20des%20collectivit%C3%A9s%2A%2A.%20Depuis%20janvier%202021%2C%20500%20projets%20ont%20%C3%A9t%C3%A9%20soumis%20pour%20recevoir%20de%20l%27aide.%20Les%20principaux%20canaux%20de%20communication%20sont%20les%20r%C3%A9seaux%20locaux%2C%20notamment%20anim%C3%A9s%20par%20les%20DDT%2C%20pr%C3%A9fectures%20et%20antennes%20ANCT%2C%20les%20r%C3%A9seaux%20type%20Petite%20Ville%20de%20Demain%20%28PVD%29%2C%20les%20associations%20d%27%C3%A9lus.%0A%2A%20%2A%2AEmbarquer%20davantage%20d%27acteurs%20publics%20locaux%20dans%20le%20suivi%20des%20projets%20d%C3%A9pos%C3%A9s%20sur%20la%20plateforme%2A%2A.%20L%27%C3%A9quipe%20d%27UrbanVitaliz%20contacte%20en%20direct%20certains%20acteurs%20locaux%20en%20fonction%20des%20dossiers%20re%C3%A7us%20%28DDT%20notamment%29.%20D%27autres%20sollicitent%20un%20acc%C3%A8s%20apr%C3%A8s%20avoir%20d%C3%A9couvert%20le%20service%20via%20des%20r%C3%A9seaux%20locaux%2C%20des%20communications%20des%20minist%C3%A8res%20de%20tutelle%2C%20sur%20les%20r%C3%A9seaux%20sociaux...%0A%2A%20%2A%2AAgr%C3%A9ger%20une%20vision%20nationale%20des%20friches%20%22qui%20bougent%22%20%C3%A0%20disposition%20des%20d%C3%A9cideurs%20publics%2A%2A.%20UrbanVitaliz%20rassemble%20une%20quantit%C3%A9%20importante%20de%20donn%C3%A9es%20sur%20les%20projets%20re%C3%A7us%20et%20a%20vocation%2C%20%C3%A0%20terme%2C%20%C3%A0%20voir%20passer%20la%20majorit%C3%A9%20des%20projets%20de%20r%C3%A9habilitation%20de%20friches%20en%20France.%20C%27est%20donc%20une%20opportunit%C3%A9%20unique%20de%20faire%20parler%20ces%20donn%C3%A9es%2C%20notamment%20en%20cr%C3%A9ant%20des%20tableaux%20de%20bord%20et%20analyses%20th%C3%A9matiques%20%3A%20principaux%20freins%2C%20typologie%20de%20projet%20etc.%0A%0A%23%23%20Un%20pas%20de%20c%C3%B4t%C3%A9%20%3A%20Recommandations-collaboratives%2C%20pour%20permettre%20%C3%A0%20d%E2%80%99autres%20secteurs%20th%C3%A9matiques%20de%20b%C3%A9n%C3%A9ficier%20du%20m%C3%AAme%20outil%20de%20travail%20pour%20conseiller%20des%20projets%20complexes%0A%0APlusieurs%20interlocuteurs%20sur%20d%E2%80%99autres%20th%C3%A9matiques%20%28mobilit%C3%A9%2C%20%C3%A9coquartiers%2C%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%E2%80%A6%29%20ont%20manifest%C3%A9%20leur%20int%C3%A9r%C3%AAt%20%C3%A0%20utiliser%20UrbanVitaliz%20pour%20faire%20de%20l%E2%80%99accompagnement%20dans%20la%20dur%C3%A9e%20sur%20d%E2%80%99autres%20sujets%20que%20les%20friches.%20Face%20au%20manque%20d%E2%80%99outils%20sur%20ce%20sujet%20complexe%2C%20l%E2%80%99%C3%A9quipe%20UrbanVitaliz%20a%20produit%20une%20version%20minimale%20de%20l%E2%80%99outil%20g%C3%A9n%C3%A9rique%2C%20nomm%C3%A9%20Recommandations-collaboratives%2C%20qui%20permet%20de%20cr%C3%A9er%20d%E2%80%99autres%20portails%20th%C3%A9matiques%20de%20recommandations%2C%20%C3%A0%20l%E2%80%99initiative%20d%E2%80%99autres%20m%C3%A9tiers%20et%20organisations%20publiques.%20%0A%0ALa%20mise%20en%20place%20d%27un%20portail%20Recommandations-collaboratives%20est%20r%C3%A9alis%C3%A9e%20pour%20des%20administrations%20publiques%20qui%20disposent%20d%C3%A9j%C3%A0%20d%27une%20communaut%C3%A9%20susceptible%20de%20l%27utiliser.%20%0A%0AFiche%20produit%20%3A%20https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2Frecommandations-collaboratives.html%0A%0A%E2%80%94%0A%0AContact%20de%20l%27%C3%A9quipe%20%3A%20friches%40beta.gouv.fr", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2020-02-12", - "end": "2020-05-19" - }, - { - "name": "construction", - "start": "2020-09-14", - "end": "" - }, - { - "name": "acceleration", - "start": "2021-12-01", - "end": "" - }, - { - "name": "success", - "start": "2023-11-01", - "end": "" - } - ], - "sponsors": [ - "anct", - "cerema", - "dgaln", - "dinum" - ], - "thematiques": [ - "Collectivités", - "Territoires", - "Écologie", - "Logement" - ], - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "accelerema" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://urbanvitaliz.fr", - "size": 5289.694, - "nodes": 328, - "requests": 63, - "grade": "C", - "score": 58, - "ges": 1.84, - "water": 2.76, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:21:14.174152", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 0.938, - "apdexGrade": "F", - "uptime": 99.995, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-14T07:02:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.47, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.96, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://devoirs-faits-communaute.beta.gouv.fr", - "category": "dinum", - "betaId": "devoirs-faits-communaute", - "repositories": [ - "betagouv/ClasseA12" - ], - "http": { - "url": "https://devoirs-faits-communaute.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:30:03 GMT", - "grade": "F", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "date": "Sun, 20 Oct 2024 13:30:02 GMT", - "transfer-encoding": "chunked", - "via": "1.1 alproxy" + "finding": "Grade capped to A. HSTS is not offered" }, - "scan_id": 57065313, - "score": 10, - "start_time": "Sun, 20 Oct 2024 13:30:02 GMT", - "state": "FINISHED", - "status_code": 502, - "tests_failed": 5, - "tests_passed": 5, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": false, - "route": [ - "http://devoirs-faits-communaute.beta.gouv.fr/" - ], - "status_code": null - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": null, - "nmap": { - "host": "devoirs-faits-communaute.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -452295,7 +449474,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -452303,7 +449482,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -452311,7 +449490,7 @@ }, { "id": "cipherlist_LOW", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -452319,7 +449498,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -452327,7 +449506,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -452335,449 +449514,463 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "id": "cipher-tls1_2_xc02f", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "2024-11-06 07:39" + "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", - "finding": "2025-02-04 07:39" + "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "WARN", - "finding": "Unexpected 502 Bad Gateway @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "1732469435" + "finding": "1733074628" }, { "id": "HSTS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "--" }, { "id": "heartbleed", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -452786,7 +449979,7 @@ }, { "id": "CCS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -452795,16 +449988,16 @@ }, { "id": "ticketbleed", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -452813,7 +450006,7 @@ }, { "id": "secure_renego", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -452821,16 +450014,16 @@ }, { "id": "secure_client_renego", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -452839,16 +450032,16 @@ }, { "id": "BREACH", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -452857,14 +450050,14 @@ }, { "id": "fallback_SCSV", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -452873,7 +450066,7 @@ }, { "id": "FREAK", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -452882,7 +450075,7 @@ }, { "id": "DROWN", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -452891,16 +450084,16 @@ }, { "id": "DROWN_hint", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6A18DBF56AC9D967CEA01D67E9E9F31F7C11E738D3EB579167B70C67A45762A1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "LOGJAM", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -452909,7 +450102,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -452918,7 +450111,7 @@ }, { "id": "BEAST", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -452927,7 +450120,7 @@ }, { "id": "LUCKY13", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -452936,7 +450129,7 @@ }, { "id": "winshock", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -452945,7 +450138,7 @@ }, { "id": "RC4", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -452954,903 +450147,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", + "ip": "declare-douane.beta.gouv.fr/91.208.207.220", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, - { - "id": "scanTime", - "ip": "devoirs-faits-communaute.beta.gouv.fr/185.31.40.21", - "port": "443", - "severity": "INFO", - "finding": "53" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "date": "Sun, 24 Nov 2024 17:29:50 GMT", - "via": "2.0 alproxy" - }, - "endpoints": [ - { - "hostname": "devoirs-faits-communaute.beta.gouv.fr", - "ip": "185.31.40.21", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://devoirs-faits-communaute.beta.gouv.fr/": { - "status": 502 - } - }, - "technologies": [] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "devoirs-faits-communaute", - "type": "startup", - "attributes": { - "name": "Devoirs Faits la Communauté", - "pitch": "Faciliter les échanges de pratiques entre pairs autour du dispositif « devoirs faits ».", - "stats_url": "", - "link": "https://devoirs-faits-communaute.beta.gouv.fr/", - "repository": "https://github.com/betagouv/ClasseA12/tree/devoirs-faits", - "contact": "camille.martinelli@ac-creteil.fr", - "content_url_encoded_markdown": "%23%23%20Le%20contexte%20du%20projet%0A%0A%C3%80%20la%20rentr%C3%A9e%20scolaire%202017%2C%20le%20ministre%20de%20l%27%C3%89ducation%20nationale%2C%20de%20la%20Jeunesse%20et%20des%20Sports%2C%20Jean-Michel%20Blanquer%2C%20a%20lanc%C3%A9%20le%20dispositif%20%E2%80%9CDevoirs%20faits%E2%80%9D%20dans%20les%20coll%C3%A8ges.%0A%22Devoirs%20faits%20est%20un%20temps%20d%C3%A9di%C3%A9%2C%20en%20dehors%20des%20heures%20de%20classe%2C%20%C3%A0%20l%E2%80%99accomplissement%20par%20l%E2%80%99%C3%A9l%C3%A8ve%20des%20t%C3%A2ches%20demand%C3%A9es%20par%20ses%20professeurs.%20Il%20a%20lieu%20dans%20l%E2%80%99%C3%A9tablissement%20sur%20des%20horaires%20appropri%C3%A9s.%20L%27objectif%20est%20de%20faire%20b%C3%A9n%C3%A9ficier%20les%20coll%C3%A9giens%20d%27une%20aide%20appropri%C3%A9e%20au%20sein%20du%20coll%C3%A8ge%20afin%20de%20rentrer%20chez%20eux%20%22Devoirs%20faits%22%20%28site%20du%20MENJ%29.%0A%0AEn%20d%C3%A9cembre%202020%2C%20le%20minist%C3%A8re%20de%20l%E2%80%99%C3%A9ducation%20nationale%20a%20sollicit%C3%A9%20le%20Lab%20110%20bis%20de%20l%E2%80%99innovation%20afin%20qu%E2%80%99il%20m%C3%A8ne%20une%20investigation%20aupr%C3%A8s%20des%20enseignants%20concern%C3%A9s%20par%20%E2%80%9CDevoirs%20faits%E2%80%9D.%20Cette%20investigation%20a%20pour%20but%20d%E2%80%99une%20part%2C%20de%20mettre%20en%20exergue%20les%20probl%C3%A8mes%20rencontr%C3%A9s%20par%20les%20professeurs%20lors%20de%20la%20mise%20en%20%C5%93uvre%20du%20dispositif%20et%20d%E2%80%99autre%20part%2C%20d%E2%80%99%C3%A9valuer%20leurs%20besoins%2C%20et%20leur%20proposer%20%C3%A9ventuellement%20une%20solution%20leur%20permettant%20d%27acqu%C3%A9rir%20de%20nouvelles%20pratiques%20professionnelles.%20Ces%20pratiques%20leur%20permettraient%20de%20maximiser%20l%E2%80%99impact%20du%20dispositif%20aupr%C3%A8s%20des%20%C3%A9l%C3%A8ves%20de%20coll%C3%A8ge.%0A%0A%23%23%20La%20solution%20initiale%20propos%C3%A9e%0A%0ALa%20probl%C3%A9matique%20suppos%C3%A9e%20est%20la%20suivante%20%3A%20les%20professeurs%20manquent%20de%20ressources%20p%C3%A9dagogiques%20et%20d%E2%80%99outils%20sp%C3%A9cifiques%20%C3%A0%20%E2%80%9CDevoirs%20faits%E2%80%9D%2C%20et%20compte%20tenu%20de%20la%20crise%20sanitaire%2C%20il%20est%20difficile%20de%20maintenir%20l%27organisation%20du%20dispositif%20au%20sein%20des%20%C3%A9tablissements.%0ALa%20solution%20initiale%20propos%C3%A9e%20est%20d%E2%80%99adapter%20le%20site%20%E2%80%9CClasse%20%C3%A0%2012%E2%80%9D%20qui%20fonctionne%20tr%C3%A8s%20bien%20%C3%A0%20%E2%80%9Cdevoirs%20faits%E2%80%9D.%20%E2%80%9CClasse%20%C3%A0%2012%E2%80%9D%20est%20un%20site%20permettant%20aux%20enseignants%20des%20classes%20%C3%A0%20faible%20effectif%20de%20grande%20section%2C%20CP%20et%20CE1%20des%20r%C3%A9seaux%20d%E2%80%99%C3%A9ducation%20prioritaire%20de%20partager%20des%20pratiques%20p%C3%A9dagogiques%20au%20moyen%20de%20courtes%20vid%C3%A9os%20de%20moins%20de%20deux%20minutes.%20%0A%0AL%E2%80%99id%C3%A9e%20serait%20donc%20de%20d%C3%A9terminer%20si%20Classe%20%C3%A0%2012%20peut%20%C3%AAtre%20transf%C3%A9r%C3%A9%20et%20adapt%C3%A9%20au%20dispositif%20%E2%80%9Cdevoirs%20faits%E2%80%9D.%20En%20d%E2%80%99autres%20termes%2C%20un%20site%20de%20type%20Classe%20%C3%A0%2012%20peut-il%20r%C3%A9pondre%20aux%20besoins%20des%20professeurs%20de%20coll%C3%A8ge%20dans%20le%20cadre%20du%20dispositif%20%E2%80%9CDevoirs%20faits%E2%80%9D%20%3F%0ACette%20solution%20s%E2%80%99adresse%20%C3%A0%20tous%20les%20acteurs%20du%20dispositif%3A%20professeurs%2C%20A.E.D%2C%20CPE%2C%20%C3%A9tudiants%2C%20personnels%20de%20direction.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9ploiement%0A%0ANotre%20phase%20d%27investigation%20%28f%C3%A9vrier%20%C3%A0%20avril%202021%29%20nous%20a%20permis%20de%20mettre%20en%20exergue%20les%20besoins%20et%20probl%C3%A9matiques%20rencontr%C3%A9s%20au%20quotidien%20par%20les%20acteurs%20du%20dispositif%20%C2%AB%20devoirs%20faits%20%C2%BB%20%28les%20professeurs%2C%20les%20CPE%2C%20les%20AED%2C%20les%20AP%20et%20les%20personnels%20de%20direction%29.%0AUn%20focus%20groupe%20r%C3%A9unissant%20tous%20les%20acteurs%20du%20dispositif%20a%20valid%C3%A9%20les%20premi%C3%A8res%20observations%20et%20la%20proposition%20de%20solution.%0AUn%20site%20MVP%20%20%E2%80%9CDevoirs%20faits%20la%20communaut%C3%A9%E2%80%9D%20est%20en%20cours%20de%20construction.%20%0A%0A%23%23%20Mesures%20d%E2%80%99impact%0A%0ANous%20supposons%20que%2020%20%25%20des%20animateurs%20du%20dispositif%20%C2%AB%20Devoirs%20faits%20%C2%BB%20%28professeurs%2C%20CPE%2C%20assistants%20p%C3%A9dagogiques%29%20vont%20regarder%20des%20vid%C3%A9os%20de%202%20minutes%20maximum%20au%20cours%20des%20deux%20premi%C3%A8res%20semaines%20de%20test.%0APour%20v%C3%A9rifier%20cela%2C%20nous%20allons%20mettre%20en%20ligne%2010%20vid%C3%A9os%20sur%20le%20site%20MVP%20et%20en%20assurer%20la%20promotion%20au%20sein%20des%20%C3%A9tablissements%20et%20sur%20les%20r%C3%A9seaux%20sociaux%20%28twitter%2C%20Instagram%20et%20facebook%20%20pour%20commencer%29.%0APour%20mesurer%20l%E2%80%99impact%20de%20notre%20solution%20initiale%20nous%20allons%20d%E2%80%99une%20part%20comptabiliser%20le%20nombre%20de%20vues%20uniques%20de%20vid%C3%A9os%20et%20d%E2%80%99autre%20part%20organiser%20un%20sondage%20aupr%C3%A8s%20des%20%C3%A9tablissements%20permettant%20de%20savoir%20combien%20de%20professeurs%20ont%20vu%20les%20vid%C3%A9os.%0ANotre%20solution%20initiale%20sera%20valid%C3%A9e%20si%20nous%20avons%2020000%20vues%20sur%20trois%20semaines%20et%2010000%20personnes%20ayant%20vu%20au%20moins%20deux%20vid%C3%A9os.%0A%0A%23%23%20Arr%C3%AAt%20du%20produit%0ALe%20produit%20a%20d%27abord%20%C3%A9t%C3%A9%20plac%C3%A9%20en%20maintenance%20au%20sein%20du%20minist%C3%A8re.%20Son%20usage%20a%20chut%C3%A9%20jusqu%27%C3%A0%20devenir%20nul.%20Le%20service%20a%20%C3%A9t%C3%A9%20totalement%20coup%C3%A9%20le%209%20f%C3%A9vrier%202024.%20", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-02-01", - "end": "" - }, - { - "name": "construction", - "start": "2021-09-01", - "end": "" - }, - { - "name": "alumni", - "start": "2024-02-09", - "end": "" - } - ], - "sponsors": [ - "dgesco" - ], - "thematiques": [ - "Education" - ], - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "F", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-04T07:39:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://declare-douane.beta.gouv.fr", - "category": "dinum", - "betaId": "delta.v", - "http": { - "url": "https://declare-douane.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:31:07 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Sozu-Id": "01JAN1ZM3FFGFRBEFV9MQDMQG4", - "connection": "close", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 20 Oct 2024 13:31:04 GMT", - "etag": "\"atpob2uw1n7yg\"", - "keep-alive": "timeout=5", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding" - }, - "scan_id": 57065424, - "score": 30, - "start_time": "Sun, 20 Oct 2024 13:31:03 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://declare-douane.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://declare-douane.beta.gouv.fr/", - "https://declare-douane.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "jjs0", - "url": "https://declare-douane.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.975, - "down": false, - "down_since": null, - "up_since": "2024-11-24T14:52:41Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:43:17Z", - "next_check_at": "2024-11-24T17:44:17Z", - "created_at": "2024-02-07T18:36:46Z", - "mute_until": null, - "favicon_url": "https://declare-douane.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:39:17Z", - "expires_at": "2025-01-18T15:54:29Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 147, - "connection": 118, - "handshake": 122, - "response": 124, - "total": 511 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "declare-douane.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -453858,7 +450540,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -453866,7 +450548,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -453874,7 +450556,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -453882,7 +450564,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -453890,7 +450572,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -453898,455 +450580,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" }, { "id": "cert_serialNumberLen", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" }, { "id": "cert_fingerprintSHA256", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "cert", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1732469564" + "finding": "1733074683" }, { "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -454354,7 +451036,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -454363,7 +451045,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -454372,7 +451054,7 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -454381,7 +451063,7 @@ }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -454390,7 +451072,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -454398,7 +451080,7 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -454407,7 +451089,7 @@ }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -454416,7 +451098,7 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -454425,7 +451107,7 @@ }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -454434,14 +451116,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -454450,7 +451132,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -454459,7 +451141,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -454468,7 +451150,7 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -454477,7 +451159,7 @@ }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -454486,7 +451168,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -454495,7 +451177,7 @@ }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -454504,7 +451186,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -454513,7 +451195,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -454522,7 +451204,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -454531,322 +451213,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.220", + "ip": "declare-douane.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -455205,7 +451887,7 @@ "ip": "declare-douane.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", @@ -455366,7 +452048,7 @@ "ip": "declare-douane.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1732469624" + "finding": "1733074737" }, { "id": "HSTS", @@ -455919,70 +452601,70 @@ }, { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -455990,7 +452672,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -455998,7 +452680,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456006,7 +452688,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456014,7 +452696,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -456022,7 +452704,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -456030,455 +452712,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" }, { "id": "cert_serialNumberLen", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" }, { "id": "cert_fingerprintSHA256", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "cert", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", - "finding": "1732469683" + "finding": "1733074792" }, { "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -456486,7 +453168,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -456495,7 +453177,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -456504,7 +453186,7 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -456513,7 +453195,7 @@ }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -456522,7 +453204,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -456530,7 +453212,7 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -456539,7 +453221,7 @@ }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -456548,7 +453230,7 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -456557,7 +453239,7 @@ }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -456566,14 +453248,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -456582,7 +453264,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -456591,7 +453273,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -456600,7 +453282,7 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -456609,7 +453291,7 @@ }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -456618,7 +453300,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -456627,7 +453309,7 @@ }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -456636,7 +453318,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -456645,7 +453327,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -456654,7 +453336,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -456663,392 +453345,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.214", + "ip": "declare-douane.beta.gouv.fr/91.208.207.221", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457056,7 +453738,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457064,7 +453746,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457072,7 +453754,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457080,7 +453762,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -457088,7 +453770,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -457096,455 +453778,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" }, { "id": "cert_serialNumberLen", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" }, { "id": "cert_fingerprintSHA256", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "cert", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCA+2gAwIBAgISBNXl3VPSNciun2PIYsQ5s1Y2MA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMDIwMTU1NDMwWhcNMjUwMTE4MTU1NDI5WjAmMSQwIgYDVQQDExtkZWNsYXJlLWRvdWFuZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCELNaGpXGZx8kR0tqnTXlP7MAypdybH56K3X7OvaouFvFEIScfGUO0lK1n7qZFMlHhFyBb2py6bP1cRqT1gyRIrFkQwQO5MllmbWybqN7pOptxtklqnS8+/o/o8O9BG4u2Hyn9qIKsPOi6j/yy+HqMxqv8DPhHBRtNN4FEwYpVJKO5oNk+AtkLxtdiPfZSYtnnlg4OtwF9JtluGdx7jOhhyn5i96bYcFLy1WfCJW64/08+C0lV+kzpbFXtq1a7+dY2nNly1PG421qMVKnR+35o6fkFD9MyOJwb95cU43mrQYuN+7lELr4RtKHoCgZI6ex+fiKoC5YojcE6hQPi4eu/AgMBAAGjggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLPBKhtgcxzkiLR6dXmBVmUj3FmPMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wJgYDVR0RBB8wHYIbZGVjbGFyZS1kb3VhbmUuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGSqtiwpAAABAMARjBEAiB9VxpIbCKjMT1s+rJghL2ks2GaFcMiY1QgdoLSsGEKrwIgcpNt7F79LcZz7hvOX0sPCHUoChWvRtPTV8lEII/ryFcAdgATSt8atZhCCXgMb+9MepGkFrcjSc5YV2rfrtqnwqvgIgAAAZKq2LEoAAAEAwBHMEUCIGTdDm5uiVax/N3Vdq+nu4hmcEHqPgaG+QcH44iii4LeAiEAx8IkGpnKZlSwvJF8/WICeD6gux+eUdMvE/Z3SLQbVwQwDQYJKoZIhvcNAQELBQADggEBAJMuD42ORpLEcPcuAgv94MzdK4JqDWIFItf6cmuz2E/Xx063GE0vVyqI4x74Bseg9BNZ4tKURrhnPVwL3reohm6hP+K2x/Zev3sdvJyNkzndh+7ozb74R4hUu72QAFfQmUK3IGTTd57ut5nzdjXd+/446bH5gOjHIu6a6I3Y/cRENQ3XDVPbJya1fGJGJHkg9u/qeiD8uiZ7zuQtyQnqcHAFSdq6e6zruPyXLIbx6btFRFK+pRfFgnCL0vxgopq+ObvMXTWlgElJ2JCRipsn49Ci9s0AzTHKvqhxtDpQMjlo1b08dPEwVmj48JU5fv3VCbuKyASMVO3GkWzT87XV4SI=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732469742" + "finding": "1733074846" }, { "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -457552,7 +454234,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -457561,7 +454243,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -457570,7 +454252,7 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -457579,7 +454261,7 @@ }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -457588,7 +454270,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -457596,7 +454278,7 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -457605,7 +454287,7 @@ }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -457614,7 +454296,7 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -457623,7 +454305,7 @@ }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -457632,14 +454314,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -457648,7 +454330,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -457657,7 +454339,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -457666,7 +454348,7 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -457675,7 +454357,7 @@ }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -457684,7 +454366,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -457693,7 +454375,7 @@ }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -457702,7 +454384,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -457711,7 +454393,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -457720,7 +454402,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -457729,392 +454411,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.215", + "ip": "declare-douane.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -458122,7 +454804,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -458130,7 +454812,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -458138,7 +454820,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -458146,7 +454828,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -458154,7 +454836,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -458162,455 +454844,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" }, { "id": "cert_serialNumberLen", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" }, { "id": "cert_fingerprintSHA256", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" }, { "id": "cert", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "declare-douane.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-10-20 15:54" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2025-01-18 15:54" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", - "finding": "1732469801" + "finding": "1733074903" }, { "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -458618,7 +455300,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -458627,7 +455309,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -458636,7 +455318,7 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -458645,7 +455327,7 @@ }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -458654,7 +455336,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -458662,7 +455344,7 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -458671,7 +455353,7 @@ }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -458680,7 +455362,7 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -458689,7 +455371,7 @@ }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -458698,14 +455380,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -458714,7 +455396,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -458723,7 +455405,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -458732,7 +455414,7 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -458741,7 +455423,7 @@ }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -458750,7 +455432,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -458759,7 +455441,7 @@ }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -458768,7 +455450,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -458777,7 +455459,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -458786,7 +455468,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -458795,392 +455477,1248 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "id": "cipher_strength_score_weighted", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "port": "443", + "severity": "INFO", + "finding": "496" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://cdn.matomo.cloud/declare-douane.matomo.cloud/matomo.js" + }, + { + "type": "unknown", + "url": "https://declare-douane.matomo.cloud/matomo.php?action_name=&idsite=1&rec=1&r=457018&h=17&m=33&s=37&url=https%3A%2F%2Fdeclare-douane.beta.gouv.fr%2F&_id=&_idn=1&send_image=0&_refts=0&pv_id=S2OCaA&pf_net=187&pf_srv=90&pf_tfr=2&pf_dm1=16&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + } + ], + "cookies": [], + "headers": { + "sozu-id": "01JE1MHXB5CNGCEEQ7T2B10SVY", + "connection": "close", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 17:33:37 GMT", + "etag": "\"bg55bd0on27yg\"", + "keep-alive": "timeout=5", + "transfer-encoding": "chunked", + "vary": "Accept-Encoding" + }, + "endpoints": [ + { + "hostname": "declare-douane.beta.gouv.fr", + "ip": "91.208.207.214", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.matomo.cloud", + "ip": "3.167.99.104", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "declare-douane.matomo.cloud", + "ip": "3.126.133.169", + "geoip": { + "city": { + "geoname_id": 2925533, + "names": { + "de": "Frankfurt am Main", + "en": "Frankfurt am Main", + "es": "Francfort", + "fr": "Francfort-sur-le-Main", + "ja": "フランクフルト・アム・マイン", + "pt-BR": "Frankfurt am Main", + "ru": "Франкфурт", + "zh-CN": "法兰克福" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2921044, + "is_in_european_union": true, + "iso_code": "DE", + "names": { + "de": "Deutschland", + "en": "Germany", + "es": "Alemania", + "fr": "Allemagne", + "ja": "ドイツ連邦共和国", + "pt-BR": "Alemanha", + "ru": "ФРГ", + "zh-CN": "德国" + } + }, + "location": { + "accuracy_radius": 200, + "latitude": 50.1187, + "longitude": 8.6842, + "time_zone": "Europe/Berlin" + }, + "postal": { + "code": "60313" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 2905330, + "iso_code": "HE", + "names": { + "de": "Hessen", + "en": "Hesse", + "es": "Hessen", + "fr": "Hesse", + "ja": "ヘッセン州", + "pt-BR": "Hesse", + "ru": "Гессен", + "zh-CN": "黑森州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://declare-douane.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://declare-douane.beta.gouv.fr/", + "finalUrl": "https://declare-douane.beta.gouv.fr/", + "fetchTime": "2024-12-01T17:33:10.411Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.57 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.78 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12950, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1248, + "firstMeaningfulPaint": 2096, + "largestContentfulPaint": 14310, + "interactive": 12950, + "speedIndex": 9677, + "totalBlockingTime": 57, + "maxPotentialFID": 163, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 416425521, + "observedNavigationStart": 0, + "observedNavigationStartTs": 416425521, + "observedFirstPaint": 744, + "observedFirstPaintTs": 417169205, + "observedFirstContentfulPaint": 744, + "observedFirstContentfulPaintTs": 417169205, + "observedFirstContentfulPaintAllFrames": 744, + "observedFirstContentfulPaintAllFramesTs": 417169205, + "observedFirstMeaningfulPaint": 2463, + "observedFirstMeaningfulPaintTs": 418888788, + "observedLargestContentfulPaint": 2700, + "observedLargestContentfulPaintTs": 419125238, + "observedLargestContentfulPaintAllFrames": 2700, + "observedLargestContentfulPaintAllFramesTs": 419125238, + "observedTraceEnd": 5116, + "observedTraceEndTs": 421542007, + "observedLoad": 1936, + "observedLoadTs": 418361274, + "observedDomContentLoaded": 1935, + "observedDomContentLoadedTs": 418360037, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 741, + "observedFirstVisualChangeTs": 417166521, + "observedLastVisualChange": 3374, + "observedLastVisualChangeTs": 419799521, + "observedSpeedIndex": 2657, + "observedSpeedIndexTs": 419082236 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 37, + "numScripts": 14, + "numStylesheets": 1, + "numFonts": 12, + "numTasks": 667, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 5.83, + "throughput": 11156287.177583117, + "maxRtt": 97.322, + "maxServerLatency": 106.257, + "totalByteWeight": 1818069, + "totalTaskTime": 182.67599999999985, + "mainDocumentTransferSize": 4276 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "90" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "36" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "delta.v", + "type": "startup", + "attributes": { + "name": "Déclare Douane", + "pitch": "Déclarer des marchandises achetées à l'étranger en arrivant en France", + "stats_url": "", + "link": "https://declare-douane.beta.gouv.fr/", + "repository": "https://github.com/betagouv/delta-v", + "contact": "julien.ramon@douane.finances.gouv.fr", + "content_url_encoded_markdown": "D%C3%A9clare%20Douane%20est%20un%20service%20%C3%A0%20destination%20de%20toute%20personne%20voyageant%20%C3%A0%20l%E2%80%99%C3%A9tranger.%0A%0A%23%23%20Le%20probl%C3%A8me%20constat%C3%A9%20%3A%0A%0A-%20les%20usagers%20connaissent%20peu%20leurs%20droits%20et%20obligations%20s%27agissant%20des%20marchandises%20achet%C3%A9es%20%C3%A0%20l%27%C3%A9tranger%20et%20ramen%C3%A9es%20avec%20eux%20en%20France%20%3B%0A%0A-%20le%20grand%20public%20acc%C3%A8de%20difficilement%20aux%20informations%20n%C3%A9cessaires%20en%20la%20mati%C3%A8re%20et%20peine%20donc%20%C3%A0%20comprendre%20les%20droits%20et%20taxes%20%C3%A0%20payer%2C%20potentiellement%2C%20sur%20ces%20achats.%0A%0ACe%20domaine%20r%C3%A9glementaire%20est%20%C3%A9galement%20compliqu%C3%A9%20%C3%A0%20g%C3%A9rer%20pour%20les%20agents%20des%20douanes%20charg%C3%A9s%20de%20contr%C3%B4ler%20les%20usagers%20et%20de%20les%20accompagner%20dans%20leurs%20formalit%C3%A9s.%0A%0A%0A%23%23%20La%20solution%20%3A%0A%0A-%20mettre%20%C3%A0%20disposition%20du%20grand%20public%20un%20service%20simple%2C%20accessible%20et%20intuitif%20pour%20qu%27il%20soit%20en%20mesure%20de%20s%27informer%20et%20de%20ramener%20des%20biens%20achet%C3%A9s%20%C3%A0%20l%27%C3%A9tranger%20en%20France%20en%20parfaite%20connaissance%20de%20cause%20%3B%0A-%20rendre%20le%20passage%20de%20la%20fronti%C3%A8re%20plus%20serein%20et%20plus%20simple%20pour%20les%20usagers%20en%20proposant%20un%20simulateur%20d%27achats.%0A%0AA%20terme%2C%20nous%20souhaitons%20aller%20encore%20plus%20loin%20en%20d%C3%A9mat%C3%A9rialisant%20le%20processus%20de%20d%C3%A9claration%20des%20marchandises%20achet%C3%A9es%20par%20les%20voyageurs%20lors%20de%20leur%20s%C3%A9jour%20%C3%A0%20l%27%C3%A9tranger%20et%20le%20paiement%20des%20%C3%A9ventuels%20droits%20et%20taxes%20d%C3%BBs%20%C3%A0%20ce%20titre.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2021-09-03", + "end": "2021-11-18" + }, + { + "name": "construction", + "start": "2021-12-20", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-01-01", + "end": "" + } + ], + "sponsors": [ + "dgddi" + ], + "thematiques": [ + "Administratif" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/declare-douane-beta-gouv-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "93" + "width": 1920, + "height": 1080, + "url": "https://declare-douane.beta.gouv.fr", + "size": 1866.337, + "nodes": 127, + "requests": 38, + "grade": "B", + "score": 76, + "ges": 1.48, + "water": 2.22, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:30:09.344375", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.975, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-18T15:54:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.57, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.78, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://bacasable.recoconseil.fr", + "category": "dinum", + "betaId": "recoconseil", + "http": { + "url": "https://bacasable.recoconseil.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:37:04 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Length": "24202", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 20 Oct 2024 13:37:02 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=Icj9Jt9BFOKyYmcB7sLOabP8yU4GhRur; expires=Sun, 19 Oct 2025 13:37:02 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Cookie", + "via": "1.1 alproxy", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN" }, - { - "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "OK", - "finding": "A" + "scan_id": 57065468, + "score": 70, + "start_time": "Sun, 20 Oct 2024 13:37:01 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "csrftoken": { + "domain": "bacasable.recoconseil.fr", + "expires": 1760881023, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": "None", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://bacasable.recoconseil.fr/", + "redirects": true, + "route": [ + "http://bacasable.recoconseil.fr/", + "https://bacasable.recoconseil.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubDomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.jsdelivr.net/npm/js-cookie@3.0.1/dist/js.cookie.min.js": { + "crossorigin": "anonymous", + "integrity": "sha256-0H3Nuz3aug3afVbUlsu12Puxva3CP4EhJtPExqs54Vg=" + }, + "https://sentry.incubateur.net/js-sdk-loader/5b872cee93efddce4396cc52605838c1.min.js": { + "crossorigin": "anonymous", + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "cb0m", + "url": "https://bacasable.recoconseil.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T18:03:42Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:40:47Z", + "next_check_at": "2024-12-01T17:41:47Z", + "created_at": "2024-02-07T18:36:46Z", + "mute_until": null, + "favicon_url": "https://bacasable.recoconseil.fr/static/img/favicons/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:36:50Z", + "expires_at": "2025-02-07T07:50:42Z", + "valid": true, + "error": null }, - { - "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.221", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "metrics": { + "apdex": 0.88, + "timings": { + "redirect": 0, + "namelookup": 135, + "connection": 136, + "handshake": 140, + "response": 320, + "total": 731 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "bacasable.recoconseil.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -459188,7 +456726,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -459196,7 +456734,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -459204,7 +456742,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -459212,7 +456750,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -459220,7 +456758,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -459228,463 +456766,498 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "id": "cipherorder_TLSv1_2", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 7200 seconds only (= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "2024-10-20 15:54" + "finding": "2024-11-09 07:50" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "2025-01-18 15:54" + "finding": "2025-02-07 07:50" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "1732469860" + "finding": "1733074786" }, { - "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "id": "HSTS_time", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "1 at '/'" }, { - "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "id": "cookie_secure", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "bacasable.recoconseil.fr/185.31.40.13", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -459693,7 +457266,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -459702,16 +457275,16 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -459720,7 +457293,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -459728,16 +457301,16 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -459746,16 +457319,16 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -459764,14 +457337,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -459780,7 +457353,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -459789,7 +457362,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -459798,16 +457371,16 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7EE58373667FF9C56D355E1C1EC5CAD925069DABB77ACBA0885D2EE74E9CE92D" }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -459816,7 +457389,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -459825,7 +457398,7 @@ }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -459834,7 +457407,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -459843,7 +457416,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -459852,7 +457425,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -459861,392 +457434,1134 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "A" + "finding": "A+" }, { - "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.222", + "id": "scanTime", + "ip": "bacasable.recoconseil.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "100" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [ + { + "name": "csrftoken", + "value": "8CUnkDo8tj9jSGqSfyQ8ZOJODJvb5Lie", + "domain": "bacasable.recoconseil.fr", + "path": "/", + "expires": 1764524286.693454, + "size": 41, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "content-length": "25008", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 01 Dec 2024 17:38:06 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=8CUnkDo8tj9jSGqSfyQ8ZOJODJvb5Lie; expires=Sun, 30 Nov 2025 17:38:06 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Cookie", + "via": "2.0 alproxy", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN" + }, + "endpoints": [ + { + "hostname": "bacasable.recoconseil.fr", + "ip": "185.31.40.13", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://bacasable.recoconseil.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "alpine-js", + "name": "Alpine.js", + "description": null, + "confidence": 100, + "version": "3.13.9", + "icon": "Alpine.js.png", + "website": "https://github.com/alpinejs/alpine", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://bacasable.recoconseil.fr/", + "finalUrl": "https://bacasable.recoconseil.fr/", + "fetchTime": "2024-12-01T17:37:39.656Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.42 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 11846, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 11846, + "firstMeaningfulPaint": 11846, + "largestContentfulPaint": 22895, + "interactive": 11846, + "speedIndex": 11846, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.17565243742201064, + "cumulativeLayoutShiftMainFrame": 0.17565243742201064, + "totalCumulativeLayoutShift": 0.17565243742201064, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 346581846, + "observedNavigationStart": 0, + "observedNavigationStartTs": 346581846, + "observedFirstPaint": 1608, + "observedFirstPaintTs": 348190125, + "observedFirstContentfulPaint": 1641, + "observedFirstContentfulPaintTs": 348222511, + "observedFirstContentfulPaintAllFrames": 1641, + "observedFirstContentfulPaintAllFramesTs": 348222511, + "observedFirstMeaningfulPaint": 1641, + "observedFirstMeaningfulPaintTs": 348222511, + "observedLargestContentfulPaint": 1857, + "observedLargestContentfulPaintTs": 348439135, + "observedLargestContentfulPaintAllFrames": 1857, + "observedLargestContentfulPaintAllFramesTs": 348439135, + "observedTraceEnd": 4559, + "observedTraceEndTs": 351140847, + "observedLoad": 1934, + "observedLoadTs": 348515874, + "observedDomContentLoaded": 1712, + "observedDomContentLoadedTs": 348293562, + "observedCumulativeLayoutShift": 0.17565243742201064, + "observedCumulativeLayoutShiftMainFrame": 0.17565243742201064, + "observedTotalCumulativeLayoutShift": 0.17565243742201064, + "observedFirstVisualChange": 1620, + "observedFirstVisualChangeTs": 348201846, + "observedLastVisualChange": 1870, + "observedLastVisualChangeTs": 348451846, + "observedSpeedIndex": 1757, + "observedSpeedIndexTs": 348338566 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 55, + "numScripts": 19, + "numStylesheets": 13, + "numFonts": 3, + "numTasks": 19, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 144.314, + "throughput": 27057159.93735857, + "maxRtt": 152.15800000000002, + "maxServerLatency": 181.471, + "totalByteWeight": 4610929, + "totalTaskTime": 4044.7470000000003, + "mainDocumentTransferSize": 25350 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "F" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://bacasable.recoconseil.fr/confidentialite" + } + ], + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://bacasable.recoconseil.fr", + "size": 4659.347, + "nodes": 214, + "requests": 54, + "grade": "C", + "score": 65, + "ges": 1.7, + "water": 2.55, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 17:34:37.960223", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "B", + "apdex": 0.88, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-07T07:50:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 1, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.42, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "F", + "githubRepositoryGrade": "F", + "budgetPageGrade": "F", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://api.trackdechets.beta.gouv.fr", + "category": "mtes", + "betaId": "trackdechets", + "tags": [ + "api" + ], + "tools": { + "lighthouse": false, + "thirdparties": false, + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false, + "dsfr": false, + "ecoindex": false, + "screenshot": false + }, + "http": { + "url": "https://api.trackdechets.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 06:08:27 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Access-Control-Allow-Credentials": "true", + "Access-Control-Allow-Origin": "https://app.trackdechets.beta.gouv.fr", + "Connection": "keep-alive", + "Content-Length": "406", + "Content-Security-Policy": "default-src 'none';base-uri 'self';font-src 'self' https: data:;frame-ancestors 'self';img-src 'self';object-src 'none';script-src 'self' 'sha256-KDSP72yw7Yss7rIt6vgkQo/ROHXYTHPTj3fdIW/CTn8=' 'sha256-+QRKXpw524uxogTf+STlJuwKYh5pW7ad4QNYEb6HCeQ=' 'sha256-FC1QdPlDgsjmWJtkJfO6Tt7pKFza/bZuwKtw25R/7m4=' 'sha256-/KjN0AtQm74p7exR84hK/woqhc2pYBdNQamcxHOkiDA=';script-src-attr 'none';style-src 'self' https: 'sha256-dihQy2mHNADQqxc3xhWK7pH1w4GVvEow7gKjxdWvTgE=' 'sha256-wTzfn13a+pLMB5rMeysPPR1hO7x0SwSeQI+cnw7VdbE=' 'sha256-LFhQK3cog1BLYeE/LUUJthR1mUCLSLwgkyqlF+epuq8=';connect-src api.trackdechets.beta.gouv.fr;form-action self;upgrade-insecure-requests", + "Content-Type": "application/json; charset=utf-8", + "Cross-Origin-Embedder-Policy": "require-corp", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 06:08:26 GMT", + "ETag": "W/\"196-HUCJKwlQurC5GNaaJnH0d+HOnRw\"", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=31536000", + "Vary": "Origin", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-RateLimit-Limit": "1000", + "X-RateLimit-Remaining": "998", + "X-RateLimit-Reset": "1729404566", + "X-Request-ID": "ba4ffdb59e8222a1e886d55c4b1f487a", + "X-XSS-Protection": "0" }, + "scan_id": 57052505, + "score": 110, + "start_time": "Sun, 20 Oct 2024 06:08:25 GMT", + "state": "FINISHED", + "status_code": 400, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "api.trackdechets.beta.gouv.fr" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "data:", + "https:", + "'self'" + ], + "form-action": [ + "self" + ], + "frame-ancestors": [ + "'self'" + ], + "img-src": [ + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'sha256-/kjn0atqm74p7exr84hk/woqhc2pybdnqamcxhokida='", + "'sha256-kdsp72yw7yss7rit6vgkqo/rohxythptj3fdiw/ctn8='", + "'sha256-fc1qdpldgsjmwjtkjfo6tt7pkfza/bzuwktw25r/7m4='", + "'self'", + "'sha256-+qrkxpw524uxogtf+stljuwkyh5pw7ad4qnyeb6hceq='" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "'sha256-lfhqk3cog1blyee/luujthr1muclslwgkyqlf+epuq8='", + "'sha256-wtzfn13a+plmb5rmeysppr1ho7x0swseqi+cnw7vdbe='", + "'sha256-dihqy2mhnadqqxc3xhwk7ph1w4gvveow7gkjxdwvtge='", + "https:", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": true, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://app.trackdechets.beta.gouv.fr", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": true, + "route": [ + "http://api.trackdechets.beta.gouv.fr/", + "https://api.trackdechets.beta.gouv.fr/" + ], + "status_code": null + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": null, + "nmap": { + "host": "api.trackdechets.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460254,7 +458569,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460262,7 +458577,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460270,7 +458585,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460278,7 +458593,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -460286,463 +458601,505 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "cipherorder_TLSv1_2", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "04D5E5DD53D235C8AE9F63C862C439B35636" + "finding": "0396D14ABDE0BA6BE452F0D6D20B85782A90" }, { "id": "cert_serialNumberLen", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "1CE73B435A9B19FB1729C105E467F9C6C5E32BBE" + "finding": "997DB5C8774D2FB5A816882D8892EA459A1C3B33" }, { "id": "cert_fingerprintSHA256", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + "finding": "DF56DE5D4482915B445AAFAB06BC42040FC8999AC31446B458845975251955C2" }, { "id": "cert", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", - "finding": "declare-douane.beta.gouv.fr" + "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "request w/o SNI didn't succeed" + "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "declare-douane.beta.gouv.fr" + "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "OK", - "finding": "54 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (15)" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "2024-10-20 15:54" + "finding": "2024-09-18 12:49" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "OK", - "finding": "2025-01-18 15:54" + "severity": "MEDIUM", + "finding": "2024-12-17 12:49" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "HTTP_status_code", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "400 Bad Request ('/') -- better try another URL" + }, + { + "id": "HTTP_clock_skew", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "1733074829" + }, + { + "id": "HSTS_time", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "No Server banner line in header, interesting!" }, { - "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "banner_application", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "No application banner found" }, { - "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "cookie_count", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "1732469919" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "X-Frame-Options", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "SAMEORIGIN" }, { - "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "X-Content-Type-Options", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "severity": "OK", + "finding": "nosniff" }, { - "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "Content-Security-Policy", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "severity": "OK", + "finding": "default-src 'none';base-uri 'self';font-src 'self' https: data:;frame-ancestors 'self';img-src 'self';object-src 'none';script-src 'self' 'sha256-KDSP72yw7Yss7rIt6vgkQo/ROHXYTHPTj3fdIW/CTn8=' 'sha256-+QRKXpw524uxogTf+STlJuwKYh5pW7ad4QNYEb6HCeQ=' 'sha256-FC1QdPlDgsjmWJtkJfO6Tt7pKFza/bZuwKtw25R/7m4=' 'sha256-/KjN0AtQm74p7exR84hK/woqhc2pYBdNQamcxHOkiDA=';script-src-attr 'none';style-src 'self' https: 'sha256-dihQy2mHNADQqxc3xhWK7pH1w4GVvEow7gKjxdWvTgE=' 'sha256-wTzfn13a+pLMB5rMeysPPR1hO7x0SwSeQI+cnw7VdbE=' 'sha256-LFhQK3cog1BLYeE/LUUJthR1mUCLSLwgkyqlF+epuq8=';connect-src api.trackdechets.beta.gouv.fr;form-action self;upgrade-insecure-requests" }, { - "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "X-XSS-Protection", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "0" }, { - "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "Access-Control-Allow-Origin", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "https://app.trackdechets.beta.gouv.fr" }, { - "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "Referrer-Policy", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -460750,7 +459107,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -460759,7 +459116,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -460768,7 +459125,7 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -460777,7 +459134,7 @@ }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -460786,7 +459143,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -460794,16 +459151,16 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -460812,16 +459169,16 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -460830,14 +459187,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -460846,7 +459203,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -460855,7 +459212,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -460864,16 +459221,16 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DF56DE5D4482915B445AAFAB06BC42040FC8999AC31446B458845975251955C2" }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -460882,16 +459239,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -460900,16 +459257,16 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -460918,7 +459275,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -460927,392 +459284,846 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "OK", - "finding": "A" + "finding": "A+" }, { - "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.217", + "id": "scanTime", + "ip": "api.trackdechets.beta.gouv.fr/185.179.148.96", "port": "443", "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "53" + } + ], + "thirdparties": null, + "wappalyzer": { + "urls": { + "https://api.trackdechets.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "quill", + "name": "Quill", + "description": "Quill is a free open-source WYSIWYG editor.", + "confidence": 100, + "version": null, + "icon": "Quill.svg", + "website": "https://quilljs.com", + "cpe": null, + "categories": [ + { + "id": 24, + "slug": "rich-text-editors", + "name": "Rich text editors" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": "18.3.1", + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "unpkg", + "name": "Unpkg", + "description": "Unpkg is a content delivery network for everything on npm.", + "confidence": 100, + "version": null, + "icon": "Unpkg.png", + "website": "https://unpkg.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": null, + "github_repository": { + "grade": "A" + }, + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, + "betagouv": { + "id": "trackdechets", + "type": "startup", + "attributes": { + "name": "Trackdéchets", + "pitch": "Gérer la traçabilité des déchets, en toute sécurité", + "stats_url": "https://trackdechets.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#-Minist%C3%A8re-de-la-Transition-Ecologique-x-Fabrique-Num%C3%A9rique", + "link": "https://trackdechets.beta.gouv.fr", + "repository": "https://github.com/MTES-MCT/trackdechets", + "contact": "contact@trackdechets.beta.gouv.fr", + "content_url_encoded_markdown": "En%202016%2C%2012%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%20ont%20%C3%A9t%C3%A9%20produits%20en%20France.%20Il%20s%E2%80%99agit%20de%20d%C3%A9chets%20contenants%20des%20%C3%A9l%C3%A9ments%20toxiques%20ou%20dangereux%20qui%20pr%C3%A9sentent%20des%20risques%20pour%20la%20sant%C3%A9%20et%20l%27environnement.%20%0A%0ACes%20d%C3%A9chets%20sont%20soumis%20%C3%A0%20une%20r%C3%A9glementation%20particuli%C3%A8re%20pour%20leur%20gestion%20et%20leur%20valorisation.%20Afin%20de%20contr%C3%B4ler%20le%20traitement%20effectif%20des%20d%C3%A9chets%2C%20la%20loi%20impose%20aux%20soci%C3%A9t%C3%A9s%20productrices%20une%20tra%C3%A7abilit%C3%A9%20rigoureuse%20assur%C3%A9e%20par%20un%20bordereau%20de%20suivi%20de%20d%C3%A9chets%20qui%20permet%20de%20suivre%20le%20d%C3%A9chet%20de%20sa%20collecte%20%C3%A0%20son%20traitement.%20Chaque%20ann%C3%A9e%2C%20pr%C3%A8s%20de%2016%20millions%20de%20ces%20bordereaux%20sont%20%C3%A9dit%C3%A9s.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%23%23%23%20Un%20impact%20environnemental%20majeur%0A%0AL%27efficacit%C3%A9%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%20est%20lourdement%20questionn%C3%A9e%20par%20les%20donn%C3%A9es%20officielles%20%28delta%20production%20vs.%20traitement%29%20et%20les%20pratiques%20observ%C3%A9es%20%28fraude%2C%20traitements%20inadapt%C3%A9s%29%20indiquant%20un%20risque%20environnemental%20majeur%20avec%20la%20%2Adisparition%2A%20de%20d%C3%A9chets%20dans%20la%20nature%E2%80%A6%0A%0ALes%20d%C3%A9chets%20dangereux%20abandonn%C3%A9s%20%28exploitants%20d%C3%A9faillants%29%20g%C3%A9n%C3%A8rent%20%C3%A9galement%20pollutions%20et%20interventions%20de%20l%E2%80%99%C3%89tat.%20La%20prise%20en%20charge%20des%20sites%20pollu%C3%A9s%20%C3%A0%20responsables%20d%C3%A9faillants%20par%20l%E2%80%99ADEME%20a%20repr%C3%A9sent%C3%A9%20entre%202011-2014%20pr%C3%A8s%20de%20107%20millions%20d%E2%80%99euros.%0A%0AIl%20arrive%20de%20fa%C3%A7on%20r%C3%A9currente%20que%20certains%20sites%20de%20stockage%20autoris%C3%A9s%20%28en%20difficult%C3%A9s%20financi%C3%A8res%20par%20exemple%29%20d%C3%A9passent%20les%20seuils%20autoris%C3%A9s.%20Ces%20surstockages%20indiquent%20un%20risque%20imminent%20pour%20l%E2%80%99environnement%20et%20le%20voisinage%20%28pollution%2C%20incendie%2C%20etc%29.%20Or%20ces%20soci%C3%A9t%C3%A9s%20ne%20font%20pas%20n%C3%A9cessairement%20l%E2%80%99objet%20d%E2%80%99un%20contr%C3%B4le%20du%20fait%20que%20les%20services%20de%20l%E2%80%99%C3%89tat%20ne%20disposent%20pas%20d%E2%80%99alertes%20sp%C3%A9cifiques.%0A%0A%2A%2AAu%20del%C3%A0%20d%E2%80%99un%20enjeu%20d%E2%80%99efficacit%C3%A9%2C%20un%20probl%C3%A8me%20d%E2%80%99efficience%20de%20la%20tra%C3%A7abilit%C3%A9%20qui%20questionne%20et%20g%C3%A9n%C3%A8re%20des%20irritants%20forts%20pour%20les%20professionnels%2A%2A%0A%0ALa%20tra%C3%A7abilit%C3%A9%20du%20bordereau%20est%20aujourd%E2%80%99hui%20tr%C3%A8s%20complexe%20%28pr%C3%A8s%20de%2013%20000%20soci%C3%A9t%C3%A9s%20concern%C3%A9es%2C%20pas%20de%20pratique%20unifi%C3%A9e%20tels%20que%20les%20logiciels%20ou%20la%20transmission%20des%20informations%29%2C%20source%20de%20nombreux%20irritants%20et%20d%E2%80%99une%20perte%20d%E2%80%99efficience%20pour%20les%20entreprises.%0A%0ALa%20gestion%20des%20bordereaux%20est%20chronophage%2C%20repr%C3%A9sentant%20environ%201%20jour%2Fmois%20pour%20les%20petits%20producteurs%20%28relance%2C%20adaptabilit%C3%A9%2C%20archivage%2C%20reporting%2C%20etc.%29%20et%20bien%20plus%20chez%20les%20collecteurs%20et%20installations%20de%20traitement%20malgr%C3%A9%20la%20mise%20en%20place%20d%E2%80%99outils%20par%20beaucoup.%0A%0AL%E2%80%99%C3%A9dition%20papier%20reste%20quasi%20syst%C3%A9matique%20sur%20certaines%20%C3%A9tapes.%20Ainsi%2C%20environ%2016%20millions%20de%20bordereau%20sont%20%C3%A9dit%C3%A9s%20chaque%20ann%C3%A9e%20auxquels%20il%20faut%20ajouter%20les%20copies%2C%20les%20bordereaux%20de%20regroupement%2C%20les%20annexes%2C%20etc.%20Outre%20le%20co%C3%BBt%20financier%2C%20on%20peut%20estimer%20l%E2%80%99impact%20environnemental%20de%20ce%20fonctionnement%20%E2%80%9Cpapier%E2%80%9D%20%C3%A0%20%2B50M%20de%20feuilles...%0A%0AFace%20%C3%A0%20un%20impact%20environnemental%20substantiel%20repr%C3%A9sent%C3%A9%20par%20la%20%E2%80%9Cperte%E2%80%9D%20de%20plusieurs%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%2C%20%C3%A0%20la%20lourdeur%20administrative%2C%20%C3%A0%20la%20complexit%C3%A9%20du%20circuit%20existant%2C%20aux%20millions%20de%20bordereau%20papiers%20%C3%A9dit%C3%A9s%20et%20archiv%C3%A9s%2C%20il%20devient%20urgent%20d%E2%80%99agir%20pour%20que%20la%20tra%C3%A7abilit%C3%A9%20fonctionne%20efficacement%20et%20simplement%20pour%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20cha%C3%AEne%20du%20d%C3%A9chet.%0A%0A%23%23%20Mise%20en%20place%20de%20Trackd%C3%A9chets%0A%23%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%0A%0ATrackd%C3%A9chets%20a%20pour%20objectifs%20de%20%3A%0A-%20simplifier%20la%20gestion%20quotidienne%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%0A-%20apporter%20de%20la%20transparence%20et%20valoriser%20les%20entreprises%20vertueuses%0A%0ATrackd%C3%A9chets%20doit%20permettre%20le%20remplissage%20num%C3%A9rique%20d%E2%80%99un%20bordereau%20%28par%20le%20producteur%20ou%20le%20collecteur%29%20en%20simplifiant%2C%20s%C3%A9curisant%20et%20fiabilisant%20les%20donn%C3%A9es%20%28v%C3%A9rification%20des%20soci%C3%A9t%C3%A9s%20en%20s%E2%80%99adossant%20%20%C3%A0%20la%20base%20Sirene%20et%20Installations%20class%C3%A9es%2C%20v%C3%A9rification%20des%20codes%20d%C3%A9chets%20et%20code%20traitement%20en%20s%E2%80%99appuyant%20sur%20des%20%20bases%20de%20donn%C3%A9es%29.%20La%20responsabilit%C3%A9%20du%20producteur%20sera%20remise%20au%20coeur%20de%20la%20d%C3%A9marche%20avec%20la%20validation%20de%20la%20prise%20en%20charge.%0A%0ALe%20document%20%C3%A9mis%20pour%20le%20transporteur%20disposera%2C%20en%20outre%2C%20d%E2%80%99infos%20utiles%20pour%20l%27acc%C3%A8s%20%C3%A0%20Trackd%C3%A9chets%20et%20pour%20permettre%20la%20validation%20des%20donn%C3%A9es%20%28pour%20le%20producteur%29%20ou%20la%20validation%20de%20la%20r%C3%A9ception%20ou%20du%20traitement%20des%20d%C3%A9chets%20par%20les%20installations.%0A%0ALes%20soci%C3%A9t%C3%A9s%20enregistr%C3%A9es%20disposeront%20d%E2%80%99un%20compte%20unique%20dans%20lequel%20il%20sera%20possible%20de%20retrouver%20le%20statut%20et%2Fou%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20de%20ses%20d%C3%A9chets%20en%20temps%20r%C3%A9el%20via%20les%20bordereaux%20num%C3%A9ris%C3%A9s.%20%0A%0A%23%23%23%20P%C3%A9rim%C3%A8tre%20de%20test%0A%0AL%E2%80%99ambition%20est%20d%E2%80%99affiner%20le%20produit%20avec%20une%20cha%C3%AEne%20simple%20de%20soci%C3%A9t%C3%A9s%20ne%20disposant%20pas%20d%E2%80%99outils%20%28producteur%20collecteur%20ou%20producteur%20traiteur%29%2C%20ainsi%20que%20les%20soci%C3%A9t%C3%A9s%20disposant%20d%E2%80%99outils%20en%20tant%20que%20b%C3%AAta-testeurs.%0A%0ADes%20soci%C3%A9t%C3%A9s%20en%20ex-Poitou-Charentes%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9es%20pour%20tester%20le%20produit.%20Il%20s%E2%80%99agit%20de%20petits%20producteurs%20de%20d%C3%A9chets%20%28ne%20disposant%20pas%20d%E2%80%99outil%20sp%C3%A9cifique%20et%20ayant%20identifi%C3%A9%20de%20multiples%20probl%C3%A8mes%29%20et%20d%E2%80%99une%20installation%20de%20collecte%20%2F%20transit%20de%20d%C3%A9chets%20dangereux.%20Des%20%C3%A9tablissement%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20en%20tant%20que%20producteurs%20de%20d%C3%A9chets%2C%20ainsi%20que%20des%20installations%20identifi%C3%A9es%20par%20les%20syndicats%20professionnels%2C%20ayant%20exprim%C3%A9%20leur%20int%C3%A9r%C3%AAt%20par%20la%20d%C3%A9marche%2C%20pourront%20%C3%AAtre%20amen%C3%A9s%20%C3%A0%20tester%20le%20produit.%20Pour%20ceux%20qui%20disposent%20d%E2%80%99outils%20au%20sein%20de%20leur%20entit%C3%A9%2C%20et%20il%20convient%20de%20s%E2%80%99assurer%20de%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20pour%20ne%20pas%20se%20substituer%20%C3%A0%20leur%20activit%C3%A9.%0A%0ALes%20retours%20des%20b%C3%AAta-testeurs%20nous%20seront%20utiles%20pour%20apporter%20les%20modifications%20n%C3%A9cessaires%20et%20les%20am%C3%A9liorations%20de%20fa%C3%A7on%20progressive.%20Il%20sera%20%C3%A9galement%20possible%20d%E2%80%99avoir%20recours%20%C3%A0%20la%20base%20de%20donn%C3%A9es%20des%20d%C3%A9clarants%20%E2%80%9Cd%C3%A9chets%20dangereux%E2%80%9D%20pour%20envoyer%20un%20mailing%20cibl%C3%A9%20%C3%A0%20un%20public%20test.%0A%0A%23%23%23%20Et%20ensuite%3F%0A%0ALe%20produit%20permettrait%20de%20r%C3%A9gler%20d%E2%80%99autres%20probl%C3%A8mes%20tels%20que%20l%E2%80%99%C3%A9ditions%20des%20bordereaux%20de%20regroupement%20ou%20l%E2%80%99information%20d%E2%80%99un%20traitement%20%C3%A0%20toute%20la%20cha%C3%AEne.%0A%0AD%E2%80%99autres%20d%C3%A9chets%20dangereux%20tel%20que%20l%E2%80%99amiante%2C%20les%20DASRI%2C%20fluides%20frigorig%C3%A8nes%2C%20%C3%A9tant%20sp%C3%A9cifiques%20et%20disposant%20d%E2%80%99un%20cerfa%20distinct%20pourraient%20int%C3%A9grer%20ult%C3%A9rieurement%20le%20dispositif.%0A%0ALe%20produit%20-%20ouvert%20-%20pourrait%20automatiser%20les%20d%C3%A9clarations%20annuelles%20obligatoires%20et%20permettre%20des%20connections%20avec%20les%20outils%20existants%20tels%20que%20GISTRID%20%28pour%20les%20transferts%20transfrontaliers%20de%20d%C3%A9chets%29.%0A%0ALes%20donn%C3%A9es%20issues%20de%20l%E2%80%99utilisation%20du%20produit%20pourraient%20utilement%20%C3%AAtre%20utilis%C3%A9es%20par%20les%20observatoires%20tels%20que%20l%E2%80%99ADEME%2C%20la%20DGPR%2C%20les%20plans%20r%C3%A9gionaux%20de%20gestion%20des%20d%C3%A9chets%20%28PRPGD%29%2C%20etc.", + "events": [ + { + "name": "national_impact", + "date": "2022-12-30", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2018-11-01", + "end": "" + }, + { + "name": "construction", + "start": "2019-11-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2020-11-01", + "end": "" + } + ], + "sponsors": [ + "dgpr", + "mtes" + ], + "thematiques": [ + "Écologie", + "Open-Data" + ], + "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/api-trackdechets-beta-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mtes" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": null, + "summary": { + "httpGrade": "A+", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-17T12:49:00.000Z", + "testsslGrade": "A+", + "githubRepositoryGrade": "A" + } + }, + { + "404": null, + "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", + "title": "Backend DORA", + "category": "gip-inclusion", + "repositories": [ + "betagouv/dora-back" + ], + "tags": [ + "dora", + "production", + "api" + ], + "tools": { + "lighthouse": false, + "thirdparties": false, + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false, + "dsfr": false, + "ecoindex": false + }, + "betaId": "dora", + "http": { + "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:48:48 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Length": "179", + "Content-Security-Policy": "default-src 'self'", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Opener-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 13:48:48 GMT", + "Referrer-Policy": "same-origin", + "Vary": "origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Request-ID": "73fa4fb4-8bb0-42ae-99e7-1043fdd9039a", + "strict-transport-security": "max-age=31536000" + }, + "scan_id": 57065627, + "score": 110, + "start_time": "Sun, 20 Oct 2024 13:48:46 GMT", + "state": "FINISHED", + "status_code": 404, + "tests_failed": 0, + "tests_passed": 10, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "default-src": [ + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": true, + "route": [ + "http://api.dora.inclusion.beta.gouv.fr/", + "https://api.dora.inclusion.beta.gouv.fr/" + ], + "status_code": null + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "same-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-no-scripts-loaded", + "score_description": "Subresource Integrity (SRI) is not needed since site contains no script tags", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "d9z0", + "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T17:08:11Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [ + "lan", + "mia", + "bhs", + "hel", + "sin", + "tok", + "syd" + ], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:54:03Z", + "next_check_at": "2024-12-01T17:55:03Z", + "created_at": "2024-03-19T16:10:07Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:53:04Z", + "expires_at": "2025-02-23T10:55:57Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 0.999, + "timings": { + "redirect": 0, + "namelookup": 11, + "connection": 11, + "handshake": 15, + "response": 188, + "total": 226 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "api.dora.inclusion.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -461320,7 +460131,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -461328,7 +460139,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -461336,7 +460147,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -461344,7 +460155,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -461352,7 +460163,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -461360,455 +460171,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "id": "cipherorder_TLSv1_2", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-20 15:54" + "finding": "2024-11-25 10:55" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-18 15:54" + "finding": "2025-02-23 10:55" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732469979" + "finding": "1733075479" }, { - "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "id": "HSTS_time", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "id": "X-Frame-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'" + }, + { + "id": "Referrer-Policy", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -461816,7 +460648,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -461825,7 +460657,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -461834,16 +460666,16 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -461852,7 +460684,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -461860,16 +460692,16 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -461878,16 +460710,16 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -461896,14 +460728,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -461912,7 +460744,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -461921,7 +460753,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -461930,16 +460762,16 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3069DD8D6E34E639EBB43D8E7977FFCB076FBE915625F9B74E3A78B44C7C2750" }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -461948,16 +460780,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -461966,7 +460798,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -461975,7 +460807,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -461984,7 +460816,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -461993,392 +460825,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", + "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.223", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -462386,7 +461218,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -462394,7 +461226,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -462402,7 +461234,7 @@ }, { "id": "cipherlist_LOW", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -462410,7 +461242,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -462418,7 +461250,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -462426,455 +461258,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "id": "cipherorder_TLSv1_2", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-20 15:54" + "finding": "2024-11-25 10:55" }, { "id": "cert_notAfter", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-01-18 15:54" + "finding": "2025-02-23 10:55" }, { "id": "cert_extlifeSpan", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732470036" + "finding": "1733075530" }, { - "id": "HSTS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "id": "HSTS_time", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "security_headers", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "id": "X-Frame-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'" + }, + { + "id": "Referrer-Policy", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -462882,7 +461735,7 @@ }, { "id": "heartbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -462891,7 +461744,7 @@ }, { "id": "CCS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -462900,16 +461753,16 @@ }, { "id": "ticketbleed", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -462918,7 +461771,7 @@ }, { "id": "secure_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -462926,16 +461779,16 @@ }, { "id": "secure_client_renego", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -462944,16 +461797,16 @@ }, { "id": "BREACH", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -462962,14 +461815,14 @@ }, { "id": "fallback_SCSV", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -462978,7 +461831,7 @@ }, { "id": "FREAK", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -462987,7 +461840,7 @@ }, { "id": "DROWN", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -462996,16 +461849,16 @@ }, { "id": "DROWN_hint", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C3A071521A5AB30AFCFA3BAA219443B01CE5A7A283A1986C2BDDC4D08B79516A" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3069DD8D6E34E639EBB43D8E7977FFCB076FBE915625F9B74E3A78B44C7C2750" }, { "id": "LOGJAM", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -463014,16 +461867,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -463032,7 +461885,7 @@ }, { "id": "LUCKY13", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -463041,7 +461894,7 @@ }, { "id": "winshock", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -463050,7 +461903,7 @@ }, { "id": "RC4", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -463059,1248 +461912,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "declare-douane.beta.gouv.fr/91.208.207.216", - "port": "443", - "severity": "INFO", - "finding": "538" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://cdn.matomo.cloud/declare-douane.matomo.cloud/matomo.js" - }, - { - "type": "unknown", - "url": "https://declare-douane.matomo.cloud/matomo.php?action_name=&idsite=1&rec=1&r=629865&h=17&m=31&s=46&url=https%3A%2F%2Fdeclare-douane.beta.gouv.fr%2F&_id=&_idn=1&send_image=0&_refts=0&pv_id=vy938S&pf_net=222&pf_srv=109&pf_tfr=1&pf_dm1=16&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" - } - ], - "cookies": [], - "headers": { - "sozu-id": "01JDFKNGDFHHXSC8FJ9AVSSBW0", - "connection": "close", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 17:31:46 GMT", - "etag": "\"bg55bd0on27yg\"", - "keep-alive": "timeout=5", - "transfer-encoding": "chunked", - "vary": "Accept-Encoding" - }, - "endpoints": [ - { - "hostname": "declare-douane.beta.gouv.fr", - "ip": "91.208.207.222", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.matomo.cloud", - "ip": "3.167.152.124", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "declare-douane.matomo.cloud", - "ip": "3.126.133.169", - "geoip": { - "city": { - "geoname_id": 2925533, - "names": { - "de": "Frankfurt am Main", - "en": "Frankfurt am Main", - "es": "Francfort", - "fr": "Francfort-sur-le-Main", - "ja": "フランクフルト・アム・マイン", - "pt-BR": "Frankfurt am Main", - "ru": "Франкфурт", - "zh-CN": "法兰克福" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2921044, - "is_in_european_union": true, - "iso_code": "DE", - "names": { - "de": "Deutschland", - "en": "Germany", - "es": "Alemania", - "fr": "Allemagne", - "ja": "ドイツ連邦共和国", - "pt-BR": "Alemanha", - "ru": "ФРГ", - "zh-CN": "德国" - } - }, - "location": { - "accuracy_radius": 200, - "latitude": 50.1187, - "longitude": 8.6842, - "time_zone": "Europe/Berlin" - }, - "postal": { - "code": "60313" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 2905330, - "iso_code": "HE", - "names": { - "de": "Hessen", - "en": "Hesse", - "es": "Hessen", - "fr": "Hesse", - "ja": "ヘッセン州", - "pt-BR": "Hesse", - "ru": "Гессен", - "zh-CN": "黑森州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://declare-douane.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://declare-douane.beta.gouv.fr/", - "finalUrl": "https://declare-douane.beta.gouv.fr/", - "fetchTime": "2024-11-24T17:31:21.206Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.57 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.78 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 12573, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1343, - "firstMeaningfulPaint": 2151, - "largestContentfulPaint": 13947, - "interactive": 12573, - "speedIndex": 9778, - "totalBlockingTime": 59, - "maxPotentialFID": 168, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 491215184, - "observedNavigationStart": 0, - "observedNavigationStartTs": 491215184, - "observedFirstPaint": 886, - "observedFirstPaintTs": 492100687, - "observedFirstContentfulPaint": 886, - "observedFirstContentfulPaintTs": 492100687, - "observedFirstContentfulPaintAllFrames": 886, - "observedFirstContentfulPaintAllFramesTs": 492100687, - "observedFirstMeaningfulPaint": 3056, - "observedFirstMeaningfulPaintTs": 494271385, - "observedLargestContentfulPaint": 3374, - "observedLargestContentfulPaintTs": 494589532, - "observedLargestContentfulPaintAllFrames": 3374, - "observedLargestContentfulPaintAllFramesTs": 494589532, - "observedTraceEnd": 5673, - "observedTraceEndTs": 496887721, - "observedLoad": 2345, - "observedLoadTs": 493560363, - "observedDomContentLoaded": 2344, - "observedDomContentLoadedTs": 493559081, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 881, - "observedFirstVisualChangeTs": 492096184, - "observedLastVisualChange": 3815, - "observedLastVisualChangeTs": 495030184, - "observedSpeedIndex": 3043, - "observedSpeedIndexTs": 494258562 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 37, - "numScripts": 14, - "numStylesheets": 1, - "numFonts": 12, - "numTasks": 693, - "numTasksOver10ms": 8, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.6420000000000003, - "throughput": 8655209.739835367, - "maxRtt": 112.001, - "maxServerLatency": 92.93300000000002, - "totalByteWeight": 1818069, - "totalTaskTime": 254.80499999999927, - "mainDocumentTransferSize": 4276 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "clientsimulation-java1102", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-java1703", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "delta.v", - "type": "startup", - "attributes": { - "name": "Déclare Douane", - "pitch": "Déclarer des marchandises achetées à l'étranger en arrivant en France", - "stats_url": "", - "link": "https://declare-douane.beta.gouv.fr/", - "repository": "https://github.com/betagouv/delta-v", - "contact": "julien.ramon@douane.finances.gouv.fr", - "content_url_encoded_markdown": "D%C3%A9clare%20Douane%20est%20un%20service%20%C3%A0%20destination%20de%20toute%20personne%20voyageant%20%C3%A0%20l%E2%80%99%C3%A9tranger.%0A%0A%23%23%20Le%20probl%C3%A8me%20constat%C3%A9%20%3A%0A%0A-%20les%20usagers%20connaissent%20peu%20leurs%20droits%20et%20obligations%20s%27agissant%20des%20marchandises%20achet%C3%A9es%20%C3%A0%20l%27%C3%A9tranger%20et%20ramen%C3%A9es%20avec%20eux%20en%20France%20%3B%0A%0A-%20le%20grand%20public%20acc%C3%A8de%20difficilement%20aux%20informations%20n%C3%A9cessaires%20en%20la%20mati%C3%A8re%20et%20peine%20donc%20%C3%A0%20comprendre%20les%20droits%20et%20taxes%20%C3%A0%20payer%2C%20potentiellement%2C%20sur%20ces%20achats.%0A%0ACe%20domaine%20r%C3%A9glementaire%20est%20%C3%A9galement%20compliqu%C3%A9%20%C3%A0%20g%C3%A9rer%20pour%20les%20agents%20des%20douanes%20charg%C3%A9s%20de%20contr%C3%B4ler%20les%20usagers%20et%20de%20les%20accompagner%20dans%20leurs%20formalit%C3%A9s.%0A%0A%0A%23%23%20La%20solution%20%3A%0A%0A-%20mettre%20%C3%A0%20disposition%20du%20grand%20public%20un%20service%20simple%2C%20accessible%20et%20intuitif%20pour%20qu%27il%20soit%20en%20mesure%20de%20s%27informer%20et%20de%20ramener%20des%20biens%20achet%C3%A9s%20%C3%A0%20l%27%C3%A9tranger%20en%20France%20en%20parfaite%20connaissance%20de%20cause%20%3B%0A-%20rendre%20le%20passage%20de%20la%20fronti%C3%A8re%20plus%20serein%20et%20plus%20simple%20pour%20les%20usagers%20en%20proposant%20un%20simulateur%20d%27achats.%0A%0AA%20terme%2C%20nous%20souhaitons%20aller%20encore%20plus%20loin%20en%20d%C3%A9mat%C3%A9rialisant%20le%20processus%20de%20d%C3%A9claration%20des%20marchandises%20achet%C3%A9es%20par%20les%20voyageurs%20lors%20de%20leur%20s%C3%A9jour%20%C3%A0%20l%27%C3%A9tranger%20et%20le%20paiement%20des%20%C3%A9ventuels%20droits%20et%20taxes%20d%C3%BBs%20%C3%A0%20ce%20titre.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-09-03", - "end": "2021-11-18" - }, - { - "name": "construction", - "start": "2021-12-20", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-01-01", - "end": "" - } - ], - "sponsors": [ - "dgddi" - ], - "thematiques": [ - "Administratif" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/declare-douane-beta-gouv-fr/", - "accessibility_status": "non conforme" + "id": "clientsimulation-go_1178", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://declare-douane.beta.gouv.fr", - "size": 1864.515, - "nodes": 127, - "requests": 37, - "grade": "B", - "score": 76, - "ges": 1.48, - "water": 2.22, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:28:14.591384", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.975, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-18T15:54:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.57, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.78, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://bacasable.recoconseil.fr", - "category": "dinum", - "betaId": "recoconseil", - "http": { - "url": "https://bacasable.recoconseil.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:37:04 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Length": "24202", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 20 Oct 2024 13:37:02 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=Icj9Jt9BFOKyYmcB7sLOabP8yU4GhRur; expires=Sun, 19 Oct 2025 13:37:02 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Cookie", - "via": "1.1 alproxy", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" + "id": "clientsimulation-libressl_283", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "scan_id": 57065468, - "score": 70, - "start_time": "Sun, 20 Oct 2024 13:37:01 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "csrftoken": { - "domain": "bacasable.recoconseil.fr", - "expires": 1760881023, - "httponly": false, - "max-age": null, - "path": "/", - "port": null, - "samesite": "None", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://bacasable.recoconseil.fr/", - "redirects": true, - "route": [ - "http://bacasable.recoconseil.fr/", - "https://bacasable.recoconseil.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "same-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubDomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/js-cookie@3.0.1/dist/js.cookie.min.js": { - "crossorigin": "anonymous", - "integrity": "sha256-0H3Nuz3aug3afVbUlsu12Puxva3CP4EhJtPExqs54Vg=" - }, - "https://sentry.incubateur.net/js-sdk-loader/5b872cee93efddce4396cc52605838c1.min.js": { - "crossorigin": "anonymous", - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "cb0m", - "url": "https://bacasable.recoconseil.fr", - "alias": null, - "last_status": 200, - "uptime": 99.991, - "down": false, - "down_since": null, - "up_since": "2024-11-24T04:10:51Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T17:42:11Z", - "next_check_at": "2024-11-24T17:43:11Z", - "created_at": "2024-02-07T18:36:46Z", - "mute_until": null, - "favicon_url": "https://bacasable.recoconseil.fr/static/img/favicons/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:41:14Z", - "expires_at": "2025-02-07T07:50:42Z", - "valid": true, - "error": null + { + "id": "clientsimulation-openssl_102e", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 0.949, - "timings": { - "redirect": 0, - "namelookup": 127, - "connection": 123, - "handshake": 126, - "response": 296, - "total": 672 - } + { + "id": "clientsimulation-openssl_110l", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "bacasable.recoconseil.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -464308,7 +462305,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -464316,7 +462313,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -464324,7 +462321,7 @@ }, { "id": "cipherlist_LOW", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -464332,7 +462329,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -464340,7 +462337,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -464348,498 +462345,484 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-09 07:50" + "finding": "2024-11-25 10:55" }, { "id": "cert_notAfter", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-07 07:50" + "finding": "2025-02-23 10:55" }, { "id": "cert_extlifeSpan", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732470087" + "finding": "1733075580" }, { "id": "HSTS_time", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "cookie_secure", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "id": "X-Frame-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "1/1 at '/' marked as HttpOnly" + "finding": "DENY" }, { - "id": "X-Frame-Options", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "id": "X-Content-Type-Options", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "nosniff" }, { - "id": "X-Content-Type-Options", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "id": "Content-Security-Policy", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "nosniff" + "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "--" }, { "id": "heartbleed", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -464848,7 +462831,7 @@ }, { "id": "CCS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -464857,7 +462840,7 @@ }, { "id": "ticketbleed", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -464866,7 +462849,7 @@ }, { "id": "ROBOT", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -464875,7 +462858,7 @@ }, { "id": "secure_renego", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -464883,7 +462866,7 @@ }, { "id": "secure_client_renego", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -464892,7 +462875,7 @@ }, { "id": "CRIME_TLS", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -464901,7 +462884,7 @@ }, { "id": "BREACH", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -464910,7 +462893,7 @@ }, { "id": "POODLE_SSL", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -464919,14 +462902,14 @@ }, { "id": "fallback_SCSV", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -464935,7 +462918,7 @@ }, { "id": "FREAK", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -464944,7 +462927,7 @@ }, { "id": "DROWN", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -464953,16 +462936,16 @@ }, { "id": "DROWN_hint", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=7EE58373667FF9C56D355E1C1EC5CAD925069DABB77ACBA0885D2EE74E9CE92D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3069DD8D6E34E639EBB43D8E7977FFCB076FBE915625F9B74E3A78B44C7C2750" }, { "id": "LOGJAM", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -464971,16 +462954,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -464989,7 +462972,7 @@ }, { "id": "LUCKY13", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -464998,7 +462981,7 @@ }, { "id": "winshock", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -465007,7 +462990,7 @@ }, { "id": "RC4", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -465016,1134 +462999,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "bacasable.recoconseil.fr/185.31.40.13", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - { - "id": "rating_doc", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "bacasable.recoconseil.fr/185.31.40.13", - "port": "443", - "severity": "INFO", - "finding": "97" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "csrftoken", - "value": "hemztZtfZNFjQGNcDR9TpYg7zuXpFZAT", - "domain": "bacasable.recoconseil.fr", - "path": "/", - "expires": 1763919590.569352, - "size": 41, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "content-length": "25008", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 24 Nov 2024 17:39:50 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=hemztZtfZNFjQGNcDR9TpYg7zuXpFZAT; expires=Sun, 23 Nov 2025 17:39:50 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Cookie", - "via": "2.0 alproxy", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" - }, - "endpoints": [ - { - "hostname": "bacasable.recoconseil.fr", - "ip": "185.31.40.13", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://bacasable.recoconseil.fr/": { - "status": 200 - } + { + "id": "rating_doc", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", - "confidence": 100, - "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", - "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ], - "rootPath": true - }, - { - "slug": "alpine-js", - "name": "Alpine.js", - "description": null, - "confidence": 100, - "version": "3.13.9", - "icon": "Alpine.js.png", - "website": "https://github.com/alpinejs/alpine", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://bacasable.recoconseil.fr/", - "finalUrl": "https://bacasable.recoconseil.fr/", - "fetchTime": "2024-11-24T17:39:23.143Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.42 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.98 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 11639, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 11639, - "firstMeaningfulPaint": 11639, - "largestContentfulPaint": 22739, - "interactive": 11639, - "speedIndex": 11639, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.17565243742201064, - "cumulativeLayoutShiftMainFrame": 0.17565243742201064, - "totalCumulativeLayoutShift": 0.17565243742201064, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 375957251, - "observedNavigationStart": 0, - "observedNavigationStartTs": 375957251, - "observedFirstPaint": 1446, - "observedFirstPaintTs": 377403178, - "observedFirstContentfulPaint": 1486, - "observedFirstContentfulPaintTs": 377443190, - "observedFirstContentfulPaintAllFrames": 1486, - "observedFirstContentfulPaintAllFramesTs": 377443190, - "observedFirstMeaningfulPaint": 1486, - "observedFirstMeaningfulPaintTs": 377443190, - "observedLargestContentfulPaint": 1680, - "observedLargestContentfulPaintTs": 377637230, - "observedLargestContentfulPaintAllFrames": 1680, - "observedLargestContentfulPaintAllFramesTs": 377637230, - "observedTraceEnd": 4306, - "observedTraceEndTs": 380263608, - "observedLoad": 1721, - "observedLoadTs": 377678515, - "observedDomContentLoaded": 1593, - "observedDomContentLoadedTs": 377550576, - "observedCumulativeLayoutShift": 0.17565243742201064, - "observedCumulativeLayoutShiftMainFrame": 0.17565243742201064, - "observedTotalCumulativeLayoutShift": 0.17565243742201064, - "observedFirstVisualChange": 1444, - "observedFirstVisualChangeTs": 377401251, - "observedLastVisualChange": 1677, - "observedLastVisualChangeTs": 377634251, - "observedSpeedIndex": 1611, - "observedSpeedIndexTs": 377568063 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 55, - "numScripts": 19, - "numStylesheets": 13, - "numFonts": 3, - "numTasks": 20, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 136.23499999999999, - "throughput": 31485927.23851906, - "maxRtt": 139.077, - "maxServerLatency": 88.59400000000002, - "totalByteWeight": 4610933, - "totalTaskTime": 3839.972, - "mainDocumentTransferSize": 25351 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "protocol_support_score", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "protocol_support_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://bacasable.recoconseil.fr/confidentialite" - } - ], - "betagouv": null, - "ecoindex": [ + "id": "key_exchange_score", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, { - "width": 1920, - "height": 1080, - "url": "https://bacasable.recoconseil.fr", - "size": 4659.351, - "nodes": 214, - "requests": 54, - "grade": "C", - "score": 65, - "ges": 1.7, - "water": 2.55, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 17:36:15.169658", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B", - "apdex": 0.949, - "apdexGrade": "F", - "uptime": 99.991, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-07T07:50:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.42, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.98, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "F", - "githubRepositoryGrade": "F", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://api.trackdechets.beta.gouv.fr", - "category": "mtes", - "betaId": "trackdechets", - "tags": [ - "api" - ], - "tools": { - "lighthouse": false, - "thirdparties": false, - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false, - "dsfr": false, - "ecoindex": false, - "screenshot": false - }, - "http": { - "url": "https://api.trackdechets.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 06:08:27 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Access-Control-Allow-Credentials": "true", - "Access-Control-Allow-Origin": "https://app.trackdechets.beta.gouv.fr", - "Connection": "keep-alive", - "Content-Length": "406", - "Content-Security-Policy": "default-src 'none';base-uri 'self';font-src 'self' https: data:;frame-ancestors 'self';img-src 'self';object-src 'none';script-src 'self' 'sha256-KDSP72yw7Yss7rIt6vgkQo/ROHXYTHPTj3fdIW/CTn8=' 'sha256-+QRKXpw524uxogTf+STlJuwKYh5pW7ad4QNYEb6HCeQ=' 'sha256-FC1QdPlDgsjmWJtkJfO6Tt7pKFza/bZuwKtw25R/7m4=' 'sha256-/KjN0AtQm74p7exR84hK/woqhc2pYBdNQamcxHOkiDA=';script-src-attr 'none';style-src 'self' https: 'sha256-dihQy2mHNADQqxc3xhWK7pH1w4GVvEow7gKjxdWvTgE=' 'sha256-wTzfn13a+pLMB5rMeysPPR1hO7x0SwSeQI+cnw7VdbE=' 'sha256-LFhQK3cog1BLYeE/LUUJthR1mUCLSLwgkyqlF+epuq8=';connect-src api.trackdechets.beta.gouv.fr;form-action self;upgrade-insecure-requests", - "Content-Type": "application/json; charset=utf-8", - "Cross-Origin-Embedder-Policy": "require-corp", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 06:08:26 GMT", - "ETag": "W/\"196-HUCJKwlQurC5GNaaJnH0d+HOnRw\"", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", - "Strict-Transport-Security": "max-age=31536000", - "Vary": "Origin", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-RateLimit-Limit": "1000", - "X-RateLimit-Remaining": "998", - "X-RateLimit-Reset": "1729404566", - "X-Request-ID": "ba4ffdb59e8222a1e886d55c4b1f487a", - "X-XSS-Protection": "0" + "id": "key_exchange_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "scan_id": 57052505, - "score": 110, - "start_time": "Sun, 20 Oct 2024 06:08:25 GMT", - "state": "FINISHED", - "status_code": 400, - "tests_failed": 0, - "tests_passed": 10, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "api.trackdechets.beta.gouv.fr" - ], - "default-src": [ - "'none'" - ], - "font-src": [ - "data:", - "https:", - "'self'" - ], - "form-action": [ - "self" - ], - "frame-ancestors": [ - "'self'" - ], - "img-src": [ - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'sha256-/kjn0atqm74p7exr84hk/woqhc2pybdnqamcxhokida='", - "'sha256-kdsp72yw7yss7rit6vgkqo/rohxythptj3fdiw/ctn8='", - "'sha256-fc1qdpldgsjmwjtkjfo6tt7pkfza/bzuwktw25r/7m4='", - "'self'", - "'sha256-+qrkxpw524uxogtf+stljuwkyh5pw7ad4qnyeb6hceq='" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "'sha256-lfhqk3cog1blyee/luujthr1muclslwgkyqlf+epuq8='", - "'sha256-wtzfn13a+plmb5rmeysppr1ho7x0swseqi+cnw7vdbe='", - "'sha256-dihqy2mhnadqqxc3xhwk7ph1w4gvveow7gkjxdwvtge='", - "https:", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": true, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "https://app.trackdechets.beta.gouv.fr", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": true, - "route": [ - "http://api.trackdechets.beta.gouv.fr/", - "https://api.trackdechets.beta.gouv.fr/" - ], - "status_code": null - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": null, - "nmap": { - "host": "api.trackdechets.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466151,7 +463392,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466159,7 +463400,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466167,7 +463408,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466175,7 +463416,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -466183,505 +463424,484 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-09-18 12:49" + "finding": "2024-11-25 10:55" }, { "id": "cert_notAfter", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "2024-12-17 12:49" + "severity": "OK", + "finding": "2025-02-23 10:55" }, { "id": "cert_extlifeSpan", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "400 Bad Request ('/') -- better try another URL" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732469995" + "finding": "1733075630" }, { "id": "HSTS_time", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "SAMEORIGIN" + "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'none';base-uri 'self';font-src 'self' https: data:;frame-ancestors 'self';img-src 'self';object-src 'none';script-src 'self' 'sha256-KDSP72yw7Yss7rIt6vgkQo/ROHXYTHPTj3fdIW/CTn8=' 'sha256-+QRKXpw524uxogTf+STlJuwKYh5pW7ad4QNYEb6HCeQ=' 'sha256-FC1QdPlDgsjmWJtkJfO6Tt7pKFza/bZuwKtw25R/7m4=' 'sha256-/KjN0AtQm74p7exR84hK/woqhc2pYBdNQamcxHOkiDA=';script-src-attr 'none';style-src 'self' https: 'sha256-dihQy2mHNADQqxc3xhWK7pH1w4GVvEow7gKjxdWvTgE=' 'sha256-wTzfn13a+pLMB5rMeysPPR1hO7x0SwSeQI+cnw7VdbE=' 'sha256-LFhQK3cog1BLYeE/LUUJthR1mUCLSLwgkyqlF+epuq8=';connect-src api.trackdechets.beta.gouv.fr;form-action self;upgrade-insecure-requests" - }, - { - "id": "X-XSS-Protection", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", - "port": "443", - "severity": "INFO", - "finding": "https://app.trackdechets.beta.gouv.fr" + "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -466689,7 +463909,7 @@ }, { "id": "heartbleed", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -466698,7 +463918,7 @@ }, { "id": "CCS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -466707,16 +463927,16 @@ }, { "id": "ticketbleed", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -466725,7 +463945,7 @@ }, { "id": "secure_renego", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -466733,7 +463953,7 @@ }, { "id": "secure_client_renego", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -466742,7 +463962,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -466751,7 +463971,7 @@ }, { "id": "BREACH", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -466760,7 +463980,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -466769,14 +463989,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -466785,7 +464005,7 @@ }, { "id": "FREAK", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -466794,7 +464014,7 @@ }, { "id": "DROWN", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -466803,16 +464023,16 @@ }, { "id": "DROWN_hint", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DF56DE5D4482915B445AAFAB06BC42040FC8999AC31446B458845975251955C2" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3069DD8D6E34E639EBB43D8E7977FFCB076FBE915625F9B74E3A78B44C7C2750" }, { "id": "LOGJAM", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466821,7 +464041,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466830,7 +464050,7 @@ }, { "id": "BEAST", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -466839,16 +464059,16 @@ }, { "id": "LUCKY13", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -466857,7 +464077,7 @@ }, { "id": "RC4", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -466866,389 +464086,335 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", + "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "96" + "finding": "207" } ], "thirdparties": null, "wappalyzer": { "urls": { - "https://api.trackdechets.beta.gouv.fr/": { + "https://api.dora.inclusion.beta.gouv.fr/ping/": { "status": 200 } }, "technologies": [ - { - "slug": "quill", - "name": "Quill", - "description": "Quill is a free open-source WYSIWYG editor.", - "confidence": 100, - "version": null, - "icon": "Quill.svg", - "website": "https://quilljs.com", - "cpe": null, - "categories": [ - { - "id": 24, - "slug": "rich-text-editors", - "name": "Rich text editors" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": "18.3.1", - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "unpkg", - "name": "Unpkg", - "description": "Unpkg is a content delivery network for everything on npm.", - "confidence": 100, - "version": null, - "icon": "Unpkg.png", - "website": "https://unpkg.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -467264,15 +464430,14 @@ "slug": "security", "name": "Security" } - ], - "rootPath": true + ] } ] }, "zap": null, "nuclei": [], "lhr": null, - "screenshot": false, + "screenshot": true, "stats": null, "github_repository": { "grade": "A" @@ -467281,57 +464446,52 @@ "declaration-a11y": null, "declaration-rgpd": null, "betagouv": { - "id": "trackdechets", + "id": "dora", "type": "startup", "attributes": { - "name": "Trackdéchets", - "pitch": "Gérer la traçabilité des déchets, en toute sécurité", - "stats_url": "https://trackdechets.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#-Minist%C3%A8re-de-la-Transition-Ecologique-x-Fabrique-Num%C3%A9rique", - "link": "https://trackdechets.beta.gouv.fr", - "repository": "https://github.com/MTES-MCT/trackdechets", - "contact": "contact@trackdechets.beta.gouv.fr", - "content_url_encoded_markdown": "En%202016%2C%2012%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%20ont%20%C3%A9t%C3%A9%20produits%20en%20France.%20Il%20s%E2%80%99agit%20de%20d%C3%A9chets%20contenants%20des%20%C3%A9l%C3%A9ments%20toxiques%20ou%20dangereux%20qui%20pr%C3%A9sentent%20des%20risques%20pour%20la%20sant%C3%A9%20et%20l%27environnement.%20%0A%0ACes%20d%C3%A9chets%20sont%20soumis%20%C3%A0%20une%20r%C3%A9glementation%20particuli%C3%A8re%20pour%20leur%20gestion%20et%20leur%20valorisation.%20Afin%20de%20contr%C3%B4ler%20le%20traitement%20effectif%20des%20d%C3%A9chets%2C%20la%20loi%20impose%20aux%20soci%C3%A9t%C3%A9s%20productrices%20une%20tra%C3%A7abilit%C3%A9%20rigoureuse%20assur%C3%A9e%20par%20un%20bordereau%20de%20suivi%20de%20d%C3%A9chets%20qui%20permet%20de%20suivre%20le%20d%C3%A9chet%20de%20sa%20collecte%20%C3%A0%20son%20traitement.%20Chaque%20ann%C3%A9e%2C%20pr%C3%A8s%20de%2016%20millions%20de%20ces%20bordereaux%20sont%20%C3%A9dit%C3%A9s.%0A%0A%23%23%20Les%20probl%C3%A8mes%20actuels%0A%23%23%23%20Un%20impact%20environnemental%20majeur%0A%0AL%27efficacit%C3%A9%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%20est%20lourdement%20questionn%C3%A9e%20par%20les%20donn%C3%A9es%20officielles%20%28delta%20production%20vs.%20traitement%29%20et%20les%20pratiques%20observ%C3%A9es%20%28fraude%2C%20traitements%20inadapt%C3%A9s%29%20indiquant%20un%20risque%20environnemental%20majeur%20avec%20la%20%2Adisparition%2A%20de%20d%C3%A9chets%20dans%20la%20nature%E2%80%A6%0A%0ALes%20d%C3%A9chets%20dangereux%20abandonn%C3%A9s%20%28exploitants%20d%C3%A9faillants%29%20g%C3%A9n%C3%A8rent%20%C3%A9galement%20pollutions%20et%20interventions%20de%20l%E2%80%99%C3%89tat.%20La%20prise%20en%20charge%20des%20sites%20pollu%C3%A9s%20%C3%A0%20responsables%20d%C3%A9faillants%20par%20l%E2%80%99ADEME%20a%20repr%C3%A9sent%C3%A9%20entre%202011-2014%20pr%C3%A8s%20de%20107%20millions%20d%E2%80%99euros.%0A%0AIl%20arrive%20de%20fa%C3%A7on%20r%C3%A9currente%20que%20certains%20sites%20de%20stockage%20autoris%C3%A9s%20%28en%20difficult%C3%A9s%20financi%C3%A8res%20par%20exemple%29%20d%C3%A9passent%20les%20seuils%20autoris%C3%A9s.%20Ces%20surstockages%20indiquent%20un%20risque%20imminent%20pour%20l%E2%80%99environnement%20et%20le%20voisinage%20%28pollution%2C%20incendie%2C%20etc%29.%20Or%20ces%20soci%C3%A9t%C3%A9s%20ne%20font%20pas%20n%C3%A9cessairement%20l%E2%80%99objet%20d%E2%80%99un%20contr%C3%B4le%20du%20fait%20que%20les%20services%20de%20l%E2%80%99%C3%89tat%20ne%20disposent%20pas%20d%E2%80%99alertes%20sp%C3%A9cifiques.%0A%0A%2A%2AAu%20del%C3%A0%20d%E2%80%99un%20enjeu%20d%E2%80%99efficacit%C3%A9%2C%20un%20probl%C3%A8me%20d%E2%80%99efficience%20de%20la%20tra%C3%A7abilit%C3%A9%20qui%20questionne%20et%20g%C3%A9n%C3%A8re%20des%20irritants%20forts%20pour%20les%20professionnels%2A%2A%0A%0ALa%20tra%C3%A7abilit%C3%A9%20du%20bordereau%20est%20aujourd%E2%80%99hui%20tr%C3%A8s%20complexe%20%28pr%C3%A8s%20de%2013%20000%20soci%C3%A9t%C3%A9s%20concern%C3%A9es%2C%20pas%20de%20pratique%20unifi%C3%A9e%20tels%20que%20les%20logiciels%20ou%20la%20transmission%20des%20informations%29%2C%20source%20de%20nombreux%20irritants%20et%20d%E2%80%99une%20perte%20d%E2%80%99efficience%20pour%20les%20entreprises.%0A%0ALa%20gestion%20des%20bordereaux%20est%20chronophage%2C%20repr%C3%A9sentant%20environ%201%20jour%2Fmois%20pour%20les%20petits%20producteurs%20%28relance%2C%20adaptabilit%C3%A9%2C%20archivage%2C%20reporting%2C%20etc.%29%20et%20bien%20plus%20chez%20les%20collecteurs%20et%20installations%20de%20traitement%20malgr%C3%A9%20la%20mise%20en%20place%20d%E2%80%99outils%20par%20beaucoup.%0A%0AL%E2%80%99%C3%A9dition%20papier%20reste%20quasi%20syst%C3%A9matique%20sur%20certaines%20%C3%A9tapes.%20Ainsi%2C%20environ%2016%20millions%20de%20bordereau%20sont%20%C3%A9dit%C3%A9s%20chaque%20ann%C3%A9e%20auxquels%20il%20faut%20ajouter%20les%20copies%2C%20les%20bordereaux%20de%20regroupement%2C%20les%20annexes%2C%20etc.%20Outre%20le%20co%C3%BBt%20financier%2C%20on%20peut%20estimer%20l%E2%80%99impact%20environnemental%20de%20ce%20fonctionnement%20%E2%80%9Cpapier%E2%80%9D%20%C3%A0%20%2B50M%20de%20feuilles...%0A%0AFace%20%C3%A0%20un%20impact%20environnemental%20substantiel%20repr%C3%A9sent%C3%A9%20par%20la%20%E2%80%9Cperte%E2%80%9D%20de%20plusieurs%20millions%20de%20tonnes%20de%20d%C3%A9chets%20dangereux%2C%20%C3%A0%20la%20lourdeur%20administrative%2C%20%C3%A0%20la%20complexit%C3%A9%20du%20circuit%20existant%2C%20aux%20millions%20de%20bordereau%20papiers%20%C3%A9dit%C3%A9s%20et%20archiv%C3%A9s%2C%20il%20devient%20urgent%20d%E2%80%99agir%20pour%20que%20la%20tra%C3%A7abilit%C3%A9%20fonctionne%20efficacement%20et%20simplement%20pour%20l%E2%80%99ensemble%20des%20acteurs%20de%20la%20cha%C3%AEne%20du%20d%C3%A9chet.%0A%0A%23%23%20Mise%20en%20place%20de%20Trackd%C3%A9chets%0A%23%23%23%20Les%20premi%C3%A8res%20%C3%A9tapes%0A%0ATrackd%C3%A9chets%20a%20pour%20objectifs%20de%20%3A%0A-%20simplifier%20la%20gestion%20quotidienne%20de%20la%20tra%C3%A7abilit%C3%A9%20des%20d%C3%A9chets%20dangereux%0A-%20apporter%20de%20la%20transparence%20et%20valoriser%20les%20entreprises%20vertueuses%0A%0ATrackd%C3%A9chets%20doit%20permettre%20le%20remplissage%20num%C3%A9rique%20d%E2%80%99un%20bordereau%20%28par%20le%20producteur%20ou%20le%20collecteur%29%20en%20simplifiant%2C%20s%C3%A9curisant%20et%20fiabilisant%20les%20donn%C3%A9es%20%28v%C3%A9rification%20des%20soci%C3%A9t%C3%A9s%20en%20s%E2%80%99adossant%20%20%C3%A0%20la%20base%20Sirene%20et%20Installations%20class%C3%A9es%2C%20v%C3%A9rification%20des%20codes%20d%C3%A9chets%20et%20code%20traitement%20en%20s%E2%80%99appuyant%20sur%20des%20%20bases%20de%20donn%C3%A9es%29.%20La%20responsabilit%C3%A9%20du%20producteur%20sera%20remise%20au%20coeur%20de%20la%20d%C3%A9marche%20avec%20la%20validation%20de%20la%20prise%20en%20charge.%0A%0ALe%20document%20%C3%A9mis%20pour%20le%20transporteur%20disposera%2C%20en%20outre%2C%20d%E2%80%99infos%20utiles%20pour%20l%27acc%C3%A8s%20%C3%A0%20Trackd%C3%A9chets%20et%20pour%20permettre%20la%20validation%20des%20donn%C3%A9es%20%28pour%20le%20producteur%29%20ou%20la%20validation%20de%20la%20r%C3%A9ception%20ou%20du%20traitement%20des%20d%C3%A9chets%20par%20les%20installations.%0A%0ALes%20soci%C3%A9t%C3%A9s%20enregistr%C3%A9es%20disposeront%20d%E2%80%99un%20compte%20unique%20dans%20lequel%20il%20sera%20possible%20de%20retrouver%20le%20statut%20et%2Fou%20l%E2%80%99%C3%A9tat%20d%E2%80%99avancement%20de%20ses%20d%C3%A9chets%20en%20temps%20r%C3%A9el%20via%20les%20bordereaux%20num%C3%A9ris%C3%A9s.%20%0A%0A%23%23%23%20P%C3%A9rim%C3%A8tre%20de%20test%0A%0AL%E2%80%99ambition%20est%20d%E2%80%99affiner%20le%20produit%20avec%20une%20cha%C3%AEne%20simple%20de%20soci%C3%A9t%C3%A9s%20ne%20disposant%20pas%20d%E2%80%99outils%20%28producteur%20collecteur%20ou%20producteur%20traiteur%29%2C%20ainsi%20que%20les%20soci%C3%A9t%C3%A9s%20disposant%20d%E2%80%99outils%20en%20tant%20que%20b%C3%AAta-testeurs.%0A%0ADes%20soci%C3%A9t%C3%A9s%20en%20ex-Poitou-Charentes%20ont%20%C3%A9t%C3%A9%20identifi%C3%A9es%20pour%20tester%20le%20produit.%20Il%20s%E2%80%99agit%20de%20petits%20producteurs%20de%20d%C3%A9chets%20%28ne%20disposant%20pas%20d%E2%80%99outil%20sp%C3%A9cifique%20et%20ayant%20identifi%C3%A9%20de%20multiples%20probl%C3%A8mes%29%20et%20d%E2%80%99une%20installation%20de%20collecte%20%2F%20transit%20de%20d%C3%A9chets%20dangereux.%20Des%20%C3%A9tablissement%20du%20minist%C3%A8re%20des%20Arm%C3%A9es%20en%20tant%20que%20producteurs%20de%20d%C3%A9chets%2C%20ainsi%20que%20des%20installations%20identifi%C3%A9es%20par%20les%20syndicats%20professionnels%2C%20ayant%20exprim%C3%A9%20leur%20int%C3%A9r%C3%AAt%20par%20la%20d%C3%A9marche%2C%20pourront%20%C3%AAtre%20amen%C3%A9s%20%C3%A0%20tester%20le%20produit.%20Pour%20ceux%20qui%20disposent%20d%E2%80%99outils%20au%20sein%20de%20leur%20entit%C3%A9%2C%20et%20il%20convient%20de%20s%E2%80%99assurer%20de%20l%E2%80%99interop%C3%A9rabilit%C3%A9%20pour%20ne%20pas%20se%20substituer%20%C3%A0%20leur%20activit%C3%A9.%0A%0ALes%20retours%20des%20b%C3%AAta-testeurs%20nous%20seront%20utiles%20pour%20apporter%20les%20modifications%20n%C3%A9cessaires%20et%20les%20am%C3%A9liorations%20de%20fa%C3%A7on%20progressive.%20Il%20sera%20%C3%A9galement%20possible%20d%E2%80%99avoir%20recours%20%C3%A0%20la%20base%20de%20donn%C3%A9es%20des%20d%C3%A9clarants%20%E2%80%9Cd%C3%A9chets%20dangereux%E2%80%9D%20pour%20envoyer%20un%20mailing%20cibl%C3%A9%20%C3%A0%20un%20public%20test.%0A%0A%23%23%23%20Et%20ensuite%3F%0A%0ALe%20produit%20permettrait%20de%20r%C3%A9gler%20d%E2%80%99autres%20probl%C3%A8mes%20tels%20que%20l%E2%80%99%C3%A9ditions%20des%20bordereaux%20de%20regroupement%20ou%20l%E2%80%99information%20d%E2%80%99un%20traitement%20%C3%A0%20toute%20la%20cha%C3%AEne.%0A%0AD%E2%80%99autres%20d%C3%A9chets%20dangereux%20tel%20que%20l%E2%80%99amiante%2C%20les%20DASRI%2C%20fluides%20frigorig%C3%A8nes%2C%20%C3%A9tant%20sp%C3%A9cifiques%20et%20disposant%20d%E2%80%99un%20cerfa%20distinct%20pourraient%20int%C3%A9grer%20ult%C3%A9rieurement%20le%20dispositif.%0A%0ALe%20produit%20-%20ouvert%20-%20pourrait%20automatiser%20les%20d%C3%A9clarations%20annuelles%20obligatoires%20et%20permettre%20des%20connections%20avec%20les%20outils%20existants%20tels%20que%20GISTRID%20%28pour%20les%20transferts%20transfrontaliers%20de%20d%C3%A9chets%29.%0A%0ALes%20donn%C3%A9es%20issues%20de%20l%E2%80%99utilisation%20du%20produit%20pourraient%20utilement%20%C3%AAtre%20utilis%C3%A9es%20par%20les%20observatoires%20tels%20que%20l%E2%80%99ADEME%2C%20la%20DGPR%2C%20les%20plans%20r%C3%A9gionaux%20de%20gestion%20des%20d%C3%A9chets%20%28PRPGD%29%2C%20etc.", - "events": [ - { - "name": "national_impact", - "date": "2022-12-30", - "comment": "" - } - ], + "name": "DORA", + "pitch": "Recenser, mettre en visibilité et faciliter la prescription de services d'insertion, adaptés aux besoins des bénéficiaires", + "stats_url": "https://dora.inclusion.beta.gouv.fr/stats", + "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?tab=t.0", + "link": "https://dora.inclusion.beta.gouv.fr", + "repository": "https://github.com/gip-inclusion/dora/", + "contact": "contact@dora.inclusion.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AFin%20septembre%202020%2C%20le%20nombre%20de%20b%C3%A9n%C3%A9ficiaires%20du%20revenu%20de%20solidarit%C3%A9%20active%20%28RSA%29%2C%20r%C3%A9sidant%20en%20France%20enti%C3%A8re%2C%20est%20estim%C3%A9%20%C3%A0%202%2C03%20millions%20de%20foyers.%20R%C3%A9ussir%20son%20insertion%20professionnelle%20par%20l%E2%80%99emploi%20n%C3%A9cessite%20en%20r%C3%A8gle%20g%C3%A9n%C3%A9rale%20d%E2%80%99avoir%20lev%C3%A9%20tous%20les%20%E2%80%9Cfreins%20p%C3%A9riph%C3%A9riques%E2%80%9D%20%28ex.%20avoir%20une%20solution%20de%20logement%2C%20de%20garde%20d%E2%80%99enfant%2C%20parler%20le%20fran%C3%A7ais%29.%20Or%2C%20aujourd%E2%80%99hui%20de%20tr%C3%A8s%20nombreux%20b%C3%A9n%C3%A9ficiaires%20engag%C3%A9s%20dans%20un%20parcours%20d%E2%80%99insertion%20peinent%20%C3%A0%20trouver%20des%20solutions%20%C3%A0%20ces%20probl%C3%A9matiques.%0A%0APourquoi%20%3F%0A%0A-%20La%20multiplicit%C3%A9%20et%20%E2%80%9Cmouvance%E2%80%9D%20des%20structures%2C%20des%20interlocuteurs%2C%20et%20de%20l%27offre%20d%27insertion%0A-%20Les%20informations%20disponibles%20sont%20trop%20parcellaires%20et%2Fou%20obsol%C3%A8tes%20pour%20%C3%AAtre%20efficaces%0A%0ACe%20qui%20a%20des%20cons%C3%A9quences%20fortes%20pour%20%3A%0A%0A-%20Les%20accompagnateurs%20%3A%20une%20perte%20de%20temps%20significative%20et%20un%20d%C3%A9faut%20de%20prescription%20%28%20%3D%3E%2045%20mins%20pass%C3%A9es%20par%20jour%20%C3%A0%20la%20recherche%20de%20services%20d%E2%80%99accompagnement%20pour%20leurs%20b%C3%A9n%C3%A9ficiaires%29%0A-%20Les%20b%C3%A9n%C3%A9ficiaires%20%3A%20un%20d%C3%A9lai%20de%20retour%20%C3%A0%20l%E2%80%99emploi%20plus%20long%20et%20une%20aide%20qui%20n%E2%80%99est%20pas%20apport%C3%A9e%20au%20bon%20moment%0A-%20Les%20structures%20d%27insertion%20qui%20perdent%20du%20temps%20%C3%A0%20mettre%20en%20visibilit%C3%A9%20leur%20offre%20de%20service%20sur%20plusieurs%20services%20num%C3%A9riques%20ou%20bases%20de%20donn%C3%A9es.%0A%0A%23%23%20Notre%20service%0A%0ABien%20plus%20qu%27un%20annuaire%2C%20%5BDora%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%29%20est%20un%20service%20public%20num%C3%A9rique%20d%27aide%20%C3%A0%20la%20prescription.%0A%0A-%20Offrant%20la%20possibilit%C3%A9%20aux%20structures%20d%E2%80%99insertion%20de%20r%C3%A9f%C3%A9rencer%20simplement%20et%20mettre%20%C3%A0%20jour%20en%20temps%20r%C3%A9el%20leur%20offre%20de%20services.%20Qui%20est%20ensuite%20diffus%C3%A9e%20sur%20toutes%20les%20plateformes%20et%20sites%20web%20partenaires.%0A-%20Permettant%20ainsi%20aux%20professionnels%20de%20l%27insertion%20sociale%20et%20professionnelle%20au%20contact%20des%20publics%20de%20rechercher%20et%20prescrire%20rapidement%20les%20services%20le%20plus%20adapt%C3%A9s%20aux%20besoins%20de%20leurs%20b%C3%A9n%C3%A9ficiaires%20directement%20depuis%20l%27outil%20qu%27ils%20utilisent%20au%20quotidien%0A%0A%23%23%23%20%22Dites-le%20nous%20une%20fois%22%0A%0ANous%20sommes%20engag%C3%A9s%20dans%20une%20d%C3%A9marche%20d%E2%80%99_open%20data_%20et%20rendons%20disponibles%20nos%20donn%C3%A9es%20%C3%A0%20travers%20un%20r%C3%A9f%C3%A9rentiel%20commun%20%E2%80%94%20partag%C3%A9%20par%20toutes%20les%20plateformes%20et%20sites%20web%20partenaires.%20Gr%C3%A2ce%20%C3%A0%20cette%20dynamique%20collective%2C%20vous%20r%C3%A9f%C3%A9rencez%20votre%20offre%20une%20seule%20fois%20tout%20en%20la%20rendant%20disponible%20partout.%5B%20Vous%20pouvez%20d%C3%A8s%20%C3%A0%20pr%C3%A9sent%20acc%C3%A9der%20aux%20donn%C3%A9es%20de%20Dora%20et%20les%20t%C3%A9l%C3%A9charger%20sur%20data.gouv.%5D%28https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2Freferentiel-de-loffre-dinsertion-liste-des-structures-et-services-dinsertion%2F%29%0A%0A%23%23%20Le%20service%20Dora%20vous%20int%C3%A9resse%20%3F%0A%0A%23%23%23%20A.%20Vous%20repr%C3%A9sentez%20un%20territoire%2C%20une%20collectivit%C3%A9%20et%20cherchez%20%C3%A0%20faciliter%20la%20coop%C3%A9ration%20des%20acteurs%20de%20l%27insertion%20de%20votre%20territoire%20%3F%0A%0AD%C3%A9ployez%20Dora%20sur%20votre%20territoire%20en%20tout%20autonomie%2C%20gr%C3%A2ce%20%C3%A0%20notre%20%5Bkit%20de%20d%C3%A9ploiement%20con%C3%A7u%20pour%20les%20correspondants%20locaux.%20%5D%28https%3A%2F%2Fdocs.google.com%2Fpresentation%2Fd%2Fe%2F2PACX-1vRO9E2xQXWJOgsABNHLmEWdeUb3FK6AIKcrW_bqUMNn-pmSwdZwCkZb-jFcedsde8rxwzilHdWBG4jp%2Fpub%3Fstart%3Dfalse%26loop%3Dfalse%26delayms%3D3000%29%0A%0ALancez-vous%20d%C3%A8s%20aujourd%27hui%20dans%20le%20d%C3%A9ploiement%20de%20cette%20solution%20de%20cartographie%20de%20l%27offre%20d%27insertion%20pour%20votre%20territoire.%20Dora%20est%20un%20outil%20mis%20%C3%A0%20votre%20disposition%20que%20vous%20pouvez%20pr%C3%A9senter%20%C3%A0%20vos%20partenaires%20d%C3%A8s%20que%20vous%20le%20souhaitez%20%21%0A%0A%23%23%23%20B.%20Vous%20travaillez%20pour%20une%20structure%20de%20l%27insertion%20qui%20propose%20des%20services%20%C3%A0%20des%20personnes%20en%20situation%20d%27insertion%20%3F%0A%0AR%C3%A9f%C3%A9rencez%20votre%20offre%20de%20service%20sur%20%5BDora%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%29%20%21%0A%0APour%20quoi%20faire%20%3F%0A%0A-%20rendre%20visible%20votre%20offre%20aupr%C3%A8s%20des%20prescripteurs%20et%20des%20financeurs%0A-%20recevoir%20des%20orientations%20mieux%20qualifi%C3%A9es%0A-%20mettre%20%C3%A0%20jour%20collaborativement%20et%20en%20temps%20r%C3%A9el%20vos%20informations%20%28contact%2C%20horaires%2C%20adresse%2C%20disponibilit%C3%A9...%29%0A-%20un%20lien%20unique%20de%20votre%20page%20structure%20avec%20tous%20vos%20services%20r%C3%A9f%C3%A9renc%C3%A9s%20%C3%A0%20partager%0A%0A%23%23%23%20C.%20Vous%20travaillez%20pour%20une%20structure%20qui%20accompagne%20des%20b%C3%A9n%C3%A9ficiaires%20en%20situation%20d%27insertion%20%3F%0A%0Ale%20service%20Dora%20est%20d%C3%A9j%C3%A0%20implant%C3%A9%20sur%20votre%20territoire%20%3F%0A%0A-%20rendez-vous%20sur%20%3Chttps%3A%2F%2Fdora.inclusion.beta.gouv.fr%3E%20pour%20rechercher%20des%20services%20pour%20lever%20les%20freins%20p%C3%A9riph%C3%A9riques%20des%20b%C3%A9n%C3%A9ficiaires%20que%20vous%20accompagnez.%5C%0A%20%20%20_Astuce%20%F0%9F%92%A1%3A%20mettez%20le%20lien%20en%20favori%20%E2%AD%90%20pour%20gagner%20du%20temps%20en%20entretien%20quand%20un%20frein%20p%C3%A9riph%C3%A9rique%20est%20diagnostiqu%C3%A9._%0A-%20consultez%20la%20%5Bpage%20statistique%20Dora%20et%20la%20carte%20d%27%C3%A9tat%20du%20d%C3%A9ploiement%20de%20l%27outil%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%2Fstats%29.%0AEnfin%2C%20pour%20en%20savoir%20plus%20sur%20le%20service%20Dora%20%3A%0A%0A-%20%F0%9F%93%B0%20abonnez%20vous%20%C3%A0%20la%20%5Blettre%20d%27information%5D%28https%3A%2F%2Fd4c653e7.sibforms.com%2Fserve%2FMUIEAEkY4naptXBIq5NdRg5UPxP1wmwbGCinne5c1gynY-wfrZ0Dz0QP_NqkXtfyYqhdaq3AO8VFZJ9giRi9ZT0eah7Ut2U0LeKSTVIHQb_5nhvTLUMWXo9ZMeIYCHVlzmjkXGQ66S5ewcYpSADUgV--2RVZ_mrnsRJQoCNwZ8y-sWzfQsEzfKuTA7SLbZ_dWeqaigudym3EaiHT%29%0A-%20%F0%9F%8E%A4%20assistez%20%C3%A0%20l%27un%20de%20%5Bnos%20webinaires%5D%28https%3A%2F%2Fapp.livestorm.co%2Fdora-1%29%0A-%20%F0%9F%94%8E%20Consultez%20notre%20espace%20d%27%5Baide%20et%20de%20documentation%5D%28https%3A%2F%2Faide.dora.inclusion.beta.gouv.fr%2Ffr%2F%29%0A", + "events": [], "phases": [ { "name": "investigation", - "start": "2018-11-01", - "end": "" + "start": "2021-01-25", + "end": "2021-05-06" }, { "name": "construction", - "start": "2019-11-01", - "end": "" + "start": "2021-05-09", + "end": "2021-10-29" }, { "name": "acceleration", - "start": "2020-11-01", + "start": "2021-11-01", "end": "" } ], "sponsors": [ - "dgpr", - "mtes" + "francetravail", + "mtei", + "mtfp" ], "thematiques": [ - "Écologie", + "Travail / Emploi", "Open-Data" ], - "dashlord_url": "https://dashlord.mte.incubateur.net/dashlord/url/api-trackdechets-beta-gouv-fr/", + "dashlord_url": "https://dashlord.incubateur.net/tag/dora/", "accessibility_status": "non conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mtes" + "id": "gip-inclusion" } } } @@ -467341,26 +464501,28 @@ "dsfr": null, "summary": { "httpGrade": "A+", + "apdex": 0.999, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-17T12:49:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-23T10:55:00.000Z", "testsslGrade": "A+", "githubRepositoryGrade": "A" } }, { "404": null, - "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", - "title": "Backend DORA", - "category": "gip-inclusion", + "url": "https://api.app.eva.beta.gouv.fr", + "category": "dinum", "repositories": [ - "betagouv/dora-back" + "betagouv/eva-serveur" ], + "betaId": "eva", "tags": [ - "dora", - "production", "api" ], "tools": { @@ -467371,81 +464533,85 @@ "stats": false, "budget_page": false, "dsfr": false, - "ecoindex": false + "ecoindex": false, + "screenshot": false }, - "betaId": "dora", "http": { - "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", + "url": "https://api.app.eva.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:48:48 GMT", - "grade": "A+", + "end_time": "Sun, 20 Oct 2024 13:49:39 GMT", + "grade": "B", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "179", - "Content-Security-Policy": "default-src 'self'", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 13:48:48 GMT", - "Referrer-Policy": "same-origin", - "Vary": "origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Request-ID": "73fa4fb4-8bb0-42ae-99e7-1043fdd9039a", - "strict-transport-security": "max-age=31536000" + "cache-control": "max-age=0, private, must-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 20 Oct 2024 13:49:36 GMT", + "etag": "W/\"fa6dcfac68497fe3d849c0e2c19e73a2\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", + "referrer-policy": "strict-origin-when-cross-origin", + "server": "Apache", + "set-cookie": "_session_id=sSO6nQ0BU5Z7PnRzO8rXW4KJXfowZDYT7lDxR%2BdtyzN5RrpGjN2yoBZ%2FvU1sE9w8uNiSs8HNOKrX5Z9BdfPWtrQ2uOmOKGZ6qmDJ6xW4IZzMepodQt6JJQJsBCOulR7Aac9CSGANt7aBSBSSSV3CFTqYKgPonIfwYrog8Lsu3QVH2c9D0pm%2FTRjlHrWCI0xN%2BzRFxAbgf9KYPBFp1YqZekEANTwmGVCFHIDbVxWVHa1LYzetDCXPZOX3abE%2BkAF6ZYmt%2Fq5snXCeLoaiWfkuk6zrgw%3D%3D--KLZ3K5BMnGGjpJTj--ydhsfitSF6rP5Lerr9CtEg%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", + "strict-transport-security": "max-age=63072000; includeSubDomains", + "transfer-encoding": "chunked", + "vary": "Accept,Origin", + "via": "1.1 eva.beta.gouv.fr, 1.1 alproxy", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "20df341d-7905-4da9-ab27-dda9bfa45116, 20df341d-7905-4da9-ab27-dda9bfa45116", + "x-runtime": "0.013426", + "x-xss-protection": "0" }, - "scan_id": 57065627, - "score": 110, - "start_time": "Sun, 20 Oct 2024 13:48:46 GMT", + "scan_id": 57065634, + "score": 70, + "start_time": "Sun, 20 Oct 2024 13:49:33 GMT", "state": "FINISHED", - "status_code": 404, - "tests_failed": 0, - "tests_passed": 10, + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "default-src": [ - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-no-unsafe", - "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", - "score_modifier": 5 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, - "sameSite": null + "data": { + "_session_id": { + "domain": "eva.beta.gouv.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": true + } + }, + "sameSite": true }, "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -467466,24 +464632,26 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": null, + "destination": "https://eva.beta.gouv.fr/pro/admin/login", "redirects": true, "route": [ - "http://api.dora.inclusion.beta.gouv.fr/", - "https://api.dora.inclusion.beta.gouv.fr/" + "http://api.app.eva.beta.gouv.fr/", + "https://eva.beta.gouv.fr/pro", + "https://eva.beta.gouv.fr/pro/admin/dashboard", + "https://eva.beta.gouv.fr/pro/admin/login" ], - "status_code": null + "status_code": 302 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "same-origin", + "data": "strict-origin-when-cross-origin", "http": true, "meta": false }, @@ -467496,9 +464664,9 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, + "data": "max-age=63072000; includeSubDomains", + "includeSubDomains": true, + "max-age": 63072000, "preload": false, "preloaded": false }, @@ -467514,8 +464682,8 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-but-no-scripts-loaded", - "score_description": "Subresource Integrity (SRI) is not needed since site contains no script tags", + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", "score_modifier": 0 }, "x-content-type-options": { @@ -467533,7 +464701,7 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": "SAMEORIGIN" }, "pass": true, "result": "x-frame-options-sameorigin-or-deny", @@ -467544,78 +464712,61 @@ "expectation": "x-xss-protection-disabled", "name": "x-xss-protection", "output": { - "data": null + "data": "0" }, "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": 0 } } }, "updownio": { - "token": "d9z0", - "url": "https://api.dora.inclusion.beta.gouv.fr/ping/", - "alias": "", + "token": "p5rz", + "url": "https://api.app.eva.beta.gouv.fr", + "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-14T22:56:17Z", + "up_since": "2024-11-18T15:43:20Z", "error": null, - "period": 60, + "period": 3600, "apdex_t": 0.5, "string_match": "", "enabled": true, - "published": true, - "disabled_locations": [ - "lan", - "mia", - "bhs", - "hel", - "sin", - "tok", - "syd" - ], + "published": false, + "disabled_locations": [], "recipients": [ + "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T17:55:44Z", - "next_check_at": "2024-11-24T17:56:44Z", - "created_at": "2024-03-19T16:10:07Z", - "mute_until": null, - "favicon_url": null, + "last_check_at": "2024-12-01T17:06:13Z", + "next_check_at": "2024-12-01T18:05:58Z", + "created_at": "2021-04-22T21:33:37Z", + "mute_until": "forever", + "favicon_url": "https://eva.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T17:52:45Z", - "expires_at": "2024-12-25T10:54:39Z", + "tested_at": "2024-12-01T16:06:35Z", + "expires_at": "2025-01-16T07:06:38Z", "valid": true, "error": null }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 9, - "connection": 10, - "handshake": 14, - "response": 197, - "total": 231 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" + "metrics": {}, + "uptimeGrade": "A" }, "nmap": { - "host": "api.dora.inclusion.beta.gouv.fr", + "host": "api.app.eva.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ { "service": { "name": "http", + "product": "Apache", "id": "80", "vulnerabilities": [] } @@ -467623,6 +464774,7 @@ { "service": { "name": "https", + "product": "Apache", "id": "443", "vulnerabilities": [] } @@ -467635,77 +464787,77 @@ "testssl": [ { "id": "service", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467713,7 +464865,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467721,7 +464873,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467729,7 +464881,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467737,7 +464889,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -467745,7 +464897,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -467753,484 +464905,449 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "2024-09-26 10:54" + "finding": "2024-10-18 07:06" }, { "id": "cert_notAfter", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", - "finding": "2024-12-25 10:54" + "finding": "2025-01-16 07:06" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1732470748" - }, - { - "id": "HSTS_time", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733075393" }, { - "id": "HSTS_preload", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "id": "HSTS", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Apache" }, { "id": "banner_application", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'self'" - }, - { - "id": "Referrer-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "id": "security_headers", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", - "severity": "INFO", - "finding": "same-origin" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "via: 1.1 alproxy" }, { "id": "heartbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -468239,7 +465356,7 @@ }, { "id": "CCS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -468248,7 +465365,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -468257,7 +465374,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -468266,7 +465383,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -468274,7 +465391,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -468283,7 +465400,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -468292,7 +465409,7 @@ }, { "id": "BREACH", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -468301,7 +465418,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -468310,14 +465427,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -468326,7 +465443,7 @@ }, { "id": "FREAK", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -468335,7 +465452,7 @@ }, { "id": "DROWN", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -468344,16 +465461,16 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6FEFE0461FA1C047E169F526D8426E829F377F39E1ED3F7802A38ECCE2BD7925" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EDA595238EB791AE5EAEC38188A04402C82B712340BA181F99B9AB90D1BD9665" }, { "id": "LOGJAM", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -468362,16 +465479,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -468380,7 +465497,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -468389,7 +465506,7 @@ }, { "id": "winshock", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -468398,7 +465515,7 @@ }, { "id": "RC4", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -468407,392 +465524,799 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "port": "443", + "severity": "INFO", + "finding": "101" + } + ], + "thirdparties": null, + "wappalyzer": { + "urls": { + "https://api.app.eva.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://api.app.eva.beta.gouv.fr/ (https://api.app.eva.beta.gouv.fr/)" + } + }, + "technologies": [ + { + "slug": "apache-http-server", + "name": "Apache HTTP Server", + "description": "Apache is a free and open-source cross-platform web server software.", + "confidence": 100, + "version": null, + "icon": "Apache.svg", + "website": "https://httpd.apache.org/", + "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": null, + "github_repository": { + "grade": "A" + }, + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, + "betagouv": { + "id": "eva", + "type": "startup", + "attributes": { + "name": "eva", + "pitch": "Favoriser l’insertion en identifiant les difficultés avec les compétences de base et en valorisant les compétences transversales acquises", + "stats_url": "https://eva.beta.gouv.fr/statistiques/", + "link": "https://eva.beta.gouv.fr/", + "repository": "https://github.com/betagouv/eva/", + "contact": "contact@eva.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0APour%20les%20personnes%20ne%20disposant%20pas%20de%20dipl%C3%B4mes%2C%20d%E2%80%99exp%C3%A9rience%20professionnelle%0Aprobante%20ou%20pour%20celles%20les%20plus%20%C3%A9loign%C3%A9es%20du%20march%C3%A9%20de%20l%E2%80%99emploi%2C%20l%E2%80%99acc%C3%A8s%20%C3%A0%0Al%E2%80%99emploi%20et%2Fou%20la%20formation%20est%20un%20enjeu%20national.%20%0ALa%20non-ma%C3%AEtrise%20des%20comp%C3%A9tences%20de%20base%20%28langagi%C3%A8res%2C%20math%C3%A9matiques%20et%20num%C3%A9riques%29%20impacte%20fortement%20la%20vie%20quotidienne%2C%20l%27employabilit%C3%A9%20et%20l%27autonomie%20des%20usagers.%0A2%20500%20000%20personnes%20en%20France%20sont%20aujourd%27hui%20en%20difficult%C3%A9%20avec%20la%20lecture%20ou%20les%20math%C3%A9matiques%20%28chiffres%20INSEE%202012%29.%20%0A%0ALe%20rep%C3%A9rage%20et%20la%20prise%20en%20charge%20des%20difficult%C3%A9s%20avec%20les%20comp%C3%A9tences%20de%20base%20au%20plus%20t%C3%B4t%20sont%20essentiels%20pour%20%C3%A9viter%20les%20ruptures%20de%20parcours%2C%20les%20abandons%20en%20cours%20de%20formation%20et%20les%20orientations%20vers%20l%27emploi%20inad%C3%A9quates.%20Cette%20%C3%A9tape%20de%20positionnement%20des%20comp%C3%A9tences%20des%20usagers%20est%20parfois%20difficilement%20accessible%20pour%20les%20acteurs%20de%20l%27insertion%20%28Missions%20locales%2C%20agences%20France%20Travail%2C%20Cap%20emploi%2C%20France%20Services%2C%20etc.%29%2C%20qui%20ne%20disposent%20pas%20d%27outil%20facile%20%C3%A0%20prendre%20en%20main%2C%20rapide%20et%20ludique%20pour%20prescrire%20des%20%C3%A9valuations.%0A%0AL%27orientation%20vers%20des%20solutions%20de%20rem%C3%A9diations%20%28formations%20%22comp%C3%A9tences%20de%20base%22%29%20peut%20%C3%A9galement%20s%27av%C3%A9rer%20complexe%20si%20elle%20ne%20s%27appuie%20pas%20sur%20la%20valorisation%20et%20la%20mise%20en%20confiance%20de%20l%27usagers%2C%20vis-%C3%A0-vis%20des%20comp%C3%A9tences%20ma%C3%AEtris%C3%A9es%20%28transversales%2C%20cognitives%2C%20certaines%20comp%C3%A9tences%20de%20base%29.%20Alors%20que%20le%20CV%20ne%0Arepr%C3%A9sente%20que%2020%25%20de%20l%E2%80%99employabilit%C3%A9%20d%E2%80%99un%20candidat%2C%20l%E2%80%99approche%20par%20les%0Acomp%C3%A9tences%20cognitives%20et%20transversales%20doit%20%C3%AAtre%20privil%C3%A9gi%C3%A9e%2C%20car%20elle%20permet%0Ade%20favoriser%20l%E2%80%99apprentissage%20et%20ouvre%20aux%20potentialit%C3%A9s.%0A%0A%23%23%20Solution%0A%0ALe%20service%20eva%20propose%20diff%C3%A9rents%20parcours%20d%27%C3%A9valuation%20des%20comp%C3%A9tences%20au%20travers%20de%20modules%20ludiques%2C%20inspir%C3%A9s%20des%20jeux%20vid%C3%A9o%20s%C3%A9rieux%2C%20pour%20un%20public%20%C3%A9loign%C3%A9%20du%0Amarch%C3%A9%20de%20l%E2%80%99emploi%2C%20notamment%20les%20personnes%20en%20situation%20d%E2%80%99illettrisme.%0A%0AEn%20novembre%202019%2C%20le%20produit%20qui%20s%27appelait%20Comp%C3%A9tences%20pro%20a%20chang%C3%A9%20de%20nom%20pour%20eva.%0A%0AEn%20septembre%202021%2C%20le%20service%20eva%20a%20%C3%A9t%C3%A9%20p%C3%A9rennis%C3%A9%20au%20sein%20de%20l%27Agence%20nationale%20de%20lutte%20contre%20l%27illettrisme.%0A%0A%23%23%20Mission%2C%20objectif%20et%20cible%0A%0A%23%23%23%20Missions%0A%0ANotre%20mission%20principale%20est%20de%20proposer%20aux%20acteurs%20de%20l%27insertion%2C%20de%20la%20formation%20et%20de%20l%27emploi%20un%20outil%20de%20positionnement%20des%20comp%C3%A9tence%20et%20de%20rep%C3%A9rage%20des%20difficult%C3%A9s%2C%20qui%20permet%20d%E2%80%99acc%C3%A9l%C3%A9rer%0Al%E2%80%99insertion%20ou%20le%20retour%20%C3%A0%20l%E2%80%99emploi%20ou%20%C3%A0%20la%20formation.%20%0A%0AEva%20teste%20la%20ma%C3%AEtrise%20des%20comp%C3%A9tences%20de%20base%20%28litt%C3%A9racie%20et%20num%C3%A9racie%29%20ainsi%20que%20plusieurs%20comp%C3%A9tences%20transversales%20et%20cognitives%2C%20parmi%20les%20plus%20recherch%C3%A9es%20pour%20les%0Am%C3%A9tiers%20peu%20qualifi%C3%A9s.%20Ce%20positionnement%20des%20comp%C3%A9tences%20est%20compl%C3%A9t%C3%A9%20par%20une%20valorisation%20des%20potentiel%20des%20candidats%20en%20lien%20avec%20les%20comp%C3%A9tences%20%22m%C3%A9tiers%22.%0A%0AEn%20privil%C3%A9giant%20des%20modules%20de%20test%20ludiques%20qui%20s%27appuient%20sur%20des%20contextes%20professionnels%2C%20le%20positionnement%20avec%20eva%20se%20d%C3%A9marque%20des%20%C3%A9valuations%20scolaires%20et%20constitue%20un%20outil%20accessible%20de%20rep%C3%A9rage%20de%20l%27illettrisme%20et%20de%20l%27innum%C3%A9risme.%0A%0A%23%23%23%20Objectifs%0A%0AL%E2%80%99objectif%20prioritaire%20d%27eva%20est%20de%20fournir%20des%20%C3%A9l%C3%A9ments%20factuels%0Ade%20positionnement%20des%20comp%C3%A9tences%20de%20base%20%28litt%C3%A9racie%20et%20num%C3%A9racie%29%20et%20de%20certaines%20comp%C3%A9tences%20transversales%20en%20vue%20d%E2%80%99identifier%20les%20dispositifs%20adapt%C3%A9s%20et%20de%0Afaciliter%20l%E2%80%99orientation%20vers%20%3A%0A%0A-%20Des%20formations%20%22comp%C3%A9tences%20de%20base%22%20%28ateliers%20de%20p%C3%A9dagogie%20personnalis%C3%A9e%2C%20CL%C3%A9A%2C%20dispositifs%20r%C3%A9gionaux%20comme%20Lectio%2C%20Pr%C3%A9pa%20Clefs%2C%20OCB%2C%20etc.%29%0A-%20Des%20formations%20professionnelles%20%28notamment%20dispens%C3%A9es%20par%20les%20OFA%20%2F%20CFA%2C%20les%20OPCOs%20des%20secteurs%20en%20tension%29.%0A-%20Des%20entreprises%20de%20secteurs%20en%20tension%20cherchant%20%C3%A0%20recruter%20des%20profils%20disposant%20des%20comp%C3%A9tences%20transversales%20recherch%C3%A9es%20et%20volontaires%20pour%20former%20leurs%20salari%C3%A9s%20sur%20les%20comp%C3%A9tences%20de%20base.%0A%0AL%E2%80%99objectif%20secondaire%20est%20de%20permettre%20%C3%A0%20un%20public%20souvent%20d%C3%A9valoris%C3%A9%20et%20en%0Aperte%20de%20confiance%2C%20d%E2%80%99identifier%20des%20points%20forts%20dans%20leur%20profil%20et%20ainsi%0Aouvrir%20des%20perspectives%20et%20d%E2%80%99engager%20le%20public%20en%20recherche%20dans%20une%20d%C3%A9marche%0Aactive%20et%20impliqu%C3%A9e%2C%20en%20les%20remobilisant.%0A%0A%23%23%23%20Cibles%0A%0A-%20Jeunes%20accueillis%20en%20Missions%20locales%2C%20en%20CEJ%20et%20%22CEJ%20jeunes%20en%20rupture%22%0A-%20Recrues%20du%20Service%20Militaire%20Adapt%C3%A9%0A-%20Apprentis%20et%20stagiaires%20de%20la%20formation%20professionnelle%0A-%20Demandeurs%20d%27emploi%20%28dont%20DE%20longue%20dur%C3%A9e%29%0A-%20B%C3%A9n%C3%A9ficiaires%20du%20RSA%0A-%20Jeunes%20sans%20dipl%C3%B4me%0A-%20Public%20en%20situation%20d%27illettrisme%20%287%25%20de%20la%20population%20fran%C3%A7aise%29%0A%0A%23%23%20Indicateurs%20d%27impact%0A%0A-%20Nombre%20d%27usagers%20rep%C3%A9r%C3%A9s%20en%20difficult%C3%A9s%20et%20pris%20en%20charge%20%C3%A0%20l%27issue%20de%20l%27%C3%A9valuation%0A-%20Nombre%20d%27usagers%20ayant%20int%C3%A9gr%C3%A9%20une%20formation%20%22comp%C3%A9tences%20de%20base%22%20ou%20un%20emploi%20suite%20%C3%A0%20l%27utilisation%20de%20l%27outil%0A", + "events": [ + { + "name": "national_impact", + "date": "2023-12-31", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2018-06-06", + "end": "" + }, + { + "name": "construction", + "start": "2018-06-06", + "end": "" + }, + { + "name": "transfer", + "start": "2021-09-01", + "end": "" + }, + { + "name": "success", + "start": "2023-12-30", + "end": "" + } + ], + "sponsors": [ + "anlci", + "dgefp", + "hcc" + ], + "thematiques": [], + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": null, + "summary": { + "httpGrade": "B", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-16T07:06:00.000Z", + "testsslGrade": "A", + "githubRepositoryGrade": "A" + } + }, + { + "404": null, + "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "title": "Backend data-subvention (préprod)", + "category": "dinum", + "repositories": [ + "betagouv/api-subventions-asso" + ], + "tags": [ + "data-subvention", + "staging", + "api" + ], + "betaId": "data-subvention", + "tools": { + "lighthouse": false, + "thirdparties": false, + "declaration-rgpd": false, + "declaration-a11y": false, + "stats": false, + "budget_page": false, + "dsfr": false, + "ecoindex": false, + "screenshot": false + }, + "http": { + "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 13:50:55 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Access-Control-Allow-Headers": "sentry-trace, baggage", + "Cache-Control": "max-age 1800", + "Connection": "keep-alive", + "Content-Length": "174", + "Content-Security-Policy": "default-src 'none'", + "Content-Type": "application/json; charset=utf-8", + "Date": "Sun, 20 Oct 2024 13:50:54 GMT", + "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", + "RateLimit": "limit=80, remaining=79, reset=60", + "RateLimit-Policy": "80;w=60", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", + "Vary": "Origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-Powered-By": "Express", + "X-Request-ID": "8d1d02a5-617f-4104-9c7d-0a535b6c3824" + }, + "scan_id": 57065718, + "score": 80, + "start_time": "Sun, 20 Oct 2024 13:50:53 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "default-src": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": true, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe-default-src-none", + "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", + "score_modifier": 10 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://http-observatory.security.mozilla.org", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "redirects": false, + "route": [ + "http://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "9v1i", + "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "alias": null, + "last_status": 200, + "uptime": 99.991, + "down": false, + "down_since": null, + "up_since": "2024-11-28T18:24:12Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T17:59:05Z", + "next_check_at": "2024-12-01T18:00:05Z", + "created_at": "2024-01-15T14:02:08Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T17:52:07Z", + "expires_at": "2025-01-12T23:59:59Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 13, + "connection": 139, + "handshake": 143, + "response": 143, + "total": 437 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468800,7 +466324,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468808,7 +466332,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468816,7 +466340,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468824,7 +466348,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468832,7 +466356,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468840,476 +466364,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-09-26 10:54" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "2024-12-25 10:54" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732470803" + "finding": "1733075609" }, { "id": "HSTS_time", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'" + "finding": "default-src 'none'" }, { - "id": "Referrer-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "id": "Cache-Control", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -469317,7 +466848,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -469326,7 +466857,7 @@ }, { "id": "CCS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -469335,7 +466866,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -469344,7 +466875,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -469353,7 +466884,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -469361,7 +466892,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -469370,7 +466901,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -469379,7 +466910,7 @@ }, { "id": "BREACH", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -469388,7 +466919,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -469397,14 +466928,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -469413,7 +466944,7 @@ }, { "id": "FREAK", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -469422,7 +466953,7 @@ }, { "id": "DROWN", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -469431,16 +466962,16 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6FEFE0461FA1C047E169F526D8426E829F377F39E1ED3F7802A38ECCE2BD7925" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -469449,7 +466980,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -469458,7 +466989,7 @@ }, { "id": "BEAST", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -469467,7 +466998,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -469476,7 +467007,7 @@ }, { "id": "winshock", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -469485,7 +467016,7 @@ }, { "id": "RC4", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -469494,392 +467025,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -469887,7 +467418,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -469895,7 +467426,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -469903,7 +467434,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -469911,7 +467442,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -469919,7 +467450,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -469927,476 +467458,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-09-26 10:54" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "2024-12-25 10:54" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732470858" + "finding": "1733075701" }, { "id": "HSTS_time", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'" + "finding": "default-src 'none'" }, { - "id": "Referrer-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "id": "Cache-Control", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -470404,7 +467942,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -470413,7 +467951,7 @@ }, { "id": "CCS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -470422,7 +467960,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -470431,7 +467969,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -470440,7 +467978,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -470448,7 +467986,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -470457,7 +467995,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -470466,7 +468004,7 @@ }, { "id": "BREACH", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -470475,7 +468013,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -470484,14 +468022,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -470500,7 +468038,7 @@ }, { "id": "FREAK", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -470509,7 +468047,7 @@ }, { "id": "DROWN", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -470518,16 +468056,16 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6FEFE0461FA1C047E169F526D8426E829F377F39E1ED3F7802A38ECCE2BD7925" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -470536,7 +468074,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -470545,7 +468083,7 @@ }, { "id": "BEAST", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -470554,7 +468092,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -470563,7 +468101,7 @@ }, { "id": "winshock", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -470572,7 +468110,7 @@ }, { "id": "RC4", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -470581,392 +468119,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -470974,7 +468512,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -470982,7 +468520,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -470990,7 +468528,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -470998,7 +468536,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -471006,7 +468544,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -471014,476 +468552,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-09-26 10:54" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "2024-12-25 10:54" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732470912" + "finding": "1733075794" }, { "id": "HSTS_time", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'" + "finding": "default-src 'none'" }, { - "id": "Referrer-Policy", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "id": "Cache-Control", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "same-origin" + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -471491,7 +469036,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -471500,7 +469045,7 @@ }, { "id": "CCS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -471509,7 +469054,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -471518,7 +469063,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -471527,7 +469072,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -471535,7 +469080,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -471544,7 +469089,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -471553,7 +469098,7 @@ }, { "id": "BREACH", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -471562,7 +469107,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -471571,14 +469116,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -471587,7 +469132,7 @@ }, { "id": "FREAK", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -471596,7 +469141,7 @@ }, { "id": "DROWN", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -471605,16 +469150,16 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6FEFE0461FA1C047E169F526D8426E829F377F39E1ED3F7802A38ECCE2BD7925" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -471623,7 +469168,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -471632,7 +469177,7 @@ }, { "id": "BEAST", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -471641,7 +469186,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -471650,7 +469195,7 @@ }, { "id": "winshock", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -471659,7 +469204,7 @@ }, { "id": "RC4", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -471668,778 +469213,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "api.dora.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "221" - } - ], - "thirdparties": null, - "wappalyzer": { - "urls": { - "https://api.dora.inclusion.beta.gouv.fr/ping/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": true, - "stats": null, - "github_repository": { - "grade": "A" - }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, - "betagouv": { - "id": "dora", - "type": "startup", - "attributes": { - "name": "DORA", - "pitch": "Recenser, mettre en visibilité et faciliter la prescription de services d'insertion, adaptés aux besoins des bénéficiaires", - "stats_url": "https://dora.inclusion.beta.gouv.fr/stats", - "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?tab=t.0", - "link": "https://dora.inclusion.beta.gouv.fr", - "repository": "https://github.com/gip-inclusion/dora/", - "contact": "contact@dora.inclusion.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0AFin%20septembre%202020%2C%20le%20nombre%20de%20b%C3%A9n%C3%A9ficiaires%20du%20revenu%20de%20solidarit%C3%A9%20active%20%28RSA%29%2C%20r%C3%A9sidant%20en%20France%20enti%C3%A8re%2C%20est%20estim%C3%A9%20%C3%A0%202%2C03%20millions%20de%20foyers.%20R%C3%A9ussir%20son%20insertion%20professionnelle%20par%20l%E2%80%99emploi%20n%C3%A9cessite%20en%20r%C3%A8gle%20g%C3%A9n%C3%A9rale%20d%E2%80%99avoir%20lev%C3%A9%20tous%20les%20%E2%80%9Cfreins%20p%C3%A9riph%C3%A9riques%E2%80%9D%20%28ex.%20avoir%20une%20solution%20de%20logement%2C%20de%20garde%20d%E2%80%99enfant%2C%20parler%20le%20fran%C3%A7ais%29.%20Or%2C%20aujourd%E2%80%99hui%20de%20tr%C3%A8s%20nombreux%20b%C3%A9n%C3%A9ficiaires%20engag%C3%A9s%20dans%20un%20parcours%20d%E2%80%99insertion%20peinent%20%C3%A0%20trouver%20des%20solutions%20%C3%A0%20ces%20probl%C3%A9matiques.%0A%0APourquoi%20%3F%0A%0A-%20La%20multiplicit%C3%A9%20et%20%E2%80%9Cmouvance%E2%80%9D%20des%20structures%2C%20des%20interlocuteurs%2C%20et%20de%20l%27offre%20d%27insertion%0A-%20Les%20informations%20disponibles%20sont%20trop%20parcellaires%20et%2Fou%20obsol%C3%A8tes%20pour%20%C3%AAtre%20efficaces%0A%0ACe%20qui%20a%20des%20cons%C3%A9quences%20fortes%20pour%20%3A%0A%0A-%20Les%20accompagnateurs%20%3A%20une%20perte%20de%20temps%20significative%20et%20un%20d%C3%A9faut%20de%20prescription%20%28%20%3D%3E%2045%20mins%20pass%C3%A9es%20par%20jour%20%C3%A0%20la%20recherche%20de%20services%20d%E2%80%99accompagnement%20pour%20leurs%20b%C3%A9n%C3%A9ficiaires%29%0A-%20Les%20b%C3%A9n%C3%A9ficiaires%20%3A%20un%20d%C3%A9lai%20de%20retour%20%C3%A0%20l%E2%80%99emploi%20plus%20long%20et%20une%20aide%20qui%20n%E2%80%99est%20pas%20apport%C3%A9e%20au%20bon%20moment%0A-%20Les%20structures%20d%27insertion%20qui%20perdent%20du%20temps%20%C3%A0%20mettre%20en%20visibilit%C3%A9%20leur%20offre%20de%20service%20sur%20plusieurs%20services%20num%C3%A9riques%20ou%20bases%20de%20donn%C3%A9es.%0A%0A%23%23%20Notre%20service%0A%0ABien%20plus%20qu%27un%20annuaire%2C%20%5BDora%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%29%20est%20un%20service%20public%20num%C3%A9rique%20d%27aide%20%C3%A0%20la%20prescription.%0A%0A-%20Offrant%20la%20possibilit%C3%A9%20aux%20structures%20d%E2%80%99insertion%20de%20r%C3%A9f%C3%A9rencer%20simplement%20et%20mettre%20%C3%A0%20jour%20en%20temps%20r%C3%A9el%20leur%20offre%20de%20services.%20Qui%20est%20ensuite%20diffus%C3%A9e%20sur%20toutes%20les%20plateformes%20et%20sites%20web%20partenaires.%0A-%20Permettant%20ainsi%20aux%20professionnels%20de%20l%27insertion%20sociale%20et%20professionnelle%20au%20contact%20des%20publics%20de%20rechercher%20et%20prescrire%20rapidement%20les%20services%20le%20plus%20adapt%C3%A9s%20aux%20besoins%20de%20leurs%20b%C3%A9n%C3%A9ficiaires%20directement%20depuis%20l%27outil%20qu%27ils%20utilisent%20au%20quotidien%0A%0A%23%23%23%20%22Dites-le%20nous%20une%20fois%22%0A%0ANous%20sommes%20engag%C3%A9s%20dans%20une%20d%C3%A9marche%20d%E2%80%99_open%20data_%20et%20rendons%20disponibles%20nos%20donn%C3%A9es%20%C3%A0%20travers%20un%20r%C3%A9f%C3%A9rentiel%20commun%20%E2%80%94%20partag%C3%A9%20par%20toutes%20les%20plateformes%20et%20sites%20web%20partenaires.%20Gr%C3%A2ce%20%C3%A0%20cette%20dynamique%20collective%2C%20vous%20r%C3%A9f%C3%A9rencez%20votre%20offre%20une%20seule%20fois%20tout%20en%20la%20rendant%20disponible%20partout.%5B%20Vous%20pouvez%20d%C3%A8s%20%C3%A0%20pr%C3%A9sent%20acc%C3%A9der%20aux%20donn%C3%A9es%20de%20Dora%20et%20les%20t%C3%A9l%C3%A9charger%20sur%20data.gouv.%5D%28https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2Freferentiel-de-loffre-dinsertion-liste-des-structures-et-services-dinsertion%2F%29%0A%0A%23%23%20Le%20service%20Dora%20vous%20int%C3%A9resse%20%3F%0A%0A%23%23%23%20A.%20Vous%20repr%C3%A9sentez%20un%20territoire%2C%20une%20collectivit%C3%A9%20et%20cherchez%20%C3%A0%20faciliter%20la%20coop%C3%A9ration%20des%20acteurs%20de%20l%27insertion%20de%20votre%20territoire%20%3F%0A%0AD%C3%A9ployez%20Dora%20sur%20votre%20territoire%20en%20tout%20autonomie%2C%20gr%C3%A2ce%20%C3%A0%20notre%20%5Bkit%20de%20d%C3%A9ploiement%20con%C3%A7u%20pour%20les%20correspondants%20locaux.%20%5D%28https%3A%2F%2Fdocs.google.com%2Fpresentation%2Fd%2Fe%2F2PACX-1vRO9E2xQXWJOgsABNHLmEWdeUb3FK6AIKcrW_bqUMNn-pmSwdZwCkZb-jFcedsde8rxwzilHdWBG4jp%2Fpub%3Fstart%3Dfalse%26loop%3Dfalse%26delayms%3D3000%29%0A%0ALancez-vous%20d%C3%A8s%20aujourd%27hui%20dans%20le%20d%C3%A9ploiement%20de%20cette%20solution%20de%20cartographie%20de%20l%27offre%20d%27insertion%20pour%20votre%20territoire.%20Dora%20est%20un%20outil%20mis%20%C3%A0%20votre%20disposition%20que%20vous%20pouvez%20pr%C3%A9senter%20%C3%A0%20vos%20partenaires%20d%C3%A8s%20que%20vous%20le%20souhaitez%20%21%0A%0A%23%23%23%20B.%20Vous%20travaillez%20pour%20une%20structure%20de%20l%27insertion%20qui%20propose%20des%20services%20%C3%A0%20des%20personnes%20en%20situation%20d%27insertion%20%3F%0A%0AR%C3%A9f%C3%A9rencez%20votre%20offre%20de%20service%20sur%20%5BDora%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%29%20%21%0A%0APour%20quoi%20faire%20%3F%0A%0A-%20rendre%20visible%20votre%20offre%20aupr%C3%A8s%20des%20prescripteurs%20et%20des%20financeurs%0A-%20recevoir%20des%20orientations%20mieux%20qualifi%C3%A9es%0A-%20mettre%20%C3%A0%20jour%20collaborativement%20et%20en%20temps%20r%C3%A9el%20vos%20informations%20%28contact%2C%20horaires%2C%20adresse%2C%20disponibilit%C3%A9...%29%0A-%20un%20lien%20unique%20de%20votre%20page%20structure%20avec%20tous%20vos%20services%20r%C3%A9f%C3%A9renc%C3%A9s%20%C3%A0%20partager%0A%0A%23%23%23%20C.%20Vous%20travaillez%20pour%20une%20structure%20qui%20accompagne%20des%20b%C3%A9n%C3%A9ficiaires%20en%20situation%20d%27insertion%20%3F%0A%0Ale%20service%20Dora%20est%20d%C3%A9j%C3%A0%20implant%C3%A9%20sur%20votre%20territoire%20%3F%0A%0A-%20rendez-vous%20sur%20%3Chttps%3A%2F%2Fdora.inclusion.beta.gouv.fr%3E%20pour%20rechercher%20des%20services%20pour%20lever%20les%20freins%20p%C3%A9riph%C3%A9riques%20des%20b%C3%A9n%C3%A9ficiaires%20que%20vous%20accompagnez.%5C%0A%20%20%20_Astuce%20%F0%9F%92%A1%3A%20mettez%20le%20lien%20en%20favori%20%E2%AD%90%20pour%20gagner%20du%20temps%20en%20entretien%20quand%20un%20frein%20p%C3%A9riph%C3%A9rique%20est%20diagnostiqu%C3%A9._%0A-%20consultez%20la%20%5Bpage%20statistique%20Dora%20et%20la%20carte%20d%27%C3%A9tat%20du%20d%C3%A9ploiement%20de%20l%27outil%5D%28https%3A%2F%2Fdora.inclusion.beta.gouv.fr%2Fstats%29.%0AEnfin%2C%20pour%20en%20savoir%20plus%20sur%20le%20service%20Dora%20%3A%0A%0A-%20%F0%9F%93%B0%20abonnez%20vous%20%C3%A0%20la%20%5Blettre%20d%27information%5D%28https%3A%2F%2Fd4c653e7.sibforms.com%2Fserve%2FMUIEAEkY4naptXBIq5NdRg5UPxP1wmwbGCinne5c1gynY-wfrZ0Dz0QP_NqkXtfyYqhdaq3AO8VFZJ9giRi9ZT0eah7Ut2U0LeKSTVIHQb_5nhvTLUMWXo9ZMeIYCHVlzmjkXGQ66S5ewcYpSADUgV--2RVZ_mrnsRJQoCNwZ8y-sWzfQsEzfKuTA7SLbZ_dWeqaigudym3EaiHT%29%0A-%20%F0%9F%8E%A4%20assistez%20%C3%A0%20l%27un%20de%20%5Bnos%20webinaires%5D%28https%3A%2F%2Fapp.livestorm.co%2Fdora-1%29%0A-%20%F0%9F%94%8E%20Consultez%20notre%20espace%20d%27%5Baide%20et%20de%20documentation%5D%28https%3A%2F%2Faide.dora.inclusion.beta.gouv.fr%2Ffr%2F%29%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-01-25", - "end": "2021-05-06" - }, - { - "name": "construction", - "start": "2021-05-09", - "end": "2021-10-29" - }, - { - "name": "acceleration", - "start": "2021-11-01", - "end": "" - } - ], - "sponsors": [ - "francetravail", - "mtei", - "mtfp" - ], - "thematiques": [ - "Travail / Emploi", - "Open-Data" - ], - "dashlord_url": "https://dashlord.incubateur.net/tag/dora/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "gip-inclusion" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": null, - "summary": { - "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-25T10:54:00.000Z", - "testsslGrade": "A+", - "githubRepositoryGrade": "A" - } - }, - { - "404": null, - "url": "https://api.app.eva.beta.gouv.fr", - "category": "dinum", - "repositories": [ - "betagouv/eva-serveur" - ], - "betaId": "eva", - "tags": [ - "api" - ], - "tools": { - "lighthouse": false, - "thirdparties": false, - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false, - "dsfr": false, - "ecoindex": false, - "screenshot": false - }, - "http": { - "url": "https://api.app.eva.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:49:39 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "cache-control": "max-age=0, private, must-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 20 Oct 2024 13:49:36 GMT", - "etag": "W/\"fa6dcfac68497fe3d849c0e2c19e73a2\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", - "referrer-policy": "strict-origin-when-cross-origin", - "server": "Apache", - "set-cookie": "_session_id=sSO6nQ0BU5Z7PnRzO8rXW4KJXfowZDYT7lDxR%2BdtyzN5RrpGjN2yoBZ%2FvU1sE9w8uNiSs8HNOKrX5Z9BdfPWtrQ2uOmOKGZ6qmDJ6xW4IZzMepodQt6JJQJsBCOulR7Aac9CSGANt7aBSBSSSV3CFTqYKgPonIfwYrog8Lsu3QVH2c9D0pm%2FTRjlHrWCI0xN%2BzRFxAbgf9KYPBFp1YqZekEANTwmGVCFHIDbVxWVHa1LYzetDCXPZOX3abE%2BkAF6ZYmt%2Fq5snXCeLoaiWfkuk6zrgw%3D%3D--KLZ3K5BMnGGjpJTj--ydhsfitSF6rP5Lerr9CtEg%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", - "strict-transport-security": "max-age=63072000; includeSubDomains", - "transfer-encoding": "chunked", - "vary": "Accept,Origin", - "via": "1.1 eva.beta.gouv.fr, 1.1 alproxy", - "x-content-type-options": "nosniff", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "20df341d-7905-4da9-ab27-dda9bfa45116, 20df341d-7905-4da9-ab27-dda9bfa45116", - "x-runtime": "0.013426", - "x-xss-protection": "0" - }, - "scan_id": 57065634, - "score": 70, - "start_time": "Sun, 20 Oct 2024 13:49:33 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": { - "_session_id": { - "domain": "eva.beta.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": "Lax", - "secure": true - } - }, - "sameSite": true - }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions-and-samesite", - "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", - "score_modifier": 5 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://eva.beta.gouv.fr/pro/admin/login", - "redirects": true, - "route": [ - "http://api.app.eva.beta.gouv.fr/", - "https://eva.beta.gouv.fr/pro", - "https://eva.beta.gouv.fr/pro/admin/dashboard", - "https://eva.beta.gouv.fr/pro/admin/login" - ], - "status_code": 302 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "strict-origin-when-cross-origin", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000; includeSubDomains", - "includeSubDomains": true, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "p5rz", - "url": "https://api.app.eva.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-18T15:43:20Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:934467329", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T16:58:52Z", - "next_check_at": "2024-11-24T17:58:48Z", - "created_at": "2021-04-22T21:33:37Z", - "mute_until": "forever", - "favicon_url": "https://eva.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:59:52Z", - "expires_at": "2025-01-16T07:06:38Z", - "valid": true, - "error": null - }, - "metrics": {}, - "uptimeGrade": "A" - }, - "nmap": { - "host": "api.app.eva.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Apache", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "product": "Apache", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472447,7 +469606,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472455,7 +469614,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472463,7 +469622,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472471,7 +469630,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -472479,7 +469638,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -472487,449 +469646,491 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (42)" }, { "id": "cert_notBefore", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-18 07:06" + "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "2025-01-16 07:06" + "severity": "MEDIUM", + "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" }, { "id": "certificate_transparency", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732470636" + "finding": "1733075886" }, { - "id": "HSTS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "id": "HSTS_time", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Apache" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "id": "X-Frame-Options", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "default-src 'none'" + }, + { + "id": "Cache-Control", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "via: 1.1 alproxy" + "finding": "--" }, { "id": "heartbleed", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -472938,7 +470139,7 @@ }, { "id": "CCS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -472947,7 +470148,7 @@ }, { "id": "ticketbleed", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -472956,7 +470157,7 @@ }, { "id": "ROBOT", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -472965,7 +470166,7 @@ }, { "id": "secure_renego", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -472973,7 +470174,7 @@ }, { "id": "secure_client_renego", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -472982,7 +470183,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -472991,7 +470192,7 @@ }, { "id": "BREACH", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -473000,7 +470201,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -473009,14 +470210,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -473025,7 +470226,7 @@ }, { "id": "FREAK", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -473034,7 +470235,7 @@ }, { "id": "DROWN", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -473043,16 +470244,16 @@ }, { "id": "DROWN_hint", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EDA595238EB791AE5EAEC38188A04402C82B712340BA181F99B9AB90D1BD9665" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" }, { "id": "LOGJAM", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -473061,16 +470262,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -473079,7 +470280,7 @@ }, { "id": "LUCKY13", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -473088,7 +470289,7 @@ }, { "id": "winshock", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -473097,7 +470298,7 @@ }, { "id": "RC4", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -473106,353 +470307,367 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "api.app.eva.beta.gouv.fr/185.31.40.25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "52" + "finding": "375" } ], "thirdparties": null, "wappalyzer": { "urls": { - "https://api.app.eva.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://api.app.eva.beta.gouv.fr/ (https://api.app.eva.beta.gouv.fr/)" + "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/": { + "status": 200 } }, "technologies": [ { - "slug": "apache-http-server", - "name": "Apache HTTP Server", - "description": "Apache is a free and open-source cross-platform web server software.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Apache.svg", - "website": "https://httpd.apache.org/", - "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "express", + "name": "Express", + "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", + "confidence": 100, + "version": null, + "icon": "Express.svg", + "website": "https://expressjs.com", + "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, { "id": 22, "slug": "web-servers", @@ -473460,6 +470675,24 @@ } ], "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true } ] }, @@ -473475,52 +470708,51 @@ "declaration-a11y": null, "declaration-rgpd": null, "betagouv": { - "id": "eva", + "id": "data-subvention", "type": "startup", "attributes": { - "name": "eva", - "pitch": "Favoriser l’insertion en identifiant les difficultés avec les compétences de base et en valorisant les compétences transversales acquises", - "stats_url": "https://eva.beta.gouv.fr/statistiques/", - "link": "https://eva.beta.gouv.fr/", - "repository": "https://github.com/betagouv/eva/", - "contact": "contact@eva.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0APour%20les%20personnes%20ne%20disposant%20pas%20de%20dipl%C3%B4mes%2C%20d%E2%80%99exp%C3%A9rience%20professionnelle%0Aprobante%20ou%20pour%20celles%20les%20plus%20%C3%A9loign%C3%A9es%20du%20march%C3%A9%20de%20l%E2%80%99emploi%2C%20l%E2%80%99acc%C3%A8s%20%C3%A0%0Al%E2%80%99emploi%20et%2Fou%20la%20formation%20est%20un%20enjeu%20national.%20%0ALa%20non-ma%C3%AEtrise%20des%20comp%C3%A9tences%20de%20base%20%28langagi%C3%A8res%2C%20math%C3%A9matiques%20et%20num%C3%A9riques%29%20impacte%20fortement%20la%20vie%20quotidienne%2C%20l%27employabilit%C3%A9%20et%20l%27autonomie%20des%20usagers.%0A2%20500%20000%20personnes%20en%20France%20sont%20aujourd%27hui%20en%20difficult%C3%A9%20avec%20la%20lecture%20ou%20les%20math%C3%A9matiques%20%28chiffres%20INSEE%202012%29.%20%0A%0ALe%20rep%C3%A9rage%20et%20la%20prise%20en%20charge%20des%20difficult%C3%A9s%20avec%20les%20comp%C3%A9tences%20de%20base%20au%20plus%20t%C3%B4t%20sont%20essentiels%20pour%20%C3%A9viter%20les%20ruptures%20de%20parcours%2C%20les%20abandons%20en%20cours%20de%20formation%20et%20les%20orientations%20vers%20l%27emploi%20inad%C3%A9quates.%20Cette%20%C3%A9tape%20de%20positionnement%20des%20comp%C3%A9tences%20des%20usagers%20est%20parfois%20difficilement%20accessible%20pour%20les%20acteurs%20de%20l%27insertion%20%28Missions%20locales%2C%20agences%20France%20Travail%2C%20Cap%20emploi%2C%20France%20Services%2C%20etc.%29%2C%20qui%20ne%20disposent%20pas%20d%27outil%20facile%20%C3%A0%20prendre%20en%20main%2C%20rapide%20et%20ludique%20pour%20prescrire%20des%20%C3%A9valuations.%0A%0AL%27orientation%20vers%20des%20solutions%20de%20rem%C3%A9diations%20%28formations%20%22comp%C3%A9tences%20de%20base%22%29%20peut%20%C3%A9galement%20s%27av%C3%A9rer%20complexe%20si%20elle%20ne%20s%27appuie%20pas%20sur%20la%20valorisation%20et%20la%20mise%20en%20confiance%20de%20l%27usagers%2C%20vis-%C3%A0-vis%20des%20comp%C3%A9tences%20ma%C3%AEtris%C3%A9es%20%28transversales%2C%20cognitives%2C%20certaines%20comp%C3%A9tences%20de%20base%29.%20Alors%20que%20le%20CV%20ne%0Arepr%C3%A9sente%20que%2020%25%20de%20l%E2%80%99employabilit%C3%A9%20d%E2%80%99un%20candidat%2C%20l%E2%80%99approche%20par%20les%0Acomp%C3%A9tences%20cognitives%20et%20transversales%20doit%20%C3%AAtre%20privil%C3%A9gi%C3%A9e%2C%20car%20elle%20permet%0Ade%20favoriser%20l%E2%80%99apprentissage%20et%20ouvre%20aux%20potentialit%C3%A9s.%0A%0A%23%23%20Solution%0A%0ALe%20service%20eva%20propose%20diff%C3%A9rents%20parcours%20d%27%C3%A9valuation%20des%20comp%C3%A9tences%20au%20travers%20de%20modules%20ludiques%2C%20inspir%C3%A9s%20des%20jeux%20vid%C3%A9o%20s%C3%A9rieux%2C%20pour%20un%20public%20%C3%A9loign%C3%A9%20du%0Amarch%C3%A9%20de%20l%E2%80%99emploi%2C%20notamment%20les%20personnes%20en%20situation%20d%E2%80%99illettrisme.%0A%0AEn%20novembre%202019%2C%20le%20produit%20qui%20s%27appelait%20Comp%C3%A9tences%20pro%20a%20chang%C3%A9%20de%20nom%20pour%20eva.%0A%0AEn%20septembre%202021%2C%20le%20service%20eva%20a%20%C3%A9t%C3%A9%20p%C3%A9rennis%C3%A9%20au%20sein%20de%20l%27Agence%20nationale%20de%20lutte%20contre%20l%27illettrisme.%0A%0A%23%23%20Mission%2C%20objectif%20et%20cible%0A%0A%23%23%23%20Missions%0A%0ANotre%20mission%20principale%20est%20de%20proposer%20aux%20acteurs%20de%20l%27insertion%2C%20de%20la%20formation%20et%20de%20l%27emploi%20un%20outil%20de%20positionnement%20des%20comp%C3%A9tence%20et%20de%20rep%C3%A9rage%20des%20difficult%C3%A9s%2C%20qui%20permet%20d%E2%80%99acc%C3%A9l%C3%A9rer%0Al%E2%80%99insertion%20ou%20le%20retour%20%C3%A0%20l%E2%80%99emploi%20ou%20%C3%A0%20la%20formation.%20%0A%0AEva%20teste%20la%20ma%C3%AEtrise%20des%20comp%C3%A9tences%20de%20base%20%28litt%C3%A9racie%20et%20num%C3%A9racie%29%20ainsi%20que%20plusieurs%20comp%C3%A9tences%20transversales%20et%20cognitives%2C%20parmi%20les%20plus%20recherch%C3%A9es%20pour%20les%0Am%C3%A9tiers%20peu%20qualifi%C3%A9s.%20Ce%20positionnement%20des%20comp%C3%A9tences%20est%20compl%C3%A9t%C3%A9%20par%20une%20valorisation%20des%20potentiel%20des%20candidats%20en%20lien%20avec%20les%20comp%C3%A9tences%20%22m%C3%A9tiers%22.%0A%0AEn%20privil%C3%A9giant%20des%20modules%20de%20test%20ludiques%20qui%20s%27appuient%20sur%20des%20contextes%20professionnels%2C%20le%20positionnement%20avec%20eva%20se%20d%C3%A9marque%20des%20%C3%A9valuations%20scolaires%20et%20constitue%20un%20outil%20accessible%20de%20rep%C3%A9rage%20de%20l%27illettrisme%20et%20de%20l%27innum%C3%A9risme.%0A%0A%23%23%23%20Objectifs%0A%0AL%E2%80%99objectif%20prioritaire%20d%27eva%20est%20de%20fournir%20des%20%C3%A9l%C3%A9ments%20factuels%0Ade%20positionnement%20des%20comp%C3%A9tences%20de%20base%20%28litt%C3%A9racie%20et%20num%C3%A9racie%29%20et%20de%20certaines%20comp%C3%A9tences%20transversales%20en%20vue%20d%E2%80%99identifier%20les%20dispositifs%20adapt%C3%A9s%20et%20de%0Afaciliter%20l%E2%80%99orientation%20vers%20%3A%0A%0A-%20Des%20formations%20%22comp%C3%A9tences%20de%20base%22%20%28ateliers%20de%20p%C3%A9dagogie%20personnalis%C3%A9e%2C%20CL%C3%A9A%2C%20dispositifs%20r%C3%A9gionaux%20comme%20Lectio%2C%20Pr%C3%A9pa%20Clefs%2C%20OCB%2C%20etc.%29%0A-%20Des%20formations%20professionnelles%20%28notamment%20dispens%C3%A9es%20par%20les%20OFA%20%2F%20CFA%2C%20les%20OPCOs%20des%20secteurs%20en%20tension%29.%0A-%20Des%20entreprises%20de%20secteurs%20en%20tension%20cherchant%20%C3%A0%20recruter%20des%20profils%20disposant%20des%20comp%C3%A9tences%20transversales%20recherch%C3%A9es%20et%20volontaires%20pour%20former%20leurs%20salari%C3%A9s%20sur%20les%20comp%C3%A9tences%20de%20base.%0A%0AL%E2%80%99objectif%20secondaire%20est%20de%20permettre%20%C3%A0%20un%20public%20souvent%20d%C3%A9valoris%C3%A9%20et%20en%0Aperte%20de%20confiance%2C%20d%E2%80%99identifier%20des%20points%20forts%20dans%20leur%20profil%20et%20ainsi%0Aouvrir%20des%20perspectives%20et%20d%E2%80%99engager%20le%20public%20en%20recherche%20dans%20une%20d%C3%A9marche%0Aactive%20et%20impliqu%C3%A9e%2C%20en%20les%20remobilisant.%0A%0A%23%23%23%20Cibles%0A%0A-%20Jeunes%20accueillis%20en%20Missions%20locales%2C%20en%20CEJ%20et%20%22CEJ%20jeunes%20en%20rupture%22%0A-%20Recrues%20du%20Service%20Militaire%20Adapt%C3%A9%0A-%20Apprentis%20et%20stagiaires%20de%20la%20formation%20professionnelle%0A-%20Demandeurs%20d%27emploi%20%28dont%20DE%20longue%20dur%C3%A9e%29%0A-%20B%C3%A9n%C3%A9ficiaires%20du%20RSA%0A-%20Jeunes%20sans%20dipl%C3%B4me%0A-%20Public%20en%20situation%20d%27illettrisme%20%287%25%20de%20la%20population%20fran%C3%A7aise%29%0A%0A%23%23%20Indicateurs%20d%27impact%0A%0A-%20Nombre%20d%27usagers%20rep%C3%A9r%C3%A9s%20en%20difficult%C3%A9s%20et%20pris%20en%20charge%20%C3%A0%20l%27issue%20de%20l%27%C3%A9valuation%0A-%20Nombre%20d%27usagers%20ayant%20int%C3%A9gr%C3%A9%20une%20formation%20%22comp%C3%A9tences%20de%20base%22%20ou%20un%20emploi%20suite%20%C3%A0%20l%27utilisation%20de%20l%27outil%0A", + "name": "Data.Subvention", + "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", + "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", + "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", + "link": "https://datasubvention.beta.gouv.fr", + "repository": "https://github.com/betagouv/api-subventions-asso", + "contact": "contact@datasubvention.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", "events": [ { - "name": "national_impact", - "date": "2023-12-31", - "comment": "" + "name": "fast", + "date": "2024-01-01", + "comment": "Lauréat du FAST 13. " + }, + { + "name": "other", + "date": "2024-06-10", + "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" } ], "phases": [ - { - "name": "investigation", - "start": "2018-06-06", - "end": "" - }, { "name": "construction", - "start": "2018-06-06", - "end": "" - }, - { - "name": "transfer", - "start": "2021-09-01", + "start": "2022-01-03", "end": "" }, { - "name": "success", - "start": "2023-12-30", + "name": "acceleration", + "start": "2024-06-10", "end": "" } ], "sponsors": [ - "anlci", - "dgefp", - "hcc" + "djepva" ], - "thematiques": [], - "accessibility_status": "non conforme" + "thematiques": [ + "Subventions", + "Data", + "Open-Data" + ], + "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { @@ -473535,29 +470767,31 @@ "sonarcloud": null, "dsfr": null, "summary": { - "httpGrade": "B", - "uptime": 100, + "httpGrade": "B+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.991, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-16T07:06:00.000Z", - "testsslGrade": "A", + "testsslExpireDate": "2025-01-12T23:59:00.000Z", + "testsslGrade": "A+", "githubRepositoryGrade": "A" } }, { "404": null, - "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "title": "Backend data-subvention (préprod)", + "url": "http://api.datasubvention.beta.gouv.fr", + "title": "Backend data-subvention", "category": "dinum", "repositories": [ "betagouv/api-subventions-asso" ], "tags": [ "data-subvention", - "staging", + "production", "api" ], "betaId": "data-subvention", @@ -473573,9 +470807,9 @@ "screenshot": false }, "http": { - "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "url": "http://api.datasubvention.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:50:55 GMT", + "end_time": "Sun, 20 Oct 2024 13:59:43 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -473586,7 +470820,7 @@ "Content-Length": "174", "Content-Security-Policy": "default-src 'none'", "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 20 Oct 2024 13:50:54 GMT", + "Date": "Sun, 20 Oct 2024 13:59:42 GMT", "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "RateLimit": "limit=80, remaining=79, reset=60", "RateLimit-Policy": "80;w=60", @@ -473595,11 +470829,11 @@ "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Powered-By": "Express", - "X-Request-ID": "8d1d02a5-617f-4104-9c7d-0a535b6c3824" + "X-Request-ID": "ea24fdd7-954d-45b9-b417-366da6d9c771" }, - "scan_id": 57065718, + "scan_id": 57065831, "score": 80, - "start_time": "Sun, 20 Oct 2024 13:50:53 GMT", + "start_time": "Sun, 20 Oct 2024 13:59:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -473668,10 +470902,10 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "http://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "destination": "http://api.datasubvention.beta.gouv.fr/", "redirects": false, "route": [ - "http://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/" + "http://api.datasubvention.beta.gouv.fr/" ], "status_code": 200 }, @@ -473755,14 +470989,14 @@ } }, "updownio": { - "token": "9v1i", - "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "token": "wgjs", + "url": "http://api.datasubvention.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.991, + "uptime": 99.995, "down": false, "down_since": null, - "up_since": "2024-11-24T10:40:13Z", + "up_since": "2024-11-28T17:07:32Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -473773,36 +471007,30 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T17:54:47Z", - "next_check_at": "2024-11-24T17:55:46Z", + "last_check_at": "2024-12-01T18:05:31Z", + "next_check_at": "2024-12-01T18:06:31Z", "created_at": "2024-01-15T14:02:08Z", "mute_until": null, "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:45:47Z", - "expires_at": "2025-01-12T23:59:59Z", - "valid": true, - "error": null - }, "metrics": { "apdex": 1, "timings": { "redirect": 0, - "namelookup": 11, - "connection": 155, - "handshake": 160, - "response": 160, - "total": 486 + "namelookup": 93, + "connection": 133, + "handshake": 0, + "response": 136, + "total": 362 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "host": "api.datasubvention.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -473828,77 +471056,77 @@ "testssl": [ { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473906,7 +471134,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473914,7 +471142,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473922,7 +471150,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473930,7 +471158,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -473938,7 +471166,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -473946,483 +471174,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-16 23:42" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-14 23:42" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732470682" + "finding": "1733075993" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -474430,7 +471651,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -474439,7 +471660,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -474448,7 +471669,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -474457,7 +471678,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -474466,7 +471687,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -474474,7 +471695,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -474483,7 +471704,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -474492,7 +471713,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -474501,7 +471722,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -474510,14 +471731,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -474526,7 +471747,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -474535,7 +471756,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -474544,16 +471765,16 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -474562,7 +471783,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -474571,7 +471792,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -474580,7 +471801,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -474589,7 +471810,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -474598,7 +471819,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -474607,392 +471828,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475000,7 +472221,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475008,7 +472229,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475016,7 +472237,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475024,7 +472245,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -475032,7 +472253,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -475040,483 +472261,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-16 23:42" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-14 23:42" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732470733" + "finding": "1733076086" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -475524,7 +472738,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -475533,7 +472747,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -475542,7 +472756,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -475551,7 +472765,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -475560,7 +472774,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -475568,7 +472782,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -475577,7 +472791,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -475586,7 +472800,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -475595,7 +472809,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -475604,14 +472818,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -475620,7 +472834,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -475629,7 +472843,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -475638,16 +472852,16 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -475656,7 +472870,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -475665,7 +472879,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -475674,7 +472888,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -475683,7 +472897,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -475692,7 +472906,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -475701,392 +472915,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476094,7 +473308,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476102,7 +473316,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476110,7 +473324,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476118,7 +473332,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476126,7 +473340,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476134,483 +473348,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-16 23:42" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-14 23:42" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732470784" + "finding": "1733076177" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -476618,7 +473825,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -476627,7 +473834,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -476636,7 +473843,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -476645,7 +473852,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -476654,7 +473861,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -476662,7 +473869,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -476671,7 +473878,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -476680,7 +473887,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -476689,7 +473896,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -476698,14 +473905,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -476714,7 +473921,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -476723,7 +473930,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -476732,16 +473939,16 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476750,7 +473957,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476759,7 +473966,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -476768,7 +473975,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -476777,7 +473984,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -476786,7 +473993,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -476795,392 +474002,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477188,7 +474395,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477196,7 +474403,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477204,7 +474411,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477212,7 +474419,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477220,7 +474427,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477228,483 +474435,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-01-02 00:00" + "finding": "2024-10-16 23:42" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-12 23:59" + "severity": "OK", + "finding": "2025-01-14 23:42" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://ocsp.sectigo.com" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com" + "severity": "LOW", + "finding": "--" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-08-02 00:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2033-08-01 23:59" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732470834" + "finding": "1733076270" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -477712,7 +474912,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -477721,7 +474921,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -477730,7 +474930,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -477739,7 +474939,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -477748,7 +474948,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -477756,7 +474956,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -477765,7 +474965,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -477774,7 +474974,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -477783,7 +474983,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -477792,14 +474992,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -477808,7 +475008,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -477817,7 +475017,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -477826,16 +475026,16 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=87D6BAB07D593141C0A8074031292398D212D296CF6DB0DB291888AC615A51C1" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477844,7 +475044,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477853,7 +475053,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -477862,7 +475062,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -477871,7 +475071,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -477880,7 +475080,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -477889,331 +475089,331 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "206" + "finding": "373" } ], "thirdparties": null, "wappalyzer": { "urls": { - "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/": { + "http://api.datasubvention.beta.gouv.fr/": { "status": 200 } }, @@ -478352,106 +475552,65 @@ "httpGrade": "B+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.991, + "uptime": 99.995, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-12T23:59:00.000Z", + "testsslExpireDate": "2025-01-14T23:42:00.000Z", "testsslGrade": "A+", "githubRepositoryGrade": "A" } }, { "404": null, - "url": "http://api.datasubvention.beta.gouv.fr", - "title": "Backend data-subvention", + "url": "https://agir.beta.gouv.fr", "category": "dinum", - "repositories": [ - "betagouv/api-subventions-asso" - ], - "tags": [ - "data-subvention", - "production", - "api" - ], - "betaId": "data-subvention", - "tools": { - "lighthouse": false, - "thirdparties": false, - "declaration-rgpd": false, - "declaration-a11y": false, - "stats": false, - "budget_page": false, - "dsfr": false, - "ecoindex": false, - "screenshot": false - }, + "title": "Agir", + "betaId": "france.nation.verte.agir", "http": { - "url": "http://api.datasubvention.beta.gouv.fr", + "url": "https://agir.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 13:59:43 GMT", - "grade": "B+", + "end_time": "Sun, 20 Oct 2024 14:03:45 GMT", + "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Access-Control-Allow-Headers": "sentry-trace, baggage", - "Cache-Control": "max-age 1800", "Connection": "keep-alive", - "Content-Length": "174", - "Content-Security-Policy": "default-src 'none'", - "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 20 Oct 2024 13:59:42 GMT", - "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", - "RateLimit": "limit=80, remaining=79, reset=60", - "RateLimit-Policy": "80;w=60", - "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", - "Vary": "Origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "DENY", - "X-Powered-By": "Express", - "X-Request-ID": "ea24fdd7-954d-45b9-b417-366da6d9c771" + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:03:45 GMT", + "ETag": "W/\"670f88e7-2b7\"", + "Last-Modified": "Wed, 16 Oct 2024 09:35:35 GMT", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Request-ID": "dca5fb19-06bc-465c-8432-a461c9faa644", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57065831, - "score": 80, - "start_time": "Sun, 20 Oct 2024 13:59:41 GMT", + "scan_id": 57065947, + "score": 45, + "start_time": "Sun, 20 Oct 2024 14:03:43 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, + "tests_failed": 4, + "tests_passed": 6, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "default-src": [ - "'none'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-no-unsafe-default-src-none", - "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", - "score_modifier": 10 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -478470,31 +475629,32 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "https://http-observatory.security.mozilla.org", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "http://api.datasubvention.beta.gouv.fr/", - "redirects": false, + "destination": "https://jagis.beta.gouv.fr/", + "redirects": true, "route": [ - "http://api.datasubvention.beta.gouv.fr/" + "http://agir.beta.gouv.fr/", + "https://jagis.beta.gouv.fr/" ], - "status_code": 200 + "status_code": 301 }, "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -478513,10 +475673,10 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=63072000; includeSubDomains; preload", - "includeSubDomains": true, - "max-age": 63072000, - "preload": true, + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, "preloaded": false }, "pass": true, @@ -478531,31 +475691,31 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -478571,14 +475731,14 @@ } }, "updownio": { - "token": "wgjs", - "url": "http://api.datasubvention.beta.gouv.fr", + "token": "iwei", + "url": "https://agir.beta.gouv.fr", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-21T15:12:47Z", + "up_since": "2024-11-30T09:42:17Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -478589,30 +475749,36 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T18:02:08Z", - "next_check_at": "2024-11-24T18:03:08Z", - "created_at": "2024-01-15T14:02:08Z", + "last_check_at": "2024-12-01T18:13:51Z", + "next_check_at": "2024-12-01T18:14:51Z", + "created_at": "2024-02-25T01:08:44Z", "mute_until": null, "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:11:56Z", + "expires_at": "2025-02-28T03:06:00Z", + "valid": true, + "error": null + }, "metrics": { "apdex": 1, "timings": { - "redirect": 0, - "namelookup": 100, - "connection": 136, - "handshake": 0, - "response": 139, - "total": 374 + "redirect": 635, + "namelookup": 149, + "connection": 123, + "handshake": 128, + "response": 126, + "total": 1160 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "api.datasubvention.beta.gouv.fr", + "host": "agir.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -478638,77 +475804,77 @@ "testssl": [ { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478716,7 +475882,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478724,7 +475890,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478732,7 +475898,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478740,7 +475906,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -478748,7 +475914,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -478756,476 +475922,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-16 23:42" + "finding": "2024-11-30 03:06" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-01-14 23:42" + "finding": "2025-02-28 03:06" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732471149" + "finding": "1733076499" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "id": "security_headers", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "max-age 1800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -479233,7 +476378,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -479242,7 +476387,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -479251,7 +476396,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -479260,7 +476405,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -479269,7 +476414,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -479277,7 +476422,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -479286,7 +476431,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -479295,7 +476440,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -479304,7 +476449,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -479313,14 +476458,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -479329,7 +476474,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -479338,7 +476483,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -479347,16 +476492,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1D3C6729C3B9133A82F41899A7BE0D941EA628292268E3EF892CBCBC1546E6AF" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -479365,7 +476510,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -479374,7 +476519,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -479383,7 +476528,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -479392,7 +476537,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -479401,7 +476546,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -479410,392 +476555,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "agir.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479803,7 +476948,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479811,7 +476956,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479819,7 +476964,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479827,7 +476972,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -479835,7 +476980,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -479843,476 +476988,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-10-16 23:42" + "finding": "2024-11-30 03:06" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-01-14 23:42" + "finding": "2025-02-28 03:06" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732471199" + "finding": "1733076593" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "id": "security_headers", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "max-age 1800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -480320,7 +477444,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -480329,7 +477453,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -480338,7 +477462,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -480347,7 +477471,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -480356,7 +477480,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -480364,7 +477488,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -480373,7 +477497,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -480382,7 +477506,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -480391,7 +477515,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -480400,14 +477524,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -480416,7 +477540,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -480425,7 +477549,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -480434,16 +477558,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1D3C6729C3B9133A82F41899A7BE0D941EA628292268E3EF892CBCBC1546E6AF" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -480452,7 +477576,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -480461,7 +477585,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -480470,7 +477594,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -480479,7 +477603,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -480488,7 +477612,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -480497,392 +477621,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "agir.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -480890,7 +478014,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -480898,7 +478022,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -480906,7 +478030,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -480914,7 +478038,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -480922,7 +478046,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -480930,476 +478054,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-16 23:42" + "finding": "2024-11-30 03:06" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-14 23:42" + "finding": "2025-02-28 03:06" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732471249" + "finding": "1733076688" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "max-age 1800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -481407,7 +478510,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -481416,7 +478519,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -481425,7 +478528,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -481434,7 +478537,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -481443,7 +478546,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -481451,7 +478554,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -481460,7 +478563,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -481469,7 +478572,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -481478,7 +478581,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -481487,14 +478590,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -481503,7 +478606,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -481512,7 +478615,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -481521,16 +478624,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1D3C6729C3B9133A82F41899A7BE0D941EA628292268E3EF892CBCBC1546E6AF" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -481539,7 +478642,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -481548,7 +478651,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -481557,7 +478660,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -481566,7 +478669,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -481575,7 +478678,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -481584,392 +478687,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "agir.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481977,7 +479080,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481985,7 +479088,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481993,7 +479096,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482001,7 +479104,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482009,7 +479112,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482017,476 +479120,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-16 23:42" + "finding": "2024-11-30 03:06" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-14 23:42" + "finding": "2025-02-28 03:06" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732471298" + "finding": "1733076783" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Express" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "id": "security_headers", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "max-age 1800" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -482494,7 +479576,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -482503,7 +479585,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -482512,7 +479594,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -482521,7 +479603,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -482530,7 +479612,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -482538,7 +479620,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -482547,7 +479629,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -482556,7 +479638,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -482565,7 +479647,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -482574,14 +479656,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -482590,7 +479672,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -482599,7 +479681,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -482608,16 +479690,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=DDB400E5606A59468DDA7600547EE63783719AAE41354035108345C882502710" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1D3C6729C3B9133A82F41899A7BE0D941EA628292268E3EF892CBCBC1546E6AF" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482626,7 +479708,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482635,7 +479717,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -482644,7 +479726,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -482653,7 +479735,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -482662,7 +479744,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -482671,375 +479753,501 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "agir.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "202" + "finding": "383" } ], - "thirdparties": null, - "wappalyzer": { - "urls": { - "http://api.datasubvention.beta.gouv.fr/": { - "status": 200 + "thirdparties": { + "trackers": [ + { + "type": "hotjar", + "url": "https://static.hotjar.com/c/hotjar-3765115.js?sv=6", + "details": { + "id": "hotjar", + "message": "Dont use HotJar" + } + } + ], + "cookies": [ + { + "name": "_pk_ses.40.d1c7", + "value": "1", + "domain": "jagis.beta.gouv.fr", + "path": "/", + "expires": 1733078186, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.40.d1c7", + "value": "ba7111f68c5e1854.1733076386.", + "domain": "jagis.beta.gouv.fr", + "path": "/", + "expires": 1767031586, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } + ], + "headers": { + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 18:06:23 GMT", + "etag": "W/\"674063cf-2ca\"", + "last-modified": "Fri, 22 Nov 2024 10:58:23 GMT", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-request-id": "be856e86-ff04-4aed-9c6b-257c3fc63190" }, - "technologies": [ + "endpoints": [ { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "hostname": "agir.beta.gouv.fr", + "ip": "148.253.96.193", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } } - ] + } }, { - "slug": "express", - "name": "Express", - "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", - "confidence": 100, - "version": null, - "icon": "Express.svg", - "website": "https://expressjs.com", - "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" + "hostname": "static.hotjar.com", + "ip": "3.169.183.92", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } } - ], - "rootPath": true - }, + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://agir.beta.gouv.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://agir.beta.gouv.fr/ (https://agir.beta.gouv.fr/)" + } + }, + "technologies": [ { "slug": "hsts", "name": "HSTS", @@ -483055,68 +480263,236 @@ "slug": "security", "name": "Security" } - ], - "rootPath": true + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://agir.beta.gouv.fr/", + "finalUrl": "https://jagis.beta.gouv.fr/", + "fetchTime": "2024-12-01T18:05:56.930Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://agir.beta.gouv.fr/) was redirected to https://jagis.beta.gouv.fr/. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.29 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9377, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 4431, + "firstMeaningfulPaint": 4540, + "largestContentfulPaint": 9250, + "interactive": 9377, + "speedIndex": 6933, + "totalBlockingTime": 400, + "maxPotentialFID": 180, + "cumulativeLayoutShift": 0.9418629523383247, + "cumulativeLayoutShiftMainFrame": 0.9418629523383247, + "totalCumulativeLayoutShift": 0.9418629523383247, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 414803369, + "observedNavigationStart": 0, + "observedNavigationStartTs": 414803369, + "observedFirstPaint": 1771, + "observedFirstPaintTs": 416574051, + "observedFirstContentfulPaint": 1771, + "observedFirstContentfulPaintTs": 416574051, + "observedFirstContentfulPaintAllFrames": 1771, + "observedFirstContentfulPaintAllFramesTs": 416574051, + "observedFirstMeaningfulPaint": 1771, + "observedFirstMeaningfulPaintTs": 416574051, + "observedLargestContentfulPaint": 2034, + "observedLargestContentfulPaintTs": 416837157, + "observedLargestContentfulPaintAllFrames": 2034, + "observedLargestContentfulPaintAllFramesTs": 416837157, + "observedTraceEnd": 4807, + "observedTraceEndTs": 419610337, + "observedLoad": 2491, + "observedLoadTs": 417294444, + "observedDomContentLoaded": 1734, + "observedDomContentLoadedTs": 416537491, + "observedCumulativeLayoutShift": 0.9418629523383247, + "observedCumulativeLayoutShiftMainFrame": 0.9418629523383247, + "observedTotalCumulativeLayoutShift": 0.9418629523383247, + "observedFirstVisualChange": 1779, + "observedFirstVisualChangeTs": 416582369, + "observedLastVisualChange": 2396, + "observedLastVisualChangeTs": 417199369, + "observedSpeedIndex": 2040, + "observedSpeedIndexTs": 416843326 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 69, + "numScripts": 6, + "numStylesheets": 2, + "numFonts": 5, + "numTasks": 1969, + "numTasksOver10ms": 8, + "numTasksOver25ms": 5, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 1.4499999999999993, + "throughput": 21824920.23686193, + "maxRtt": 156.208, + "maxServerLatency": 139.94600000000003, + "totalByteWeight": 2173722, + "totalTaskTime": 484.67899999999486, + "mainDocumentTransferSize": 654 + } + ] + } + } } - ] + } + ], + "screenshot": true, + "stats": { + "grade": "A" }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": null, "github_repository": { "grade": "A" }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://agir.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://agir.beta.gouv.fr/mentions-legales" + }, + { + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://agir.beta.gouv.fr/politique-de-confidentialite" + } + ], "betagouv": { - "id": "data-subvention", + "id": "france.nation.verte.agir", "type": "startup", "attributes": { - "name": "Data.Subvention", - "pitch": "Rassembler les informations sur les associations et leurs subventions pour simplifier la vie des associations et des agents publics", - "stats_url": "https://blog.datasubvention.beta.gouv.fr/statistiques/", - "budget_url": "https://datasubvention.beta.gouv.fr/budgets/", - "link": "https://datasubvention.beta.gouv.fr", - "repository": "https://github.com/betagouv/api-subventions-asso", - "contact": "contact@datasubvention.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20La%20valeur%20de%20Data.Subvention%0A%0ALa%20valeur%20de%20Data%E2%80%A7Subvention%20repose%20sur%20sa%20capacit%C3%A9%20%C3%A0%20offrir%20aux%20agents%20publics%2C%20en%20un%20point%20centralis%C3%A9%2C%20les%20donn%C3%A9es%20relatives%20aux%20subventions%20associatives%20les%20plus%20diversifi%C3%A9es%2C%20les%20plus%20riches%20et%20les%20plus%20r%C3%A9guli%C3%A8rement%20actualis%C3%A9es%20possibles%2C%20pour%20le%20bon%20accomplissement%20de%20leurs%20missions%20d%E2%80%99instruction%20et%20au%20b%C3%A9n%C3%A9fice%20des%20associations%20par%20la%20r%C3%A9duction%20des%20sollicitations%20administratives%20qui%20leur%20sont%20faites.%0A%0A%23%23%20Le%20sujet%20des%20subventions%20publiques%20aux%20associations%0A%0ALes%20associations%20occupent%20une%20place%20essentielle%20dans%20la%20vie%20collective%20de%20la%20Nation%2C%20ce%20secteur%20est%20%C3%A0%20la%20fois%20un%20vecteur%20de%20coh%C3%A9sion%20sociale%20et%20un%20acteur%20%C3%A9conomique%20majeur%20%3A%20elles%20sont%201%2C3%20million%2C%20comptent%2021%20millions%20d%E2%80%99adh%C3%A9rents%2C%2013%20millions%20de%20b%C3%A9n%C3%A9voles.%20170%20000%20d%E2%80%99entre%20elles%20sont%20employeuses%2C%20totalisent%20pr%C3%A8s%20d%E2%80%991%2C8%20million%20de%20salari%C3%A9s%20%E2%80%93%20soit%20pr%C3%A8s%20de%2010%20%25%20des%20emplois%20priv%C3%A9s.%0A%0ALes%20subventions%20publiques%20aux%20associations%20repr%C3%A9sentent%2023%20milliards%20d%E2%80%99Euros.%20Elles%20sont%20vers%C3%A9es%20par%20des%20services%20de%20l%E2%80%99Etat%2C%20des%20op%C3%A9rateurs%20et%20des%20collectivit%C3%A9s%20territoriales.%20Elles%20repr%C3%A9sentent%2020%25%20du%20budget%20consolid%C3%A9%20des%20associations.%20%0A%0AEn%202023%2C%20le%20total%20des%20versements%20r%C3%A9alis%C3%A9s%20par%20l%E2%80%99Etat%20%C3%A0%20ce%20secteur%20sous%20forme%20de%20subventions%2C%20se%20monte%20%C3%A0%208%2C5%20milliards%20d%E2%80%99euros%2C%20imput%C3%A9es%20sur%20pas%20moins%20de%2096%20programmes%20budg%C3%A9taires%20diff%C3%A9rents.%0A%0ACes%20soutiens%20sont%20apport%C3%A9s%20apr%C3%A8s%20que%20les%20associations%20les%20aient%20demand%C3%A9s%2C%20par%20r%C3%A9daction%20d%E2%80%99une%20demande%20adress%C3%A9e%20aupr%C3%A8s%20de%20diff%C3%A9rents%20services%20de%20l%E2%80%99%C3%89tat%2C%20qui%20ont%20de%20leur%20cot%C3%A9%20instruit%2C%20r%C3%A9uni%20les%20instances%20de%20d%C3%A9cision%2C%20et%20mis%20en%20paiement%20les%20subventions.%0A%0A%23%23%20Probl%C3%A8me%0A%0ACot%C3%A9%20Associations%20%3A%20Demander%20une%20subvention%20est%20une%20d%C3%A9marche%20longue%20r%C3%A9p%C3%A9titive%20pour%20une%20association%20et%20consiste%20souvent%20%C3%A0%20d%C3%A9poser%20des%20pi%C3%A8ces%20administratives%20d%C3%A9j%C3%A0%20connues%20par%20d%E2%80%99autres%20autorit%C3%A9s%20publiques%20%3A%20ces%20sur-sollicitations%20peuvent%20g%C3%A9n%C3%A9rer%20aussi%20un%20sentiment%20d%E2%80%99incompr%C3%A9hension%20et%20de%20lassitude%20vis-%C3%A0-vis%20des%20d%C3%A9marches%20administratives.%0A%0ACot%C3%A9%20administrations%20%3A%20%20la%20d%C3%A9mat%C3%A9rialisation%20des%20d%C3%A9marches%20de%20demande%2C%20d%C3%A9cision%20et%20paiement%20s%27est%20faite%20en%20silo%2C%20conduisant%20%C3%A0%20des%20donn%C3%A9es%20%C3%A9parpill%C3%A9es%20dans%20une%20grande%20diversit%C3%A9%20de%20syst%C3%A8mes%20d%E2%80%99information%2C%20d%E2%80%99instruction%2C%20de%20gestion%20et%20de%20mise%20en%20paiement%2C%20emp%C3%AAchant%20d%E2%80%99atteindre%20un%20r%C3%A9el%20%C2%AB%20dites-le-nous%20une%20fois%20%C2%BB.%0A%0AApr%C3%A8s%20plusieurs%20r%C3%A9unions%20interminist%C3%A9rielles%20en%202021%20sur%20l%E2%80%99enjeu%20d%E2%80%99am%C3%A9liorer%20le%20pilotage%20des%20subventions%20de%20l%E2%80%99Etat%2C%20le%20Premier%20ministre%20a%20confi%C3%A9%20%C3%A0%20la%20direction%20de%20la%20jeunesse%2C%20de%20l%E2%80%99%C3%A9ducation%20populaire%20et%20de%20la%20vie%20associative%20%28DJEPVA%29%20et%20%C3%A0%20la%20direction%20interminist%C3%A9rielle%20du%20num%C3%A9rique%20%28DINUM%29%20la%20responsabilit%C3%A9%20de%20b%C3%A2tir%20un%20nouveau%20service%20num%C3%A9rique%20d%C3%A9nomm%C3%A9%20Data.Subvention%2C%20pour%20collecter%20et%20repartager%20des%20donn%C3%A9es%20consolid%C3%A9es%20et%20compl%C3%A8tes.%0A%0A%0A%23%23%20Construction%0A%0ADepuis%20le%20mois%20de%20janvier%202022%2C%20la%20startup%20d%E2%80%99%C3%89tat%20Data.Subvention%20construit%20ce%20service%20destin%C3%A9%20aux%20agents%20publics%20qui%20leur%20permet%20concr%C3%A8tement%20de%20%3A%0A%0A-%20Consulter%20les%20informations%20administratives%20disponibles%20sur%20les%20associations%20%28administrateurs%2C%20agr%C3%A9ments%29%0A-%20Consulter%20et%20prendre%20connaissance%20des%20subventions%20vers%C3%A9es%20par%20l%E2%80%99Etat%20%20et%20des%20demandes%20d%C3%A9pos%C3%A9es%20via%20des%20outils%20de%20gestion%20aupr%C3%A8s%20d%E2%80%99autres%20services%20%0A-%20Gagner%20du%20temps%20dans%20la%20r%C3%A9cup%C3%A9ration%20des%20informations%0A-%20Enrichir%20les%20travaux%20d%E2%80%99observation%20ou%20de%20suivi%20des%20b%C3%A9n%C3%A9ficiaires%20au%20plan%20territorial%2C%20sous%20le%20prisme%0A%0AData.Subvention%20est%20donc%20compos%C3%A9e%20%3A%0A%0A-%20de%20l%27API%20Data.Subvention%20%3A%20collecte%20les%20donn%C3%A9es%20dans%20les%20diff%C3%A9rents%20outils%20de%20d%C3%A9mat%C3%A9rialisation%2C%20%20la%20raffine%20pour%20la%20rendre%20r%C3%A9utilisable%20par%20d%27autres%20plateformes.%0A%0A-%20d%E2%80%99un%20portail%20qui%20pr%C3%A9sente%20ces%20donn%C3%A9es%20de%20fa%C3%A7on%20simple%20%C3%A0%20aux%20agents%20inscrits%20sur%20https%3A%2F%2Fapp.datasubvention.beta.gouv.fr%2F%20.%20%0A%0ASi%20le%20portail%20%C3%A9tait%20envisag%C3%A9%20initialement%20comme%20une%20solution%20temporaire%20avant%20int%C3%A9gration%20de%20l%E2%80%99API%20dans%20des%20solutions%20tierces%2C%20il%20reste%20indispensable%20pour%20des%20administrations%20d%C3%A9pourvues%20de%20solution%20num%C3%A9rique.%0A%0ALA%20mesure%20d%27impact%20porte%20sur%20les%20%C3%A9conomies%20g%C3%A9n%C3%A9r%C3%A9es%20par%20les%20gains%20d%20temps%20obtenus%20lors%20des%20instructions%20de%20demandes%20de%20subventions.%0A%0A%23%23%20Les%20%C3%A9tapes%20de%20d%C3%A9veloppement%0A%0AData%E2%80%A7Subvention%20est%20progressivement%20d%C3%A9ploy%C3%A9%20au%20plan%20national%20et%20territorial%2C%20aupr%C3%A8s%20des%20administrations%20centrales%20et%20d%C3%A9concentr%C3%A9es%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0A-%20Janvier%2022%20%3A%20livraison%20du%20premier%20produit%20minimum%20viable%20%0A-%20Avril%2022%20-%20Septembre%202022%20%3A%201ere%20phase%20de%20construction%20avec%20les%20r%C3%A9gions%20Occitanie%20et%20Pays%20de%20la%20Loire%20%28test%20aupr%C3%A8s%20des%20agents%20et%20adaptations%20aux%20besoins%20et%20usages%29%0A-%20Octobre%2022%20%C3%A0%20juin%202023%20%3A%20%202eme%20phase%20de%20construction%20%C3%A9largie%20%C3%A0%203%20nouvelles%20r%C3%A9gions%20%3A%20Bretagne%2C%20Hauts-de-France%20et%20Nouvelle-Aquitaine%20%3A%20Objectif%20inscription%20de%20la%20solution%20dans%20les%20services%20territoriaux%E2%80%A7%0A-%20Juillet%202023%20%3A%20mise%20dispo%20de%20l%27open%20Data%20sur%20GITHUB%0A-%20Septembre%2023%20%C3%A0%20f%C3%A9vrier%2024%20%3A%20passage%20r%C3%A9ussi%20%C3%A0%20l%27%C3%A9chelle%20nationale%2C%20avec%20le%20soutien%20du%20FAST%20%28Fonds%20d%E2%80%99Acc%C3%A9l%C3%A9ration%20des%20Startups%20d%E2%80%99%C3%89tat%29.%0A%0A%23%23%20Solution%20en%20Consolidation%0A%0A-%20Mai%202024%20%3A%20laur%C3%A9ats%20du%20FTAP%20DATA%20%21%0A%0AAvec%20ce%20soutien%2C%20Data.Subvention%20s%27est%20engag%C3%A9%20dans%20une%20nouvelle%20%C3%A9tape%20afin%20de%20faire%20face%20%C3%A0%20de%20nouveaux%20d%C3%A9fis.%0A%0AIl%20ne%20pourra%20y%20avoir%20de%20partage%20public%20des%20donn%C3%A9es%20des%20subventions%20vers%C3%A9es%20aux%20associations%2C%20sans%20ach%C3%A8vement%20de%20la%20compl%C3%A9tude%20%3A%20r%C3%A9colter%20et%20repartager%20l%E2%80%99ensemble%20des%20versements%20de%20l%E2%80%99Etat%20a%20constitu%C3%A9%20une%20grande%20avanc%C3%A9e%2C%20mais%20y%20adjoindre%20les%20donn%C3%A9es%20des%20collectivit%C3%A9s%20et%20des%20op%C3%A9rateurs%20est%20indispensable%20pour%20donner%20une%20vision%20compl%C3%A8te.%0A%0AL%27absence%20de%20compl%C3%A9tude%20constitue%20un%20risque%20de%20d%C3%A9fiance%20des%20citoyens%20envers%20la%20donn%C3%A9e%20%28C%E2%80%99est%20pas%20complet%20%3D%20c%E2%80%99est%20faux%29.%0A%0ANous%20nous%20concentrons%20donc%20dans%20cette%20nouvelle%20phase%20au%20d%C3%A9fi%20de%20la%20compl%C3%A9tude%20des%20donn%C3%A9es%20%3A%20exhaustivit%C3%A9%2C%20intelligibilit%C3%A9%20et%20circulation%20accrue.%0A%0A1.%20Exhaustivit%C3%A9%20%3A%20C%27est%20d%27abord%20rendre%20accessibles%20les%20donn%C3%A9es%20actuelles%20aux%20collectivit%C3%A9s%20ou%20aux%20op%C3%A9rateurs%20et%20int%C3%A9grer%20les%20leurs.%20C%27est%20aussi%20d%C3%A9velopper%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20de%20nouveaux%20profils%20m%C3%A9tiers%20%28pilotes%20%2F%20Contr%C3%B4leurs%29%20en%20plus%20des%20instructeurs.%0A%0A2.%20Intelligibilit%C3%A9%20%3A%20rendre%20notre%20r%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%20facile%20%C3%A0%20comprendre%20et%20utiliser%20pour%20nos%20fournisseurs%20et%20consommateurs%2C%20%20en%20lien%20%C3%A9troit%20avec%20Data.Gouv.%0A%0A3.%20Circulation%20accrue%20%3A%20garantir%20une%20donn%C3%A9e%20la%20plus%20fra%C3%AEche%20possible%20pour%20un%20r%C3%A9emploi%20performant%20par%20des%20tiers%20%28Data.Budget.Etat%20%3B%20Annuaire%20des%20Entreprises%2C%20D%C3%A9marches%20Simplifi%C3%A9es%2C%20les%20divers%20logiciels%20de%20gestion%20des%20minist%C3%A8res%20Subventia%2C%20Osiris%2C%20Fonjep%20...%29%20ou%20par%20nous%20%28Portail%29.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Lauréat du FAST 13. " - }, - { - "name": "other", - "date": "2024-06-10", - "comment": "Lauréat du FTAP Data : Exploitation et valorisation des données" - } - ], + "name": "France Nation Verte / J'agis", + "pitch": "Accompagner les citoyens de manière personnalisée dans la transition écologique", + "stats_url": "https://jagis.beta.gouv.fr/statistiques", + "link": "https://jagis.beta.gouv.fr", + "repository": "https://github.com/betagouv/agir-back", + "contact": "contact@agir.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20Secr%C3%A9tariat%20G%C3%A9n%C3%A9ral%20%C3%A0%20la%20Planification%20%C3%89cologique%20%28SGPE%29%20souhaite%20accompagner%20les%20citoyens%20dans%20la%20transition%20%C3%A9cologique%20pour%20leur%20proposer%20des%20solutions%20concr%C3%A8tes%20et%20%C3%A9volutives.%0A%0A%0A%23%23%20Probl%C3%A8me%0A%0ALa%20transition%20%C3%A9cologique%20est%20l%C3%A0%20et%20touche%20tous%20les%20pans%20de%20la%20vie%20des%20citoyens.%0AComplexe%20et%20diffuse%2C%20elle%20pose%20des%20probl%C3%A8mes%20concrets%20en%20mati%C3%A8re%20d%27alimentation%2C%20de%20logement%2C%20de%20consommation%2C%20de%20mobilit%C3%A9%20et%20plus%20g%C3%A9n%C3%A9ralement%20de%20pr%C3%A9servation%20du%20vivant.%0A%0APrincipaux%20probl%C3%A8mes%20identifi%C3%A9s%20%3A%0A-%20complexit%C3%A9%20et%20diversit%C3%A9%20des%20sujets%20%3B%0A-%20multiplicit%C3%A9%20des%20sources%2C%20parfois%20contradictoires%20%3B%0A-%20tonalit%C3%A9%20anxiog%C3%A8ne%20voire%20conflictuelle%20%3B%0A-%20manque%20d%27adaptation%20des%20solutions%20%C3%A0%20la%20diversit%C3%A9%20des%20r%C3%A9alit%C3%A9s.%0A%0A%0A%23%23%20Solution%0A%0AAccompagner%20chaque%20citoyen%20de%20mani%C3%A8re%20ludique%2C%20en%20partant%20de%20ses%20contraintes%2C%20ses%20usages%2C%20ses%20moyens%2C%20ses%20envies%20pour%20lui%20proposer%20les%20solutions%20les%20plus%20personnalis%C3%A9es%20possibles%2C%20et%20lui%20permettre%20de%20s%27informer%20et%20d%27avancer%20%C3%A0%20son%20rythme.%0A%0A%23%23%20Strat%C3%A9gie%0A%0APlusieurs%20exp%C3%A9rimentations%20locales%20sont%20pr%C3%A9vues%20dans%20l%27objectif%20de%20d%C3%A9velopper%20le%20service%20au%20plus%20pr%C3%A8s%20des%20contraintes%20des%20usagers%20issus%20de%20territoires%20vari%C3%A9s%2C%20et%20d%27%C3%A9quiper%20les%20collectivit%C3%A9s%20pour%20leur%20permettre%20de%20mettre%20en%20valeur%20les%20initiatives%20locales.", + "events": [], "phases": [ { - "name": "construction", - "start": "2022-01-03", + "name": "investigation", + "start": "2023-02-01", "end": "" }, { - "name": "acceleration", - "start": "2024-06-10", + "name": "construction", + "start": "2023-06-01", "end": "" } ], "sponsors": [ - "djepva" + "sgpe" ], "thematiques": [ - "Subventions", - "Data", - "Open-Data" + "Écologie" ], - "dashlord_url": "https://dashlord.incubateur.net/tag/data-subvention/", - "accessibility_status": "partiellement conforme" + "dashlord_url": "https://dashlord.incubateur.net/url/agir-beta-gouv-fr/best-practices/", + "accessibility_status": "non conforme" }, "relationships": { "incubator": { @@ -483127,11 +480503,29 @@ } } }, - "ecoindex": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://agir.beta.gouv.fr", + "size": 2489.481, + "nodes": 405, + "requests": 51, + "grade": "C", + "score": 61, + "ges": 1.78, + "water": 2.67, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:02:54.636874", + "page_type": null + } + ], "sonarcloud": null, - "dsfr": null, + "dsfr": { + "detected": true + }, "summary": { - "httpGrade": "B+", + "httpGrade": "C-", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -483140,43 +480534,65 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-14T23:42:00.000Z", + "testsslExpireDate": "2025-02-28T03:06:00.000Z", "testsslGrade": "A+", - "githubRepositoryGrade": "A" + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.29, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" } }, { "404": null, - "url": "https://agir.beta.gouv.fr", + "url": "https://refugies.info", "category": "dinum", - "title": "Agir", - "betaId": "france.nation.verte.agir", + "betaId": "refugies.info", "http": { - "url": "https://agir.beta.gouv.fr", + "url": "https://refugies.info", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:03:45 GMT", - "grade": "C-", + "end_time": "Sun, 20 Oct 2024 14:09:34 GMT", + "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Connection": "keep-alive", + "Alt-Svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:03:45 GMT", - "ETag": "W/\"670f88e7-2b7\"", - "Last-Modified": "Wed, 16 Oct 2024 09:35:35 GMT", + "Date": "Sun, 20 Oct 2024 14:09:32 GMT", + "Server": "Google Frontend", "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding", - "X-Request-ID": "dca5fb19-06bc-465c-8432-a461c9faa644", - "strict-transport-security": "max-age=31536000" + "Via": "1.1 google", + "cache-control": "s-maxage=600, stale-while-revalidate", + "content-type": "text/html; charset=utf-8", + "etag": "\"qinzm08vd24z0m\"", + "vary": "Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js" }, - "scan_id": 57065947, - "score": 45, - "start_time": "Sun, 20 Oct 2024 14:03:43 GMT", + "scan_id": 57066039, + "score": 25, + "start_time": "Sun, 20 Oct 2024 14:09:31 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, + "tests_failed": 5, + "tests_passed": 5, "tests_quantity": 10, "details": { "content-security-policy": { @@ -483225,18 +480641,19 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://jagis.beta.gouv.fr/", + "destination": "https://refugies.info:443/fr", "redirects": true, "route": [ - "http://agir.beta.gouv.fr/", - "https://jagis.beta.gouv.fr/" + "http://refugies.info/", + "https://refugies.info:443/", + "https://refugies.info:443/fr" ], - "status_code": 301 + "status_code": 200 }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -483255,27 +480672,32 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", + "data": null, "includeSubDomains": false, - "max-age": 31536000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "https://plausible.io/js/script.tagged-events.js": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -483313,14 +480735,14 @@ } }, "updownio": { - "token": "iwei", - "url": "https://agir.beta.gouv.fr", + "token": "id4f", + "url": "https://refugies.info", "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T08:50:42Z", + "up_since": "2024-11-23T23:18:02Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -483331,36 +480753,36 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T18:13:47Z", - "next_check_at": "2024-11-24T18:14:46Z", - "created_at": "2024-02-25T01:08:44Z", + "last_check_at": "2024-11-24T18:10:36Z", + "next_check_at": "2024-11-24T18:11:35Z", + "created_at": "2024-03-24T01:11:12Z", "mute_until": null, - "favicon_url": null, + "favicon_url": "https://refugies.info/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T18:10:51Z", - "expires_at": "2024-12-30T03:04:37Z", + "tested_at": "2024-11-24T18:07:38Z", + "expires_at": "2025-01-03T06:04:40Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.993, "timings": { - "redirect": 708, - "namelookup": 151, - "connection": 146, - "handshake": 149, - "response": 146, - "total": 1299 + "redirect": 247, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 184, + "total": 432 } }, "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { - "host": "agir.beta.gouv.fr", + "host": "refugies.info", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -483374,6 +480796,7 @@ { "service": { "name": "https", + "product": "Google Frontend", "id": "443", "vulnerabilities": [] } @@ -483386,77 +480809,77 @@ "testssl": [ { "id": "service", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "LOW", + "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "http/1.1" + "finding": "http/1.1grpc-exp" }, { "id": "cipherlist_NULL", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483464,7 +480887,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483472,7 +480895,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483480,7 +480903,7 @@ }, { "id": "cipherlist_LOW", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483488,479 +480911,535 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "INFO", + "severity": "MEDIUM", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_OBSOLETED", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "offered" }, + { + "id": "cipher_order-tls1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, + { + "id": "cipher_order-tls1_1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-SHA" + }, { "id": "cipher_order-tls1_2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'server name/#0' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 60 days (39)" }, { "id": "cert_notBefore", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "2024-10-01 03:04" + "finding": "2024-10-05 05:12" }, { "id": "cert_notAfter", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "OK", - "finding": "2024-12-30 03:04" + "severity": "MEDIUM", + "finding": "2025-01-03 06:04" }, { "id": "cert_extlifeSpan", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/wr3/nMI7ramGKcs.crl" }, { "id": "cert_ocspURL", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://o.pki.goog/s/wr3/x8I" }, { "id": "OCSP_stapling", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "WR3 (Google Trust Services from US)" }, { "id": "intermediate_cert <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "2FE357DB13751FF9160E87354975B3407498F41C9BD16A48657866E6E5A9B4C7" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "WR3 <-- GTS Root R1" }, { - "id": "intermediate_cert_badOCSP", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "intermediate_cert <#2>", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "HTTP_clock_skew", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notBefore <#2>", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2020-06-19 00:00" }, { - "id": "HTTP_headerTime", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notAfter <#2>", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "1732471813" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "HSTS_time", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "intermediate_cert_badOCSP", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HSTS_subdomains", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "HTTP_status_code", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "308 Permanent Redirect ('/')" }, { - "id": "HSTS_preload", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "id": "HTTP_clock_skew", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "1732471780" + }, + { + "id": "HSTS", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Google Frontend" }, { "id": "banner_application", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "--" + "finding": "Via: 1.1 google" }, { "id": "heartbleed", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -483969,7 +481448,7 @@ }, { "id": "CCS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -483978,7 +481457,7 @@ }, { "id": "ticketbleed", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -483987,16 +481466,16 @@ }, { "id": "ROBOT", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -484004,7 +481483,7 @@ }, { "id": "secure_client_renego", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -484013,7 +481492,7 @@ }, { "id": "CRIME_TLS", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -484022,7 +481501,7 @@ }, { "id": "BREACH", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -484031,7 +481510,7 @@ }, { "id": "POODLE_SSL", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -484040,23 +481519,23 @@ }, { "id": "fallback_SCSV", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" + "finding": "supported" }, { "id": "SWEET32", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", "cwe": "CWE-327", - "finding": "not vulnerable" + "finding": "uses 64 bit block ciphers" }, { "id": "FREAK", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -484065,7 +481544,7 @@ }, { "id": "DROWN", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -484074,16 +481553,16 @@ }, { "id": "DROWN_hint", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2EE399C06C2AE48AF41DF160F2EE741ECD81C650B2E18AC86956D60BBBEBB39C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D9CF7A4D0E7C3AC0D7E6F5FFE33117FCDFB670A19F71AD99A6A6B9CD277051E0" }, { "id": "LOGJAM", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -484092,34 +481571,43 @@ }, { "id": "LOGJAM-common_primes", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST_CBC_TLS1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-SHA AES128-SHA AES256-SHA DES-CBC3-SHA" }, { "id": "BEAST", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2011-3389", "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" + "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" }, { "id": "LUCKY13", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -484128,7 +481616,7 @@ }, { "id": "RC4", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -484137,392 +481625,1889 @@ }, { "id": "clientsimulation-android_60", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 DES-CBC3-SHA" }, { "id": "clientsimulation-ie_11_win7", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "28" }, { "id": "key_exchange_score", - "ip": "agir.beta.gouv.fr/148.253.96.193", + "ip": "refugies.info/34.120.26.1", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "agir.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "id": "key_exchange_score_weighted", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "79" + }, + { + "id": "overall_grade", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "MEDIUM", + "finding": "B" + }, + { + "id": "grade_cap_reason_1", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.1 offered" + }, + { + "id": "grade_cap_reason_2", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to B. TLS 1.0 offered" + }, + { + "id": "grade_cap_reason_3", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "refugies.info/34.120.26.1", + "port": "443", + "severity": "INFO", + "finding": "56" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://plausible.io/js/script.tagged-events.js" + }, + { + "type": "google tag manager", + "url": "https://www.googletagmanager.com/gtag/js?id=G-0MFNB0ZLJN", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://cdn.matomo.cloud/refugies.matomo.cloud/container_ZxAXaEFC.js" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729519636/pictures/fajgj8dwxlgjcns7efss.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729519882/pictures/rubsfcvscsrwatu9leaf.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729522554/pictures/r84vbm18wrv3drhyucjr.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1730198317/pictures/xbw0strfzhujfpaapwlw.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729522938/pictures/k0ancycfa7abvxfpc97g.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523163/pictures/gd4rdxhuypnexd1n7ix3.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523348/pictures/cne1fxzvolfifpapq4dp.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523565/pictures/odsizlljcsq25mwvu6dp.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523733/pictures/fvpaiiybh9spqjzobxis.svg" + }, + { + "type": "unknown", + "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523894/pictures/x5zro2qrwh64nhrkfan8.svg" + }, + { + "type": "google", + "url": "https://storage.googleapis.com/refugies-info-assets/store-badges/app-store-fr.svg", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google", + "url": "https://storage.googleapis.com/refugies-info-assets/store-badges/google-play-fr.svg", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "google analytics", + "url": "https://www.google-analytics.com/g/collect?v=2&tid=G-0MFNB0ZLJN>m=45je4bk0v9117900830za200&_p=1732471710197&gcs=G100&gcd=13p3p3p3p5l1&npa=1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&cid=1617916443.1732471711&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&frm=0&pscdl=denied&_s=1&sid=1732471711&sct=1&seg=0&dl=https%3A%2F%2Frefugies.info%2Ffr&dt=Accueil%20-%20R%C3%A9fugi%C3%A9s.info&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1959", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + }, + { + "type": "google analytics", + "url": "https://www.google-analytics.com/g/collect?v=2&tid=G-0MFNB0ZLJN>m=45je4bk0v9117900830za200&_p=1732471710197&gcs=G100&gcd=13p3p3p3p5l1&npa=1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&cid=1617916443.1732471711&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&frm=0&pscdl=denied&sid=1732471711&sct=1&seg=0&dl=https%3A%2F%2Frefugies.info%2Ffr&dt=Accueil%20-%20R%C3%A9fugi%C3%A9s.info&_s=2&tfd=6965", + "details": { + "id": "google analytics", + "message": "Use hosted Matomo instance" + } + } + ], + "cookies": [], + "headers": { + "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", + "cache-control": "s-maxage=600, stale-while-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 24 Nov 2024 18:08:29 GMT", + "etag": "\"4hpzksponr29d6\"", + "server": "Google Frontend", + "vary": "Accept-Encoding", + "via": "1.1 google", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js" + }, + "endpoints": [ + { + "hostname": "refugies.info", + "ip": "34.120.26.1", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "de": "Missouri", + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "plausible.io", + "ip": "138.199.40.58", + "geoip": { + "city": { + "geoname_id": 5128581, + "names": { + "de": "New York City", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 40.7123, + "longitude": -74.0068, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "10118" + }, + "registered_country": { + "geoname_id": 2635167, + "iso_code": "GB", + "names": { + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" + } + }, + "subdivisions": [ + { + "geoname_id": 5128638, + "iso_code": "NY", + "names": { + "de": "New York", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク州", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк", + "zh-CN": "纽约州" + } + } + ] + } + }, + { + "hostname": "www.googletagmanager.com", + "ip": "142.251.167.97", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdn.matomo.cloud", + "ip": "3.167.99.104", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "res.cloudinary.com", + "ip": "104.17.202.1", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "storage.googleapis.com", + "ip": "142.251.179.207", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.google-analytics.com", + "ip": "142.251.167.101", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.28.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://refugies.info/": { + "status": 308 + }, + "https://refugies.info/fr": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "google-cloud", + "name": "Google Cloud", + "description": "Google Cloud is a suite of cloud computing services.", + "confidence": 100, + "version": null, + "icon": "Google Cloud.svg", + "website": "https://cloud.google.com", + "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 63, + "slug": "iaas", + "name": "IaaS" + } + ] + }, + { + "slug": "styled-components", + "name": "styled-components", + "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "confidence": 100, + "version": "6.1.13", + "icon": "styled-components.svg", + "website": "https://styled-components.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.10", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ] + }, + { + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "google-analytics", + "name": "Google Analytics", + "description": "Google Analytics is a free web analytics service that tracks and reports website traffic.", + "confidence": 100, + "version": null, + "icon": "Google Analytics.svg", + "website": "https://google.com/analytics", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ] + }, + { + "slug": "cloudinary", + "name": "Cloudinary", + "description": "Cloudinary is an end-to-end image- and video-management solution for websites and mobile apps, covering everything from image and video uploads, storage, manipulations, optimisations to delivery.", + "confidence": 100, + "version": null, + "icon": "Cloudinary.svg", + "website": "https://cloudinary.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + }, + { + "id": 95, + "slug": "digital-asset-management", + "name": "Digital asset management" + } + ] + }, + { + "slug": "google-cloud-cdn", + "name": "Google Cloud CDN", + "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", + "confidence": 100, + "version": null, + "icon": "google-cloud-cdn.svg", + "website": "https://cloud.google.com/cdn", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ] + }, + { + "slug": "sendinblue", + "name": "Sendinblue", + "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", + "confidence": 100, + "version": null, + "icon": "Sendinblue.svg", + "website": "https://www.sendinblue.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "google-workspace", + "name": "Google Workspace", + "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", + "confidence": 100, + "version": null, + "icon": "Google.svg", + "website": "https://workspace.google.com/", + "cpe": null, + "categories": [ + { + "id": 30, + "slug": "webmail", + "name": "Webmail" + }, + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://refugies.info/", + "finalUrl": "https://refugies.info/fr", + "fetchTime": "2024-11-24T18:07:50.041Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://refugies.info/) was redirected to https://refugies.info/fr. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.24 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.93 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.8 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 14889, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2126, + "firstMeaningfulPaint": 3486, + "largestContentfulPaint": 9465, + "interactive": 14889, + "speedIndex": 10171, + "totalBlockingTime": 5124, + "maxPotentialFID": 4390, + "cumulativeLayoutShift": 0.0635681915283203, + "cumulativeLayoutShiftMainFrame": 0.0635681915283203, + "totalCumulativeLayoutShift": 0.0635681915283203, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 462357354, + "observedNavigationStart": 0, + "observedNavigationStartTs": 462357354, + "observedFirstPaint": 1489, + "observedFirstPaintTs": 463845992, + "observedFirstContentfulPaint": 1489, + "observedFirstContentfulPaintTs": 463845992, + "observedFirstContentfulPaintAllFrames": 1489, + "observedFirstContentfulPaintAllFramesTs": 463845992, + "observedFirstMeaningfulPaint": 1489, + "observedFirstMeaningfulPaintTs": 463845992, + "observedLargestContentfulPaint": 1746, + "observedLargestContentfulPaintTs": 464103304, + "observedLargestContentfulPaintAllFrames": 1746, + "observedLargestContentfulPaintAllFramesTs": 464103304, + "observedTraceEnd": 6857, + "observedTraceEndTs": 469214564, + "observedLoad": 3101, + "observedLoadTs": 465458186, + "observedDomContentLoaded": 1182, + "observedDomContentLoadedTs": 463539101, + "observedCumulativeLayoutShift": 0.0635681915283203, + "observedCumulativeLayoutShiftMainFrame": 0.0635681915283203, + "observedTotalCumulativeLayoutShift": 0.0635681915283203, + "observedFirstVisualChange": 1490, + "observedFirstVisualChangeTs": 463847354, + "observedLastVisualChange": 6857, + "observedLastVisualChangeTs": 469214354, + "observedSpeedIndex": 3256, + "observedSpeedIndexTs": 465612875 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 114, + "numScripts": 27, + "numStylesheets": 3, + "numFonts": 6, + "numTasks": 4477, + "numTasksOver10ms": 20, + "numTasksOver25ms": 9, + "numTasksOver50ms": 5, + "numTasksOver100ms": 2, + "numTasksOver500ms": 1, + "rtt": 0, + "throughput": 23567985.320689663, + "maxRtt": 11.149000000000001, + "maxServerLatency": 378.341, + "totalByteWeight": 2068766, + "totalTaskTime": 2438.3819999999805, + "mainDocumentTransferSize": 29028 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://refugies.info/fr/declaration-accessibilite" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "agir.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://refugies.info/fr/mentions-legales" }, { - "id": "cipher_strength_score_weighted", - "ip": "agir.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 8, + "score": 4, + "missingWords": [ + "finalité", + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [ + "googleanalytics" + ], + "declarationUrl": "https://refugies.info/fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "refugies.info", + "type": "startup", + "attributes": { + "name": "Réfugiés.info", + "pitch": "Donner de l'information simple et traduite aux personnes réfugiées et à leurs accompagnants", + "stats_url": "https://kit.refugies.info/stats", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#R%C3%A9fugi%C3%A9sinfo", + "link": "https://refugies.info/", + "repository": "https://github.com/refugies-info/karfur", + "contact": "nour@refugies.info", + "content_url_encoded_markdown": "%23%23%20%2A%2AContexte%2A%2A%0A%0AChaque%20ann%C3%A9e%2C%20la%20France%20accueille%20entre%2035%20000%20et%2050%20000%20personnes%20r%C3%A9fugi%C3%A9es%2C%20avec%20une%20tendance%20%C3%A0%20la%20hausse%20due%20aux%20conflits%20g%C3%A9opolitiques%20et%20aux%20migrations%20li%C3%A9es%20au%20changement%20climatique.%20Cependant%2C%20leur%20int%C3%A9gration%20en%20France%20est%20entrav%C3%A9e%20par%20des%20obstacles%20majeurs.%0A%0A%23%23%20%2A%2AProbl%C3%A8me%2A%2A%0A%0ACes%20probl%C3%A8mes%20sont%20principalement%3A%0A%0A1.%20%2A%2ALe%20manque%20d%27information%20et%20le%20non-recours%20aux%20droits%20des%20personnes%20r%C3%A9fugi%C3%A9es%20%3A%2A%2A%C2%A0%C3%89parpillement%20de%20l%27information%2C%20barri%C3%A8re%20de%20la%20langue%2C%20manque%20de%20temps%20et%20de%20compr%C3%A9hension%20du%20syst%C3%A8me%20administratif%20fran%C3%A7ais.%0A2.%20%2A%2ALe%20manque%20d%27outillage%20des%20professionnels%20de%20l%27accompagnement%20%3A%2A%2A%C2%A0Manque%20de%20temps%2C%20de%20formation%2C%20et%20d%27outils%20pour%20aider%20les%20r%C3%A9fugi%C3%A9s.%0A%0A%23%23%20%2A%2ASolution%2A%2A%0A%0AR%C3%A9fugi%C3%A9.info%20propose%20deux%20produits%20compl%C3%A9mentaires%20pour%20simplifier%20l%27int%C3%A9gration%20des%20personnes%20r%C3%A9fugi%C3%A9es%20en%20France%20%3A%0A%0A1.%20%2A%2ASite%20Internet%20Collaboratif%20%3A%2A%2A%C2%A0Notre%20site%20collaboratif%20d%C3%A9di%C3%A9%20aux%20professionnels%20offre%20des%20fiches%20standardis%C3%A9es%20pour%20pr%C3%A9senter%20des%20initiatives%20d%27int%C3%A9gration%20%28cours%20de%20fran%C3%A7ais%2C%20ateliers%20socio-linguistiques%2C%20etc.%29%20et%20simplifier%20les%20d%C3%A9marches%20administratives%20%28logement%20social%2C%20carte%20de%20s%C3%A9jour%2C%20inscription%20%C3%A0%20P%C3%B4le%20emploi%29.%0A2.%20%2A%2AApplication%20Mobile%20Native%20%3A%2A%2A%C2%A0Notre%20application%20mobile%20est%20con%C3%A7ue%20pour%20r%C3%A9pondre%20aux%20besoins%20num%C3%A9riques%20des%20r%C3%A9fugi%C3%A9s.%20Elle%20propose%20un%20acc%C3%A8s%20convivial%20aux%20informations%2C%20permet%20l%27%C3%A9coute%20des%20fiches%20pour%20les%20utilisateurs%20en%20alphab%C3%A9tisation%2C%20et%20facilite%20le%20partage%20d%27informations%2C%20notamment%20par%20SMS%20pour%20les%20accompagnants.%0A%0AToutes%20les%20informations%20sont%20cr%C3%A9%C3%A9es%20de%20mani%C3%A8re%20collaborative%20par%20les%20responsables%20d%27organismes%20publics%2C%20des%20associations%2C%20et%20des%20b%C3%A9n%C3%A9voles.%20Actuellement%2C%20R%C3%A9fugi%C3%A9.info%20offre%20plus%20de%20650%20fiches%2C%20dont%20plus%20de%20100%20fiches%20%22d%C3%A9marches%22%20expliquant%20des%20proc%C3%A9dures%20administratives%20complexes.%20De%20plus%2C%20toutes%20les%20informations%20sont%20disponibles%20en%207%20langues%2C%20couvrant%20les%20langues%20les%20plus%20parl%C3%A9es%20par%20les%20personnes%20prot%C3%A9g%C3%A9es%20en%20France%2C%20gr%C3%A2ce%20%C3%A0%20l%27engagement%20de%20b%C3%A9n%C3%A9voles%20et%20de%20traducteurs%20professionnels.%0A%0A%23%23%20%2A%2AStrat%C3%A9gie%2A%2A%0A%0AAu%20cours%20des%20prochains%20mois%2C%20nous%20souhaitons%20nous%20focaliser%20nos%20efforts%20sur%20diff%C3%A9rentes%20%C3%A9tapes%20du%20parcours%20utilisateur%3A%0A%0A-%20%2A%2AAcquisition%20%3A%2A%2A%C2%A0Objectif%20d%27acqu%C3%A9rir%20120%20000%20travailleurs%20sociaux%20et%20les%20r%C3%A9fugi%C3%A9s%20qu%27ils%20accompagnent%20par%20le%20biais%20de%20partenariats%20nationaux.%0A-%20%2A%2AActivation%20%3A%2A%2A%C2%A0Former%206000%20travailleurs%20sociaux%20sur%20le%20fonctionnement%20de%20R%C3%A9fugi%C3%A9.info.%0A-%20%2A%2AR%C3%A9tention%20%3A%2A%2A%C2%A0Augmenter%20l%27usage%20du%20service%20par%20les%20r%C3%A9fugi%C3%A9s%20gr%C3%A2ce%20%C3%A0%20des%20am%C3%A9liorations%20et%20du%20contenu%20additionnel.%0A-%20%2A%2AImpact%20%3A%2A%2A%C2%A0Mesurer%20le%20gain%20de%20temps%20d%C3%A9clar%C3%A9%20par%20les%20professionnels%20lors%20d%27une%20enqu%C3%AAte%20d%27usages%20et%20mettre%20en%20place%20un%20questionnaire%20de%20satisfaction%20%28NPS%29.%0A", + "events": [ + { + "name": "fast", + "date": "2024-01-01", + "comment": "Montant de 250000€ pour la promotion 13" + } + ], + "phases": [ + { + "name": "acceleration", + "start": "2023-09-25", + "end": "" + } + ], + "sponsors": [ + "diair" + ], + "thematiques": [ + "Social" + ], + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "agir.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + "width": 1920, + "height": 1080, + "url": "https://refugies.info", + "size": 3960.075, + "nodes": 2012, + "requests": 151, + "grade": "F", + "score": 13, + "ges": 2.74, + "water": 4.11, + "ecoindex_version": "5.4.2", + "date": "2024-11-24 18:04:47.065488", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "D-", + "apdex": 0.993, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-03T06:04:00.000Z", + "testsslGrade": "B", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 18, + "lighthouse_performance": 0.24, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.93, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.8, + "lighthouse_pwaGrade": "B", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "F", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://rnb.beta.gouv.fr", + "title": "Homepage présentation RNB", + "betaId": "bat-id", + "category": "fab-geocommuns", + "tags": [ + "geocommun" + ], + "repositories": [ + "fab-geocommuns/RNB-site", + "fab-geocommuns/RNB-coeur" + ], + "http": { + "url": "https://rnb.beta.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:14:52 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Age": "10", + "Cache-Control": "public, max-age=0, must-revalidate", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:12:19 GMT", + "Etag": "W/\"iefe19w1fy10na\"", + "Server": "Vercel", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", + "X-Matched-Path": "/", + "X-Powered-By": "Next.js", + "X-Vercel-Cache": "HIT", + "X-Vercel-Id": "pdx1::iad1::c6zzg-1729433691449-0a43e4d4da82" }, - { - "id": "overall_grade", - "ip": "agir.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "scan_id": 57066554, + "score": 50, + "start_time": "Sun, 20 Oct 2024 14:14:51 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://rnb.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://rnb.beta.gouv.fr/", + "https://rnb.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "0h70", + "url": "https://rnb.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.993, + "down": false, + "down_since": null, + "up_since": "2024-11-28T02:28:22Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:20:07Z", + "next_check_at": "2024-12-01T18:21:06Z", + "created_at": "2024-03-05T17:55:17Z", + "mute_until": null, + "favicon_url": "https://rnb.beta.gouv.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:18:09Z", + "expires_at": "2025-01-09T19:32:38Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 93, + "connection": 3, + "handshake": 23, + "response": 155, + "total": 274 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "rnb.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "product": "Vercel", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "product": "Vercel", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484530,7 +483515,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484538,7 +483523,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484546,7 +483531,7 @@ }, { "id": "cipherlist_LOW", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484554,7 +483539,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -484562,7 +483547,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -484570,455 +483555,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "2024-10-01 03:04" + "finding": "2024-10-11 19:32" }, { "id": "cert_notAfter", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "2024-12-30 03:04" + "finding": "2025-01-09 19:32" }, { "id": "cert_extlifeSpan", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-805529 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "1732271550" + }, + { + "id": "HTTP_headerAge", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "1732471866" + "finding": "0 seconds" }, { "id": "HSTS_time", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Vercel" }, { "id": "banner_application", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "id": "Cache-Control", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "public, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -485026,7 +484025,7 @@ }, { "id": "heartbleed", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -485035,7 +484034,7 @@ }, { "id": "CCS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -485044,7 +484043,7 @@ }, { "id": "ticketbleed", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -485053,7 +484052,7 @@ }, { "id": "ROBOT", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -485062,7 +484061,7 @@ }, { "id": "secure_renego", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -485070,7 +484069,7 @@ }, { "id": "secure_client_renego", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -485079,7 +484078,7 @@ }, { "id": "CRIME_TLS", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -485088,16 +484087,16 @@ }, { "id": "BREACH", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -485106,14 +484105,14 @@ }, { "id": "fallback_SCSV", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -485122,7 +484121,7 @@ }, { "id": "FREAK", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -485131,7 +484130,7 @@ }, { "id": "DROWN", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -485140,16 +484139,16 @@ }, { "id": "DROWN_hint", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2EE399C06C2AE48AF41DF160F2EE741ECD81C650B2E18AC86956D60BBBEBB39C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8A841C8F56FE054EEFA9CFED5CA134E898C9164F8CD10519761E70D5DCB8F665" }, { "id": "LOGJAM", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -485158,7 +484157,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -485167,7 +484166,7 @@ }, { "id": "BEAST", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -485176,7 +484175,7 @@ }, { "id": "LUCKY13", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -485185,7 +484184,7 @@ }, { "id": "winshock", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -485194,7 +484193,7 @@ }, { "id": "RC4", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -485203,392 +484202,2081 @@ }, { "id": "clientsimulation-android_60", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.13.145", + "ip": "rnb.beta.gouv.fr/76.76.21.21", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "rnb.beta.gouv.fr/76.76.21.21", + "port": "443", + "severity": "INFO", + "finding": "44" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://cdn.heapanalytics.com/js/heap-3380454554.js" + }, + { + "type": "unknown", + "url": "https://heapanalytics.com/h?a=3380454554&u=7711935319578672&v=755203670356274&s=6939037162916745&b=web&tv=4.0&z=0&h=%2F&d=rnb.beta.gouv.fr&t=R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents&ts=1733077042212&sch=600&scw=800&st=1733077042216&lv=4.23.4&ld=cdn.heapanalytics.com" + } + ], + "cookies": [ + { + "name": "_hp2_ses_props.3380454554", + "value": "%7B%22ts%22%3A1733077042212%2C%22d%22%3A%22rnb.beta.gouv.fr%22%2C%22h%22%3A%22%2F%22%7D", + "domain": ".beta.gouv.fr", + "path": "/", + "expires": 1733078842, + "size": 112, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Frnb.beta.gouv.fr", + "domain": "rnb.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 61, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__Host-next-auth.csrf-token", + "value": "96a093c11c7f95357490e9e5b5db4a1b22d2d1d2c59958efe474727474c40e99%7C9a6ba13acb049ecc77e3a0022f3c21cbd93c5f241078202133fb1868ee7a6462", + "domain": "rnb.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_hp2_id.3380454554", + "value": "%7B%22userId%22%3A%227711935319578672%22%2C%22pageviewId%22%3A%22755203670356274%22%2C%22sessionId%22%3A%226939037162916745%22%2C%22identity%22%3Anull%2C%22trackerVersion%22%3A%224.0%22%7D", + "domain": ".beta.gouv.fr", + "path": "/", + "expires": 1767154642, + "size": 206, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "age": "24", + "cache-control": "public, max-age=0, must-revalidate", + "content-encoding": "br", + "content-type": "text/html; charset=utf-8", + "date": "Fri, 22 Nov 2024 10:32:30 GMT", + "etag": "W/\"m8anwno17510h1\"", + "server": "Vercel", + "strict-transport-security": "max-age=63072000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", + "x-matched-path": "/", + "x-powered-by": "Next.js", + "x-vercel-cache": "STALE", + "x-vercel-id": "iad1::iad1::gbbgq-1733077041943-2c82c34c6ebf" + }, + "endpoints": [ + { + "hostname": "rnb.beta.gouv.fr", + "ip": "76.76.21.21", + "geoip": { + "city": { + "geoname_id": 5406976, + "names": { + "en": "Walnut", + "ru": "Уолнат", + "zh-CN": "沃尔纳特" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 34.0233, + "longitude": -117.8512, + "metro_code": 803, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "91789" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "cdn.heapanalytics.com", + "ip": "3.162.125.36", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "heapanalytics.com", + "ip": "3.218.56.92", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://rnb.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", + "confidence": 100, + "version": null, + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "uptimerobot", + "name": "UptimeRobot", + "description": "UptimeRobot is a web-based software that is designed to monitor the sites frequently to check whether any site is down owing to server problem or any bug in coding.", + "confidence": 100, + "version": null, + "icon": "UptimeRobot.svg", + "website": "https://uptimerobot.com", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "vercel", + "name": "Vercel", + "description": "Vercel is a cloud platform for static frontends and serverless functions.", + "confidence": 100, + "version": null, + "icon": "vercel.svg", + "website": "https://vercel.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + } + ], + "rootPath": true + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.5", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "vercel-analytics", + "name": "Vercel Analytics", + "description": null, + "confidence": 100, + "version": null, + "icon": "vercel.svg", + "website": "https://vercel.com/analytics", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "heap", + "name": "Heap", + "description": "Heap is an analytics platform.", + "confidence": 100, + "version": "4.23.4", + "icon": "Heap.svg", + "website": "https://heap.io", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://rnb.beta.gouv.fr/", + "finalUrl": "https://rnb.beta.gouv.fr/", + "fetchTime": "2024-12-01T18:16:56.443Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.67 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.87 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.92 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 8467, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1519, + "firstMeaningfulPaint": 1890, + "largestContentfulPaint": 7357, + "interactive": 8467, + "speedIndex": 3602, + "totalBlockingTime": 148, + "maxPotentialFID": 114, + "cumulativeLayoutShift": 0.021340135362413193, + "cumulativeLayoutShiftMainFrame": 0.021340135362413193, + "totalCumulativeLayoutShift": 0.021340135362413193, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 395818430, + "observedNavigationStart": 0, + "observedNavigationStartTs": 395818430, + "observedFirstPaint": 407, + "observedFirstPaintTs": 396225742, + "observedFirstContentfulPaint": 407, + "observedFirstContentfulPaintTs": 396225742, + "observedFirstContentfulPaintAllFrames": 407, + "observedFirstContentfulPaintAllFramesTs": 396225742, + "observedFirstMeaningfulPaint": 407, + "observedFirstMeaningfulPaintTs": 396225742, + "observedLargestContentfulPaint": 495, + "observedLargestContentfulPaintTs": 396313025, + "observedLargestContentfulPaintAllFrames": 495, + "observedLargestContentfulPaintAllFramesTs": 396313025, + "observedTraceEnd": 3040, + "observedTraceEndTs": 398858145, + "observedLoad": 329, + "observedLoadTs": 396147740, + "observedDomContentLoaded": 155, + "observedDomContentLoadedTs": 395973772, + "observedCumulativeLayoutShift": 0.021340135362413193, + "observedCumulativeLayoutShiftMainFrame": 0.021340135362413193, + "observedTotalCumulativeLayoutShift": 0.021340135362413193, + "observedFirstVisualChange": 415, + "observedFirstVisualChangeTs": 396233430, + "observedLastVisualChange": 815, + "observedLastVisualChangeTs": 396633430, + "observedSpeedIndex": 470, + "observedSpeedIndexTs": 396288481 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 69, + "numScripts": 24, + "numStylesheets": 6, + "numFonts": 6, + "numTasks": 1488, + "numTasksOver10ms": 8, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 5.436999999999999, + "throughput": 130529369.04953526, + "maxRtt": 7.0649999999999995, + "maxServerLatency": 6.267000000000001, + "totalByteWeight": 1617781, + "totalTaskTime": 412.912999999998, + "mainDocumentTransferSize": 11214 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://rnb.beta.gouv.fr/accessibilite" + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "bat-id", + "type": "startup", + "attributes": { + "name": "RNB, le Référentiel National des Bâtiments (ex Bat-ID)", + "pitch": "Référencer l’intégralité des bâtiments du territoire français au sein d’un géocommun", + "stats_url": "https://rnb.beta.gouv.fr//stats", + "budget_url": "https://rnb-fr.gitbook.io/documentation/budget", + "link": "https://rnb.beta.gouv.fr/", + "repository": "https://github.com/fab-geocommuns/RNB-site", + "contact": "rnb@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0A%E2%80%9C_Du%20fait%20d%E2%80%99un%20%C3%A9cosyst%C3%A8me%20atomis%C3%A9%2C%20la%20production%20de%20l%E2%80%99information%20g%C3%A9olocalis%C3%A9e%20dans%20la%20sph%C3%A8re%20publique%20se%20traduit%20par%20un%20usage%20sous-optimal%20des%20deniers%20publics._%E2%80%9D%20Rapport%20d%27Information%2C%20S%C3%A9nat%2C%20Commission%20des%20Finances%20pour%20l%27IGN%2C%205%20Octobre%202022%0A%0A%0AParmi%20ces%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%2C%20l%27information%20relative%20au%20b%C3%A2timent%20se%20d%C3%A9marque%20par%20l%27absence%20de%20r%C3%A9f%C3%A9rentiel.%20Le%20concept%20de%20b%C3%A2timent%20ne%20faisant%20pas%20consensus%2C%20les%20acteurs%20travaillent%20en%20silos%20r%C3%A9pondant%20chacun%20%C3%A0%20leur%20propre%20vision%20du%20b%C3%A2timent%E2%80%A6%0A%0ACette%20absence%20se%20traduit%20par%20des%20informations%20rattach%C3%A9es%20%C3%A0%20l%27adresse%2C%20au%20logement%20ou%20parfois%20%C3%A0%20la%20parcelle%20cadastrale.%20L%27objet%20b%C3%A2timent%20appara%C3%AEt%20alors%20comme%20le%20maillon%20manquant%20au%20socle%20de%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%20structur%C3%A9%20qui%20relie%20les%20concepts%20d%27adresses%2Fb%C3%A2timent%2Flocaux%20%28parcelles%29.%0A%0AAinsi%2C%20les%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%20actuelles%20ne%20permettent%20pas%20un%20pilotage%20satisfaisant%20des%20politiques%20publiques%2C%20en%20particulier%20celles%20qui%20concernent%20la%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%2C%20qui%20n%C3%A9cessitent%20une%20vision%20exhaustive%2C%20repr%C3%A9sentative%2C%20actualis%C3%A9e%20et%20partag%C3%A9e%20du%20parc.%0A%0A%23%23%20Solution%20%3A%20Le%20R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents%0A%0ALa%20cr%C3%A9ation%20d%27un%20r%C3%A9f%C3%A9rentiel%20unique%20des%20b%C3%A2timents%2C%20en%20lien%20avec%20les%20autres%20r%C3%A9f%C3%A9rentiels%20%28adresses%2C%20locaux%2C%20parcelles%29%20existants%20est%20n%C3%A9cessaire%20pour%20passer%20d%27un%20%E2%80%9C%C3%A9cosyst%C3%A8me%20atomis%C3%A9%E2%80%9D%20%C3%A0%20un%20fonctionnement%20en%20r%C3%A9seau.%0A%0AC%E2%80%99est%20dans%20ce%20contexte%20qu%E2%80%99a%20vu%20le%20jour%20le%20projet%2C%20initialement%20appel%C3%A9%20BatID%2C%20d%27abord%20au%20sein%20du%20%5Bprogramme%20EIG%5D%28https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Fbatid%2F%29%2C%20pour%20co-construire%20avec%20l%E2%80%99ensemble%20des%20parties%20prenantes%20le%20R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents%20%28RNB%29%2C%20%C3%A0%20destination%20des%20acteurs%20publics%20comme%20priv%C3%A9s.%20Ce%20r%C3%A9f%C3%A9rentiel%20sera%20aliment%C3%A9%20par%20les%20processus%20administratifs%20existants%20afin%20d%E2%80%99aboutir%20%C3%A0%20une%20mise%20%C3%A0%20jour%20en%20continue%20des%20bases%20de%20donn%C3%A9es%20socles.%0A%0A%23%23%20Strat%C3%A9gie%0A%0ALa%20strat%C3%A9gie%20du%20RNB%20repose%20sur%20deux%20approches%20compl%C3%A9mentaires%20%3A%0A%0AD%27une%20part%2C%20exp%C3%A9rimenter%20au%20maximum%20afin%20d%27embarquer%20les%20acteurs%2C%20d%C3%A9montrer%20les%20usages%2C%20en%20cr%C3%A9ant%20les%20boucles%20de%20r%C3%A9troaction%20de%20l%27alimentation%20du%20r%C3%A9f%C3%A9rentiel.%0ADe%20l%27autre%2C%20co-construire%20une%20gouvernance%20commune%20aux%20parties%20prenantes%2C%20afin%20de%20susciter%20l%27adh%C3%A9sion%20et%20cr%C3%A9er%20le%20cadre%20favorable%20%C3%A0%20la%20vie%20du%20r%C3%A9f%C3%A9rentiel.%0AL%27approche%20exp%C3%A9rimentale%20permet%20de%20cerner%20pr%C3%A9cis%C3%A9ment%20les%20besoins%20et%20points%20de%20friction%20%C3%A0%20l%27%C3%A9mergence%20du%20projet%2C%20gr%C3%A2ce%20%C3%A0%20une%20vision%20terrain%20et%20%C3%A0%20la%20mise%20en%20%C5%93uvre%20technique.%20La%20d%C3%A9marche%20de%20co-construction%2C%20permet%20de%20f%C3%A9d%C3%A9rer%20les%20acteurs%20pour%20rendre%20possible%20l%27interop%C3%A9rabilit%C3%A9%20%C3%A0%20l%27%C3%A9chelle%20nationale%20en%20permettant%20le%20partage%20et%20l%27%C3%A9change%20de%20donn%C3%A9es.%0A%0AL%27objectif%20%C3%A0%20terme%20%3A%20aboutir%20%C3%A0%20un%20mod%C3%A8le%20de%20gouvernance%20p%C3%A9renne%2C%20pour%20faire%20de%20cette%20future%20donn%C3%A9e%20de%20r%C3%A9f%C3%A9rence%20un%20v%C3%A9ritable%20g%C3%A9o-commun.%0A", + "events": [ + { + "name": "committee", + "date": "2022-11-09", + "comment": "Lancement en phase de construction" + }, + { + "name": "committee", + "date": "2023-06-30", + "comment": "" + }, + { + "name": "committee", + "date": "2023-11-28", + "comment": "Lancement en phase d'accélération" + }, + { + "name": "committee", + "date": "2024-06-18", + "comment": "" + }, + { + "name": "committee", + "date": "2024-12-11", + "comment": "" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2021-09-01", + "end": "" + }, + { + "name": "construction", + "start": "2023-01-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-01-01", + "end": "" + } + ], + "sponsors": [ + "ademe", + "cstb", + "dgaln", + "dinum", + "ign" + ], + "thematiques": [ + "Open-Data", + "Patrimoine" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/rnb-beta-gouv-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "fab-geocommuns" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://rnb.beta.gouv.fr", + "size": 1837.594, + "nodes": 361, + "requests": 72, + "grade": "C", + "score": 60, + "ges": 1.8, + "water": 2.7, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:13:53.726762", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "C", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.993, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-09T19:32:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "C", + "cookiesCount": 4, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.67, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.87, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://orion.inserjeunes.beta.gouv.fr/", + "category": "inserjeunes", + "betaId": "pilotagevoiepro", + "title": "Orion", + "repositories": [ + "mission-apprentissage/tjp-pilotage" + ], + "http": { + "url": "https://orion.inserjeunes.beta.gouv.fr/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:20:24 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:20:15 GMT", + "Referrer-Policy": "no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN" }, - { - "id": "final_score", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57067204, + "score": 55, + "start_time": "Sun, 20 Oct 2024 14:20:10 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://orion.inserjeunes.beta.gouv.fr/", + "redirects": false, + "route": [ + "http://orion.inserjeunes.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer-when-downgrade", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubdomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "fapb", + "url": "https://orion.inserjeunes.beta.gouv.fr/", + "alias": "", + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-29T19:26:58Z", + "error": null, + "period": 300, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:28:07Z", + "next_check_at": "2024-12-01T18:33:05Z", + "created_at": "2024-03-24T01:11:12Z", + "mute_until": null, + "favicon_url": "https://orion.inserjeunes.beta.gouv.fr/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:28:14Z", + "expires_at": "2025-02-23T18:06:11Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "agir.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.27, + "timings": { + "redirect": 0, + "namelookup": 247, + "connection": 138, + "handshake": 143, + "response": 2068, + "total": 2597 + } }, + "uptimeGrade": "A", + "apdexGrade": "F" + }, + "nmap": { + "host": "orion.inserjeunes.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", + "is_exploit": "true", + "cvss": "10.0", + "type": "githubexploit" + }, + { + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", + "is_exploit": "true", + "cvss": "10.0", + "type": "githubexploit" + }, + { + "id": "CVE-2023-38408", + "is_exploit": "false", + "cvss": "9.8", + "type": "cve" + }, + { + "id": "CVE-2023-28531", + "is_exploit": "false", + "cvss": "9.8", + "type": "cve" + }, + { + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit" + }, + { + "id": "PACKETSTORM:179290", + "is_exploit": "true", + "cvss": "8.1", + "type": "packetstorm" + }, + { + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "D1E049F1-393E-552D-80D1-675022B26911", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "CVE-2024-6387", + "is_exploit": "false", + "cvss": "8.1", + "type": "cve" + }, + { + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "C185263E-3E67-5550-B9C0-AB9C15351960", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "A377249D-3C48-56C9-98D6-C47013B3A043", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "6FD8F914-B663-533D-8866-23313FD37804", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "48603E8F-B170-57EE-85B9-67A7D9504891", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "452ADB71-199C-561E-B949-FCDE6288B925", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "1337DAY-ID-39674", + "is_exploit": "true", + "cvss": "8.1", + "type": "zdt" + }, + { + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "11F020AC-F907-5606-8805-0516E06160EE", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", + "is_exploit": "true", + "cvss": "8.1", + "type": "githubexploit" + }, + { + "id": "SSV:92579", + "is_exploit": "true", + "cvss": "7.5", + "type": "seebug" + }, + { + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "cvss": "7.5", + "type": "packetstorm" + }, + { + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "cvss": "7.5", + "type": "githubexploit" + }, + { + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "cvss": "7.5", + "type": "zdt" + }, + { + "id": "CVE-2023-51385", + "is_exploit": "false", + "cvss": "6.5", + "type": "cve" + }, + { + "id": "CVE-2023-48795", + "is_exploit": "false", + "cvss": "5.9", + "type": "cve" + }, + { + "id": "CVE-2023-51384", + "is_exploit": "false", + "cvss": "5.5", + "type": "cve" + }, + { + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "cvss": "0.0", + "type": "packetstorm" + }, + { + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", + "is_exploit": "true", + "cvss": "0.0", + "type": "githubexploit" + }, + { + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", + "is_exploit": "true", + "cvss": "0.0", + "type": "githubexploit" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -485596,7 +486284,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -485604,7 +486292,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -485612,7 +486300,7 @@ }, { "id": "cipherlist_LOW", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -485620,7 +486308,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -485628,7 +486316,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -485636,455 +486324,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc02c", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "id": "cipher-tls1_2_xc02b", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "2024-10-01 03:04" + "finding": "2024-11-25 18:06" }, { "id": "cert_notAfter", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", - "finding": "2024-12-30 03:04" + "finding": "2025-02-23 18:06" }, { "id": "cert_extlifeSpan", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://e5.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "E5 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "E5 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "1732471922" + "finding": "1733077758" }, { "id": "HSTS_time", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "id": "X-Frame-Options", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "no-referrer-when-downgrade" + }, + { + "id": "Cache-Control", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -486092,7 +486815,7 @@ }, { "id": "heartbleed", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -486101,7 +486824,7 @@ }, { "id": "CCS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -486110,16 +486833,16 @@ }, { "id": "ticketbleed", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -486128,7 +486851,7 @@ }, { "id": "secure_renego", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -486136,7 +486859,7 @@ }, { "id": "secure_client_renego", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -486145,7 +486868,7 @@ }, { "id": "CRIME_TLS", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -486154,16 +486877,16 @@ }, { "id": "BREACH", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -486172,14 +486895,14 @@ }, { "id": "fallback_SCSV", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -486188,7 +486911,7 @@ }, { "id": "FREAK", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -486197,7 +486920,7 @@ }, { "id": "DROWN", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -486206,16 +486929,16 @@ }, { "id": "DROWN_hint", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2EE399C06C2AE48AF41DF160F2EE741ECD81C650B2E18AC86956D60BBBEBB39C" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -486224,16 +486947,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -486242,7 +486965,7 @@ }, { "id": "LUCKY13", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -486251,7 +486974,7 @@ }, { "id": "winshock", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -486260,7 +486983,7 @@ }, { "id": "RC4", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -486269,392 +486992,1959 @@ }, { "id": "clientsimulation-android_60", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "agir.beta.gouv.fr/185.21.194.105", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "key_exchange_score_weighted", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "agir.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "id": "cipher_strength_score_weighted", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "96" + }, + { + "id": "overall_grade", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "orion.inserjeunes.beta.gouv.fr/91.134.55.91", + "port": "443", + "severity": "INFO", + "finding": "117" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://plausible.io/js/script.js" + }, + { + "type": "crisp", + "url": "https://client.crisp.chat/l.js", + "details": { + "id": "crisp", + "message": "Ensure your TOS notify the CRISP usage" + } + }, + { + "type": "unknown", + "url": "https://api.iconify.design/ri.json?icons=add-fill%2Carrow-right-line%2Cbarricade-fill%2Cexternal-link-line" + } + ], + "cookies": [], + "headers": { + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 18:26:33 GMT", + "referrer-policy": "no-referrer-when-downgrade", + "strict-transport-security": "max-age=31536000; includeSubdomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN" + }, + "endpoints": [ + { + "hostname": "orion.inserjeunes.beta.gouv.fr", + "ip": "91.134.55.91", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "plausible.io", + "ip": "169.150.221.147", + "geoip": { + "city": { + "geoname_id": 5392171, + "names": { + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "95141" + }, + "registered_country": { + "geoname_id": 2635167, + "iso_code": "GB", + "names": { + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "client.crisp.chat", + "ip": "104.18.29.104", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "api.iconify.design", + "ip": "172.67.71.159", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://orion.inserjeunes.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "chakra-ui", + "name": "Chakra UI", + "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", + "confidence": 100, + "version": null, + "icon": "Chakra UI.svg", + "website": "https://chakra-ui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.18", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "plausible", + "name": "Plausible", + "description": "Plausible is an open-source alternative to Google Analytics.", + "confidence": 100, + "version": null, + "icon": "Plausible.svg", + "website": "https://plausible.io/", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "crisp-live-chat", + "name": "Crisp Live Chat", + "description": "Crisp Live Chat is a live chat solution with free and paid options.", + "confidence": 100, + "version": null, + "icon": "Crisp Live Chat.svg", + "website": "https://crisp.chat/", + "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://orion.inserjeunes.beta.gouv.fr/", + "finalUrl": "https://orion.inserjeunes.beta.gouv.fr/", + "fetchTime": "2024-12-01T18:26:04.721Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.55 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.9 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9079, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 2786, + "firstMeaningfulPaint": 2786, + "largestContentfulPaint": 9506, + "interactive": 9079, + "speedIndex": 4960, + "totalBlockingTime": 262, + "maxPotentialFID": 383, + "cumulativeLayoutShift": 0.03747987408108181, + "cumulativeLayoutShiftMainFrame": 0.03747987408108181, + "totalCumulativeLayoutShift": 0.03747987408108181, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 408283903, + "observedNavigationStart": 0, + "observedNavigationStartTs": 408283903, + "observedFirstPaint": 2248, + "observedFirstPaintTs": 410531624, + "observedFirstContentfulPaint": 2248, + "observedFirstContentfulPaintTs": 410531624, + "observedFirstContentfulPaintAllFrames": 2248, + "observedFirstContentfulPaintAllFramesTs": 410531624, + "observedFirstMeaningfulPaint": 2248, + "observedFirstMeaningfulPaintTs": 410531624, + "observedLargestContentfulPaint": 2970, + "observedLargestContentfulPaintTs": 411253655, + "observedLargestContentfulPaintAllFrames": 2970, + "observedLargestContentfulPaintAllFramesTs": 411253655, + "observedTraceEnd": 5826, + "observedTraceEndTs": 414110391, + "observedLoad": 3051, + "observedLoadTs": 411335027, + "observedDomContentLoaded": 2242, + "observedDomContentLoadedTs": 410525786, + "observedCumulativeLayoutShift": 0.03747987408108181, + "observedCumulativeLayoutShiftMainFrame": 0.03747987408108181, + "observedTotalCumulativeLayoutShift": 0.03747987408108181, + "observedFirstVisualChange": 2249, + "observedFirstVisualChangeTs": 410532903, + "observedLastVisualChange": 3232, + "observedLastVisualChangeTs": 411515903, + "observedSpeedIndex": 2428, + "observedSpeedIndexTs": 410711904 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 61, + "numScripts": 33, + "numStylesheets": 2, + "numFonts": 3, + "numTasks": 1398, + "numTasksOver10ms": 5, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 14901007.919368247, + "maxRtt": 157.465, + "maxServerLatency": 443.385, + "totalByteWeight": 1532807, + "totalTaskTime": 446.6279999999987, + "mainDocumentTransferSize": 25064 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "F" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/declaration-accessibilite" + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "agir.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/mentions-legales" }, { - "id": "cipher_strength_score_weighted", - "ip": "agir.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 5, + "score": 5, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/politique-de-confidentialite" + } + ], + "betagouv": { + "id": "pilotagevoiepro", + "type": "startup", + "attributes": { + "name": "Orion", + "pitch": "Contribuer à la transformation de la carte des formations des lycées professionnels", + "stats_url": "https://orion.inserjeunes.beta.gouv.fr/statistiques", + "link": "https://orion.inserjeunes.beta.gouv.fr/", + "repository": "https://github.com/mission-apprentissage/tjp-pilotage", + "contact": "orion@inserjeunes.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20constat%0A%0ADeux%20ans%20apr%C3%A8s%20l%E2%80%99obtention%20de%20leur%20dipl%C3%B4me%2C%20seuls%2041%20%25%20des%20titulaires%20d%E2%80%99un%20CAP%20et%2051%20%25%20des%20bacheliers%20professionnels%20ont%20un%20emploi.%0A%0APourtant%2C%20la%20carte%20des%20formations%20propos%C3%A9es%20dans%20les%20lyc%C3%A9es%20professionnels%2C%20publics%20comme%20priv%C3%A9s%2C%20fait%20l%E2%80%99objet%20d%E2%80%99%C3%A9volutions%20constantes%20mais%20sa%20transformation%20et%20son%20pilotage%20n%C3%A9cessitent%20la%20prise%20en%20compte%20de%20nombreux%20facteurs%20tant%20%C3%A9conomiques%2C%20que%20d%C3%A9mographiques%20et%20%C3%A9ducatifs%20pour%20d%C3%A9terminer%20l%27attractivit%C3%A9%20des%20formations%2C%20l%27insertion%20dans%20l%E2%80%99emploi%2C%20les%20possibilit%C3%A9s%20de%20poursuite%20d%E2%80%99%C3%A9tudes%E2%80%A6%20%0A%0AOr%2C%20les%20acteurs%20directement%20impliqu%C3%A9s%20dans%20l%E2%80%99examen%20des%20situations%20au%20niveau%20national%20et%20local%20acc%C3%A8dent%20%C3%A0%20des%20donn%C3%A9es%20partielles%2C%20h%C3%A9t%C3%A9rog%C3%A8nes%20et%20cloisonn%C3%A9es.%20Ce%20manque%20d%E2%80%99information%20limite%20la%20rencontre%20entre%20le%20catalogue%20d%E2%80%99offres%20existantes%2C%20les%20souhaits%20des%20jeunes%20et%20les%20besoins%20du%20monde%20%C3%A9conomique.%20%0A%0A%23%23%20La%20solution%0A%0AUn%20service%20num%C3%A9rique%20contribuant%20au%20pilotage%20de%20l%E2%80%99%C3%A9volution%20de%20la%20carte%20des%20formations%20des%20lyc%C3%A9es%20professionnels%2C%20partag%C3%A9%20entre%20tous%20les%20acteurs%20%28minist%C3%A8res%2C%20rectorats%2C%20conseils%20r%C3%A9gionaux%2C%20branches%20professionnelles%E2%80%A6%29%20est%20en%20cours%20de%20construction.%20Il%20a%20notamment%20pour%20objectif%20de%20centraliser%2C%20de%20mettre%20en%20perspective%20et%20donner%20%C3%A0%20voir%20au%20niveau%20le%20plus%20fin%20des%20indicateurs%20sur%20%3A%0A-%20L%E2%80%99attractivit%C3%A9%20des%20formations%20%3B%0A-%20La%20poursuite%20d%E2%80%99%C3%A9tude%20%3B%0A-%20Le%20taux%20et%20la%20qualit%C3%A9%20d%E2%80%99insertion%20professionnelle%20apr%C3%A8s%20chaque%20formation%20%3B%0A-%20La%20valeur%20ajout%C3%A9e%20des%20%C3%A9tablissements%20%3B%0A-%20La%20prospective%20des%20m%C3%A9tiers%20et%20qualifications%20avec%20la%20mise%20en%20lumi%C3%A8re%20des%20formations%20qui%20conduisent%20%C3%A0%20des%20m%C3%A9tiers%20dits%20%E2%80%9Cd%E2%80%99avenir%E2%80%9D%20%3B%0A-%20Des%20%C3%A9l%C3%A9ments%20de%20contexte%20du%20territoire%20%28d%C3%A9mographie%2C%20mobilit%C3%A9%29%20%3B%0A-%20La%20demande%20%C3%A9conomique%20%3B%0A-%20Etc%E2%80%A6%0A%0AActuellement%2C%20Orion%20propose%20%C3%A0%20tous%20en%20acc%C3%A8s%20public%3A%20%0A-%20Un%20panorama%20des%20formations%20par%20r%C3%A9gion%2C%20par%20d%C3%A9partement%20et%20par%20%C3%A9tablissement%20%3B%0A-%20Une%20console%20avec%20des%20donn%C3%A9es%20d%C3%A9taill%C3%A9es%20par%20%C3%A9tablissement%20et%20par%20formation%20%3B%20%0A-%20un%20POC%20sur%20le%20lien%20Emploi-Formation%20pour%20aider%20les%20d%C3%A9cideurs%20%C3%A0%20cibler%20les%20formations%20qui%20r%C3%A9pondent%20%C3%A0%20de%20forts%20besoins%20territoriaux%20ou%20%C3%A0%20des%20enjeux%20soci%C3%A9taux%20%28transition%20%C3%A9cologique%20par%20exemple%C3%A0%0A%0A-%20un%20formulaire%20permettant%20de%20remonter%20les%20propositions%20d%27ouvertures%20ou%20de%20fermetures%20de%20places%20de%20formation%20depuis%20le%20lyc%C3%A9e%20pro%20jusqu%27au%20niveau%20national%0A-%20une%20console%20d%27analyse%20des%20propositions%20par%20territoire%2C%20par%20domaine%20de%20formation%2C%20par%20motifs....%0A-%20un%20tableau%20de%20pilotage%20de%20la%20transformation%20afin%20de%20mesurer%20les%20moyens%20et%20l%27impact%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%0A%0ALes%20b%C3%A9n%C3%A9fices%20attendus%20sont%20les%20suivants%20%3A%20%0A-%20Augmentation%20du%20taux%20d%E2%80%99emploi%20%C3%A0%206%20mois%20et%20du%20taux%20de%20poursuite%20d%E2%80%99%C3%A9tudes%20des%20jeunes%20qui%20sortent%20de%20formation%20%3B%0A-%20Augmentation%20du%20nombre%20d%E2%80%99%C3%A9l%C3%A8ves%20dans%20des%20formations%20menant%20%C3%A0%20des%20m%C3%A9tiers%20d%E2%80%99avenir%20%3B%0A-%20Augmentation%20de%20la%20transformation%20des%20places%20de%20formation.%0A%0ALes%20premiers%20r%C3%A9sultats%20sont%20encourageants%20%3A%20%0A-%2035%20000%20visites%20en%20un%20an.%20Chacune%20dure%20environ%207%20minutes%20par%20connexion.%0A-%20De%20nombreuses%20transformations%20sont%20pr%C3%A9vues%20pour%20la%20rentr%C3%A9e%202024%2C%20avec%20notamment%20la%20cr%C3%A9ation%20de%203%20670%20nouvelles%20places%20par%20rapport%20%C3%A0%202023.%0A%0A%0A%0A%0A%0A%0A", + "events": [], + "phases": [ + { + "name": "acceleration", + "start": "2023-01-01", + "end": "" + } + ], + "sponsors": [ + "dgesco" + ], + "thematiques": [ + "Formation", + "Jeunesse", + "Travail / Emploi" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/orion-inserjeunes-beta-gouv-fr/" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mission-inserjeunes" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "agir.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" + "width": 1920, + "height": 1080, + "url": "https://orion.inserjeunes.beta.gouv.fr/", + "size": 1905.78, + "nodes": 447, + "requests": 65, + "grade": "C", + "score": 57, + "ges": 1.86, + "water": 2.79, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:22:41.206004", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "C", + "apdex": 0.27, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-23T18:06:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "C", + "trackersCount": 3, + "lighthouse_performance": 0.55, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.9, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "F", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://sirius.apprentissage.beta.gouv.fr/", + "category": "inserjeunes", + "betaId": "sirius", + "title": "Sirius", + "repositories": [ + "mission-apprentissage/sirius" + ], + "http": { + "url": "https://sirius.apprentissage.beta.gouv.fr/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:24:20 GMT", + "grade": "B+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=0", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:24:19 GMT", + "ETag": "W/\"3d8-19290e406a0\"", + "Last-Modified": "Tue, 15 Oct 2024 15:55:16 GMT", + "Referrer-Policy": "no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding, Origin", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Xss-Protection": "0" }, - { - "id": "overall_grade", - "ip": "agir.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "scan_id": 57067288, + "score": 80, + "start_time": "Sun, 20 Oct 2024 14:24:18 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "frame-ancestors": [ + "*.incubateur.net", + "*.onisep.fr", + "*.beta.gouv.fr", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://http-observatory.security.mozilla.org", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": true, + "route": [], + "status_code": null + }, + "pass": true, + "result": "redirection-not-needed-no-http", + "score_description": "Not able to connect via HTTP, so no redirection necessary", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer-when-downgrade, strict-origin-when-cross-origin", + "http": true, + "meta": true + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000; includeSubdomains", + "includeSubDomains": true, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "rs6j", + "url": "https://sirius.apprentissage.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-20T01:41:02Z", + "error": null, + "period": 3600, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": false, + "disabled_locations": [], + "recipients": [ + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:13:38Z", + "next_check_at": "2024-12-01T19:13:08Z", + "created_at": "2021-04-22T21:34:16Z", + "mute_until": "forever", + "favicon_url": "https://sirius.inserjeunes.beta.gouv.fr/dsfr/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T15:14:30Z", + "expires_at": "2025-02-02T16:39:25Z", + "valid": false, + "error": "error code 62: hostname mismatch" }, + "metrics": {}, + "uptimeGrade": "A" + }, + "nmap": { + "host": "sirius.apprentissage.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "type": "githubexploit", + "is_exploit": "true", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", + "cvss": "10.0" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", + "cvss": "10.0" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2023-38408", + "cvss": "9.8" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2023-28531", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", + "cvss": "9.8" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "cvss": "9.8" + }, + { + "type": "packetstorm", + "is_exploit": "true", + "id": "PACKETSTORM:179290", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "D1E049F1-393E-552D-80D1-675022B26911", + "cvss": "8.1" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2024-6387", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "6FD8F914-B663-533D-8866-23313FD37804", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "452ADB71-199C-561E-B949-FCDE6288B925", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", + "cvss": "8.1" + }, + { + "type": "zdt", + "is_exploit": "true", + "id": "1337DAY-ID-39674", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "11F020AC-F907-5606-8805-0516E06160EE", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", + "cvss": "8.1" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", + "cvss": "8.1" + }, + { + "type": "seebug", + "is_exploit": "true", + "id": "SSV:92579", + "cvss": "7.5" + }, + { + "type": "packetstorm", + "is_exploit": "true", + "id": "PACKETSTORM:173661", + "cvss": "7.5" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "cvss": "7.5" + }, + { + "type": "zdt", + "is_exploit": "true", + "id": "1337DAY-ID-26576", + "cvss": "7.5" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2023-51385", + "cvss": "6.5" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2023-48795", + "cvss": "5.9" + }, + { + "type": "cve", + "is_exploit": "false", + "id": "CVE-2023-51384", + "cvss": "5.5" + }, + { + "type": "packetstorm", + "is_exploit": "true", + "id": "PACKETSTORM:140261", + "cvss": "0.0" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", + "cvss": "0.0" + }, + { + "type": "githubexploit", + "is_exploit": "true", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", + "cvss": "0.0" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -486662,7 +488952,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -486670,7 +488960,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -486678,7 +488968,7 @@ }, { "id": "cipherlist_LOW", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -486686,7 +488976,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -486694,7 +488984,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -486702,455 +488992,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc02c", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "id": "cipher-tls1_2_xc02b", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "2024-10-01 03:04" + "finding": "2024-11-04 16:39" }, { "id": "cert_notAfter", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", - "finding": "2024-12-30 03:04" + "finding": "2025-02-02 16:39" }, { "id": "cert_extlifeSpan", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://e5.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "E5 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "E5 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "agir.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732471977" - }, - { - "id": "HSTS_time", - "ip": "agir.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733078078" }, { - "id": "HSTS_preload", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "id": "Content-Security-Policy", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "INFO", + "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -487158,7 +489462,7 @@ }, { "id": "heartbleed", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -487167,7 +489471,7 @@ }, { "id": "CCS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -487176,16 +489480,16 @@ }, { "id": "ticketbleed", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -487194,7 +489498,7 @@ }, { "id": "secure_renego", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -487202,7 +489506,7 @@ }, { "id": "secure_client_renego", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -487211,7 +489515,7 @@ }, { "id": "CRIME_TLS", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -487220,16 +489524,16 @@ }, { "id": "BREACH", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -487238,14 +489542,14 @@ }, { "id": "fallback_SCSV", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -487254,7 +489558,7 @@ }, { "id": "FREAK", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -487263,7 +489567,7 @@ }, { "id": "DROWN", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -487272,16 +489576,16 @@ }, { "id": "DROWN_hint", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2EE399C06C2AE48AF41DF160F2EE741ECD81C650B2E18AC86956D60BBBEBB39C" + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" }, { "id": "LOGJAM", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -487290,16 +489594,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -487308,7 +489612,7 @@ }, { "id": "LUCKY13", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -487317,7 +489621,7 @@ }, { "id": "winshock", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -487326,7 +489630,7 @@ }, { "id": "RC4", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -487335,384 +489639,359 @@ }, { "id": "clientsimulation-android_60", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "key_exchange_score", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "0" }, { "id": "cipher_strength_score", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "0" }, { "id": "final_score", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "0" }, { "id": "overall_grade", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "CRITICAL", + "finding": "M" + }, + { + "id": "grade_cap_reason_1", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to M. Domain name mismatch" + }, + { + "id": "grade_cap_reason_2", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "agir.beta.gouv.fr/80.247.12.255", + "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", "port": "443", "severity": "INFO", - "finding": "222" + "finding": "66" } ], "thirdparties": { - "trackers": [ - { - "type": "hotjar", - "url": "https://static.hotjar.com/c/hotjar-3765115.js?sv=6", - "details": { - "id": "hotjar", - "message": "Dont use HotJar" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.40.d1c7", - "value": "1", - "domain": "jagis.beta.gouv.fr", - "path": "/", - "expires": 1732473511, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.40.d1c7", - "value": "467a80ef2eb4e788.1732471711.", - "domain": "jagis.beta.gouv.fr", - "path": "/", - "expires": 1766426911, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], + "trackers": [], + "cookies": [], "headers": { + "access-control-allow-origin": "*", + "cache-control": "max-age=0", "content-encoding": "gzip", + "content-security-policy": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net", "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 18:08:30 GMT", - "etag": "W/\"674063cf-2ca\"", - "last-modified": "Fri, 22 Nov 2024 10:58:23 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", - "x-request-id": "0a5b942e-3bb8-46ab-9513-9cdc2e6f04ed" + "date": "Sun, 01 Dec 2024 18:33:48 GMT", + "etag": "W/\"3fc-1933e9dcbc8\"", + "last-modified": "Mon, 18 Nov 2024 09:32:29 GMT", + "vary": "Accept-Encoding\nOrigin" }, "endpoints": [ { - "hostname": "agir.beta.gouv.fr", - "ip": "185.21.194.105", + "hostname": "sirius.apprentissage.beta.gouv.fr", + "ip": "141.94.126.187", "geoip": { "continent": { "code": "EU", @@ -487765,88 +490044,215 @@ } } } - }, - { - "hostname": "static.hotjar.com", - "ip": "52.84.18.112", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } } ] }, "wappalyzer": { "urls": { - "https://agir.beta.gouv.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://agir.beta.gouv.fr/ (https://agir.beta.gouv.fr/)" + "https://sirius.apprentissage.beta.gouv.fr/": { + "status": 200 } }, "technologies": [ { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Sentry.svg", + "website": "https://sentry.io/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "chakra-ui", + "name": "Chakra UI", + "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", + "confidence": 100, + "version": null, + "icon": "Chakra UI.svg", + "website": "https://chakra-ui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.38.1", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "calendly", + "name": "Calendly", + "description": "Calendly is an app for scheduling appointments, meetings, and events.", + "confidence": 100, + "version": null, + "icon": "Calendly.svg", + "website": "https://calendly.com/", + "cpe": null, + "categories": [ + { + "id": 72, + "slug": "appointment-scheduling", + "name": "Appointment scheduling" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -487854,11 +490260,11 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://agir.beta.gouv.fr/", - "finalUrl": "https://jagis.beta.gouv.fr/", - "fetchTime": "2024-11-24T18:07:02.699Z", + "requestedUrl": "https://sirius.apprentissage.beta.gouv.fr/", + "finalUrl": "https://sirius.inserjeunes.beta.gouv.fr/", + "fetchTime": "2024-11-03T18:05:31.940Z", "runWarnings": [ - "The page may not be loading as expected because your test URL (https://agir.beta.gouv.fr/) was redirected to https://jagis.beta.gouv.fr/. Try testing the second URL directly." + "The page may not be loading as expected because your test URL (https://sirius.apprentissage.beta.gouv.fr/) was redirected to https://sirius.inserjeunes.beta.gouv.fr/. Try testing the second URL directly." ], "categories": { "performance": { @@ -487880,7 +490286,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.96 }, "best-practices": { "title": "Best Practices", @@ -487901,7 +490307,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 1 }, "pwa": { "title": "PWA", @@ -487921,53 +490327,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9059, + "numericValue": 14570, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4103, - "firstMeaningfulPaint": 4198, - "largestContentfulPaint": 6478, - "interactive": 9059, - "speedIndex": 5801, - "totalBlockingTime": 671, - "maxPotentialFID": 374, - "cumulativeLayoutShift": 0.8026402452256944, - "cumulativeLayoutShiftMainFrame": 0.8026402452256944, - "totalCumulativeLayoutShift": 0.8026402452256944, + "firstContentfulPaint": 1862, + "firstMeaningfulPaint": 4446, + "largestContentfulPaint": 7673, + "interactive": 14570, + "speedIndex": 8309, + "totalBlockingTime": 717, + "maxPotentialFID": 660, + "cumulativeLayoutShift": 0.4935445361667209, + "cumulativeLayoutShiftMainFrame": 0.4935445361667209, + "totalCumulativeLayoutShift": 0.4935445361667209, "observedTimeOrigin": 0, - "observedTimeOriginTs": 552512561, + "observedTimeOriginTs": 433832888, "observedNavigationStart": 0, - "observedNavigationStartTs": 552512561, - "observedFirstPaint": 1277, - "observedFirstPaintTs": 553789900, - "observedFirstContentfulPaint": 1277, - "observedFirstContentfulPaintTs": 553789900, - "observedFirstContentfulPaintAllFrames": 1277, - "observedFirstContentfulPaintAllFramesTs": 553789900, - "observedFirstMeaningfulPaint": 1277, - "observedFirstMeaningfulPaintTs": 553789900, - "observedLargestContentfulPaint": 1413, - "observedLargestContentfulPaintTs": 553925274, - "observedLargestContentfulPaintAllFrames": 1413, - "observedLargestContentfulPaintAllFramesTs": 553925274, - "observedTraceEnd": 33830, - "observedTraceEndTs": 586342562, - "observedLoad": 31519, - "observedLoadTs": 584032025, - "observedDomContentLoaded": 1241, - "observedDomContentLoadedTs": 553753221, - "observedCumulativeLayoutShift": 0.8026402452256944, - "observedCumulativeLayoutShiftMainFrame": 0.8026402452256944, - "observedTotalCumulativeLayoutShift": 0.8026402452256944, - "observedFirstVisualChange": 1281, - "observedFirstVisualChangeTs": 553793561, - "observedLastVisualChange": 1815, - "observedLastVisualChangeTs": 554327561, - "observedSpeedIndex": 1436, - "observedSpeedIndexTs": 553948675 + "observedNavigationStartTs": 433832888, + "observedFirstPaint": 2430, + "observedFirstPaintTs": 436262667, + "observedFirstContentfulPaint": 2469, + "observedFirstContentfulPaintTs": 436302135, + "observedFirstContentfulPaintAllFrames": 2469, + "observedFirstContentfulPaintAllFramesTs": 436302135, + "observedFirstMeaningfulPaint": 2486, + "observedFirstMeaningfulPaintTs": 436319077, + "observedLargestContentfulPaint": 2486, + "observedLargestContentfulPaintTs": 436319077, + "observedLargestContentfulPaintAllFrames": 2486, + "observedLargestContentfulPaintAllFramesTs": 436319077, + "observedTraceEnd": 6423, + "observedTraceEndTs": 440256239, + "observedLoad": 3960, + "observedLoadTs": 437792589, + "observedDomContentLoaded": 2388, + "observedDomContentLoadedTs": 436221251, + "observedCumulativeLayoutShift": 0.4935445361667209, + "observedCumulativeLayoutShiftMainFrame": 0.4935445361667209, + "observedTotalCumulativeLayoutShift": 0.4935445361667209, + "observedFirstVisualChange": 2432, + "observedFirstVisualChangeTs": 436264888, + "observedLastVisualChange": 3366, + "observedLastVisualChangeTs": 437198888, + "observedSpeedIndex": 2639, + "observedSpeedIndexTs": 436471540 }, { "lcpInvalidated": false @@ -487985,23 +490391,23 @@ "type": "debugdata", "items": [ { - "numRequests": 66, - "numScripts": 6, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 6548, - "numTasksOver10ms": 9, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 0, + "numRequests": 45, + "numScripts": 2, + "numStylesheets": 3, + "numFonts": 6, + "numTasks": 2030, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.205999999999996, - "throughput": 37850270.34769456, - "maxRtt": 107.37299999999999, - "maxServerLatency": 30000.703, - "totalByteWeight": 2114320, - "totalTaskTime": 956.9379999999858, - "mainDocumentTransferSize": 654 + "rtt": 145.41000000000003, + "throughput": 13556987.006529352, + "maxRtt": 150.967, + "maxServerLatency": 1.5139999999999816, + "totalByteWeight": 2564335, + "totalTaskTime": 507.0199999999958, + "mainDocumentTransferSize": 1100 } ] } @@ -488025,66 +490431,55 @@ "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, + "mention": null, + "maxScore": 0, "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://agir.beta.gouv.fr/mentions-legales" + "missingWords": [], + "missingTrackers": [] }, { "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://agir.beta.gouv.fr/politique-de-confidentialite" + "missingTrackers": [] } ], "betagouv": { - "id": "france.nation.verte.agir", + "id": "sirius", "type": "startup", "attributes": { - "name": "France Nation Verte / J'agis", - "pitch": "Accompagner les citoyens de manière personnalisée dans la transition écologique", - "stats_url": "https://jagis.beta.gouv.fr/statistiques", - "link": "https://jagis.beta.gouv.fr", - "repository": "https://github.com/betagouv/agir-back", - "contact": "contact@agir.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20Secr%C3%A9tariat%20G%C3%A9n%C3%A9ral%20%C3%A0%20la%20Planification%20%C3%89cologique%20%28SGPE%29%20souhaite%20accompagner%20les%20citoyens%20dans%20la%20transition%20%C3%A9cologique%20pour%20leur%20proposer%20des%20solutions%20concr%C3%A8tes%20et%20%C3%A9volutives.%0A%0A%0A%23%23%20Probl%C3%A8me%0A%0ALa%20transition%20%C3%A9cologique%20est%20l%C3%A0%20et%20touche%20tous%20les%20pans%20de%20la%20vie%20des%20citoyens.%0AComplexe%20et%20diffuse%2C%20elle%20pose%20des%20probl%C3%A8mes%20concrets%20en%20mati%C3%A8re%20d%27alimentation%2C%20de%20logement%2C%20de%20consommation%2C%20de%20mobilit%C3%A9%20et%20plus%20g%C3%A9n%C3%A9ralement%20de%20pr%C3%A9servation%20du%20vivant.%0A%0APrincipaux%20probl%C3%A8mes%20identifi%C3%A9s%20%3A%0A-%20complexit%C3%A9%20et%20diversit%C3%A9%20des%20sujets%20%3B%0A-%20multiplicit%C3%A9%20des%20sources%2C%20parfois%20contradictoires%20%3B%0A-%20tonalit%C3%A9%20anxiog%C3%A8ne%20voire%20conflictuelle%20%3B%0A-%20manque%20d%27adaptation%20des%20solutions%20%C3%A0%20la%20diversit%C3%A9%20des%20r%C3%A9alit%C3%A9s.%0A%0A%0A%23%23%20Solution%0A%0AAccompagner%20chaque%20citoyen%20de%20mani%C3%A8re%20ludique%2C%20en%20partant%20de%20ses%20contraintes%2C%20ses%20usages%2C%20ses%20moyens%2C%20ses%20envies%20pour%20lui%20proposer%20les%20solutions%20les%20plus%20personnalis%C3%A9es%20possibles%2C%20et%20lui%20permettre%20de%20s%27informer%20et%20d%27avancer%20%C3%A0%20son%20rythme.%0A%0A%23%23%20Strat%C3%A9gie%0A%0APlusieurs%20exp%C3%A9rimentations%20locales%20sont%20pr%C3%A9vues%20dans%20l%27objectif%20de%20d%C3%A9velopper%20le%20service%20au%20plus%20pr%C3%A8s%20des%20contraintes%20des%20usagers%20issus%20de%20territoires%20vari%C3%A9s%2C%20et%20d%27%C3%A9quiper%20les%20collectivit%C3%A9s%20pour%20leur%20permettre%20de%20mettre%20en%20valeur%20les%20initiatives%20locales.", + "name": "Sirius", + "pitch": "Aider les jeunes dans leurs choix d’orientation en donnant accès aux témoignages des apprentis", + "stats_url": "https://sirius.inserjeunes.beta.gouv.fr/statistiques", + "link": "https://sirius.inserjeunes.beta.gouv.fr", + "repository": "https://github.com/mission-apprentissage/sirius", + "contact": "contact-sirius@inserjeunes.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20constat%0A%0APlus%20de%201%20500%20CFA%20se%20sont%20cr%C3%A9%C3%A9s%20depuis%20la%20loi%C2%A0du%205%20septembre%C2%A02018%C2%A0pour%20la%20libert%C3%A9%20de%20choisir%20son%20avenir%20professionnel.%20Les%20jeunes%2C%20leurs%20familles%20et%20les%20personnes%20qui%20les%20accompagnent%20dans%20leur%20orientation%20ont%20une%20visibilit%C3%A9%20restreinte%20sur%20l%E2%80%99ensemble%20des%20formations%20existantes%20et%20leur%20qualit%C3%A9.%0A%0ASi%20des%20outils%20existent%20pour%20pr%C3%A9senter%20la%20voie%20de%20l%E2%80%99apprentissage%2C%20les%20candidats%20recherchent%20des%20retours%20d%E2%80%99exp%C3%A9riences%20de%20pairs%2C%20qui%20ont%20v%C3%A9cu%20les%20m%C3%AAmes%20doutes%20et%20peuvent%20t%C3%A9moigner%20de%20ce%20qu%E2%80%99a%20%C3%A9t%C3%A9%20leur%20parcours.%20Ces%20t%C3%A9moignages%20permettent%20aux%20candidats%20de%20se%20projeter%20concr%C3%A8tement%20dans%20une%20formation%20et%20d%E2%80%99apaiser%20le%20choix%20d%E2%80%99orientation%2C%20surtout%20dans%20le%20secondaire.%20Les%20fili%C3%A8res%20en%20apprentissage%20%20propos%C3%A9es%20en%20infra-bac%20souffrent%20encore%20de%20pr%C3%A9jug%C3%A9s%20et%20sont%20parfois%20consid%C3%A9r%C3%A9es%20comme%20une%20voie%20de%20garage%20pour%20les%20mauvais%20%C3%A9l%C3%A8ves%20ou%20menant%20a%20des%20m%C3%A9tiers%20peu%20qualifi%C3%A9s.%20Les%20t%C3%A9moignages%20apportent%20de%20nouveaux%20%C3%A9l%C3%A9ments%20sur%20la%20perception%20de%20la%20qualit%C3%A9%20de%20la%20formation%20et%20de%20l%E2%80%99accompagnement%20aux%20jeunes%20et%20aux%20adultes%20qui%20les%20appuient%20%28parents%2C%20%C3%A9quipes%20p%C3%A9dagogiques%2C%20psychologues%20de%20l%E2%80%99%C3%89ducation%20Nationale%2C%20associations%2C%20%E2%80%A6%29.%20L%E2%80%99acc%C3%A8s%20%C3%A0%20ces%20informations%20n%E2%80%99est%20pas%20ais%C3%A9%20pour%20les%20candidats%20et%20les%20accompagnants%20car%20aucune%20source%20neutre%20n%E2%80%99expose%20aujourd%E2%80%99hui%20des%20avis%20v%C3%A9rifi%C3%A9s%20sur%20les%20formations%20en%20apprentissage.%0A%0A%23%23%20Sirius%0A%0ASirius%20donne%20acc%C3%A8s%20aux%20t%C3%A9moignages%20des%20apprentis%20pour%20aider%20les%20jeunes%20dans%20leurs%20choix%20d%E2%80%99orientation.%20Le%20service%20est%20co-construit%20avec%20l%27ensemble%20des%20acteurs%2C%20CFA%2C%20coll%C3%A9giens%2C%20apprentis%2C%20%C3%A9tablissements%20scolaires%20et%20%C3%A9quipes%20%C3%A9ducatives%20et%20se%20d%C3%A9cline%20en%202%20volets%20%3A%0A%0A-%20%2A%2ARecueillir%20des%20t%C3%A9moignages%2A%2A%20dans%20les%20%2A%2A4000%20CFA%20formateurs%2A%2A%20qui%20dispensent%20des%20formations%20accessibles%20apr%C3%A8s%20la%203%C3%A8%20%3A%0A%20%20%20%20-%20Pour%20int%C3%A9grer%20les%20retours%20de%20leurs%20apprentis%20et%20am%C3%A9liorer%20la%20qualit%C3%A9s%20de%20leurs%20formations%20%3B%0A%20%20%20%20-%20Pour%20communiquer%20autrement%20sur%20l%E2%80%99apprentissage%20%3B%0A-%20%2A%2AExposer%2A%2A%20cette%20donn%C3%A9e%20pour%20%2A%2A%C3%A9clairer%20le%20choix%20d%E2%80%99orientation%2A%2A%20des%20jeunes%2C%20aupr%C3%A8s%20%3A%0A%20%20%20%20-%20Des%20%2A%2A370%20000%20%C3%A9l%C3%A8ves%2A%2A%20qui%20s%E2%80%99orientent%20chaque%20ann%C3%A9es%20vers%20l%E2%80%99apprentissage%20dans%20le%20secondaire%20%28coll%C3%A9giens%2C%20lyc%C3%A9ens%2C%20pr%C3%A9pa-apprentissages%29%20%3B%0A%20%20%20%20-%20Des%20accompagnateurs%20%C3%A0%20l%E2%80%99orientation%20vers%20la%20voie%20professionnelle%20apr%C3%A8s%20la%20classe%20de%203%C3%A8me%20dont%20notamment%20%2A%2A13%20000%20professeurs%20principaux%2A%2A%20de%203%C3%A8%20et%20%2A%2A3%20000%20PsyEN%2A%2A.%0A%0AAfin%20de%20s%E2%80%99inscrire%20dans%20le%20parcours%20de%20l%E2%80%99ensemble%20des%20usagers%20cibl%C3%A9s%20par%20notre%20service%2C%20nous%20avons%20mis%20en%20place%20une%20exp%C3%A9rimentation%20sur%20les%20r%C3%A9gions%20Auvergne-Rh%C3%B4ne-Alpes%20et%20Provence-Alpes-C%C3%B4te%20d%E2%80%99Azur%20%3A%0A-%20Nous%20accompagnons%20aujourd%E2%80%99hui%20les%20CFA%20%C3%A0%20prendre%20en%20main%20ce%20nouvel%20outil%20pour%20faciliter%20sa%20diffusion%20aupr%C3%A8s%20des%20apprentis%20des%20deux%20r%C3%A9gions%20pilotes.%0A-%20Nous%20avons%20d%C3%A9fini%20des%20terrains%20propices%20pour%20tester%20diff%C3%A9rents%20modes%20d%E2%80%99exposition%20de%20cette%20nouvelle%20donn%C3%A9e%20et%20mesurer%20la%20pertinence%20et%20l%E2%80%99impact%20de%20notre%20action.%20Un%20%C3%A9chantillon%20de%20coll%C3%A9giens%2C%20de%20jeunes%20en%20pr%C3%A9pa%20apprentissage%2C%20de%20professionnels%20de%20l%E2%80%99orientation%20et%20de%20CFA%20a%20%C3%A9t%C3%A9%20constitu%C3%A9%20pour%20permettre%20de%20proposer%20une%20premi%C3%A8re%20offre%20de%20t%C3%A9moignages%20pertinents.%0A%0A%0ASirius%20b%C3%A9n%C3%A9ficie%20d%E2%80%99un%20appui%20interminist%C3%A9riel%20%3A%0A-%20La%20D%C3%A9l%C3%A9gation%20g%C3%A9n%C3%A9rale%20%C3%A0%20l%27Emploi%20et%20%C3%A0%20la%20Formation%20professionnelle%20%2A%28administration%20du%20minist%C3%A8re%20du%20Travail%2C%20de%20la%20Sant%C3%A9%20et%20de%20la%20Solidarit%C3%A9%29%2A%20finance%20l%E2%80%99exp%C3%A9rimentation%20et%20apporte%20un%20soutien%20technique%20et%20organisationnel%20au%20projet.%0A-%20L%E2%80%99ONISEP%20%2A%28%C3%A9tablissement%20public%20d%C3%A9pendant%20du%20minist%C3%A8re%20de%20l%27%C3%89ducation%20nationale%20et%20de%20la%20Jeunesse%20et%20du%20minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%29%2A%20pilote%20la%20r%C3%A9alisation%20et%20pourrait%20%C3%AAtre%20un%20repreneur%20p%C3%A9renne%20de%20la%20solution.%0A-%20La%20mission%20interminist%C3%A9rielle%20InserJeunes%20assure%20un%20cadre%20strat%C3%A9gique%20et%20m%C3%A9thodologique%20%C3%A0%20l%E2%80%99%C3%A9quipe.%20Elle%20apporte%20des%20expertises%20transverses%20indispensable%20au%20bon%20d%C3%A9roul%C3%A9%20de%20l%E2%80%99exp%C3%A9rimentation%20%2A%28d%C3%A9ploiement%2C%20environnement%20de%20travail%2C%20etc%E2%80%A6%29.%2A%20Elle%20accompagne%20%5Bd%E2%80%99autres%20produits%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2F%3Fincubateur%3Dmission-inserjeunes%29%20ayant%20pour%20objectif%20d%E2%80%99%C3%A9clairer%20les%20choix%20d%E2%80%99orientation%20des%20jeunes%20pour%20faciliter%20leur%20insertion%20professionnelle%2C%20contribuant%20ainsi%20%C3%A0%20ce%20que%20notre%20r%C3%A9ponse%20soit%20coh%C3%A9rente%20avec%20les%20besoins%20des%20usagers.%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A%2A%2AAupr%C3%A8s%20des%20jeunes%20%28coll%C3%A9giens%29%20-%20impact%20recherch%C3%A9%20%3A%2A%2A%0A%0A-%20Aider%20les%20jeunes%20%C3%A0%20choisir%20leur%20orientation%20en%20compl%C3%A9tant%20les%20donn%C3%A9es%20qualitatives%20qui%20leurs%20sont%20accessibles%20aujourd%E2%80%99hui%0A%0A%2A%2AApr%C3%A8s%20des%20CFA%20-%20effet%20induit%20%3A%2A%2A%0A%0A-%20Am%C3%A9liorer%20le%20niveau%20de%20qualit%C3%A9%20des%20retours%20sur%20les%20CFA%20et%20leur%20permettre%20de%20s%27emparer%20de%20ce%20sujet%0A-%20D%C3%A9construire%20les%20aprioris%20et%20mieux%20informer%20sur%20l%27orientation%20vers%20l%27apprentissage%0A-%20Mettre%20en%20avant%20les%20bonnes%20pratiques%20d%E2%80%99accompagnement%20des%20CFA%0A%0A%2A%2AAupr%C3%A8s%20des%20prescripteurs%20%28familles%2C%20prof%20principaux%2C%20psyen...%29%20-%20effet%20induit%20%3A%2A%2A%0A%0A-%20Compl%C3%A9ter%20le%20niveau%20d%27information%2C%20pour%20les%20accompagner%20dans%20leur%20r%C3%B4le%20de%20conseil%20et%20de%20prescription%20aupr%C3%A8s%20des%20jeunes%0A", "events": [], "phases": [ - { - "name": "investigation", - "start": "2023-02-01", - "end": "" - }, { "name": "construction", - "start": "2023-06-01", + "start": "2022-12-01", "end": "" } ], "sponsors": [ - "sgpe" + "dgefp" ], "thematiques": [ - "Écologie" + "Jeunesse", + "Formation" ], - "dashlord_url": "https://dashlord.incubateur.net/url/agir-beta-gouv-fr/best-practices/", - "accessibility_status": "non conforme" + "dashlord_url": "https://dashlord.incubateur.net/startup/sirius", + "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "dinum" + "id": "mission-inserjeunes" } } } @@ -488093,16 +490488,16 @@ { "width": 1920, "height": 1080, - "url": "https://agir.beta.gouv.fr", - "size": 2490.317, - "nodes": 405, - "requests": 53, + "url": "https://sirius.apprentissage.beta.gouv.fr/", + "size": 2023.679, + "nodes": 277, + "requests": 38, "grade": "C", - "score": 60, - "ges": 1.8, - "water": 2.7, + "score": 70, + "ges": 1.6, + "water": 2.4, "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:03:42.455697", + "date": "2024-12-01 18:22:30.336719", "page_type": null } ], @@ -488111,28 +490506,26 @@ "detected": false }, "summary": { - "httpGrade": "C-", - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "B+", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-30T03:04:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 1, + "testsslExpireDate": "2025-02-02T16:39:00.000Z", + "testsslGrade": "M", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, "lighthouse_performance": 0.27, "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", @@ -488140,45 +490533,59 @@ "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "F", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "A", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", "ecoindexGrade": "C", "dsfrGrade": "F" } }, { "404": null, - "url": "https://refugies.info", - "category": "dinum", - "betaId": "refugies.info", + "url": "https://api.data.inclusion.beta.gouv.fr", + "title": "api data·inclusion", + "betaId": "data-inclusion", + "category": "gip-inclusion", + "repositories": [ + "gip-inclusion/data-inclusion" + ], + "docker": [ + "ghcr.io/gip-inclusion/data-inclusion-api" + ], + "tags": [ + "api" + ], + "tools": { + "screenshot": false, + "lighthouse": false, + "thirdparties": false, + "declaration-a11y": false, + "declaration-rgpd": false, + "stats": false, + "dsfr": false, + "ecoindex": false + }, "http": { - "url": "https://refugies.info", + "url": "https://api.data.inclusion.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:09:34 GMT", - "grade": "D-", + "end_time": "Sun, 20 Oct 2024 14:26:43 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Alt-Svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "Content-Encoding": "gzip", - "Date": "Sun, 20 Oct 2024 14:09:32 GMT", - "Server": "Google Frontend", - "Transfer-Encoding": "chunked", - "Via": "1.1 google", - "cache-control": "s-maxage=600, stale-while-revalidate", - "content-type": "text/html; charset=utf-8", - "etag": "\"qinzm08vd24z0m\"", - "vary": "Accept-Encoding", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js" + "Connection": "keep-alive", + "Content-Length": "22", + "Content-Type": "application/json", + "Date": "Sun, 20 Oct 2024 14:26:42 GMT", + "X-Request-ID": "92bda923-37d6-4138-b037-05ce95c3c6d4", + "strict-transport-security": "max-age=31536000" }, - "scan_id": 57066039, - "score": 25, - "start_time": "Sun, 20 Oct 2024 14:09:31 GMT", + "scan_id": 57067358, + "score": 50, + "start_time": "Sun, 20 Oct 2024 14:26:41 GMT", "state": "FINISHED", - "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, + "status_code": 404, + "tests_failed": 3, + "tests_passed": 7, "tests_quantity": 10, "details": { "content-security-policy": { @@ -488213,28 +490620,27 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": null, + "acao": "*", "clientaccesspolicy": null, "crossdomain": null } }, "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", "score_modifier": 0 }, "redirection": { "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://refugies.info:443/fr", + "destination": null, "redirects": true, "route": [ - "http://refugies.info/", - "https://refugies.info:443/", - "https://refugies.info:443/fr" + "http://api.data.inclusion.beta.gouv.fr/", + "https://api.data.inclusion.beta.gouv.fr/" ], - "status_code": 200 + "status_code": null }, "pass": true, "result": "redirection-to-https", @@ -488258,32 +490664,27 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": null, + "data": "max-age=31536000", "includeSubDomains": false, - "max-age": null, + "max-age": 31536000, "preload": false, "preloaded": false }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "https://plausible.io/js/script.tagged-events.js": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 + "pass": true, + "result": "sri-not-implemented-response-not-html", + "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -488320,55 +490721,9 @@ } } }, - "updownio": { - "token": "id4f", - "url": "https://refugies.info", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T23:18:02Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:10:36Z", - "next_check_at": "2024-11-24T18:11:35Z", - "created_at": "2024-03-24T01:11:12Z", - "mute_until": null, - "favicon_url": "https://refugies.info/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T18:07:38Z", - "expires_at": "2025-01-03T06:04:40Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.993, - "timings": { - "redirect": 247, - "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 184, - "total": 432 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, + "updownio": null, "nmap": { - "host": "refugies.info", + "host": "api.data.inclusion.beta.gouv.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ @@ -488382,7 +490737,6 @@ { "service": { "name": "https", - "product": "Google Frontend", "id": "443", "vulnerabilities": [] } @@ -488395,77 +490749,77 @@ "testssl": [ { "id": "service", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_1", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "offered (deprecated)" + "severity": "INFO", + "finding": "not offered" }, { "id": "TLS1_2", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http/1.1grpc-exp" + "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488473,7 +490827,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488481,7 +490835,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488489,7 +490843,7 @@ }, { "id": "cipherlist_LOW", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488497,535 +490851,479 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_OBSOLETED", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", + "severity": "INFO", "cwe": "CWE-310", - "finding": "offered" + "finding": "not offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, - { - "id": "cipher_order-tls1", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, - { - "id": "cipher_order-tls1_1", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_1", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-SHA" - }, { "id": "cipher_order-tls1_2", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'server name/#0' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "valid for 7200 seconds only (= 30 days" }, { "id": "cert_notBefore", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-05 05:12" + "finding": "2024-11-23 05:54" }, { "id": "cert_notAfter", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "2025-01-03 06:04" + "severity": "OK", + "finding": "2025-02-21 05:54" }, { "id": "cert_extlifeSpan", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr3/nMI7ramGKcs.crl" + "finding": "--" }, { "id": "cert_ocspURL", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr3/x8I" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WR3 (Google Trust Services from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2FE357DB13751FF9160E87354975B3407498F41C9BD16A48657866E6E5A9B4C7" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WR3 <-- GTS Root R1" + "finding": "R11 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2>", - "ip": "refugies.info/34.120.26.1", + "id": "intermediate_cert_badOCSP", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "refugies.info/34.120.26.1", + "id": "HTTP_status_code", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "404 Not Found ('/')" }, { - "id": "intermediate_cert_notBefore <#2>", - "ip": "refugies.info/34.120.26.1", + "id": "HTTP_clock_skew", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_chain <#2>", - "ip": "refugies.info/34.120.26.1", + "id": "HTTP_headerTime", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" + "finding": "1733077677" }, { - "id": "intermediate_cert_badOCSP", - "ip": "refugies.info/34.120.26.1", + "id": "HSTS_time", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "308 Permanent Redirect ('/')" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HTTP_clock_skew", - "ip": "refugies.info/34.120.26.1", + "id": "HSTS_subdomains", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "only for this domain" }, { - "id": "HTTP_headerTime", - "ip": "refugies.info/34.120.26.1", + "id": "HSTS_preload", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732471780" - }, - { - "id": "HSTS", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "LOW", - "finding": "not offered" + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Google Frontend" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 google" + "finding": "--" }, { "id": "heartbleed", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -489034,7 +491332,7 @@ }, { "id": "CCS", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -489043,7 +491341,7 @@ }, { "id": "ticketbleed", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -489052,16 +491350,16 @@ }, { "id": "ROBOT", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -489069,7 +491367,7 @@ }, { "id": "secure_client_renego", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -489078,2022 +491376,516 @@ }, { "id": "CRIME_TLS", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "finding": "supported" - }, - { - "id": "SWEET32", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "LOW", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "uses 64 bit block ciphers" - }, - { - "id": "FREAK", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D9CF7A4D0E7C3AC0D7E6F5FFE33117FCDFB670A19F71AD99A6A6B9CD277051E0" - }, - { - "id": "LOGJAM", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST_CBC_TLS1", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-SHA AES128-SHA AES256-SHA DES-CBC3-SHA" - }, - { - "id": "BEAST", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "LOW", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)" - }, - { - "id": "LUCKY13", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" - }, - { - "id": "winshock", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 DES-CBC3-SHA" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "refugies.info/34.120.26.1", - "port": "443", - "severity": "INFO", - "finding": "95" - }, - { - "id": "protocol_support_score_weighted", - "ip": "refugies.info/34.120.26.1", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "28" + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "key_exchange_score", - "ip": "refugies.info/34.120.26.1", + "id": "BREACH", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "90" + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { - "id": "key_exchange_score_weighted", - "ip": "refugies.info/34.120.26.1", + "id": "POODLE_SSL", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "27" + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" }, { - "id": "cipher_strength_score", - "ip": "refugies.info/34.120.26.1", + "id": "fallback_SCSV", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "60" + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" }, { - "id": "cipher_strength_score_weighted", - "ip": "refugies.info/34.120.26.1", + "id": "SWEET32", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "24" + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" }, { - "id": "final_score", - "ip": "refugies.info/34.120.26.1", + "id": "FREAK", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "79" + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "id": "overall_grade", - "ip": "refugies.info/34.120.26.1", + "id": "DROWN", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "B" + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" }, { - "id": "grade_cap_reason_1", - "ip": "refugies.info/34.120.26.1", + "id": "DROWN_hint", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Grade capped to B. TLS 1.1 offered" + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" }, { - "id": "grade_cap_reason_2", - "ip": "refugies.info/34.120.26.1", + "id": "LOGJAM", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "Grade capped to B. TLS 1.0 offered" + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "grade_cap_reason_3", - "ip": "refugies.info/34.120.26.1", + "id": "LOGJAM-common_primes", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" }, { - "id": "scanTime", - "ip": "refugies.info/34.120.26.1", + "id": "BEAST", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "56" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://plausible.io/js/script.tagged-events.js" - }, - { - "type": "google tag manager", - "url": "https://www.googletagmanager.com/gtag/js?id=G-0MFNB0ZLJN", - "details": { - "id": "google tag manager", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "unknown", - "url": "https://cdn.matomo.cloud/refugies.matomo.cloud/container_ZxAXaEFC.js" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729519636/pictures/fajgj8dwxlgjcns7efss.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729519882/pictures/rubsfcvscsrwatu9leaf.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729522554/pictures/r84vbm18wrv3drhyucjr.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1730198317/pictures/xbw0strfzhujfpaapwlw.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729522938/pictures/k0ancycfa7abvxfpc97g.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523163/pictures/gd4rdxhuypnexd1n7ix3.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523348/pictures/cne1fxzvolfifpapq4dp.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523565/pictures/odsizlljcsq25mwvu6dp.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523733/pictures/fvpaiiybh9spqjzobxis.svg" - }, - { - "type": "unknown", - "url": "https://res.cloudinary.com/dlmqnnhp6/image/upload/v1729523894/pictures/x5zro2qrwh64nhrkfan8.svg" - }, - { - "type": "google", - "url": "https://storage.googleapis.com/refugies-info-assets/store-badges/app-store-fr.svg", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google", - "url": "https://storage.googleapis.com/refugies-info-assets/store-badges/google-play-fr.svg", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "google analytics", - "url": "https://www.google-analytics.com/g/collect?v=2&tid=G-0MFNB0ZLJN>m=45je4bk0v9117900830za200&_p=1732471710197&gcs=G100&gcd=13p3p3p3p5l1&npa=1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&cid=1617916443.1732471711&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&frm=0&pscdl=denied&_s=1&sid=1732471711&sct=1&seg=0&dl=https%3A%2F%2Frefugies.info%2Ffr&dt=Accueil%20-%20R%C3%A9fugi%C3%A9s.info&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1959", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - }, - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - }, - { - "type": "google analytics", - "url": "https://www.google-analytics.com/g/collect?v=2&tid=G-0MFNB0ZLJN>m=45je4bk0v9117900830za200&_p=1732471710197&gcs=G100&gcd=13p3p3p3p5l1&npa=1&dma_cps=-&dma=0&tag_exp=101925629~102067555~102067808~102077855~102081485&cid=1617916443.1732471711&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&frm=0&pscdl=denied&sid=1732471711&sct=1&seg=0&dl=https%3A%2F%2Frefugies.info%2Ffr&dt=Accueil%20-%20R%C3%A9fugi%C3%A9s.info&_s=2&tfd=6965", - "details": { - "id": "google analytics", - "message": "Use hosted Matomo instance" - } - } - ], - "cookies": [], - "headers": { - "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "cache-control": "s-maxage=600, stale-while-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 18:08:29 GMT", - "etag": "\"4hpzksponr29d6\"", - "server": "Google Frontend", - "vary": "Accept-Encoding", - "via": "1.1 google", - "x-nextjs-cache": "HIT", - "x-powered-by": "Next.js" - }, - "endpoints": [ - { - "hostname": "refugies.info", - "ip": "34.120.26.1", - "geoip": { - "city": { - "geoname_id": 4393217, - "names": { - "de": "Kansas City", - "en": "Kansas City", - "es": "Kansas City", - "fr": "Kansas City", - "ja": "カンザスシティ", - "pt-BR": "Kansas City", - "ru": "Канзас-Сити" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.1027, - "longitude": -94.5778, - "metro_code": 616, - "time_zone": "America/Chicago" - }, - "postal": { - "code": "64184" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4398678, - "iso_code": "MO", - "names": { - "de": "Missouri", - "en": "Missouri", - "es": "Missouri", - "fr": "Missouri", - "ja": "ミズーリ州", - "pt-BR": "Missúri", - "ru": "Миссури", - "zh-CN": "密苏里州" - } - } - ] - } - }, - { - "hostname": "plausible.io", - "ip": "138.199.40.58", - "geoip": { - "city": { - "geoname_id": 5128581, - "names": { - "de": "New York City", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 40.7123, - "longitude": -74.0068, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "10118" - }, - "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } - } - ] - } - }, - { - "hostname": "www.googletagmanager.com", - "ip": "142.251.167.97", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdn.matomo.cloud", - "ip": "3.167.99.104", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "res.cloudinary.com", - "ip": "104.17.202.1", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "storage.googleapis.com", - "ip": "142.251.179.207", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.google-analytics.com", - "ip": "142.251.167.101", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.28.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://refugies.info/": { - "status": 308 - }, - "https://refugies.info/fr": { - "status": 200 - } + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "google-cloud", - "name": "Google Cloud", - "description": "Google Cloud is a suite of cloud computing services.", - "confidence": 100, - "version": null, - "icon": "Google Cloud.svg", - "website": "https://cloud.google.com", - "cpe": "cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 63, - "slug": "iaas", - "name": "IaaS" - } - ] - }, - { - "slug": "styled-components", - "name": "styled-components", - "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", - "confidence": 100, - "version": "6.1.13", - "icon": "styled-components.svg", - "website": "https://styled-components.com", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.10", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ] - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "lodash", - "name": "Lodash", - "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", - "confidence": 100, - "version": "4.17.21", - "icon": "Lodash.svg", - "website": "https://www.lodash.com", - "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "google-analytics", - "name": "Google Analytics", - "description": "Google Analytics is a free web analytics service that tracks and reports website traffic.", - "confidence": 100, - "version": null, - "icon": "Google Analytics.svg", - "website": "https://google.com/analytics", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ] - }, - { - "slug": "cloudinary", - "name": "Cloudinary", - "description": "Cloudinary is an end-to-end image- and video-management solution for websites and mobile apps, covering everything from image and video uploads, storage, manipulations, optimisations to delivery.", - "confidence": 100, - "version": null, - "icon": "Cloudinary.svg", - "website": "https://cloudinary.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - }, - { - "id": 95, - "slug": "digital-asset-management", - "name": "Digital asset management" - } - ] - }, - { - "slug": "google-cloud-cdn", - "name": "Google Cloud CDN", - "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", - "confidence": 100, - "version": null, - "icon": "google-cloud-cdn.svg", - "website": "https://cloud.google.com/cdn", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ] - }, - { - "slug": "sendinblue", - "name": "Sendinblue", - "description": "Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns.", - "confidence": 100, - "version": null, - "icon": "Sendinblue.svg", - "website": "https://www.sendinblue.com", - "cpe": null, - "categories": [ - { - "id": 32, - "slug": "marketing-automation", - "name": "Marketing automation" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "google-workspace", - "name": "Google Workspace", - "description": "Google Workspace, formerly G Suite, is a collection of cloud computing, productivity and collaboration tools.", - "confidence": 100, - "version": null, - "icon": "Google.svg", - "website": "https://workspace.google.com/", - "cpe": null, - "categories": [ - { - "id": 30, - "slug": "webmail", - "name": "Webmail" - }, - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", - "confidence": 100, - "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://refugies.info/", - "finalUrl": "https://refugies.info/fr", - "fetchTime": "2024-11-24T18:07:50.041Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://refugies.info/) was redirected to https://refugies.info/fr. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.24 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.93 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.8 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 14889, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2126, - "firstMeaningfulPaint": 3486, - "largestContentfulPaint": 9465, - "interactive": 14889, - "speedIndex": 10171, - "totalBlockingTime": 5124, - "maxPotentialFID": 4390, - "cumulativeLayoutShift": 0.0635681915283203, - "cumulativeLayoutShiftMainFrame": 0.0635681915283203, - "totalCumulativeLayoutShift": 0.0635681915283203, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 462357354, - "observedNavigationStart": 0, - "observedNavigationStartTs": 462357354, - "observedFirstPaint": 1489, - "observedFirstPaintTs": 463845992, - "observedFirstContentfulPaint": 1489, - "observedFirstContentfulPaintTs": 463845992, - "observedFirstContentfulPaintAllFrames": 1489, - "observedFirstContentfulPaintAllFramesTs": 463845992, - "observedFirstMeaningfulPaint": 1489, - "observedFirstMeaningfulPaintTs": 463845992, - "observedLargestContentfulPaint": 1746, - "observedLargestContentfulPaintTs": 464103304, - "observedLargestContentfulPaintAllFrames": 1746, - "observedLargestContentfulPaintAllFramesTs": 464103304, - "observedTraceEnd": 6857, - "observedTraceEndTs": 469214564, - "observedLoad": 3101, - "observedLoadTs": 465458186, - "observedDomContentLoaded": 1182, - "observedDomContentLoadedTs": 463539101, - "observedCumulativeLayoutShift": 0.0635681915283203, - "observedCumulativeLayoutShiftMainFrame": 0.0635681915283203, - "observedTotalCumulativeLayoutShift": 0.0635681915283203, - "observedFirstVisualChange": 1490, - "observedFirstVisualChangeTs": 463847354, - "observedLastVisualChange": 6857, - "observedLastVisualChangeTs": 469214354, - "observedSpeedIndex": 3256, - "observedSpeedIndexTs": 465612875 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 114, - "numScripts": 27, - "numStylesheets": 3, - "numFonts": 6, - "numTasks": 4477, - "numTasksOver10ms": 20, - "numTasksOver25ms": 9, - "numTasksOver50ms": 5, - "numTasksOver100ms": 2, - "numTasksOver500ms": 1, - "rtt": 0, - "throughput": 23567985.320689663, - "maxRtt": 11.149000000000001, - "maxServerLatency": 378.341, - "totalByteWeight": 2068766, - "totalTaskTime": 2438.3819999999805, - "mainDocumentTransferSize": 29028 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://refugies.info/fr/declaration-accessibilite" - }, - "declaration-rgpd": [ + "id": "winshock", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://refugies.info/fr/mentions-legales" + "id": "RC4", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 8, - "score": 4, - "missingWords": [ - "finalité", - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [ - "googleanalytics" - ], - "declarationUrl": "https://refugies.info/fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "refugies.info", - "type": "startup", - "attributes": { - "name": "Réfugiés.info", - "pitch": "Donner de l'information simple et traduite aux personnes réfugiées et à leurs accompagnants", - "stats_url": "https://kit.refugies.info/stats", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#R%C3%A9fugi%C3%A9sinfo", - "link": "https://refugies.info/", - "repository": "https://github.com/refugies-info/karfur", - "contact": "nour@refugies.info", - "content_url_encoded_markdown": "%23%23%20%2A%2AContexte%2A%2A%0A%0AChaque%20ann%C3%A9e%2C%20la%20France%20accueille%20entre%2035%20000%20et%2050%20000%20personnes%20r%C3%A9fugi%C3%A9es%2C%20avec%20une%20tendance%20%C3%A0%20la%20hausse%20due%20aux%20conflits%20g%C3%A9opolitiques%20et%20aux%20migrations%20li%C3%A9es%20au%20changement%20climatique.%20Cependant%2C%20leur%20int%C3%A9gration%20en%20France%20est%20entrav%C3%A9e%20par%20des%20obstacles%20majeurs.%0A%0A%23%23%20%2A%2AProbl%C3%A8me%2A%2A%0A%0ACes%20probl%C3%A8mes%20sont%20principalement%3A%0A%0A1.%20%2A%2ALe%20manque%20d%27information%20et%20le%20non-recours%20aux%20droits%20des%20personnes%20r%C3%A9fugi%C3%A9es%20%3A%2A%2A%C2%A0%C3%89parpillement%20de%20l%27information%2C%20barri%C3%A8re%20de%20la%20langue%2C%20manque%20de%20temps%20et%20de%20compr%C3%A9hension%20du%20syst%C3%A8me%20administratif%20fran%C3%A7ais.%0A2.%20%2A%2ALe%20manque%20d%27outillage%20des%20professionnels%20de%20l%27accompagnement%20%3A%2A%2A%C2%A0Manque%20de%20temps%2C%20de%20formation%2C%20et%20d%27outils%20pour%20aider%20les%20r%C3%A9fugi%C3%A9s.%0A%0A%23%23%20%2A%2ASolution%2A%2A%0A%0AR%C3%A9fugi%C3%A9.info%20propose%20deux%20produits%20compl%C3%A9mentaires%20pour%20simplifier%20l%27int%C3%A9gration%20des%20personnes%20r%C3%A9fugi%C3%A9es%20en%20France%20%3A%0A%0A1.%20%2A%2ASite%20Internet%20Collaboratif%20%3A%2A%2A%C2%A0Notre%20site%20collaboratif%20d%C3%A9di%C3%A9%20aux%20professionnels%20offre%20des%20fiches%20standardis%C3%A9es%20pour%20pr%C3%A9senter%20des%20initiatives%20d%27int%C3%A9gration%20%28cours%20de%20fran%C3%A7ais%2C%20ateliers%20socio-linguistiques%2C%20etc.%29%20et%20simplifier%20les%20d%C3%A9marches%20administratives%20%28logement%20social%2C%20carte%20de%20s%C3%A9jour%2C%20inscription%20%C3%A0%20P%C3%B4le%20emploi%29.%0A2.%20%2A%2AApplication%20Mobile%20Native%20%3A%2A%2A%C2%A0Notre%20application%20mobile%20est%20con%C3%A7ue%20pour%20r%C3%A9pondre%20aux%20besoins%20num%C3%A9riques%20des%20r%C3%A9fugi%C3%A9s.%20Elle%20propose%20un%20acc%C3%A8s%20convivial%20aux%20informations%2C%20permet%20l%27%C3%A9coute%20des%20fiches%20pour%20les%20utilisateurs%20en%20alphab%C3%A9tisation%2C%20et%20facilite%20le%20partage%20d%27informations%2C%20notamment%20par%20SMS%20pour%20les%20accompagnants.%0A%0AToutes%20les%20informations%20sont%20cr%C3%A9%C3%A9es%20de%20mani%C3%A8re%20collaborative%20par%20les%20responsables%20d%27organismes%20publics%2C%20des%20associations%2C%20et%20des%20b%C3%A9n%C3%A9voles.%20Actuellement%2C%20R%C3%A9fugi%C3%A9.info%20offre%20plus%20de%20650%20fiches%2C%20dont%20plus%20de%20100%20fiches%20%22d%C3%A9marches%22%20expliquant%20des%20proc%C3%A9dures%20administratives%20complexes.%20De%20plus%2C%20toutes%20les%20informations%20sont%20disponibles%20en%207%20langues%2C%20couvrant%20les%20langues%20les%20plus%20parl%C3%A9es%20par%20les%20personnes%20prot%C3%A9g%C3%A9es%20en%20France%2C%20gr%C3%A2ce%20%C3%A0%20l%27engagement%20de%20b%C3%A9n%C3%A9voles%20et%20de%20traducteurs%20professionnels.%0A%0A%23%23%20%2A%2AStrat%C3%A9gie%2A%2A%0A%0AAu%20cours%20des%20prochains%20mois%2C%20nous%20souhaitons%20nous%20focaliser%20nos%20efforts%20sur%20diff%C3%A9rentes%20%C3%A9tapes%20du%20parcours%20utilisateur%3A%0A%0A-%20%2A%2AAcquisition%20%3A%2A%2A%C2%A0Objectif%20d%27acqu%C3%A9rir%20120%20000%20travailleurs%20sociaux%20et%20les%20r%C3%A9fugi%C3%A9s%20qu%27ils%20accompagnent%20par%20le%20biais%20de%20partenariats%20nationaux.%0A-%20%2A%2AActivation%20%3A%2A%2A%C2%A0Former%206000%20travailleurs%20sociaux%20sur%20le%20fonctionnement%20de%20R%C3%A9fugi%C3%A9.info.%0A-%20%2A%2AR%C3%A9tention%20%3A%2A%2A%C2%A0Augmenter%20l%27usage%20du%20service%20par%20les%20r%C3%A9fugi%C3%A9s%20gr%C3%A2ce%20%C3%A0%20des%20am%C3%A9liorations%20et%20du%20contenu%20additionnel.%0A-%20%2A%2AImpact%20%3A%2A%2A%C2%A0Mesurer%20le%20gain%20de%20temps%20d%C3%A9clar%C3%A9%20par%20les%20professionnels%20lors%20d%27une%20enqu%C3%AAte%20d%27usages%20et%20mettre%20en%20place%20un%20questionnaire%20de%20satisfaction%20%28NPS%29.%0A", - "events": [ - { - "name": "fast", - "date": "2024-01-01", - "comment": "Montant de 250000€ pour la promotion 13" - } - ], - "phases": [ - { - "name": "acceleration", - "start": "2023-09-25", - "end": "" - } - ], - "sponsors": [ - "diair" - ], - "thematiques": [ - "Social" - ], - "accessibility_status": "non conforme" + "id": "clientsimulation-android_60", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://refugies.info", - "size": 3960.075, - "nodes": 2012, - "requests": 151, - "grade": "F", - "score": 13, - "ges": 2.74, - "water": 4.11, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:04:47.065488", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "D-", - "apdex": 0.993, - "apdexGrade": "A", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-03T06:04:00.000Z", - "testsslGrade": "B", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 18, - "lighthouse_performance": 0.24, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.93, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.8, - "lighthouse_pwaGrade": "B", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "F", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://rnb.beta.gouv.fr", - "title": "Homepage présentation RNB", - "betaId": "bat-id", - "category": "fab-geocommuns", - "tags": [ - "geocommun" - ], - "repositories": [ - "fab-geocommuns/RNB-site", - "fab-geocommuns/RNB-coeur" - ], - "http": { - "url": "https://rnb.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:14:52 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Age": "10", - "Cache-Control": "public, max-age=0, must-revalidate", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:12:19 GMT", - "Etag": "W/\"iefe19w1fy10na\"", - "Server": "Vercel", - "Strict-Transport-Security": "max-age=63072000", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", - "X-Matched-Path": "/", - "X-Powered-By": "Next.js", - "X-Vercel-Cache": "HIT", - "X-Vercel-Id": "pdx1::iad1::c6zzg-1729433691449-0a43e4d4da82" + "id": "clientsimulation-android_70", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "scan_id": 57066554, - "score": 50, - "start_time": "Sun, 20 Oct 2024 14:14:51 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://rnb.beta.gouv.fr/", - "redirects": true, - "route": [ - "http://rnb.beta.gouv.fr/", - "https://rnb.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=63072000", - "includeSubDomains": false, - "max-age": 63072000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "0h70", - "url": "https://rnb.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.993, - "down": false, - "down_since": null, - "up_since": "2024-11-23T16:44:17Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:16:12Z", - "next_check_at": "2024-11-24T18:17:12Z", - "created_at": "2024-03-05T17:55:17Z", - "mute_until": null, - "favicon_url": "https://rnb.beta.gouv.fr/_next/static/media/favicon.8c087985.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T18:15:13Z", - "expires_at": "2025-01-09T19:32:38Z", - "valid": true, - "error": null + { + "id": "clientsimulation-android_81", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 97, - "connection": 3, - "handshake": 22, - "response": 171, - "total": 293 - } + { + "id": "clientsimulation-android_90", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "rnb.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "Vercel", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "product": "Vercel", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -491101,7 +491893,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -491109,7 +491901,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -491117,7 +491909,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -491125,7 +491917,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -491133,7 +491925,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -491141,469 +491933,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'status request/#5' 'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-10-11 19:32" + "finding": "2024-11-23 05:54" }, { "id": "cert_notAfter", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-01-09 19:32" + "finding": "2025-02-21 05:54" }, { "id": "cert_extlifeSpan", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-200498 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "1732271550" - }, - { - "id": "HTTP_headerAge", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 seconds" + "finding": "1733077728" }, { "id": "HSTS_time", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "Vercel" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "X-Powered-By: Next.js" + "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "id": "security_headers", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -491611,7 +492389,7 @@ }, { "id": "heartbleed", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -491620,7 +492398,7 @@ }, { "id": "CCS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -491629,7 +492407,7 @@ }, { "id": "ticketbleed", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -491638,7 +492416,7 @@ }, { "id": "ROBOT", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -491647,7 +492425,7 @@ }, { "id": "secure_renego", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -491655,7 +492433,7 @@ }, { "id": "secure_client_renego", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -491664,7 +492442,7 @@ }, { "id": "CRIME_TLS", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -491673,16 +492451,16 @@ }, { "id": "BREACH", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -491691,14 +492469,14 @@ }, { "id": "fallback_SCSV", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -491707,7 +492485,7 @@ }, { "id": "FREAK", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -491716,7 +492494,7 @@ }, { "id": "DROWN", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -491725,16 +492503,16 @@ }, { "id": "DROWN_hint", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8A841C8F56FE054EEFA9CFED5CA134E898C9164F8CD10519761E70D5DCB8F665" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" }, { "id": "LOGJAM", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -491743,7 +492521,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -491752,7 +492530,7 @@ }, { "id": "BEAST", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -491761,7 +492539,7 @@ }, { "id": "LUCKY13", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -491770,7 +492548,7 @@ }, { "id": "winshock", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -491779,7 +492557,7 @@ }, { "id": "RC4", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -491788,2068 +492566,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-go_1178", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "rnb.beta.gouv.fr/76.76.21.21", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "rnb.beta.gouv.fr/76.76.21.21", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "41" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://cdn.heapanalytics.com/js/heap-3380454554.js" - }, - { - "type": "unknown", - "url": "https://heapanalytics.com/h?a=3380454554&u=7704679554958491&v=4527202437815258&s=8110304468080001&b=web&tv=4.0&z=0&h=%2F&d=rnb.beta.gouv.fr&t=R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents&ts=1732472012547&sch=600&scw=800&st=1732472012554&lv=4.23.4&ld=cdn.heapanalytics.com" - } - ], - "cookies": [ - { - "name": "__Secure-next-auth.callback-url", - "value": "https%3A%2F%2Frnb.beta.gouv.fr", - "domain": "rnb.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 61, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "__Host-next-auth.csrf-token", - "value": "0ef499dd4d746a093e0a634eb34904499a6d19aaf4dbdef8678e5a4a485a6709%7Cb68dd773c68611b49c1d8c4f73c4d384761450d2557524d104910e30798373a8", - "domain": "rnb.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 158, - "httpOnly": true, - "secure": true, - "session": true, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_hp2_ses_props.3380454554", - "value": "%7B%22ts%22%3A1732472012547%2C%22d%22%3A%22rnb.beta.gouv.fr%22%2C%22h%22%3A%22%2F%22%7D", - "domain": ".beta.gouv.fr", - "path": "/", - "expires": 1732473812, - "size": 112, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_hp2_id.3380454554", - "value": "%7B%22userId%22%3A%227704679554958491%22%2C%22pageviewId%22%3A%224527202437815258%22%2C%22sessionId%22%3A%228110304468080001%22%2C%22identity%22%3Anull%2C%22trackerVersion%22%3A%224.0%22%7D", - "domain": ".beta.gouv.fr", - "path": "/", - "expires": 1766549612, - "size": 207, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "age": "23", - "cache-control": "public, max-age=0, must-revalidate", - "content-encoding": "br", - "content-type": "text/html; charset=utf-8", - "date": "Fri, 22 Nov 2024 10:32:30 GMT", - "etag": "W/\"m8anwno17510h1\"", - "server": "Vercel", - "strict-transport-security": "max-age=63072000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch", - "x-matched-path": "/", - "x-powered-by": "Next.js", - "x-vercel-cache": "STALE", - "x-vercel-id": "iad1::iad1::kmqm6-1732472012303-abc6e393d8ee" - }, - "endpoints": [ - { - "hostname": "rnb.beta.gouv.fr", - "ip": "76.76.21.21", - "geoip": { - "city": { - "geoname_id": 5406976, - "names": { - "en": "Walnut", - "ru": "Уолнат", - "zh-CN": "沃尔纳特" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 34.0233, - "longitude": -117.8512, - "metro_code": 803, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "91789" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "cdn.heapanalytics.com", - "ip": "3.162.125.94", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "heapanalytics.com", - "ip": "3.208.244.91", - "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://rnb.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", - "confidence": 100, - "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", - "cpe": null, - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, - { - "slug": "uptimerobot", - "name": "UptimeRobot", - "description": "UptimeRobot is a web-based software that is designed to monitor the sites frequently to check whether any site is down owing to server problem or any bug in coding.", - "confidence": 100, - "version": null, - "icon": "UptimeRobot.svg", - "website": "https://uptimerobot.com", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "vercel", - "name": "Vercel", - "description": "Vercel is a cloud platform for static frontends and serverless functions.", - "confidence": 100, - "version": null, - "icon": "vercel.svg", - "website": "https://vercel.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - } - ], - "rootPath": true - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.5", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "vercel-analytics", - "name": "Vercel Analytics", - "description": null, - "confidence": 100, - "version": null, - "icon": "vercel.svg", - "website": "https://vercel.com/analytics", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "heap", - "name": "Heap", - "description": "Heap is an analytics platform.", - "confidence": 100, - "version": "4.23.4", - "icon": "Heap.svg", - "website": "https://heap.io", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://rnb.beta.gouv.fr/", - "finalUrl": "https://rnb.beta.gouv.fr/", - "fetchTime": "2024-11-24T18:13:07.258Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.68 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.87 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 8293, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1507, - "firstMeaningfulPaint": 1776, - "largestContentfulPaint": 7137, - "interactive": 8293, - "speedIndex": 3158, - "totalBlockingTime": 147, - "maxPotentialFID": 121, - "cumulativeLayoutShift": 0.022175032721625434, - "cumulativeLayoutShiftMainFrame": 0.022175032721625434, - "totalCumulativeLayoutShift": 0.022175032721625434, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 413039141, - "observedNavigationStart": 0, - "observedNavigationStartTs": 413039141, - "observedFirstPaint": 369, - "observedFirstPaintTs": 413407691, - "observedFirstContentfulPaint": 369, - "observedFirstContentfulPaintTs": 413407691, - "observedFirstContentfulPaintAllFrames": 369, - "observedFirstContentfulPaintAllFramesTs": 413407691, - "observedFirstMeaningfulPaint": 369, - "observedFirstMeaningfulPaintTs": 413407691, - "observedLargestContentfulPaint": 435, - "observedLargestContentfulPaintTs": 413473957, - "observedLargestContentfulPaintAllFrames": 435, - "observedLargestContentfulPaintAllFramesTs": 413473957, - "observedTraceEnd": 3011, - "observedTraceEndTs": 416049776, - "observedLoad": 270, - "observedLoadTs": 413308779, - "observedDomContentLoaded": 112, - "observedDomContentLoadedTs": 413151288, - "observedCumulativeLayoutShift": 0.022175032721625434, - "observedCumulativeLayoutShiftMainFrame": 0.022175032721625434, - "observedTotalCumulativeLayoutShift": 0.022175032721625434, - "observedFirstVisualChange": 377, - "observedFirstVisualChangeTs": 413416141, - "observedLastVisualChange": 760, - "observedLastVisualChangeTs": 413799141, - "observedSpeedIndex": 422, - "observedSpeedIndexTs": 413460961 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 69, - "numScripts": 24, - "numStylesheets": 6, - "numFonts": 6, - "numTasks": 1494, - "numTasksOver10ms": 7, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 2.456999999999999, - "throughput": 149855868.79461744, - "maxRtt": 2.912000000000001, - "maxServerLatency": 6.188000000000001, - "totalByteWeight": 1617413, - "totalTaskTime": 405.48499999999746, - "mainDocumentTransferSize": 11214 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://rnb.beta.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "id": "clientsimulation-edge_15_win10", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "bat-id", - "type": "startup", - "attributes": { - "name": "RNB, le Référentiel National des Bâtiments (ex Bat-ID)", - "pitch": "Référencer l’intégralité des bâtiments du territoire français au sein d’un géocommun", - "stats_url": "https://rnb.beta.gouv.fr//stats", - "budget_url": "https://rnb-fr.gitbook.io/documentation/budget", - "link": "https://rnb.beta.gouv.fr/", - "repository": "https://github.com/fab-geocommuns/RNB-site", - "contact": "rnb@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Probl%C3%A8me%0A%0A%E2%80%9C_Du%20fait%20d%E2%80%99un%20%C3%A9cosyst%C3%A8me%20atomis%C3%A9%2C%20la%20production%20de%20l%E2%80%99information%20g%C3%A9olocalis%C3%A9e%20dans%20la%20sph%C3%A8re%20publique%20se%20traduit%20par%20un%20usage%20sous-optimal%20des%20deniers%20publics._%E2%80%9D%20Rapport%20d%27Information%2C%20S%C3%A9nat%2C%20Commission%20des%20Finances%20pour%20l%27IGN%2C%205%20Octobre%202022%0A%0A%0AParmi%20ces%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%2C%20l%27information%20relative%20au%20b%C3%A2timent%20se%20d%C3%A9marque%20par%20l%27absence%20de%20r%C3%A9f%C3%A9rentiel.%20Le%20concept%20de%20b%C3%A2timent%20ne%20faisant%20pas%20consensus%2C%20les%20acteurs%20travaillent%20en%20silos%20r%C3%A9pondant%20chacun%20%C3%A0%20leur%20propre%20vision%20du%20b%C3%A2timent%E2%80%A6%0A%0ACette%20absence%20se%20traduit%20par%20des%20informations%20rattach%C3%A9es%20%C3%A0%20l%27adresse%2C%20au%20logement%20ou%20parfois%20%C3%A0%20la%20parcelle%20cadastrale.%20L%27objet%20b%C3%A2timent%20appara%C3%AEt%20alors%20comme%20le%20maillon%20manquant%20au%20socle%20de%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%20structur%C3%A9%20qui%20relie%20les%20concepts%20d%27adresses%2Fb%C3%A2timent%2Flocaux%20%28parcelles%29.%0A%0AAinsi%2C%20les%20donn%C3%A9es%20g%C3%A9olocalis%C3%A9es%20actuelles%20ne%20permettent%20pas%20un%20pilotage%20satisfaisant%20des%20politiques%20publiques%2C%20en%20particulier%20celles%20qui%20concernent%20la%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%2C%20qui%20n%C3%A9cessitent%20une%20vision%20exhaustive%2C%20repr%C3%A9sentative%2C%20actualis%C3%A9e%20et%20partag%C3%A9e%20du%20parc.%0A%0A%23%23%20Solution%20%3A%20Le%20R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents%0A%0ALa%20cr%C3%A9ation%20d%27un%20r%C3%A9f%C3%A9rentiel%20unique%20des%20b%C3%A2timents%2C%20en%20lien%20avec%20les%20autres%20r%C3%A9f%C3%A9rentiels%20%28adresses%2C%20locaux%2C%20parcelles%29%20existants%20est%20n%C3%A9cessaire%20pour%20passer%20d%27un%20%E2%80%9C%C3%A9cosyst%C3%A8me%20atomis%C3%A9%E2%80%9D%20%C3%A0%20un%20fonctionnement%20en%20r%C3%A9seau.%0A%0AC%E2%80%99est%20dans%20ce%20contexte%20qu%E2%80%99a%20vu%20le%20jour%20le%20projet%2C%20initialement%20appel%C3%A9%20BatID%2C%20d%27abord%20au%20sein%20du%20%5Bprogramme%20EIG%5D%28https%3A%2F%2Feig.etalab.gouv.fr%2Fdefis%2Fbatid%2F%29%2C%20pour%20co-construire%20avec%20l%E2%80%99ensemble%20des%20parties%20prenantes%20le%20R%C3%A9f%C3%A9rentiel%20National%20des%20B%C3%A2timents%20%28RNB%29%2C%20%C3%A0%20destination%20des%20acteurs%20publics%20comme%20priv%C3%A9s.%20Ce%20r%C3%A9f%C3%A9rentiel%20sera%20aliment%C3%A9%20par%20les%20processus%20administratifs%20existants%20afin%20d%E2%80%99aboutir%20%C3%A0%20une%20mise%20%C3%A0%20jour%20en%20continue%20des%20bases%20de%20donn%C3%A9es%20socles.%0A%0A%23%23%20Strat%C3%A9gie%0A%0ALa%20strat%C3%A9gie%20du%20RNB%20repose%20sur%20deux%20approches%20compl%C3%A9mentaires%20%3A%0A%0AD%27une%20part%2C%20exp%C3%A9rimenter%20au%20maximum%20afin%20d%27embarquer%20les%20acteurs%2C%20d%C3%A9montrer%20les%20usages%2C%20en%20cr%C3%A9ant%20les%20boucles%20de%20r%C3%A9troaction%20de%20l%27alimentation%20du%20r%C3%A9f%C3%A9rentiel.%0ADe%20l%27autre%2C%20co-construire%20une%20gouvernance%20commune%20aux%20parties%20prenantes%2C%20afin%20de%20susciter%20l%27adh%C3%A9sion%20et%20cr%C3%A9er%20le%20cadre%20favorable%20%C3%A0%20la%20vie%20du%20r%C3%A9f%C3%A9rentiel.%0AL%27approche%20exp%C3%A9rimentale%20permet%20de%20cerner%20pr%C3%A9cis%C3%A9ment%20les%20besoins%20et%20points%20de%20friction%20%C3%A0%20l%27%C3%A9mergence%20du%20projet%2C%20gr%C3%A2ce%20%C3%A0%20une%20vision%20terrain%20et%20%C3%A0%20la%20mise%20en%20%C5%93uvre%20technique.%20La%20d%C3%A9marche%20de%20co-construction%2C%20permet%20de%20f%C3%A9d%C3%A9rer%20les%20acteurs%20pour%20rendre%20possible%20l%27interop%C3%A9rabilit%C3%A9%20%C3%A0%20l%27%C3%A9chelle%20nationale%20en%20permettant%20le%20partage%20et%20l%27%C3%A9change%20de%20donn%C3%A9es.%0A%0AL%27objectif%20%C3%A0%20terme%20%3A%20aboutir%20%C3%A0%20un%20mod%C3%A8le%20de%20gouvernance%20p%C3%A9renne%2C%20pour%20faire%20de%20cette%20future%20donn%C3%A9e%20de%20r%C3%A9f%C3%A9rence%20un%20v%C3%A9ritable%20g%C3%A9o-commun.%0A", - "events": [ - { - "name": "committee", - "date": "2022-11-09", - "comment": "Lancement en phase de construction" - }, - { - "name": "committee", - "date": "2023-06-30", - "comment": "" - }, - { - "name": "committee", - "date": "2023-11-28", - "comment": "Lancement en phase d'accélération" - }, - { - "name": "committee", - "date": "2024-06-18", - "comment": "" - }, - { - "name": "committee", - "date": "2024-12-11", - "comment": "" - } - ], - "phases": [ - { - "name": "investigation", - "start": "2021-09-01", - "end": "" - }, - { - "name": "construction", - "start": "2023-01-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-01-01", - "end": "" - } - ], - "sponsors": [ - "ademe", - "cstb", - "dgaln", - "dinum", - "ign" - ], - "thematiques": [ - "Open-Data", - "Patrimoine" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/rnb-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "fab-geocommuns" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://rnb.beta.gouv.fr", - "size": 1838.27, - "nodes": 364, - "requests": 73, - "grade": "C", - "score": 59, - "ges": 1.82, - "water": 2.73, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:10:10.892051", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "C", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.993, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-09T19:32:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "C", - "cookiesCount": 4, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.68, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.87, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://orion.inserjeunes.beta.gouv.fr/", - "category": "inserjeunes", - "betaId": "pilotagevoiepro", - "title": "Orion", - "repositories": [ - "mission-apprentissage/tjp-pilotage" - ], - "http": { - "url": "https://orion.inserjeunes.beta.gouv.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:20:24 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:20:15 GMT", - "Referrer-Policy": "no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", - "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN" + "id": "clientsimulation-safari_121_ios_122", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 57067204, - "score": 55, - "start_time": "Sun, 20 Oct 2024 14:20:10 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "http://orion.inserjeunes.beta.gouv.fr/", - "redirects": false, - "route": [ - "http://orion.inserjeunes.beta.gouv.fr/" - ], - "status_code": 200 - }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer-when-downgrade", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "fapb", - "url": "https://orion.inserjeunes.beta.gouv.fr/", - "alias": "", - "last_status": 200, - "uptime": 99.978, - "down": false, - "down_since": null, - "up_since": "2024-11-21T18:21:42Z", - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:22:54Z", - "next_check_at": "2024-11-24T18:27:53Z", - "created_at": "2024-03-24T01:11:12Z", - "mute_until": null, - "favicon_url": "https://orion.inserjeunes.beta.gouv.fr/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T17:58:08Z", - "expires_at": "2024-12-28T23:04:26Z", - "valid": true, - "error": null + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "metrics": { - "apdex": 0.363, - "timings": { - "redirect": 0, - "namelookup": 281, - "connection": 145, - "handshake": 149, - "response": 1448, - "total": 2023 - } + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "orion.inserjeunes.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "is_exploit": "true", - "type": "githubexploit", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "cvss": "10.0" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "cvss": "10.0" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-38408", - "cvss": "9.8" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-28531", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "packetstorm", - "id": "PACKETSTORM:179290", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "cvss": "8.1" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2024-6387", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "zdt", - "id": "1337DAY-ID-39674", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "type": "seebug", - "id": "SSV:92579", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "packetstorm", - "id": "PACKETSTORM:173661", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "zdt", - "id": "1337DAY-ID-26576", - "cvss": "7.5" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-51385", - "cvss": "6.5" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-48795", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-51384", - "cvss": "5.5" - }, - { - "is_exploit": "true", - "type": "packetstorm", - "id": "PACKETSTORM:140261", - "cvss": "0.0" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "cvss": "0.0" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "cvss": "0.0" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493857,7 +492959,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493865,7 +492967,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493873,7 +492975,7 @@ }, { "id": "cipherlist_LOW", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493881,7 +492983,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -493889,7 +492991,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -493897,504 +492999,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "id": "cipherorder_TLSv1_2", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-09-29 23:04" + "finding": "2024-11-23 05:54" }, { "id": "cert_notAfter", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-12-28 23:04" + "finding": "2025-02-21 05:54" }, { "id": "cert_extlifeSpan", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732472743" + "finding": "1733077778" }, { "id": "HSTS_time", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no-referrer-when-downgrade" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "id": "security_headers", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "private, no-cache, no-store, max-age=0, must-revalidate" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -494402,7 +493455,7 @@ }, { "id": "heartbleed", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -494411,7 +493464,7 @@ }, { "id": "CCS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -494420,16 +493473,16 @@ }, { "id": "ticketbleed", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -494438,7 +493491,7 @@ }, { "id": "secure_renego", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -494446,7 +493499,7 @@ }, { "id": "secure_client_renego", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -494455,7 +493508,7 @@ }, { "id": "CRIME_TLS", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -494464,16 +493517,16 @@ }, { "id": "BREACH", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "WARN", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "Test failed as HTTP request stalled and was terminated" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -494482,14 +493535,14 @@ }, { "id": "fallback_SCSV", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -494498,7 +493551,7 @@ }, { "id": "FREAK", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -494507,7 +493560,7 @@ }, { "id": "DROWN", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -494516,34 +493569,34 @@ }, { "id": "DROWN_hint", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D8E337F83D03B9539613D838844E2D24E13575C00DE5CB528500AB2301D020DF" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" }, { - "id": "LOGJAM-common_primes", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "id": "LOGJAM", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "id": "LOGJAM-common_primes", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "--" }, { "id": "BEAST", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -494552,7 +493605,7 @@ }, { "id": "LUCKY13", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -494561,7 +493614,7 @@ }, { "id": "winshock", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -494570,7 +493623,7 @@ }, { "id": "RC4", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -494579,1955 +493632,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "orion.inserjeunes.beta.gouv.fr/135.125.66.137", - "port": "443", - "severity": "INFO", - "finding": "74" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://plausible.io/js/script.js" - }, - { - "type": "crisp", - "url": "https://client.crisp.chat/l.js", - "details": { - "id": "crisp", - "message": "Ensure your TOS notify the CRISP usage" - } - }, - { - "type": "unknown", - "url": "https://api.iconify.design/ri.json?icons=add-fill%2Carrow-right-line%2Cbarricade-fill%2Cexternal-link-line" - } - ], - "cookies": [], - "headers": { - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 18:24:09 GMT", - "referrer-policy": "no-referrer-when-downgrade", - "strict-transport-security": "max-age=31536000; includeSubdomains", - "transfer-encoding": "chunked", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-content-type-options": "nosniff", - "x-frame-options": "SAMEORIGIN" - }, - "endpoints": [ - { - "hostname": "orion.inserjeunes.beta.gouv.fr", - "ip": "135.125.66.137", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "plausible.io", - "ip": "138.199.40.58", - "geoip": { - "city": { - "geoname_id": 5128581, - "names": { - "de": "New York City", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 40.7123, - "longitude": -74.0068, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "10118" - }, - "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", - "names": { - "de": "UK", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume-Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" - } - }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } - } - ] - } - }, - { - "hostname": "client.crisp.chat", - "ip": "104.18.29.104", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "api.iconify.design", - "ip": "104.26.13.204", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://orion.inserjeunes.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "chakra-ui", - "name": "Chakra UI", - "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", - "confidence": 100, - "version": null, - "icon": "Chakra UI.svg", - "website": "https://chakra-ui.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.1.3", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "plausible", - "name": "Plausible", - "description": "Plausible is an open-source alternative to Google Analytics.", - "confidence": 100, - "version": null, - "icon": "Plausible.svg", - "website": "https://plausible.io/", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "crisp-live-chat", - "name": "Crisp Live Chat", - "description": "Crisp Live Chat is a live chat solution with free and paid options.", - "confidence": 100, - "version": null, - "icon": "Crisp Live Chat.svg", - "website": "https://crisp.chat/", - "cpe": null, - "categories": [ - { - "id": 52, - "slug": "live-chat", - "name": "Live chat" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://orion.inserjeunes.beta.gouv.fr/", - "finalUrl": "https://orion.inserjeunes.beta.gouv.fr/", - "fetchTime": "2024-11-24T18:23:37.507Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.71 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.9 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.83 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.3 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 8509, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2949, - "firstMeaningfulPaint": 2949, - "largestContentfulPaint": 3603, - "interactive": 8509, - "speedIndex": 4763, - "totalBlockingTime": 240, - "maxPotentialFID": 242, - "cumulativeLayoutShift": 0.03471632978651258, - "cumulativeLayoutShiftMainFrame": 0.03471632978651258, - "totalCumulativeLayoutShift": 0.03471632978651258, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 434918996, - "observedNavigationStart": 0, - "observedNavigationStartTs": 434918996, - "observedFirstPaint": 2105, - "observedFirstPaintTs": 437023687, - "observedFirstContentfulPaint": 2105, - "observedFirstContentfulPaintTs": 437023687, - "observedFirstContentfulPaintAllFrames": 2105, - "observedFirstContentfulPaintAllFramesTs": 437023687, - "observedFirstMeaningfulPaint": 2105, - "observedFirstMeaningfulPaintTs": 437023687, - "observedLargestContentfulPaint": 2337, - "observedLargestContentfulPaintTs": 437256351, - "observedLargestContentfulPaintAllFrames": 2337, - "observedLargestContentfulPaintAllFramesTs": 437256351, - "observedTraceEnd": 5645, - "observedTraceEndTs": 440564190, - "observedLoad": 3005, - "observedLoadTs": 437924386, - "observedDomContentLoaded": 2106, - "observedDomContentLoadedTs": 437024567, - "observedCumulativeLayoutShift": 0.03471632978651258, - "observedCumulativeLayoutShiftMainFrame": 0.03471632978651258, - "observedTotalCumulativeLayoutShift": 0.03471632978651258, - "observedFirstVisualChange": 2113, - "observedFirstVisualChangeTs": 437031996, - "observedLastVisualChange": 3196, - "observedLastVisualChangeTs": 438114996, - "observedSpeedIndex": 2211, - "observedSpeedIndexTs": 437130347 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 65, - "numScripts": 37, - "numStylesheets": 2, - "numFonts": 3, - "numTasks": 1394, - "numTasksOver10ms": 8, - "numTasksOver25ms": 6, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 17131760.628301043, - "maxRtt": 83.80199999999999, - "maxServerLatency": 45.77099999999999, - "totalByteWeight": 1608638, - "totalTaskTime": 510.7129999999974, - "mainDocumentTransferSize": 185130 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/declaration-accessibilite" - }, - "declaration-rgpd": [ + "id": "clientsimulation-thunderbird_91_9", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/mentions-legales" + "id": "rating_spec", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 5, - "score": 5, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://orion.inserjeunes.beta.gouv.fr/politique-de-confidentialite" - } - ], - "betagouv": { - "id": "pilotagevoiepro", - "type": "startup", - "attributes": { - "name": "Orion", - "pitch": "Contribuer à la transformation de la carte des formations des lycées professionnels", - "stats_url": "https://orion.inserjeunes.beta.gouv.fr/statistiques", - "link": "https://orion.inserjeunes.beta.gouv.fr/", - "repository": "https://github.com/mission-apprentissage/tjp-pilotage", - "contact": "orion@inserjeunes.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20constat%0A%0ADeux%20ans%20apr%C3%A8s%20l%E2%80%99obtention%20de%20leur%20dipl%C3%B4me%2C%20seuls%2041%20%25%20des%20titulaires%20d%E2%80%99un%20CAP%20et%2051%20%25%20des%20bacheliers%20professionnels%20ont%20un%20emploi.%0A%0APourtant%2C%20la%20carte%20des%20formations%20propos%C3%A9es%20dans%20les%20lyc%C3%A9es%20professionnels%2C%20publics%20comme%20priv%C3%A9s%2C%20fait%20l%E2%80%99objet%20d%E2%80%99%C3%A9volutions%20constantes%20mais%20sa%20transformation%20et%20son%20pilotage%20n%C3%A9cessitent%20la%20prise%20en%20compte%20de%20nombreux%20facteurs%20tant%20%C3%A9conomiques%2C%20que%20d%C3%A9mographiques%20et%20%C3%A9ducatifs%20pour%20d%C3%A9terminer%20l%27attractivit%C3%A9%20des%20formations%2C%20l%27insertion%20dans%20l%E2%80%99emploi%2C%20les%20possibilit%C3%A9s%20de%20poursuite%20d%E2%80%99%C3%A9tudes%E2%80%A6%20%0A%0AOr%2C%20les%20acteurs%20directement%20impliqu%C3%A9s%20dans%20l%E2%80%99examen%20des%20situations%20au%20niveau%20national%20et%20local%20acc%C3%A8dent%20%C3%A0%20des%20donn%C3%A9es%20partielles%2C%20h%C3%A9t%C3%A9rog%C3%A8nes%20et%20cloisonn%C3%A9es.%20Ce%20manque%20d%E2%80%99information%20limite%20la%20rencontre%20entre%20le%20catalogue%20d%E2%80%99offres%20existantes%2C%20les%20souhaits%20des%20jeunes%20et%20les%20besoins%20du%20monde%20%C3%A9conomique.%20%0A%0A%23%23%20La%20solution%0A%0AUn%20service%20num%C3%A9rique%20contribuant%20au%20pilotage%20de%20l%E2%80%99%C3%A9volution%20de%20la%20carte%20des%20formations%20des%20lyc%C3%A9es%20professionnels%2C%20partag%C3%A9%20entre%20tous%20les%20acteurs%20%28minist%C3%A8res%2C%20rectorats%2C%20conseils%20r%C3%A9gionaux%2C%20branches%20professionnelles%E2%80%A6%29%20est%20en%20cours%20de%20construction.%20Il%20a%20notamment%20pour%20objectif%20de%20centraliser%2C%20de%20mettre%20en%20perspective%20et%20donner%20%C3%A0%20voir%20au%20niveau%20le%20plus%20fin%20des%20indicateurs%20sur%20%3A%0A-%20L%E2%80%99attractivit%C3%A9%20des%20formations%20%3B%0A-%20La%20poursuite%20d%E2%80%99%C3%A9tude%20%3B%0A-%20Le%20taux%20et%20la%20qualit%C3%A9%20d%E2%80%99insertion%20professionnelle%20apr%C3%A8s%20chaque%20formation%20%3B%0A-%20La%20valeur%20ajout%C3%A9e%20des%20%C3%A9tablissements%20%3B%0A-%20La%20prospective%20des%20m%C3%A9tiers%20et%20qualifications%20avec%20la%20mise%20en%20lumi%C3%A8re%20des%20formations%20qui%20conduisent%20%C3%A0%20des%20m%C3%A9tiers%20dits%20%E2%80%9Cd%E2%80%99avenir%E2%80%9D%20%3B%0A-%20Des%20%C3%A9l%C3%A9ments%20de%20contexte%20du%20territoire%20%28d%C3%A9mographie%2C%20mobilit%C3%A9%29%20%3B%0A-%20La%20demande%20%C3%A9conomique%20%3B%0A-%20Etc%E2%80%A6%0A%0AActuellement%2C%20Orion%20propose%20%C3%A0%20tous%20en%20acc%C3%A8s%20public%3A%20%0A-%20Un%20panorama%20des%20formations%20par%20r%C3%A9gion%2C%20par%20d%C3%A9partement%20et%20par%20%C3%A9tablissement%20%3B%0A-%20Une%20console%20avec%20des%20donn%C3%A9es%20d%C3%A9taill%C3%A9es%20par%20%C3%A9tablissement%20et%20par%20formation%20%3B%20%0A-%20un%20POC%20sur%20le%20lien%20Emploi-Formation%20pour%20aider%20les%20d%C3%A9cideurs%20%C3%A0%20cibler%20les%20formations%20qui%20r%C3%A9pondent%20%C3%A0%20de%20forts%20besoins%20territoriaux%20ou%20%C3%A0%20des%20enjeux%20soci%C3%A9taux%20%28transition%20%C3%A9cologique%20par%20exemple%C3%A0%0A%0A-%20un%20formulaire%20permettant%20de%20remonter%20les%20propositions%20d%27ouvertures%20ou%20de%20fermetures%20de%20places%20de%20formation%20depuis%20le%20lyc%C3%A9e%20pro%20jusqu%27au%20niveau%20national%0A-%20une%20console%20d%27analyse%20des%20propositions%20par%20territoire%2C%20par%20domaine%20de%20formation%2C%20par%20motifs....%0A-%20un%20tableau%20de%20pilotage%20de%20la%20transformation%20afin%20de%20mesurer%20les%20moyens%20et%20l%27impact%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%0A%0ALes%20b%C3%A9n%C3%A9fices%20attendus%20sont%20les%20suivants%20%3A%20%0A-%20Augmentation%20du%20taux%20d%E2%80%99emploi%20%C3%A0%206%20mois%20et%20du%20taux%20de%20poursuite%20d%E2%80%99%C3%A9tudes%20des%20jeunes%20qui%20sortent%20de%20formation%20%3B%0A-%20Augmentation%20du%20nombre%20d%E2%80%99%C3%A9l%C3%A8ves%20dans%20des%20formations%20menant%20%C3%A0%20des%20m%C3%A9tiers%20d%E2%80%99avenir%20%3B%0A-%20Augmentation%20de%20la%20transformation%20des%20places%20de%20formation.%0A%0ALes%20premiers%20r%C3%A9sultats%20sont%20encourageants%20%3A%20%0A-%2035%20000%20visites%20en%20un%20an.%20Chacune%20dure%20environ%207%20minutes%20par%20connexion.%0A-%20De%20nombreuses%20transformations%20sont%20pr%C3%A9vues%20pour%20la%20rentr%C3%A9e%202024%2C%20avec%20notamment%20la%20cr%C3%A9ation%20de%203%20670%20nouvelles%20places%20par%20rapport%20%C3%A0%202023.%0A%0A%0A%0A%0A%0A%0A", - "events": [], - "phases": [ - { - "name": "acceleration", - "start": "2023-01-01", - "end": "" - } - ], - "sponsors": [ - "dgesco" - ], - "thematiques": [ - "Formation", - "Jeunesse", - "Travail / Emploi" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/orion-inserjeunes-beta-gouv-fr/" + "id": "rating_doc", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mission-inserjeunes" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://orion.inserjeunes.beta.gouv.fr/", - "size": 3093.324, - "nodes": 358, - "requests": 71, - "grade": "C", - "score": 57, - "ges": 1.86, - "water": 2.79, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:20:09.780358", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "C", - "apdex": 0.363, - "apdexGrade": "F", - "uptime": 99.978, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-12-28T23:04:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.71, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.9, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "C", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://sirius.apprentissage.beta.gouv.fr/", - "category": "inserjeunes", - "betaId": "sirius", - "title": "Sirius", - "repositories": [ - "mission-apprentissage/sirius" - ], - "http": { - "url": "https://sirius.apprentissage.beta.gouv.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:24:20 GMT", - "grade": "B+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "max-age=0", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Security-Policy": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:24:19 GMT", - "ETag": "W/\"3d8-19290e406a0\"", - "Last-Modified": "Tue, 15 Oct 2024 15:55:16 GMT", - "Referrer-Policy": "no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", - "Transfer-Encoding": "chunked", - "Vary": "Accept-Encoding, Origin", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN", - "X-Xss-Protection": "0" + "id": "protocol_support_score", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "scan_id": 57067288, - "score": 80, - "start_time": "Sun, 20 Oct 2024 14:24:18 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "frame-ancestors": [ - "*.incubateur.net", - "*.onisep.fr", - "*.beta.gouv.fr", - "'self'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": true - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "https://http-observatory.security.mozilla.org", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": null, - "redirects": true, - "route": [], - "status_code": null - }, - "pass": true, - "result": "redirection-not-needed-no-http", - "score_description": "Not able to connect via HTTP, so no redirection necessary", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer-when-downgrade, strict-origin-when-cross-origin", - "http": true, - "meta": true - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "rs6j", - "url": "https://sirius.apprentissage.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-20T01:41:02Z", - "error": null, - "period": 3600, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:08:01Z", - "next_check_at": "2024-11-24T19:08:01Z", - "created_at": "2021-04-22T21:34:16Z", - "mute_until": "forever", - "favicon_url": "https://sirius.inserjeunes.beta.gouv.fr/dsfr/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T14:09:03Z", - "expires_at": "2025-02-02T16:39:25Z", - "valid": false, - "error": "error code 62: hostname mismatch" + { + "id": "protocol_support_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "metrics": {}, - "uptimeGrade": "A" - }, - "nmap": { - "host": "sirius.apprentissage.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "is_exploit": "true", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", - "type": "githubexploit", - "cvss": "10.0" - }, - { - "is_exploit": "true", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", - "type": "githubexploit", - "cvss": "10.0" - }, - { - "is_exploit": "false", - "id": "CVE-2023-38408", - "type": "cve", - "cvss": "9.8" - }, - { - "is_exploit": "false", - "id": "CVE-2023-28531", - "type": "cve", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "type": "githubexploit", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "id": "PACKETSTORM:179290", - "type": "packetstorm", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "D1E049F1-393E-552D-80D1-675022B26911", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "false", - "id": "CVE-2024-6387", - "type": "cve", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "6FD8F914-B663-533D-8866-23313FD37804", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "452ADB71-199C-561E-B949-FCDE6288B925", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "1337DAY-ID-39674", - "type": "zdt", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "11F020AC-F907-5606-8805-0516E06160EE", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", - "type": "githubexploit", - "cvss": "8.1" - }, - { - "is_exploit": "true", - "id": "SSV:92579", - "type": "seebug", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "PACKETSTORM:173661", - "type": "packetstorm", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "type": "githubexploit", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "id": "1337DAY-ID-26576", - "type": "zdt", - "cvss": "7.5" - }, - { - "is_exploit": "false", - "id": "CVE-2023-51385", - "type": "cve", - "cvss": "6.5" - }, - { - "is_exploit": "false", - "id": "CVE-2023-48795", - "type": "cve", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "id": "CVE-2023-51384", - "type": "cve", - "cvss": "5.5" - }, - { - "is_exploit": "true", - "id": "PACKETSTORM:140261", - "type": "packetstorm", - "cvss": "0.0" - }, - { - "is_exploit": "true", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", - "type": "githubexploit", - "cvss": "0.0" - }, - { - "is_exploit": "true", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", - "type": "githubexploit", - "cvss": "0.0" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -496535,7 +494025,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -496543,7 +494033,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -496551,7 +494041,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -496559,7 +494049,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -496567,7 +494057,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -496575,469 +494065,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc02c", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "cipherlist_STRONG_FS", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384" + "finding": "offered" }, { - "id": "cipher-tls1_2_xc02b", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "cipher_order-tls1_2", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "cipherorder_TLSv1_2", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-04 16:39" + "finding": "2024-11-23 05:54" }, { "id": "cert_notAfter", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-02 16:39" + "finding": "2025-02-21 05:54" }, { "id": "cert_extlifeSpan", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://e5.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "E5 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "5DFDB3CF31B26F23D87C09F3A0CEF642F64069A9FB7CFE29270BB5DC0F1E16BB" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "E5 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732473215" + "finding": "1733077829" }, { - "id": "HSTS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "HSTS_time", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { - "id": "HPKP", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "HSTS_subdomains", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "finding": "only for this domain" }, { - "id": "banner_server", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "HSTS_preload", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "domain is NOT marked for preloading" }, { - "id": "banner_application", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "HPKP", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "cookie_count", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "banner_server", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "No Server banner line in header, interesting!" }, { - "id": "Content-Security-Policy", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "banner_application", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net" + "severity": "INFO", + "finding": "No application banner found" }, { - "id": "Access-Control-Allow-Origin", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "cookie_count", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "*" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "id": "security_headers", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "max-age=0" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -497045,7 +494521,7 @@ }, { "id": "heartbleed", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -497054,7 +494530,7 @@ }, { "id": "CCS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -497063,16 +494539,16 @@ }, { "id": "ticketbleed", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -497081,7 +494557,7 @@ }, { "id": "secure_renego", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -497089,7 +494565,7 @@ }, { "id": "secure_client_renego", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -497098,7 +494574,7 @@ }, { "id": "CRIME_TLS", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -497107,16 +494583,16 @@ }, { "id": "BREACH", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -497125,14 +494601,14 @@ }, { "id": "fallback_SCSV", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -497141,7 +494617,7 @@ }, { "id": "FREAK", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -497150,7 +494626,7 @@ }, { "id": "DROWN", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -497159,16 +494635,16 @@ }, { "id": "DROWN_hint", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" }, { "id": "LOGJAM", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -497177,16 +494653,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -497195,7 +494671,7 @@ }, { "id": "LUCKY13", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -497204,7 +494680,7 @@ }, { "id": "winshock", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -497213,7 +494689,7 @@ }, { "id": "RC4", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -497222,969 +494698,527 @@ }, { "id": "clientsimulation-android_60", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "30" }, { "id": "key_exchange_score", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "24" }, { "id": "final_score", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0" + "finding": "81" }, { "id": "overall_grade", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", - "port": "443", - "severity": "CRITICAL", - "finding": "M" - }, - { - "id": "grade_cap_reason_1", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to M. Domain name mismatch" - }, - { - "id": "grade_cap_reason_2", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", - "ip": "sirius.apprentissage.beta.gouv.fr/141.94.126.187", + "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "54" + "finding": "207" } ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "access-control-allow-origin": "*", - "cache-control": "max-age=0", - "content-encoding": "gzip", - "content-security-policy": "frame-ancestors 'self' *.onisep.fr *.beta.gouv.fr *.incubateur.net", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 18:32:54 GMT", - "etag": "W/\"3fc-1933e9dcbc8\"", - "last-modified": "Mon, 18 Nov 2024 09:32:29 GMT", - "vary": "Accept-Encoding\nOrigin" - }, - "endpoints": [ - { - "hostname": "sirius.apprentissage.beta.gouv.fr", - "ip": "141.94.126.187", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, + "thirdparties": null, "wappalyzer": { "urls": { - "https://sirius.apprentissage.beta.gouv.fr/": { - "status": 200 + "https://api.data.inclusion.beta.gouv.fr/": { + "status": 404 } }, "technologies": [ { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", - "confidence": 100, - "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", - "cpe": null, - "categories": [ - { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" - } - ], - "rootPath": true - }, - { - "slug": "chakra-ui", - "name": "Chakra UI", - "description": "Chakra UI is a simple, modular and accessible component library that gives you the building blocks you need to build your React applications.", - "confidence": 100, - "version": null, - "icon": "Chakra UI.svg", - "website": "https://chakra-ui.com", - "cpe": null, - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "emotion", - "name": "Emotion", - "description": "Emotion is a library designed for writing CSS styles with JavaScript.", - "confidence": 100, - "version": null, - "icon": "Emotion.png", - "website": "https://emotion.sh", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.38.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "calendly", - "name": "Calendly", - "description": "Calendly is an app for scheduling appointments, meetings, and events.", - "confidence": 100, - "version": null, - "icon": "Calendly.svg", - "website": "https://calendly.com/", - "cpe": null, - "categories": [ - { - "id": 72, - "slug": "appointment-scheduling", - "name": "Appointment scheduling" - } - ], - "rootPath": true - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "pwa", - "name": "PWA", - "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "PWA.svg", - "website": "https://web.dev/progressive-web-apps/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, "zap": null, "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://sirius.apprentissage.beta.gouv.fr/", - "finalUrl": "https://sirius.inserjeunes.beta.gouv.fr/", - "fetchTime": "2024-11-03T18:05:31.940Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://sirius.apprentissage.beta.gouv.fr/) was redirected to https://sirius.inserjeunes.beta.gouv.fr/. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.27 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.96 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 1 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 14570, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1862, - "firstMeaningfulPaint": 4446, - "largestContentfulPaint": 7673, - "interactive": 14570, - "speedIndex": 8309, - "totalBlockingTime": 717, - "maxPotentialFID": 660, - "cumulativeLayoutShift": 0.4935445361667209, - "cumulativeLayoutShiftMainFrame": 0.4935445361667209, - "totalCumulativeLayoutShift": 0.4935445361667209, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 433832888, - "observedNavigationStart": 0, - "observedNavigationStartTs": 433832888, - "observedFirstPaint": 2430, - "observedFirstPaintTs": 436262667, - "observedFirstContentfulPaint": 2469, - "observedFirstContentfulPaintTs": 436302135, - "observedFirstContentfulPaintAllFrames": 2469, - "observedFirstContentfulPaintAllFramesTs": 436302135, - "observedFirstMeaningfulPaint": 2486, - "observedFirstMeaningfulPaintTs": 436319077, - "observedLargestContentfulPaint": 2486, - "observedLargestContentfulPaintTs": 436319077, - "observedLargestContentfulPaintAllFrames": 2486, - "observedLargestContentfulPaintAllFramesTs": 436319077, - "observedTraceEnd": 6423, - "observedTraceEndTs": 440256239, - "observedLoad": 3960, - "observedLoadTs": 437792589, - "observedDomContentLoaded": 2388, - "observedDomContentLoadedTs": 436221251, - "observedCumulativeLayoutShift": 0.4935445361667209, - "observedCumulativeLayoutShiftMainFrame": 0.4935445361667209, - "observedTotalCumulativeLayoutShift": 0.4935445361667209, - "observedFirstVisualChange": 2432, - "observedFirstVisualChangeTs": 436264888, - "observedLastVisualChange": 3366, - "observedLastVisualChangeTs": 437198888, - "observedSpeedIndex": 2639, - "observedSpeedIndexTs": 436471540 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 45, - "numScripts": 2, - "numStylesheets": 3, - "numFonts": 6, - "numTasks": 2030, - "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 145.41000000000003, - "throughput": 13556987.006529352, - "maxRtt": 150.967, - "maxServerLatency": 1.5139999999999816, - "totalByteWeight": 2564335, - "totalTaskTime": 507.0199999999958, - "mainDocumentTransferSize": 1100 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, + "lhr": null, + "screenshot": false, + "stats": null, "github_repository": { "grade": "A" }, "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": null + "grade": "A" }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], + "declaration-a11y": null, + "declaration-rgpd": null, "betagouv": { - "id": "sirius", + "id": "data-inclusion", "type": "startup", "attributes": { - "name": "Sirius", - "pitch": "Aider les jeunes dans leurs choix d’orientation en donnant accès aux témoignages des apprentis", - "stats_url": "https://sirius.inserjeunes.beta.gouv.fr/statistiques", - "link": "https://sirius.inserjeunes.beta.gouv.fr", - "repository": "https://github.com/mission-apprentissage/sirius", - "contact": "contact-sirius@inserjeunes.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20constat%0A%0APlus%20de%201%20500%20CFA%20se%20sont%20cr%C3%A9%C3%A9s%20depuis%20la%20loi%C2%A0du%205%20septembre%C2%A02018%C2%A0pour%20la%20libert%C3%A9%20de%20choisir%20son%20avenir%20professionnel.%20Les%20jeunes%2C%20leurs%20familles%20et%20les%20personnes%20qui%20les%20accompagnent%20dans%20leur%20orientation%20ont%20une%20visibilit%C3%A9%20restreinte%20sur%20l%E2%80%99ensemble%20des%20formations%20existantes%20et%20leur%20qualit%C3%A9.%0A%0ASi%20des%20outils%20existent%20pour%20pr%C3%A9senter%20la%20voie%20de%20l%E2%80%99apprentissage%2C%20les%20candidats%20recherchent%20des%20retours%20d%E2%80%99exp%C3%A9riences%20de%20pairs%2C%20qui%20ont%20v%C3%A9cu%20les%20m%C3%AAmes%20doutes%20et%20peuvent%20t%C3%A9moigner%20de%20ce%20qu%E2%80%99a%20%C3%A9t%C3%A9%20leur%20parcours.%20Ces%20t%C3%A9moignages%20permettent%20aux%20candidats%20de%20se%20projeter%20concr%C3%A8tement%20dans%20une%20formation%20et%20d%E2%80%99apaiser%20le%20choix%20d%E2%80%99orientation%2C%20surtout%20dans%20le%20secondaire.%20Les%20fili%C3%A8res%20en%20apprentissage%20%20propos%C3%A9es%20en%20infra-bac%20souffrent%20encore%20de%20pr%C3%A9jug%C3%A9s%20et%20sont%20parfois%20consid%C3%A9r%C3%A9es%20comme%20une%20voie%20de%20garage%20pour%20les%20mauvais%20%C3%A9l%C3%A8ves%20ou%20menant%20a%20des%20m%C3%A9tiers%20peu%20qualifi%C3%A9s.%20Les%20t%C3%A9moignages%20apportent%20de%20nouveaux%20%C3%A9l%C3%A9ments%20sur%20la%20perception%20de%20la%20qualit%C3%A9%20de%20la%20formation%20et%20de%20l%E2%80%99accompagnement%20aux%20jeunes%20et%20aux%20adultes%20qui%20les%20appuient%20%28parents%2C%20%C3%A9quipes%20p%C3%A9dagogiques%2C%20psychologues%20de%20l%E2%80%99%C3%89ducation%20Nationale%2C%20associations%2C%20%E2%80%A6%29.%20L%E2%80%99acc%C3%A8s%20%C3%A0%20ces%20informations%20n%E2%80%99est%20pas%20ais%C3%A9%20pour%20les%20candidats%20et%20les%20accompagnants%20car%20aucune%20source%20neutre%20n%E2%80%99expose%20aujourd%E2%80%99hui%20des%20avis%20v%C3%A9rifi%C3%A9s%20sur%20les%20formations%20en%20apprentissage.%0A%0A%23%23%20Sirius%0A%0ASirius%20donne%20acc%C3%A8s%20aux%20t%C3%A9moignages%20des%20apprentis%20pour%20aider%20les%20jeunes%20dans%20leurs%20choix%20d%E2%80%99orientation.%20Le%20service%20est%20co-construit%20avec%20l%27ensemble%20des%20acteurs%2C%20CFA%2C%20coll%C3%A9giens%2C%20apprentis%2C%20%C3%A9tablissements%20scolaires%20et%20%C3%A9quipes%20%C3%A9ducatives%20et%20se%20d%C3%A9cline%20en%202%20volets%20%3A%0A%0A-%20%2A%2ARecueillir%20des%20t%C3%A9moignages%2A%2A%20dans%20les%20%2A%2A4000%20CFA%20formateurs%2A%2A%20qui%20dispensent%20des%20formations%20accessibles%20apr%C3%A8s%20la%203%C3%A8%20%3A%0A%20%20%20%20-%20Pour%20int%C3%A9grer%20les%20retours%20de%20leurs%20apprentis%20et%20am%C3%A9liorer%20la%20qualit%C3%A9s%20de%20leurs%20formations%20%3B%0A%20%20%20%20-%20Pour%20communiquer%20autrement%20sur%20l%E2%80%99apprentissage%20%3B%0A-%20%2A%2AExposer%2A%2A%20cette%20donn%C3%A9e%20pour%20%2A%2A%C3%A9clairer%20le%20choix%20d%E2%80%99orientation%2A%2A%20des%20jeunes%2C%20aupr%C3%A8s%20%3A%0A%20%20%20%20-%20Des%20%2A%2A370%20000%20%C3%A9l%C3%A8ves%2A%2A%20qui%20s%E2%80%99orientent%20chaque%20ann%C3%A9es%20vers%20l%E2%80%99apprentissage%20dans%20le%20secondaire%20%28coll%C3%A9giens%2C%20lyc%C3%A9ens%2C%20pr%C3%A9pa-apprentissages%29%20%3B%0A%20%20%20%20-%20Des%20accompagnateurs%20%C3%A0%20l%E2%80%99orientation%20vers%20la%20voie%20professionnelle%20apr%C3%A8s%20la%20classe%20de%203%C3%A8me%20dont%20notamment%20%2A%2A13%20000%20professeurs%20principaux%2A%2A%20de%203%C3%A8%20et%20%2A%2A3%20000%20PsyEN%2A%2A.%0A%0AAfin%20de%20s%E2%80%99inscrire%20dans%20le%20parcours%20de%20l%E2%80%99ensemble%20des%20usagers%20cibl%C3%A9s%20par%20notre%20service%2C%20nous%20avons%20mis%20en%20place%20une%20exp%C3%A9rimentation%20sur%20les%20r%C3%A9gions%20Auvergne-Rh%C3%B4ne-Alpes%20et%20Provence-Alpes-C%C3%B4te%20d%E2%80%99Azur%20%3A%0A-%20Nous%20accompagnons%20aujourd%E2%80%99hui%20les%20CFA%20%C3%A0%20prendre%20en%20main%20ce%20nouvel%20outil%20pour%20faciliter%20sa%20diffusion%20aupr%C3%A8s%20des%20apprentis%20des%20deux%20r%C3%A9gions%20pilotes.%0A-%20Nous%20avons%20d%C3%A9fini%20des%20terrains%20propices%20pour%20tester%20diff%C3%A9rents%20modes%20d%E2%80%99exposition%20de%20cette%20nouvelle%20donn%C3%A9e%20et%20mesurer%20la%20pertinence%20et%20l%E2%80%99impact%20de%20notre%20action.%20Un%20%C3%A9chantillon%20de%20coll%C3%A9giens%2C%20de%20jeunes%20en%20pr%C3%A9pa%20apprentissage%2C%20de%20professionnels%20de%20l%E2%80%99orientation%20et%20de%20CFA%20a%20%C3%A9t%C3%A9%20constitu%C3%A9%20pour%20permettre%20de%20proposer%20une%20premi%C3%A8re%20offre%20de%20t%C3%A9moignages%20pertinents.%0A%0A%0ASirius%20b%C3%A9n%C3%A9ficie%20d%E2%80%99un%20appui%20interminist%C3%A9riel%20%3A%0A-%20La%20D%C3%A9l%C3%A9gation%20g%C3%A9n%C3%A9rale%20%C3%A0%20l%27Emploi%20et%20%C3%A0%20la%20Formation%20professionnelle%20%2A%28administration%20du%20minist%C3%A8re%20du%20Travail%2C%20de%20la%20Sant%C3%A9%20et%20de%20la%20Solidarit%C3%A9%29%2A%20finance%20l%E2%80%99exp%C3%A9rimentation%20et%20apporte%20un%20soutien%20technique%20et%20organisationnel%20au%20projet.%0A-%20L%E2%80%99ONISEP%20%2A%28%C3%A9tablissement%20public%20d%C3%A9pendant%20du%20minist%C3%A8re%20de%20l%27%C3%89ducation%20nationale%20et%20de%20la%20Jeunesse%20et%20du%20minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%29%2A%20pilote%20la%20r%C3%A9alisation%20et%20pourrait%20%C3%AAtre%20un%20repreneur%20p%C3%A9renne%20de%20la%20solution.%0A-%20La%20mission%20interminist%C3%A9rielle%20InserJeunes%20assure%20un%20cadre%20strat%C3%A9gique%20et%20m%C3%A9thodologique%20%C3%A0%20l%E2%80%99%C3%A9quipe.%20Elle%20apporte%20des%20expertises%20transverses%20indispensable%20au%20bon%20d%C3%A9roul%C3%A9%20de%20l%E2%80%99exp%C3%A9rimentation%20%2A%28d%C3%A9ploiement%2C%20environnement%20de%20travail%2C%20etc%E2%80%A6%29.%2A%20Elle%20accompagne%20%5Bd%E2%80%99autres%20produits%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fstartups%2F%3Fincubateur%3Dmission-inserjeunes%29%20ayant%20pour%20objectif%20d%E2%80%99%C3%A9clairer%20les%20choix%20d%E2%80%99orientation%20des%20jeunes%20pour%20faciliter%20leur%20insertion%20professionnelle%2C%20contribuant%20ainsi%20%C3%A0%20ce%20que%20notre%20r%C3%A9ponse%20soit%20coh%C3%A9rente%20avec%20les%20besoins%20des%20usagers.%0A%0A%23%23%20Les%20b%C3%A9n%C3%A9fices%20attendus%0A%0A%2A%2AAupr%C3%A8s%20des%20jeunes%20%28coll%C3%A9giens%29%20-%20impact%20recherch%C3%A9%20%3A%2A%2A%0A%0A-%20Aider%20les%20jeunes%20%C3%A0%20choisir%20leur%20orientation%20en%20compl%C3%A9tant%20les%20donn%C3%A9es%20qualitatives%20qui%20leurs%20sont%20accessibles%20aujourd%E2%80%99hui%0A%0A%2A%2AApr%C3%A8s%20des%20CFA%20-%20effet%20induit%20%3A%2A%2A%0A%0A-%20Am%C3%A9liorer%20le%20niveau%20de%20qualit%C3%A9%20des%20retours%20sur%20les%20CFA%20et%20leur%20permettre%20de%20s%27emparer%20de%20ce%20sujet%0A-%20D%C3%A9construire%20les%20aprioris%20et%20mieux%20informer%20sur%20l%27orientation%20vers%20l%27apprentissage%0A-%20Mettre%20en%20avant%20les%20bonnes%20pratiques%20d%E2%80%99accompagnement%20des%20CFA%0A%0A%2A%2AAupr%C3%A8s%20des%20prescripteurs%20%28familles%2C%20prof%20principaux%2C%20psyen...%29%20-%20effet%20induit%20%3A%2A%2A%0A%0A-%20Compl%C3%A9ter%20le%20niveau%20d%27information%2C%20pour%20les%20accompagner%20dans%20leur%20r%C3%B4le%20de%20conseil%20et%20de%20prescription%20aupr%C3%A8s%20des%20jeunes%0A", + "name": "data·inclusion", + "pitch": "Créer un référentiel commun de toutes les données de l’offre d’insertion des territoires", + "stats_url": "https://metabase.data.inclusion.gouv.fr/public/dashboard/77beb1ed-42c3-4f2a-bdee-5e8378699485", + "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?tab=t.0", + "link": "https://api.data.inclusion.gouv.fr/api/v0/docs#/", + "repository": "https://github.com/gip-inclusion/data-inclusion", + "contact": "data-inclusion@inclusion.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ADans%20le%20contexte%20du%20service%20public%20de%20l%E2%80%99insertion%20et%20de%20l%E2%80%99emploi%2C%20de%20la%20mise%20en%20oeuvre%20du%20SPIE%2C%20et%20de%20l%27exp%C3%A9rimentation%20de%20France%20Travail%2C%20un%20sujet%20revient%20de%20mani%C3%A8re%20pr%C3%A9gnante%20%3A%20l%E2%80%99acc%C3%A8s%20%C3%A0%20des%20donn%C3%A9es%20fiables%20sur%20les%20dispositifs%20et%20l%E2%80%99offre%20d%E2%80%99insertion%20au%20niveau%20national%20et%20sur%20chaque%20territoire.%0A%0ASi%20un%20grand%20nombre%20d%E2%80%99outils%20existent%2C%20dont%20plusieurs%20financ%C3%A9s%20par%20la%20d%C3%A9pense%20publique%20-%20portails%20locaux%20ou%20nationaux%2C%20annuaires%20d%E2%80%99associations%2C%20%C3%A9diteurs%20de%20logiciels%2C%20etc.%20-%2C%20%2A%2Ales%20donn%C3%A9es%20elles-m%C3%AAmes%20circulent%20mal%20d%E2%80%99un%20outil%20%C3%A0%20l%E2%80%99autre%20et%20un%20grand%20nombre%20d%E2%80%99acteurs%20sont%20contraints%20de%20%E2%80%9Cr%C3%A9inventer%20la%20roue%E2%80%9D%20%C3%A0%20leur%20%C3%A9chelle%20ou%20de%20voir%20leurs%20bases%20de%20donn%C3%A9es%20devenir%20peu%20%C3%A0%20peu%20obsol%C3%A8tes.%2A%2A%0A%0A%2ALe%20Minist%C3%A8re%20du%20Travail%2C%20de%20l%27Emploi%20et%20de%20l%27Insertion%20a%20lanc%C3%A9%20la%20cr%C3%A9ation%20d%E2%80%99un%20patrimoine%20commun%20de%20l%E2%80%99offre%20d%E2%80%99insertion%20en%20open%20data%20o%C3%B9%20chaque%20acteur%20pourra%20partager%20son%20offre%20de%20services%20en%20mati%C3%A8re%20d%E2%80%99insertion%2C%20et%20r%C3%A9cup%C3%A9rer%20les%20donn%C3%A9es%20des%20autres.%2A%0A%0A%23%23%20Notre%20service%0A%0Adata%C2%B7inclusion%20est%20une%20%2A%2Ad%C3%A9marche%20collective%2A%2A%20visant%20%C3%A0%20cr%C3%A9er%20%2A%2Aun%20r%C3%A9f%C3%A9rentiel%20commun%2A%2A%20de%20toutes%20les%20donn%C3%A9es%20de%20l%E2%80%99offre%20d%E2%80%99insertion%20des%20territoires%20afin%20de%20permettre%20%C3%A0%20tous%20les%20services%20num%C3%A9riques%20recensant%20et%20mettant%20en%20visibilit%C3%A9%20leur%20offre%20d%E2%80%99%C3%AAtre%20%2A%2Ainterop%C3%A9rables%2A%2A%20et%20de%20%2A%2Amutualiser%20les%20efforts%2A%2A%20de%20recensement%20et%20de%20mise%20%C3%A0%20jour.%0A%0A%23%23%23%20%2A%2ALes%20objectifs%20de%20data%C2%B7inclusion%20%3A%2A%2A%0A%0A%2A%20Un%20accompagnateur%20ou%20un%20usager%20doit%20acc%C3%A9der%20facilement%20%C3%A0%20l%E2%80%99ensemble%20de%20l%27offre%20connue%20sur%20un%20territoire%2C%20quel%20que%20soit%20l%E2%80%99outil%20en%20ligne%20utilis%C3%A9%20qui%20variera%20n%C3%A9cessairement%20selon%20le%20contexte%20et%20ses%20besoins%0A%2A%20Une%20structure%20ne%20doit%20pas%20saisir%20ou%20partager%20plus%20d%27une%20fois%20ses%20donn%C3%A9es%20-%20c%E2%80%99est%20la%20condition%20pour%20qu%E2%80%99elle%20joue%20le%20jeu%20du%20patrimoine%20commun%20et%20accepte%20de%20mettre%20%C3%A0%20jour%20les%20donn%C3%A9es%20cl%C3%A9s%20qui%20la%20concerne.%0A%0A%23%23%23%20%2A%2AQui%20est%20concern%C3%A9%20par%20data%C2%B7inclusion%20%3F%2A%2A%0A%0AD%E2%80%99une%20part%20les%20producteurs%20de%20donn%C3%A9es.%20Repr%C3%A9sentent%20l%27ensemble%20des%20sites%20d%C3%A9di%C3%A9s%20au%20recensement%20et%20%C3%A0%20la%20mise%20%C3%A0%20jour%20de%20l%27offre%20d%27insertion.%20Site%20local%20port%C3%A9%20par%20un%20d%C3%A9partement%2C%20outil%20national%20port%C3%A9%20par%20une%20administration%2C%20producteurs%20de%20catalogues%20%28Action%20logement%2C%20AFPA..%29%0A%0AD%27autre%20part%20les%20consommateurs%20de%20donn%C3%A9es.%20Toute%20personne%20qui%20souhaite%20acc%C3%A9der%20%C3%A0%20l%27ensemble%20des%20donn%C3%A9es%20afin%20de%20les%20afficher%20sur%20un%20service%20num%C3%A9rique%20ou%20dans%20un%20logiel%20interne.%20Des%20acteurs%20publics%20qui%20souhaitent%20analyser%20les%20donn%C3%A9es%2C%20des%20t%C3%AAtes%20de%20r%C3%A9seaux%20qui%20veulent%20acc%C3%A9der%20%C3%A0%20l%27offre%20des%20membres%20de%20leur%20organisation%2C%20des%20personnes%20en%20charge%20du%20d%C3%A9veloppement%20de%20logiciels%2C%20de%20sites%20internet%2C%20de%20cartographies..%0A%0AMais%20aussi%2C%20les%20offreurs%20de%20services%2C%20porteurs%20de%20solution%20qui%20ont%20d%C3%A9sormais%20un%20point%20d%E2%80%99acc%C3%A8s%20unique%20pour%20partager%20leur%20offre%20de%20services%20et%20gagner%20en%20visibilit%C3%A9%20aupr%C3%A8s%20des%20diff%C3%A9rents%20publics%20qu%E2%80%99ils%20accompagnent.%0A%0AEt%20enfin%2C%20les%20accompagnateurs%20qui%20ont%20des%20tr%C3%A9sors%20de%20ressources%20et%20bases%20de%20donn%C3%A9es%20sur%20les%20solutions%20%C3%A0%20leur%20territoire.%20S%E2%80%99ils%20contribuent%20au%20patrimoine%20commun%2C%20la%20promesse%20est%20de%20pouvoir%20utiliser%20des%20outils%20%C3%A0%20jour%20et%20de%20gagner%20du%20temps%20en%20mutualisant%20nos%20forces%20pour%20le%20travail%20fastidieux%20de%20collecte%20et%20mise%20%C3%A0%20jour%20des%20donn%C3%A9es.%0A%0A%23%23%20Comment%20contribuer%20au%20patrimoine%20commun%20%3F%0A%0A%23%23%23%20Mettre%20vos%20donn%C3%A9es%20%C3%A0%20disposition%20sur%20data%C2%B7inclusion%0A%0ALes%20modalit%C3%A9s%20de%20mise%20%C3%A0%20disposition%20de%20vos%20donn%C3%A9es%20pour%20int%C3%A9gration%20dans%20data%C2%B7inclusion%20peuvent%20%C3%AAtre%20tr%C3%A8s%20diff%C3%A9rentes%20selon%20l%27outil%20que%20vous%20utilisez%20et%20la%20structure%20de%20vos%20donn%C3%A9es.%0A%0ANous%20vous%20recommandons%20de%20nous%20contacter%20par%20email%20%3A%20%5Bdata-inclusion%40inclusion.gouv.fr%5D%28mailto%3Adata-inclusion%40inclusion.gouv.fr%29.%0A%0A%23%23%23%20Consommer%20et%20r%C3%A9utiliser%20les%20donn%C3%A9es%20de%20data%C2%B7inclusion%0A%0ALes%20donn%C3%A9es%20de%20data%C2%B7inclusion%20sont%20mises%20%C3%A0%20disposition%20en%20%5Bt%C3%A9l%C3%A9chargement%20libre%5D%28https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2F6233723c2c1e4a54af2f6b2d%2F%29%20selon%20les%20principes%20de%20l%27Open%20Data%20pour%20int%C3%A9gration%20dans%20votre%20outil%20%28formats%20de%20donn%C3%A9es%20Excel%2C%20CSV%20et%20JSON%29.%20Nous%20mettons%20%C3%A9galement%20%C3%A0%20disposition%20%5Bune%20API%5D%28https%3A%2F%2Fwww.data.inclusion.beta.gouv.fr%2Fapi%2Flapi-data.inclusion%29%20pour%20la%20r%C3%A9cup%C3%A9ration%20de%20donn%C3%A9es%20en%20temps%20r%C3%A9el%2C%20%C3%A0%20int%C3%A9grer%20par%20vos%20%C3%A9quipes%20informatiques%20ou%20un%20prestataire.%5C%0AN%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20pour%20que%20nous%20discutions%20de%20votre%20cas%20d%27usage%20des%20donn%C3%A9es%20data%C2%B7inclusion%20%3A%C2%A0%20%5Bdata-inclusion%40inclusion.gouv.fr%5D%28mailto%3Adata-inclusion%40inclusion.gouv.fr%29%0A", "events": [], "phases": [ + { + "name": "investigation", + "start": "2022-03-17", + "end": "" + }, { "name": "construction", - "start": "2022-12-01", + "start": "2022-06-30", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-11-18", "end": "" } ], "sponsors": [ - "dgefp" + "francetravail", + "mtei" ], "thematiques": [ - "Jeunesse", - "Formation" + "Territoires", + "Open-Data", + "Inclusion" ], - "dashlord_url": "https://dashlord.incubateur.net/startup/sirius", + "dashlord_url": "https://dashlord.incubateur.net/url/api-data-inclusion-beta-gouv-fr/", "accessibility_status": "partiellement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "mission-inserjeunes" + "id": "gip-inclusion" } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://sirius.apprentissage.beta.gouv.fr/", - "size": 2023.679, - "nodes": 277, - "requests": 38, - "grade": "C", - "score": 70, - "ges": 1.6, - "water": 2.4, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:21:41.077804", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "B+", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-02T16:39:00.000Z", - "testsslGrade": "M", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.27, - "lighthouse_performanceGrade": "E", - "lighthouse_accessibility": 0.96, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 1, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": null, + "summary": { + "httpGrade": "C", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-21T05:54:00.000Z", + "testsslGrade": "A+", "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "C", - "dsfrGrade": "F" + "budgetPageGrade": "A" } }, { "404": null, - "url": "https://api.data.inclusion.beta.gouv.fr", - "title": "api data·inclusion", - "betaId": "data-inclusion", - "category": "gip-inclusion", + "url": "https://api.exposition.inserjeunes.beta.gouv.fr", + "category": "inserjeunes", + "betaId": "exposition-ij", + "title": "Exposition des données InserJeunes", "repositories": [ - "gip-inclusion/data-inclusion" - ], - "docker": [ - "ghcr.io/gip-inclusion/data-inclusion-api" + "mission-apprentissage/trajectoires-pro" ], "tags": [ + "production", "api" ], "tools": { - "screenshot": false, "lighthouse": false, "thirdparties": false, - "declaration-a11y": false, "declaration-rgpd": false, - "stats": false, + "declaration-a11y": false, + "budget_page": false, "dsfr": false, - "ecoindex": false + "ecoindex": false, + "screenshot": false }, "http": { - "url": "https://api.data.inclusion.beta.gouv.fr", + "url": "https://api.exposition.inserjeunes.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:26:43 GMT", - "grade": "C", + "end_time": "Sun, 20 Oct 2024 14:30:58 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { + "Access-Control-Allow-Headers": "Origin, X-Requested-With, Content-Type, Accept, API-Key", + "Access-Control-Allow-Origin": "*", "Connection": "keep-alive", - "Content-Length": "22", - "Content-Type": "application/json", - "Date": "Sun, 20 Oct 2024 14:26:42 GMT", - "X-Request-ID": "92bda923-37d6-4138-b037-05ce95c3c6d4", - "strict-transport-security": "max-age=31536000" + "Content-Length": "70", + "Content-Security-Policy": "default-src 'self' https://img.notionusercontent.com/ https://www.notion.so/ https://plausible.io/ https://openmaptiles.github.io/ https://*.inserjeunes.beta.gouv.fr/ https://*.beta.gouv.fr/ https://*.data.gouv.fr/ 'unsafe-inline' data: blob:;", + "Content-Type": "application/json; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:30:57 GMT", + "ETag": "W/\"46-xksMj9xKLPYOkQYDwEPgOtgLxzQ\"", + "Referrer-Policy": "no-referrer-when-downgrade", + "Strict-Transport-Security": "max-age=31536000; includeSubdomains", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 57067358, - "score": 50, - "start_time": "Sun, 20 Oct 2024 14:26:41 GMT", + "scan_id": 57067425, + "score": 75, + "start_time": "Sun, 20 Oct 2024 14:30:55 GMT", "state": "FINISHED", - "status_code": 404, - "tests_failed": 3, - "tests_passed": 7, + "status_code": 200, + "tests_failed": 2, + "tests_passed": 8, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "default-src": [ + "https://img.notionusercontent.com/", + "blob:", + "https://*.data.gouv.fr/", + "https://www.notion.so/", + "https://*.beta.gouv.fr/", + "'self'", + "'unsafe-inline'", + "https://*.inserjeunes.beta.gouv.fr/", + "https://openmaptiles.github.io/", + "data:", + "https://plausible.io/" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", @@ -498217,38 +495251,38 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": null, + "destination": "https://beta.gouv.fr/startups/?incubateur=mission-inserjeunes", "redirects": true, "route": [ - "http://api.data.inclusion.beta.gouv.fr/", - "https://api.data.inclusion.beta.gouv.fr/" + "http://api.exposition.inserjeunes.beta.gouv.fr/", + "https://beta.gouv.fr/startups/?incubateur=mission-inserjeunes" ], - "status_code": null + "status_code": 307 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "no-referrer-when-downgrade", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", - "includeSubDomains": false, + "data": "max-age=31536000; includeSubdomains", + "includeSubDomains": true, "max-age": 31536000, "preload": false, "preloaded": false @@ -498273,23 +495307,23 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -498304,105 +495338,290 @@ } } }, - "updownio": null, + "updownio": { + "token": "ifrs", + "url": "https://api.exposition.inserjeunes.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 99.993, + "down": false, + "down_since": null, + "up_since": "2024-12-01T11:42:31Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:40:36Z", + "next_check_at": "2024-12-01T18:41:36Z", + "created_at": "2024-04-28T01:12:30Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:34:41Z", + "expires_at": "2025-01-26T00:02:01Z", + "valid": true, + "error": null + }, + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 212, + "connection": 145, + "handshake": 293, + "response": 168, + "total": 818 + } + }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, "nmap": { - "host": "api.data.inclusion.beta.gouv.fr", + "host": "api.exposition.inserjeunes.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "997", "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.11", + "vulnerabilities": [ + { + "is_exploit": "false", + "cvss": "9.8", + "type": "cve", + "id": "CVE-2023-38408" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" + }, + { + "is_exploit": "true", + "cvss": "9.8", + "type": "githubexploit", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" + }, + { + "is_exploit": "false", + "cvss": "7.8", + "type": "cve", + "id": "CVE-2020-15778" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "seebug", + "id": "SSV:92579" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "packetstorm", + "id": "PACKETSTORM:173661" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" + }, + { + "is_exploit": "false", + "cvss": "7.5", + "type": "cve", + "id": "CVE-2020-12062" + }, + { + "is_exploit": "true", + "cvss": "7.5", + "type": "zdt", + "id": "1337DAY-ID-26576" + }, + { + "is_exploit": "false", + "cvss": "7.1", + "type": "cve", + "id": "CVE-2021-28041" + }, + { + "is_exploit": "false", + "cvss": "7.0", + "type": "cve", + "id": "CVE-2021-41617" + }, + { + "is_exploit": "true", + "cvss": "6.8", + "type": "githubexploit", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" + }, + { + "is_exploit": "true", + "cvss": "6.8", + "type": "githubexploit", + "id": "10213DBE-F683-58BB-B6D3-353173626207" + }, + { + "is_exploit": "false", + "cvss": "6.5", + "type": "cve", + "id": "CVE-2023-51385" + }, + { + "is_exploit": "false", + "cvss": "5.9", + "type": "cve", + "id": "CVE-2023-48795" + }, + { + "is_exploit": "false", + "cvss": "5.9", + "type": "cve", + "id": "CVE-2020-14145" + }, + { + "is_exploit": "false", + "cvss": "5.3", + "type": "cve", + "id": "CVE-2016-20012" + }, + { + "is_exploit": "true", + "cvss": "0.0", + "type": "packetstorm", + "id": "PACKETSTORM:140261" + } + ] + } + }, { "service": { "name": "http", + "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", + "name": "http", + "product": "nginx", "id": "443", "vulnerabilities": [] } } ], - "grade": "A" + "grade": "F" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", - "severity": "OK", - "finding": "offered with final" + "severity": "INFO", + "finding": "not offered + downgraded to weaker protocol" }, { "id": "ALPN_HTTP2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -498410,7 +495629,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -498418,7 +495637,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -498426,7 +495645,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -498434,7 +495653,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -498442,7 +495661,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -498450,455 +495669,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "id": "cipher-tls1_2_x9f", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "2024-11-23 05:54" + "finding": "2024-10-28 00:02" }, { "id": "cert_notAfter", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", - "finding": "2025-02-21 05:54" + "finding": "2025-01-26 00:02" }, { "id": "cert_extlifeSpan", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "1732472637" + "finding": "1733078383" }, { "id": "HSTS_time", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "id": "X-Frame-Options", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "default-src 'self' https://img.notionusercontent.com/ https://www.notion.so/ https://plausible.io/ https://openmaptiles.github.io/ https://*.inserjeunes.beta.gouv.fr/ https://*.beta.gouv.fr/ https://*.data.gouv.fr/ 'unsafe-inline' data: blob:;" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Referrer-Policy", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "INFO", + "finding": "no-referrer-when-downgrade" }, { "id": "banner_reverseproxy", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -498906,7 +496181,7 @@ }, { "id": "heartbleed", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -498915,7 +496190,7 @@ }, { "id": "CCS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -498924,16 +496199,16 @@ }, { "id": "ticketbleed", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -498942,7 +496217,7 @@ }, { "id": "secure_renego", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -498950,7 +496225,7 @@ }, { "id": "secure_client_renego", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -498959,7 +496234,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -498968,7 +496243,7 @@ }, { "id": "BREACH", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -498977,7 +496252,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -498986,14 +496261,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -499002,7 +496277,7 @@ }, { "id": "FREAK", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -499011,7 +496286,7 @@ }, { "id": "DROWN", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -499020,34 +496295,34 @@ }, { "id": "DROWN_hint", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAE9BB903A8CEA55DF3EB4EE40A08BF71B1F1BD5E158505B52E489D433057FA8" }, { - "id": "LOGJAM", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "id": "LOGJAM-common_primes", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", - "severity": "OK", + "severity": "INFO", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "RFC7919/ffdhe2048" }, { - "id": "LOGJAM-common_primes", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "id": "LOGJAM", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { "id": "BEAST", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -499056,7 +496331,7 @@ }, { "id": "LUCKY13", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -499065,7 +496340,7 @@ }, { "id": "winshock", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -499074,7 +496349,7 @@ }, { "id": "RC4", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -499083,392 +496358,1316 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_X", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_11", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_12", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "rating_spec", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "port": "443", + "severity": "INFO", + "finding": "93" + } + ], + "thirdparties": null, + "wappalyzer": { + "urls": { + "https://api.exposition.inserjeunes.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": null, + "screenshot": false, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": null, + "declaration-a11y": null, + "declaration-rgpd": null, + "betagouv": { + "id": "exposition-ij", + "type": "startup", + "attributes": { + "name": "Exposition des données InserJeunes", + "pitch": "Éclairer les choix d’orientation des jeunes en exposant des données pertinentes relatives aux parcours de formation et à l’insertion professionnelle", + "stats_url": "https://statistiques.exposition.inserjeunes.beta.gouv.fr/", + "link": "https://documentation.exposition.inserjeunes.beta.gouv.fr/", + "repository": "https://github.com/mission-apprentissage/trajectoires-pro", + "contact": "contact@inserjeunes.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20choix%20d%E2%80%99orientation%20sont%20fond%C3%A9s%20sur%20des%20%2A%2Ainformations%20partielles%20et%20subjectives%20concernant%20les%20parcours%20de%20formation%20et%20le%20march%C3%A9%20de%20l%E2%80%99emploi%2A%2A.%0A%0ABon%20nombre%20de%20jeunes%20s%E2%80%99orientent%2C%20ou%20sont%20orient%C3%A9s%2C%20vers%20les%20%2A%2Afili%C3%A8res%20les%20plus%20connues%2C%20mais%20qui%20s%E2%80%99av%C3%A8rent%20souvent%20sans%20perspectives%2A%2A.%0A%0A%F0%9F%94%8E%20%2A%2A%2A1%2F3%20des%20v%C5%93ux%2A%2A%20prioritaires%20pour%20le%20scolaire%20sur%20la%20plateforme%20Affelnet%20se%20sont%20fait%20en%202021%20%2A%2Avers%20des%20fili%C3%A8res%20sans%20perspectives%2A%2A%20%28taux%20d%E2%80%99emploi%20%3C%2030%25%20ET%20taux%20de%20poursuite%20d%E2%80%99%C3%A9tudes%20%3C%2050%25%29%2A%0A%0APourtant%2C%20d%E2%80%99autres%20fili%C3%A8res%20offrent%20des%20devenirs%20plus%20favorables.%20Et%20%2A%2Ades%20donn%C3%A9es%2A%2A%2C%20issues%20notamment%20des%20services%20statistiques%20des%20minist%C3%A8res%20%3A%20%0A-%20la%20Direction%20de%20l%27%C3%A9valuation%2C%20de%20la%20prospective%20et%20de%20la%20performance%20%28DEPP%29%2C%20pour%20le%20Minist%C3%A8re%20de%20l%27%C3%89ducation%20nationale%20et%20de%20la%20Jeunesse%0A-%20la%20Direction%20de%20l%27Animation%20de%20la%20Recherche%2C%20des%20%C3%89tudes%20et%20des%20Statistiques%20%28DARES%29%2C%20pour%20le%20Minist%C3%A8re%20du%20Travail%2C%20de%20la%20Sant%C3%A9%20et%20des%20Solidarit%C3%A9s%0A-%20la%20sous-direction%20des%20Syst%C3%A8mes%20d%27Information%20et%20des%20%C3%89tudes%20Statistiques%20%28SIES%29%20et%20son%20dispositif%20InserSup%2C%20pour%20le%20Minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%0A%0Aqui%20permettraient%20d%E2%80%99%C3%A9clairer%20ces%20choix%20d%E2%80%99orientation%20%2A%2Aexistent%2A%2A%20et%20sont%20enrichies%20r%C3%A9guli%C3%A8rement.%0A%0AElles%20ne%20sont%20malheureusement%20%2A%2Apas%20connues%2A%2A%20des%20jeunes%20et%20de%20leurs%20accompagnateurs%20et%20sont%20%2A%2Adifficilement%20compr%C3%A9hensibles.%2A%2A%0A%0A%23%23%20Notre%20solution%0A%0ANous%20%2A%2Aconstruisons%2A%2A%20un%20service%20destin%C3%A9%20%C3%A0%20%2A%2Adiffuser%20des%20informations%20de%20r%C3%A9f%C3%A9rence%2A%2A%20pr%C3%A9cises%20et%20contextualis%C3%A9es%2C%20permettant%20d%E2%80%99%2A%2A%C3%A9clairer%20les%20choix%20d%E2%80%99orientation%20d%E2%80%99un%20maximum%20de%20jeunes%2A%2A.%0A%0APour%20cela%2C%20nous%20%3A%0A%0A-%20Collectons%20des%20donn%C3%A9es%20et%20%2A%2Asynth%C3%A9tisons%20des%20indicateurs%20quantitatifs%20de%20r%C3%A9f%C3%A9rence%2C%20simples%20%C3%A0%20comprendre%2A%2A%2C%20relatifs%20%C3%A0%20l%E2%80%99orientation%20et%20%C3%A0%20l%E2%80%99insertion%20professionnelle%2C%20%C3%A0%20partir%20de%20diverses%20sources%20%28scolaire%2C%20sup%C3%A9rieur%2C%20travail%2C%20etc.%29.%0A-%20%2A%2ADiffusons%20ces%20indicateurs%2A%2A%20aupr%C3%A8s%20des%20parties%20prenantes%20impliqu%C3%A9es%20dans%20l%E2%80%99orientation%20des%20jeunes%2C%20notamment%20%2A%2Avia%20les%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A.%0A%0A%23%23%20Impact%20attendu%0A%0ANous%20d%C3%A9sirons%2C%20via%20notre%20action%20d%E2%80%99exposition%20aupr%C3%A8s%20du%20grand%20public%2C%20observer%20une%20%2A%2Amodification%20des%20choix%20d%E2%80%99orientation%20des%20jeunes%2A%2A.%20Nous%20souhaitons%20plus%20particuli%C3%A8rement%20observer%20une%20%2A%2Adiminution%20du%20nombre%20de%20v%C5%93ux%20effectu%C3%A9s%20vers%20des%20fili%C3%A8res%20offrant%20peu%20de%20perspectives%2A%2A.%0A%0ANos%20objectifs%20autour%20de%20la%20mesure%20d%E2%80%99impact%20en%202024%20%3A%20%0A%0A-%20Gr%C3%A2ce%20%C3%A0%20un%20partenariat%20renforc%C3%A9%20avec%20la%20plateforme%20Affelnet%2C%20qui%20nous%20permettra%20de%20r%C3%A9cup%C3%A9rer%20des%20donn%C3%A9es%20plus%20fines%20sur%20le%20trafic%20au%20sein%20de%20la%20plateforme%20d%E2%80%99affectation%2C%20%2A%2Aune%20%C3%A9tude%20statistique%20sera%20men%C3%A9e%20fin%20S1%20-%20d%C3%A9but%20S2%20pour%20mettre%20en%20regard%20exposition%20et%20voeux%2A%2A%20et%20%20%C3%A9valuer%20plus%20finement%20la%20contribution%20de%20notre%20action.%0A-%20Le%20chemin%20global%20amenant%20un%20jeune%20%C3%A0%20r%C3%A9viser%20ses%20v%C5%93ux%20d%E2%80%99orientation%20%C3%A9tant%20long%20et%20complexe%2C%20nous%20avons%20en%20outre%20mat%C3%A9rialis%C3%A9%20et%20d%C3%A9coup%C3%A9%20ce%20parcours%20%28indicateur%20%2A%2Avu%2A%2A%20%E2%86%92%20indicateur%20%2A%2Acompris%2A%2A%20%E2%86%92%20information%20%2A%2Aprioris%C3%A9e%2A%2A%20%E2%86%92%20%2A%2Av%C5%93u%20modifi%C3%A9%2A%2A%29%20et%20propos%C3%A9%20des%20exp%C3%A9riences%20pour%20mesurer%20la%20conversion%20entre%20chaque%20%C3%A9tape%2C%20en%20vue%20de%20l%E2%80%99am%C3%A9liorer.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9ploiement%0A%0ANous%20avons%20pour%20ambition%20d%E2%80%99exposer%20les%20indicateurs%20InserJeunes%20au%20sein%20%2A%2Ades%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20c%E2%80%99est%20%C3%A0%20dire%20sur%20des%20sites%20dors%20et%20d%C3%A9j%C3%A0%20consult%C3%A9s%20massivement%20par%20les%20jeunes%20dans%20le%20cadre%20de%20leur%20orientation.%0A%0ANous%20souhaitons%20%C3%A0%20la%20fois%20exposer%20nos%20indicateurs%20%3A%20%0A%0A-%20sur%20%2A%2Aun%20maximum%20de%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20en%20proposant%20une%20r%C3%A9utilisation%20extr%C3%AAmement%20simple%20des%20donn%C3%A9es%20%28notamment%20%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20widget%20%E2%80%9Cclef%20en%20main%E2%80%9D%20et%20d%E2%80%99une%20API%29%0A-%20sur%20%2A%2Aun%20maximum%20de%20%E2%80%9Cchemins%20d%E2%80%99orientation%E2%80%9D%2A%2A%20au%20sein%20de%20ces%20plateformes%2C%20notamment%20en%20augmentant%20la%20couverture%20de%20nos%20donn%C3%A9es%0A%0AFin%202023%2C%20nos%20donn%C3%A9es%20%C3%A9taient%20disponibles%20%3A%20%0A%0A-%20Sur%20%2A%2A7%20des%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20dont%203%20cibles%20institutionnelles%20prioritaires%20%3A%20l%E2%80%99ONISEP%2C%20Parcousup%20et%20Affelnet%0A-%20%C3%80%20la%20%2A%2Amaille%20nationale%2C%20r%C3%A9gionale%20et%20de%20l%E2%80%99%C3%A9tablissement%2A%2A%20pour%20les%20formations%20de%20la%20%2A%2Avoie%20professionnelle%2A%2A%2C%20tant%20pour%20le%20scolaire%20que%20pour%20l%E2%80%99apprentissage.%0A%0ANos%20objectifs%20principaux%20pour%20S1-2024%20%3A%20%0A%0A-%20Exposer%20nos%20donn%C3%A9es%20sur%20%2A%2A10%20des%20principales%20plateformes%20d%E2%80%99orientation%2A%2A%0A-%20Int%C3%A9grer%20progressivement%20les%20%2A%2Adonn%C3%A9es%20InserSup%20des%20formations%20de%20l%27enseignement%20sup%C3%A9rieur%2A%2A%0A", + "events": [], + "phases": [ + { + "name": "construction", + "start": "2022-04-01", + "end": "" + } + ], + "sponsors": [ + "menjs", + "mesr", + "mtei", + "mtfp" + ], + "thematiques": [ + "Jeunesse", + "Formation" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/api-exposition-inserjeunes-beta-gouv-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "mission-inserjeunes" + } + } + } + }, + "ecoindex": null, + "sonarcloud": null, + "dsfr": null, + "summary": { + "httpGrade": "B", + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.993, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-26T00:02:00.000Z", + "testsslGrade": "A+", + "statsGrade": "A", + "githubRepositoryGrade": "A" + } + }, + { + "404": null, + "url": "https://monprojetsup.fr", + "category": "MonProjetSup", + "betaId": "monprojetsup", + "title": "MonProjetSup", + "repositories": [ + "betagouv/monprojetsup" + ], + "http": { + "url": "https://monprojetsup.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:40:06 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 14:40:03 GMT", + "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", + "Server": "nginx/1.18.0 (Ubuntu)", + "Transfer-Encoding": "chunked" + }, + "scan_id": 57067602, + "score": 30, + "start_time": "Sun, 20 Oct 2024 14:40:01 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 6, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://monprojetsup.fr/", + "redirects": true, + "route": [ + "http://monprojetsup.fr/", + "https://monprojetsup.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "9pw6", + "url": "https://monprojetsup.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-30T17:38:01Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:44:02Z", + "next_check_at": "2024-12-01T18:45:01Z", + "created_at": "2024-05-21T21:45:32Z", + "mute_until": null, + "favicon_url": "https://monprojetsup.fr/wp-content/uploads/2024/04/cropped-favicon-192x192.png", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:44:03Z", + "expires_at": "2025-02-01T22:04:24Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "api.data.inclusion.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.981, + "timings": { + "redirect": 0, + "namelookup": 109, + "connection": 131, + "handshake": 135, + "response": 270, + "total": 644 + } }, + "uptimeGrade": "A", + "apdexGrade": "B" + }, + "nmap": { + "host": "monprojetsup.fr", + "protocol": "tcp", + "closed_ports": "995", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.10", + "vulnerabilities": [ + { + "cvss": "10.0", + "id": "95499236-C9FE-56A6-9D7D-E943A24B633A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "10.0", + "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "CVE-2023-38408", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "CVE-2023-28531", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "9.8", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "33D623F7-98E0-5F75-80FA-81AA666D1340", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "9.8", + "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "PACKETSTORM:179290", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "8.1", + "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "F8981437-1287-5B69-93F1-657DFB1DCE59", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E543E274-C20A-582A-8F8E-F8E3F381C345", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "D1E049F1-393E-552D-80D1-675022B26911", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CVE-2024-6387", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "8.1", + "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "C185263E-3E67-5550-B9C0-AB9C15351960", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "BDA609DA-6936-50DC-A325-19FE2CC68562", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "A377249D-3C48-56C9-98D6-C47013B3A043", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "9A6454E9-662A-5A75-8261-73F46290FC3C", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "92254168-3B26-54C9-B9BE-B4B7563586B5", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "91752937-D1C1-5913-A96F-72F8B8AB4280", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "896B5857-A9C8-5342-934A-74F1EA1934CF", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "743E5025-3BB8-5EC4-AC44-2AA679730661", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6FD8F914-B663-533D-8866-23313FD37804", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "6B78D204-22B0-5D11-8A0C-6313958B473F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "535C5505-40BC-5D18-B346-1FDF036F0B08", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "48603E8F-B170-57EE-85B9-67A7D9504891", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "4748B283-C2F6-5924-8241-342F98EEC2EE", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "452ADB71-199C-561E-B949-FCDE6288B925", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "418FD78F-82D2-5748-9EE9-CAFC34111864", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "1337DAY-ID-39674", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "8.1", + "id": "123C2683-74BE-5320-AA3A-C376C8E3A992", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "11F020AC-F907-5606-8805-0516E06160EE", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "8.1", + "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "SSV:92579", + "is_exploit": "true", + "type": "seebug" + }, + { + "cvss": "7.5", + "id": "PACKETSTORM:173661", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "7.5", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "7.5", + "id": "1337DAY-ID-26576", + "is_exploit": "true", + "type": "zdt" + }, + { + "cvss": "6.5", + "id": "CVE-2023-51385", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.9", + "id": "CVE-2023-48795", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "5.5", + "id": "CVE-2023-51384", + "is_exploit": "false", + "type": "cve" + }, + { + "cvss": "0.0", + "id": "PACKETSTORM:140261", + "is_exploit": "true", + "type": "packetstorm" + }, + { + "cvss": "0.0", + "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D", + "is_exploit": "true", + "type": "githubexploit" + }, + { + "cvss": "0.0", + "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118", + "is_exploit": "true", + "type": "githubexploit" + } + ] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "rtsp", + "id": "5003", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "postgresql", + "product": "PostgreSQL DB", + "id": "5431", + "version": "9.6.0 or later", + "vulnerabilities": [] + } + } + ], + "grade": "F" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499476,7 +497675,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499484,7 +497683,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499492,7 +497691,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499500,7 +497699,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -499508,7 +497707,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -499516,455 +497715,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "id": "cipher-tls1_2_x9f", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x9e", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "2024-11-23 05:54" + "finding": "2024-11-03 22:04" }, { "id": "cert_notAfter", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", - "finding": "2025-02-21 05:54" + "finding": "2025-02-01 22:04" }, { "id": "cert_extlifeSpan", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "1732472692" - }, - { - "id": "HSTS_time", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733078646" }, { - "id": "HSTS_preload", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "id": "HSTS", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx/1.18.0 (Ubuntu)" }, { "id": "banner_application", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -499972,7 +498185,7 @@ }, { "id": "heartbleed", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -499981,7 +498194,7 @@ }, { "id": "CCS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -499990,16 +498203,16 @@ }, { "id": "ticketbleed", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -500008,7 +498221,7 @@ }, { "id": "secure_renego", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -500016,7 +498229,7 @@ }, { "id": "secure_client_renego", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -500025,7 +498238,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -500034,16 +498247,16 @@ }, { "id": "BREACH", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -500052,14 +498265,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -500068,7 +498281,7 @@ }, { "id": "FREAK", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -500077,7 +498290,7 @@ }, { "id": "DROWN", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -500086,34 +498299,34 @@ }, { "id": "DROWN_hint", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=88C823F3955C80D2021B024E5710AFBE300B1A69CE295ECFAB9695914FFFD7E9" }, { - "id": "LOGJAM", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "id": "LOGJAM-common_primes", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", - "severity": "OK", + "severity": "INFO", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "RFC7919/ffdhe2048" }, { - "id": "LOGJAM-common_primes", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "id": "LOGJAM", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { "id": "BEAST", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -500122,7 +498335,7 @@ }, { "id": "LUCKY13", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -500131,7 +498344,7 @@ }, { "id": "winshock", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -500140,7 +498353,7 @@ }, { "id": "RC4", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -500149,392 +498362,1426 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", + "ip": "monprojetsup.fr/162.19.61.97", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "monprojetsup.fr/162.19.61.97", + "port": "443", + "severity": "INFO", + "finding": "58" + } + ], + "thirdparties": { + "trackers": [], + "cookies": [], + "headers": { + "connection": "keep-alive", + "content-encoding": "gzip", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 18:42:46 GMT", + "link": "; rel=\"https://api.w.org/\"\n; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\"\n; rel=shortlink", + "server": "nginx/1.18.0 (Ubuntu)", + "transfer-encoding": "chunked" + }, + "endpoints": [ + { + "hostname": "monprojetsup.fr", + "ip": "162.19.61.97", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://monprojetsup.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wordpress", + "name": "WordPress", + "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", + "confidence": 100, + "version": "6.7.1", + "icon": "WordPress.svg", + "website": "https://wordpress.org", + "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + }, + { + "id": 11, + "slug": "blogs", + "name": "Blogs" + } + ], + "rootPath": true + }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "ubuntu", + "name": "Ubuntu", + "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", + "confidence": 100, + "version": null, + "icon": "Ubuntu.svg", + "website": "https://www.ubuntu.com/server", + "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 28, + "slug": "operating-systems", + "name": "Operating systems" + } + ], + "rootPath": true + }, + { + "slug": "contact-form-7", + "name": "Contact Form 7", + "description": "Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.", + "confidence": 100, + "version": "6.0.1", + "icon": "Contact Form 7.png", + "website": "https://contactform7.com", + "cpe": null, + "categories": [ + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + }, + { + "id": 110, + "slug": "form-builders", + "name": "Form builders" + } + ], + "rootPath": true + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "yoast-seo", + "name": "Yoast SEO", + "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", + "confidence": 100, + "version": "23.9", + "icon": "Yoast SEO.png", + "website": "https://yoast.com/wordpress/plugins/seo/", + "cpe": null, + "categories": [ + { + "id": 54, + "slug": "seo", + "name": "SEO" + }, + { + "id": 87, + "slug": "wordpress-plugins", + "name": "WordPress plugins" + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.7.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "ionos", + "name": "IONOS", + "description": "IONOS is the web hosting and cloud partner for small and medium-sized businesses.", + "confidence": 100, + "version": null, + "icon": "IONOS.svg", + "website": "https://www.ionos.com", + "cpe": null, + "categories": [ + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "rss", + "name": "RSS", + "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", + "confidence": 100, + "version": null, + "icon": "RSS.svg", + "website": "https://www.rssboard.org/rss-specification", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://monprojetsup.fr/", + "finalUrl": "https://monprojetsup.fr/", + "fetchTime": "2024-12-01T18:42:18.966Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.61 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.94 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.95 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4976, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3926, + "firstMeaningfulPaint": 4422, + "largestContentfulPaint": 10952, + "interactive": 4976, + "speedIndex": 5480, + "totalBlockingTime": 4, + "maxPotentialFID": 58, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 502332636, + "observedNavigationStart": 0, + "observedNavigationStartTs": 502332636, + "observedFirstPaint": 1209, + "observedFirstPaintTs": 503541938, + "observedFirstContentfulPaint": 1209, + "observedFirstContentfulPaintTs": 503541938, + "observedFirstContentfulPaintAllFrames": 1209, + "observedFirstContentfulPaintAllFramesTs": 503541938, + "observedFirstMeaningfulPaint": 1384, + "observedFirstMeaningfulPaintTs": 503716219, + "observedLargestContentfulPaint": 1684, + "observedLargestContentfulPaintTs": 504016554, + "observedLargestContentfulPaintAllFrames": 1684, + "observedLargestContentfulPaintAllFramesTs": 504016554, + "observedTraceEnd": 4501, + "observedTraceEndTs": 506833884, + "observedLoad": 2099, + "observedLoadTs": 504431982, + "observedDomContentLoaded": 1744, + "observedDomContentLoadedTs": 504077098, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1213, + "observedFirstVisualChangeTs": 503545636, + "observedLastVisualChange": 4497, + "observedLastVisualChangeTs": 506829636, + "observedSpeedIndex": 1602, + "observedSpeedIndexTs": 503934508 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 64, + "numScripts": 26, + "numStylesheets": 12, + "numFonts": 3, + "numTasks": 1631, + "numTasksOver10ms": 7, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 88.665, + "throughput": 28307651.07735854, + "maxRtt": 88.665, + "maxServerLatency": 0.25499999999999545, + "totalByteWeight": 4383507, + "totalTaskTime": 289.72299999999706, + "mainDocumentTransferSize": 120228 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": null + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 0, + "missingWords": [ + "directeur (ou) directrice", + "publication", + "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://monprojetsup.fr/mentions-legales/" + }, + { + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 4, + "score": 2, + "missingWords": [ + "durée de la conservation (ou) durée de conservation", + "sous-traitant (ou) sous traitant" + ], + "missingTrackers": [], + "declarationUrl": "https://monprojetsup.fr/donnees-personnelles/" + } + ], + "betagouv": { + "id": "monprojetsup", + "type": "startup", + "attributes": { + "name": "MonProjetSup", + "pitch": "Améliorer l’orientation des lycéens en amont de Parcoursup", + "stats_url": "https://monprojetsup.fr/stats/", + "budget_url": "https://monprojetsup.fr/budget/", + "link": "https://beta.monprojetsup.fr/", + "repository": "https://github.com/betagouv/monprojetsup", + "contact": "hugo.gimbert@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0A%2A%2ALe%20parcours%20d%E2%80%99orientation%20des%20lyc%C3%A9ens%20concerne%20plus%20de%202%20millions%20d%E2%80%99%C3%A9l%C3%A8ves%2A%2A%20chaque%20ann%C3%A9e%20et%20s%E2%80%99%C3%A9tend%20de%20la%20seconde%20%28avec%20notamment%20le%20choix%20des%20EDS%29%20%C3%A0%20la%20Terminale%20%28avec%20le%20choix%20des%20v%C5%93ux%20sur%20Parcoursup%29.%20%0A%0ASelon%20un%20sondage%20r%C3%A9cent%20r%C3%A9alis%C3%A9%20par%20BVA%20pour%20l%27Etudiant%20aupr%C3%A8s%20de%201%20609%20lyc%C3%A9ens%20et%20%C3%A9tudiants%20entre%20la%20seconde%20et%20le%20bac%2B2%2C%20%2A%2A83%25%20d%E2%80%99entre%20eux%20se%20disent%20inquiets%20lorsqu%E2%80%99ils%20pensent%20%C3%A0%20leur%20choix%20d%E2%80%99orientation%2A%2A.%0AEt%20selon%20un%20sondage%20IPSOS%202022%20pour%20le%20Minist%C3%A8re%20de%20l%27Enseignement%20Sup%C3%A9rieur%20et%20de%20la%20Recherche%2C%20%2A%2A89%25%20des%20n%C3%A9o-bacheliers%20souhaiteraient%20un%20renforcement%20des%20outils%20d%E2%80%99aide%20%C3%A0%20l%E2%80%99orientation.%2A%2A%0A%0A%E2%80%9CComment%20pourrait-on%20am%C3%A9liorer%20le%20parcours%20d%27orientation%20de%20tous%20les%20lyc%C3%A9ens%20quels%20que%20soient%20leur%20origine%2Fparcours%2Ffili%C3%A8re%20et%20mieux%20les%20pr%C3%A9parer%20%C3%A0%20l%27%C3%A9tape%20du%20choix%20des%20voeux%20sur%20Parcoursup%20%3F%E2%80%9D%0A%0AVoici%20la%20question%20%C3%A0%20laquelle%20nous%20nous%20attelons%20%C3%A0%20r%C3%A9pondre%20dans%20le%20cadre%20de%20cette%20investigation.%0A%0A%23%23%20Probl%C3%A8me%0A%0APlusieurs%20probl%C3%A8mes%20existent%20aujourd%E2%80%99hui%20autour%20de%20l%E2%80%99orientation%20des%20lyc%C3%A9ens%20%3A%20%0A%2A%20un%20manque%20de%20pr%C3%A9paration%20de%20certains%20lyc%C3%A9ens%20au%20moment%20de%20formuler%20leurs%20v%C5%93ux%20Parcoursup%2C%20source%20de%20stress%2C%20d%E2%80%99auto-censure%20et%20de%20d%C3%A9ception%20pendant%20la%20phase%20d%E2%80%99admission%2C%0A%2A%20la%20difficult%C3%A9%20%C3%A0%20pr%C3%A9dire%20les%20r%C3%A9sultats%20des%20admissions%20sur%20Parcoursup%2C%20notamment%20pour%20les%20r%C3%A9f%C3%A9rents%20%28professeurs%20principaux%20et%20conseiller%20d%E2%80%99orientation%29%2C%0A%2A%20un%20fort%20co%C3%BBt%20d%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99information%20par%20un%20ph%C3%A9nom%C3%A8ne%20d%E2%80%99exc%C3%A8s%20d%E2%80%99information%20%28infob%C3%A9sit%C3%A9%29%20et%20de%20manque%20de%20personnalisation%20de%20l%E2%80%99acc%C3%A8s%20%C3%A0%20cette%20information%2C%0A%2A%20des%20in%C3%A9galit%C3%A9s%20d%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99information%20entre%20les%20diff%C3%A9rentes%20cat%C3%A9gories%20de%20lyc%C3%A9ens%2C%20dans%20un%20contexte%20d%E2%80%99offres%20priv%C3%A9es%20tr%C3%A8s%20visibles%20de%20%C2%AB%20coaching%20%C2%BB%20Parcoursup.%0A%0A%23%23%20Investigation%0A%0AL%E2%80%99investigation%20doit%20permettre%20de%20mieux%20cerner%20les%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99orientation%2C%20afin%20de%20comprendre%20quelles%20sont%20les%20probl%C3%A9matiques%20terrains%20rencontr%C3%A9es%20par%20les%20lyc%C3%A9ens%20et%20les%20parties%20prenantes%20qui%20interviennent%20dans%20le%20processus%20d%E2%80%99orientation.%0A%0ANous%20irons%20donc%20%C3%A0%20la%20rencontre%20de%205%20cibles%20prioritaires%20%3A%0A%2A%20un%20panel%20repr%C3%A9sentatif%20de%20lyc%C3%A9ens%20%28classes%20de%20la%202nde%20%C3%A0%20la%20Terminale%2C%20avec%20un%20mix%20de%20fili%C3%A8res%20et%20de%20typologie%20de%20lyc%C3%A9es%20en%20Ile-de-France%20et%20en%20r%C3%A9gion%20bordelaise%29%2C%0A%2A%20des%20%C3%A9tudiants%20en%201%C3%A8re%20ann%C3%A9e%20d%E2%80%99%C3%A9tudes%20sup%C3%A9rieures%2C%0A%2A%20les%20parents%20d%E2%80%99%C3%A9l%C3%A8ves%2C%20%0A%2A%20les%20professeurs%20principaux%2C%0A%2A%20les%20psyEN.%0A%0A%23%23%20Solution%20%2F%20MVP%0A%0AL%E2%80%99investigation%20a%20confirm%C3%A9%20les%20attentes%20fortes%20%0Ades%20lyc%C3%A9ens%20pour%20un%20accompagnement%20personnalis%C3%A9%2C%20ainsi%20que%20le%20besoin%20d%27outillage%20des%20%C3%A9quipes%20p%C3%A9dagogiques.%20Il%20y%20a%20effectivement%20une%20opportunit%C3%A9%20%C3%A0%20poursuivre%20le%20d%C3%A9veloppement%20d%E2%80%99un%20service%20public%20num%C3%A9rique%20%C3%A0%20impact.%20%0ALa%20solution%20envisag%C3%A9e%20consiste%20%C3%A0%20d%C3%A9velopper%20MonProjetSup%2C%20service%20permettant%20de%20proposer%20des%20suggestions%20de%20formations%20personnalis%C3%A9es%20selon%20le%20profil%20des%20%C3%A9l%C3%A8ves.%0A%0A%23%23%20Strat%C3%A9gie%20et%20impact%0A%0ALanc%C3%A9e%20en%20mars%202024%2C%20la%20SE%20MonProjetSup%20a%20pour%20objectif%20%C3%A0%206%20mois%20de%20construire%20un%20service%20num%C3%A9rique%20accessible%20pour%20les%20%C3%A9l%C3%A8ves%20de%202nde%20%C3%A0%20la%20Terminale%2C%20proposant%20des%20suggestions%20personnalis%C3%A9es%20de%20formations%2C%20ainsi%20qu%27un%20moteur%20de%20recherche.%0AFin%202024%2C%20nous%20aurons%20r%C3%A9ussi%20si%20%3A%0A%2A%20les%20%C3%A9l%C3%A8ves%20de%202nde%20ont%20ajout%C3%A9%20au%20moins%20une%20formation%20ou%20un%20m%C3%A9tier%20dans%20leur%20s%C3%A9lection%3B%20les%20%C3%A9l%C3%A8ves%20de%201%C3%A8re%20ont%20ajout%C3%A9%20plusieurs%20formations%20du%20sup%20et%20m%C3%A9tiers%20d%27int%C3%A9r%C3%AAt%20dans%20leur%20s%C3%A9lection%20et%20ont%20pris%20connaissance%20des%20attendus%20des%20formations%3B%20les%20%C3%A9l%C3%A8ves%20de%20Terminale%2C%20avant%20fin%20f%C3%A9vrier%2C%20pour%20chaque%20formation%20ajout%C3%A9e%20dans%20MPS%2C%20auront%20au%20moins%20trois%20favoris%20Parcoursup%2C%20r%C3%A9partis%20entre%20A%2B%20%28ambitieux%29%20A%20%28r%C3%A9aliste%29%20et%20B%20%28s%C3%A9curisant%29.%0A%2A%20%20les%20professeurs%20principaux%20sont%20prescripteurs%20du%20service%2C%20peuvent%20mieux%20suivre%20le%20projet%20d%27orientation%20de%20leurs%20%C3%A9l%C3%A8ves%20et%20MPS%20est%20le%20support%20d%27un%20dialogue%20de%20qualit%C3%A9%20avec%20leurs%20%C3%A9l%C3%A8ves.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2023-11-11", + "end": "" + }, + { + "name": "construction", + "start": "2024-03-11", + "end": "" + } + ], + "sponsors": [ + "mesr" + ], + "thematiques": [ + "Jeunesse", + "Education" + ], + "analyse_risques": "true", + "dashlord_url": "https://dashlord.incubateur.net/url/monprojetsup-fr/", + "accessibility_status": "non conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://monprojetsup.fr", + "size": 7119.026, + "nodes": 700, + "requests": 61, + "grade": "D", + "score": 43, + "ges": 2.14, + "water": 3.21, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:39:18.220941", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "D", + "apdex": 0.981, + "apdexGrade": "B", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "F", + "nmapOpenPortsCount": 5, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-02-01T22:04:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.61, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 0.94, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.95, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "D", + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D", + "ecoindexGrade": "D", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://dashlord.romin.app.cc.anje-justice.fr", + "category": "justice", + "betaId": "romin", + "http": { + "url": "https://dashlord.romin.app.cc.anje-justice.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:45:20 GMT", + "grade": "A+", + "hidden": false, + "likelihood_indicator": "LOW", + "response_headers": { + "Connection": "keep-alive", + "Content-Length": "1869334", + "Content-Security-Policy": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-jFpr4kwtC6jbq1DwA8lrZQ=='; upgrade-insecure-requests;", + "Cross-Origin-Embedder-Policy": "unsafe-none", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 20 Oct 2024 14:45:18 GMT", + "Keep-Alive": "timeout=5", + "Origin-Agent-Cluster": "?1", + "Permissions-Policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()", + "Referrer-Policy": "no-referrer", + "Sozu-Id": "01JAN67GY5DPQPMRQBYR5395AE", + "Strict-Transport-Security": "max-age=15552000; includeSubDomains;", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-XSS-Protection": "0", + "access-control-allow-origin": "*", + "content-type": "text/html;charset=utf-8" + }, + "scan_id": 57067714, + "score": 105, + "start_time": "Sun, 20 Oct 2024 14:45:15 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 9, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'none'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "img-src": [ + "data:", + "https://romin-justice.directus.app/assets/", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'nonce-jfpr4kwtc6jbq1dwa8lrzq=='", + "'strict-dynamic'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "https:", + "'unsafe-inline'", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": true, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "http://localhost:3000", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-restricted-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://dashlord.romin.app.cc.anje-justice.fr/", + "redirects": true, + "route": [ + "http://dashlord.romin.app.cc.anje-justice.fr/", + "https://dashlord.romin.app.cc.anje-justice.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15552000; includeSubDomains;", + "includeSubDomains": true, + "max-age": 15552000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://tally.so/widgets/embed.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": true, + "result": "x-xss-protection-disabled", + "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "da91", + "url": "https://dashlord.romin.app.cc.anje-justice.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T00:03:39Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:52:57Z", + "next_check_at": "2024-12-01T18:53:57Z", + "created_at": "2024-05-26T01:15:51Z", + "mute_until": null, + "favicon_url": "https://dashlord.romin.app.cc.anje-justice.fr/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:51:00Z", + "expires_at": "2025-01-01T13:48:13Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "api.data.inclusion.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 52, + "connection": 123, + "handshake": 127, + "response": 296, + "total": 598 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "dashlord.romin.app.cc.anje-justice.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "product": "Postfix smtpd", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500542,7 +499789,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500550,7 +499797,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500558,7 +499805,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500566,7 +499813,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -500574,7 +499821,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -500582,455 +499829,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "id": "cipher-tls1_2_xc02f", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-11-23 05:54" + "finding": "2024-10-03 13:48" }, { "id": "cert_notAfter", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-02-21 05:54" + "finding": "2025-01-01 13:48" }, { "id": "cert_extlifeSpan", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1732472745" + "finding": "1733078962" }, { "id": "HSTS_time", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "id": "X-Frame-Options", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-MN7yMZmErwSPKUDTvIPMNA=='; upgrade-insecure-requests;" + }, + { + "id": "Permissions-Policy", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()" + }, + { + "id": "X-XSS-Protection", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Referrer-Policy", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -501038,7 +500341,7 @@ }, { "id": "heartbleed", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -501047,7 +500350,7 @@ }, { "id": "CCS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -501056,16 +500359,16 @@ }, { "id": "ticketbleed", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -501074,7 +500377,7 @@ }, { "id": "secure_renego", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -501082,16 +500385,16 @@ }, { "id": "secure_client_renego", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -501100,7 +500403,7 @@ }, { "id": "BREACH", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -501109,7 +500412,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -501118,14 +500421,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -501134,7 +500437,7 @@ }, { "id": "FREAK", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -501143,7 +500446,7 @@ }, { "id": "DROWN", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -501152,16 +500455,16 @@ }, { "id": "DROWN_hint", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C1EE2291CD258E4BF2A924211CD6E20C8E2D26C1F0A5A72ABA68210FF1321F4" }, { "id": "LOGJAM", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -501170,16 +500473,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -501188,7 +500491,7 @@ }, { "id": "LUCKY13", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -501197,7 +500500,7 @@ }, { "id": "winshock", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -501206,7 +500509,7 @@ }, { "id": "RC4", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -501215,392 +500518,1372 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { - "id": "key_exchange_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" + "id": "key_exchange_score_weighted", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "105" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://tally.so/widgets/embed.js" + }, + { + "type": "unknown", + "url": "https://tally.so/popup/wbqgQo?originPage=%2F&alignLeft=1&hideTitle=1" + } + ], + "cookies": [ + { + "name": "_pk_ses.14.544d", + "value": "1", + "domain": "dashlord.romin.app.cc.anje-justice.fr", + "path": "/", + "expires": 1733080642, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.14.544d", + "value": "583041c0f0af4782.1733078842.", + "domain": "dashlord.romin.app.cc.anje-justice.fr", + "path": "/", + "expires": 1767034042, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-length": "1869334", + "content-security-policy": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-iMCXXdlHObsCJqyoe9EQrg=='; upgrade-insecure-requests;", + "cross-origin-embedder-policy": "unsafe-none", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 18:47:19 GMT", + "keep-alive": "timeout=5", + "origin-agent-cluster": "?1", + "permissions-policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()", + "referrer-policy": "no-referrer", + "sozu-id": "01JE1RRVNPHTTE81DZKGB3CMNS", + "strict-transport-security": "max-age=15552000; includeSubDomains;", + "vary": "Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-xss-protection": "0", + "access-control-allow-origin": "*", + "content-type": "text/html;charset=utf-8" + }, + "endpoints": [ + { + "hostname": "dashlord.romin.app.cc.anje-justice.fr", + "ip": "91.208.207.214", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "tally.so", + "ip": "172.67.175.26", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://dashlord.romin.app.cc.anje-justice.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "nuxt-js", + "name": "Nuxt.js", + "description": "Nuxt is a Vue framework for developing modern web applications.", + "confidence": 100, + "version": null, + "icon": "Nuxt.js.svg", + "website": "https://nuxt.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "confidence": 100, + "version": null, + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, + "categories": [ + { + "id": 73, + "slug": "surveys", + "name": "Surveys" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://dashlord.romin.app.cc.anje-justice.fr/", + "finalUrl": "https://dashlord.romin.app.cc.anje-justice.fr/", + "fetchTime": "2024-12-01T18:46:51.017Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.41 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.85 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 10884, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 10884, + "firstMeaningfulPaint": 10884, + "largestContentfulPaint": 11580, + "interactive": 10884, + "speedIndex": 10884, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.22038590325249566, + "cumulativeLayoutShiftMainFrame": 0.22038590325249566, + "totalCumulativeLayoutShift": 0.22038590325249566, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 417107323, + "observedNavigationStart": 0, + "observedNavigationStartTs": 417107323, + "observedFirstPaint": 1796, + "observedFirstPaintTs": 418903821, + "observedFirstContentfulPaint": 1796, + "observedFirstContentfulPaintTs": 418903821, + "observedFirstContentfulPaintAllFrames": 1796, + "observedFirstContentfulPaintAllFramesTs": 418903821, + "observedFirstMeaningfulPaint": 1796, + "observedFirstMeaningfulPaintTs": 418903821, + "observedLargestContentfulPaint": 1796, + "observedLargestContentfulPaintTs": 418903821, + "observedLargestContentfulPaintAllFrames": 3353, + "observedLargestContentfulPaintAllFramesTs": 420460117, + "observedTraceEnd": 6026, + "observedTraceEndTs": 423133074, + "observedLoad": 3553, + "observedLoadTs": 420659830, + "observedDomContentLoaded": 2526, + "observedDomContentLoadedTs": 419633497, + "observedCumulativeLayoutShift": 0.22038590325249566, + "observedCumulativeLayoutShiftMainFrame": 0.22038590325249566, + "observedTotalCumulativeLayoutShift": 0.22038590325249566, + "observedFirstVisualChange": 1809, + "observedFirstVisualChangeTs": 418916323, + "observedLastVisualChange": 6025, + "observedLastVisualChangeTs": 423132323, + "observedSpeedIndex": 2781, + "observedSpeedIndexTs": 419888370 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 76, + "numScripts": 37, + "numStylesheets": 4, + "numFonts": 5, + "numTasks": 38, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 16922504.99403309, + "maxRtt": 156.174, + "maxServerLatency": 183.09099999999998, + "totalByteWeight": 3656452, + "totalTaskTime": 4.836999999999998, + "mainDocumentTransferSize": 1870504 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales#accessibilité" + }, + "declaration-rgpd": [ + { + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales" }, { - "id": "cipher_strength_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Données personnelles", + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales#données-personnelles-et-sécurité" + } + ], + "betagouv": { + "id": "romin", + "type": "startup", + "attributes": { + "name": "ROMIN", + "pitch": "Faciliter l'application du modèle efficace à la prévention de la récidive", + "stats_url": "https://romin.beta.gouv.fr/stats", + "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#ROMIN", + "repository": "https://github.com/betagouv/romin/", + "contact": "contact@romin.beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20%2A%2Aminist%C3%A8re%20de%20la%20Justice%2A%2A%20%E2%9A%96%20a%20enregistr%C3%A9%20une%20forte%20hausse%20des%20d%C3%A9cisions%20rendues%20par%20les%20juridictions%20correctionnelles%20%C3%A0%20partir%20de%202020.%20Parmi%20les%20d%C3%A9linquants%20condamn%C3%A9s%20cette%20ann%C3%A9e-l%C3%A0%20et%20les%20suivantes%2C%20%2Aplus%20de%2040%25%20%C3%A9taient%20en%20%C3%A9tat%20de%20r%C3%A9cidive%2A%2C%20ce%20qui%20signifie%20qu%E2%80%99ils%20%C3%A9taient%20connus%2C%20voire%20avaient%20%C3%A9t%C3%A9%20accompagn%C3%A9s%20par%20les%20Services%20P%C3%A9nitentiaires%20d%E2%80%99Insertion%20et%20de%20Probation%20%28%5BLes%20chiffres%20cl%C3%A9s%20de%20la%20justice%20%C3%A9dition%202023%20%28p.%2021%29%5D%28https%3A%2F%2Fwww.justice.gouv.fr%2Fsites%2Fdefault%2Ffiles%2F2023-10%2FChiffres_Cle%25CC%2581s_2023_En_ligne_0.pdf%29%29.%0A%0ADepuis%202018%2C%20le%20%5BR%C3%A9f%C3%A9rentiel%20des%20Pratiques%20Op%C3%A9rationnelles%20%F0%9F%93%96%5D%28https%3A%2F%2Fjournals.openedition.org%2Fcriminocorpus%2F10631%29%2C%20relatif%20%C3%A0%20la%20m%C3%A9thodologie%20d%E2%80%99intervention%20en%20SPIP%2C%20propose%20la%20transposition%20en%20France%20du%20mod%C3%A8le%20Risque-Besoins-R%C3%A9ceptivit%C3%A9%2C%20dont%20la%20validit%C3%A9%20a%20%C3%A9t%C3%A9%20%5Bscientifiquement%20d%C3%A9montr%C3%A9e%5D%28https%3A%2F%2Fwww.researchgate.net%2Fpublication%2F247523857_Validating_the_Principles_of_Effective_Intervention_A_Systematic_Review_of_the_Contributions_of_Meta-Analysis_in_the_Field_of_Corrections%29%20pour%20l%E2%80%99accompagnement%20des%20personnes%20condamn%C3%A9es%2C%20dans%20un%20objectif%20de%20pr%C3%A9vention%20de%20la%20r%C3%A9cidive.%20%0A%0A%23%23%20Probl%C3%A8me%0A%0ACette%20m%C3%A9thodologie%20suppose%20une%20adaptation%20des%20pratiques%20professionnelles%20en%20SPIP%20ainsi%20que%20du%20contexte%20d%E2%80%99intervention.%0A%0ACette%20impl%C3%A9mentation%20exige%20pour%20les%20professionnel.les%20de%20pouvoir%20visualiser%20la%20faisabilit%C3%A9%20g%C3%A9n%C3%A9rale%20de%20la%20m%C3%A9thodologie%20du%20RPO1.%20Au-del%C3%A0%20de%20l%27acculturation%20%C3%A0%20l%27%C3%A9valuation%20du%20risque%20de%20r%C3%A9cidive%2C%20de%20la%20guidance%20pour%20planifier%20l%27accompagnement%20et%20du%20soutien%20m%C3%A9thodologique%20au%20savoir-%C3%AAtre%20et%20aux%20techniques%20efficaces%20pour%20engager%20et%20soutenir%20le%20changement%2C%20ROMIN%20dynamise%20l%27accompagnement%20gr%C3%A2ce%20%C3%A0%20des%20outils%20d%E2%80%99intervention%20ciblant%20les%20facteurs%20de%20risque%20de%20r%C3%A9cidive.%0A%0A%2A%2AAfin%20de%20conforter%20les%20agents%20quant%20%C3%A0%20l%E2%80%99efficacit%C3%A9%20de%20leurs%20interventions%20et%20valoriser%20leur%20engagement%2C%20ROMIN%20partage%20les%20solutions%20d%27intervention%20de%20la%20communaut%C3%A9%20des%20professionnel.les%20en%20SPIP.%2A%2A%0A%0A%23%23%20Solution%20en%20construction%2Facc%C3%A9l%C3%A9ration%0A%0AEn%20pratique%C2%A0%3A%20je%20suis%20conseiller%20p%C3%A9nitentiaire%20d%E2%80%99insertion%20et%20de%20probation%20%28CPIP%29%2C%20j%E2%80%99%C3%A9value%20le%20profil%20de%20la%20personne%20condamn%C3%A9e%20que%20j%E2%80%99accompagne%20puis%20nous%20d%C3%A9finissons%20ensemble%20un%20plan%20d%E2%80%99accompagnement.%20%0A%0AQuels%20outils%20vais-je%20utiliser%20pour%20chacun%20des%20facteurs%20de%20risque%20%C3%A0%20travailler%C2%A0%3F%20%0AJe%20consulte%20ROMIN%20%F0%9F%92%BB%C2%A0%21%201%20seul%20crit%C3%A8re%20%C3%A0%20renseigner%20%3A%20le%20facteur%20de%20risque%20de%20r%C3%A9cidive.%20%0A%0AJ%E2%80%99acc%C3%A8de%20%C3%A0%20l%E2%80%99ensemble%20des%20outils%20d%E2%80%99intervention%20r%C3%A9pertori%C3%A9s.%20Je%20consulte%20la%20fiche-outil%2C%20je%20prends%20connaissance%20du%20temps%20n%C3%A9cessaire%20%C3%A0%20la%20mise%20en%20%C5%93uvre%2C%20du%20mode%20d%E2%80%99emploi%20et%20je%20t%C3%A9l%C3%A9charge%20les%20supports%20n%C3%A9cessaires.%0A%0AROMIN%20s%E2%80%99int%C3%A8gre%20%C3%A0%20l%E2%80%99environnement%20professionnel%20des%20agents%20et%20constitue%20un%20%C3%A9quipement%20suppl%C3%A9mentaire%20de%20soutien%20technique%2C%20en%20coordination%20avec%20les%20solutions%20existantes.%0A%0ALa%20communaut%C3%A9%20professionnelle%20%C3%A9change%20et%20parfait%20les%20outils%20partag%C3%A9s.%0ALa%20documentation%20m%C3%A9thodologique%2C%20accessible%20en%20permanence%2C%20offre%20une%20prise%20de%20recul%20aux%20professionnel.les%20garantissant%20un%20effet%20maximis%C3%A9%20des%20interventions.%0A%0A%23%23%20Prochaines%20%C3%A9tapes%0A%0A%2A%2AROMIN%20est%20en%20ligne%20et%20accessible%20aux%20premiers%20utilisateurs%20depuis%20avril%202023%2A%2A.%20Leurs%20retours%20permettent%20des%20ajustements%20et%20le%20d%C3%A9veloppement%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20leurs%20besoins%20de%20terrain%20comme%20celui%20de%20partager%20des%20retours%20d%E2%80%99exp%C3%A9rience.%0A%0AROMIN%20donne%20acc%C3%A8s%20%C3%A0%20plus%20d%27une%20soixantaine%20d%E2%80%99outils%20cibl%C3%A9s%20et%20ce%20volume%20continue%20de%20grandir%20en%20permanence.%20Sous%20peu%2C%20au-del%C3%A0%20des%20outils%20mobilisables%20en%20entretien%20individuel%2C%20il%20donnera%20acc%C3%A8s%20aux%20diff%C3%A9rents%20programmes%20connus%20et%20valorisera%20les%20supports%20dont%20l%E2%80%99impact%20positif%20a%20%C3%A9t%C3%A9%20d%C3%A9montr%C3%A9.%20%0A%0AUne%20trentaine%20de%20SPIP%20participent%20%C3%A0%20l%E2%80%99exp%C3%A9rimentation%20de%20ROMIN.%20Le%20d%C3%A9ploiement%20de%20la%20solution%20num%C3%A9rique%20%C3%A0%20plus%20grande%20%C3%A9chelle%20mobilisera%20d%E2%80%99abord%20nos%20meilleurs%20ambassadeurs%20avant%20de%20s%E2%80%99%C3%A9tendre%20%C3%A0%20l%E2%80%99ensemble%20des%20agents.%0A%0A%2A%2AL%E2%80%99impact%20de%20ROMIN%20se%20mesure%20via%20les%20donn%C3%A9es%20statistiques%20de%20consultation%20auxquelles%20sont%20combin%C3%A9es%20les%20retours%20qualitatifs%20de%20nos%20utilisateurs%2A%2A.%20Au-del%C3%A0%2C%20les%20professionnel.les%20charg%C3%A9s%20du%20soutien%20technique%20%28directeur.ice%20p%C3%A9nitentiaire%20d%E2%80%99insertion%20et%20de%20probation%2C%20psychologues%20en%20SPIP%20et%20unit%C3%A9s%20de%20soutien%20m%C3%A9tier%29%20contribueront%20%C3%A0%20mesurer%20notre%20participation%20globale%20%C3%A0%20l%E2%80%99application%20du%20mod%C3%A8le%20efficace%20%C3%A0%20la%20pr%C3%A9vention%20de%20la%20r%C3%A9cidive.%0A", + "events": [ + { + "name": "committee", + "date": "2022-06-29", + "comment": "Kick-off de l'investigation" + }, + { + "name": "committee", + "date": "2022-11-17", + "comment": "Comité d'investigation, avis concluant pour un passage en phase de construction" + }, + { + "name": "committee", + "date": "2023-06-28", + "comment": "Comité de fin de la 1ère phase de construction" + }, + { + "name": "committee", + "date": "2024-01-18", + "comment": "Comité de fin de la 2e phase de construction" + } + ], + "phases": [ + { + "name": "investigation", + "start": "2022-06-29", + "end": "2022-11-17" + }, + { + "name": "construction", + "start": "2022-11-17", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-01-18", + "end": "" + } + ], + "sponsors": [ + "mj" + ], + "thematiques": [ + "Justice" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/dashlord-romin-app-cc-anje-justice-fr/", + "accessibility_status": "non conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "justice" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://dashlord.romin.app.cc.anje-justice.fr", + "size": 10594.214, + "nodes": 263, + "requests": 48, + "grade": "C", + "score": 63, + "ges": 1.74, + "water": 2.61, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:43:43.145673", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "A+", + "apdex": 1, + "apdexGrade": "A", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-01T13:48:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "B", + "trackersCount": 2, + "lighthouse_performance": 0.41, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.85, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "C", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://pass.sports.gouv.fr", + "title": "pass Sport", + "repositories": [ + "betagouv/pass-sport" + ], + "betaId": "pass-sport", + "http": { + "url": "https://pass.sports.gouv.fr", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 14:45:27 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 20 Oct 2024 14:45:25 GMT", + "Transfer-Encoding": "chunked", + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Powered-By": "Next.js", + "X-Request-ID": "930643d0-a2f8-486b-bacc-b5fc4719a877, 930643d0-a2f8-486b-bacc-b5fc4719a877", + "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' 'nonce-YzhlYzlhNzItNjZhMS00YmU1LWJhNjUtYTk0NzcyZTA0NzM4' 'strict-dynamic' https://client.crisp.chat/ https://stats.beta.gouv.fr/matomo.js https://tarteaucitron.io/ https://cdn.tarteaucitron.io/; style-src 'report-sample' 'unsafe-inline' 'self' https://unpkg.com https://client.crisp.chat/ https://cdn.tarteaucitron.io/; object-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' https://client.crisp.chat/ wss://client.relay.crisp.chat/ https://sports-sgsocialgouv.opendatasoft.com https://stats.beta.gouv.fr https://geo.api.gouv.fr; font-src 'self' https://client.crisp.chat/; frame-src 'self' https://player.vimeo.com https://pass-sport.crisp.help/; img-src 'self' data: https://image.crisp.chat/ https://client.crisp.chat/ https://storage.crisp.chat/ https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org https://i.vimeocdn.com https://unpkg.com https://tarteaucitron.io; manifest-src 'self'; media-src 'self'; report-uri https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1; worker-src 'none'; upgrade-insecure-requests;", + "strict-transport-security": "max-age=31536000" }, - { - "id": "final_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57067716, + "score": 70, + "start_time": "Sun, 20 Oct 2024 14:45:23 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 7, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "https://stats.beta.gouv.fr", + "https://client.crisp.chat/", + "https://geo.api.gouv.fr", + "'self'", + "wss://client.relay.crisp.chat/", + "https://sports-sgsocialgouv.opendatasoft.com" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https://client.crisp.chat/", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-src": [ + "https://player.vimeo.com", + "https://pass-sport.crisp.help/", + "'self'" + ], + "img-src": [ + "https://c.tile.openstreetmap.org", + "https://client.crisp.chat/", + "https://tarteaucitron.io", + "'self'", + "data:", + "https://storage.crisp.chat/", + "https://a.tile.openstreetmap.org", + "https://b.tile.openstreetmap.org", + "https://i.vimeocdn.com", + "https://image.crisp.chat/", + "https://unpkg.com" + ], + "manifest-src": [ + "'self'" + ], + "media-src": [ + "'self'" + ], + "object-src": [ + "'none'" + ], + "report-uri": [ + "https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1" + ], + "script-src": [ + "'report-sample'", + "'strict-dynamic'", + "'nonce-yzhlyzlhnzitnjzhms00ymu1lwjhnjutytk0nzcyzta0nzm4'" + ], + "style-src": [ + "'report-sample'", + "https://client.crisp.chat/", + "'unsafe-inline'", + "https://cdn.tarteaucitron.io/", + "'self'", + "https://unpkg.com" + ], + "upgrade-insecure-requests": [ + "'none'" + ], + "worker-src": [ + "'none'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": true, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-unsafe-inline-in-style-src-only", + "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.pass.sports.gouv.fr/", + "redirects": true, + "route": [ + "http://pass.sports.gouv.fr/", + "https://www.pass.sports.gouv.fr/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "7pay", + "url": "https://pass.sports.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-28T20:57:13Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T18:57:35Z", + "next_check_at": "2024-12-01T18:58:35Z", + "created_at": "2024-06-02T01:16:12Z", + "mute_until": null, + "favicon_url": "https://www.pass.sports.gouv.fr/_next/static/media/favicon.8c087985.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T18:51:37Z", + "expires_at": "2025-02-06T13:34:55Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 448, + "namelookup": 40, + "connection": 122, + "handshake": 127, + "response": 148, + "total": 885 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "pass.sports.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501608,7 +501891,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501616,7 +501899,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501624,7 +501907,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501632,7 +501915,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -501640,7 +501923,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -501648,455 +501931,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2024-11-23 05:54" + "finding": "2024-11-08 13:34" }, { "id": "cert_notAfter", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2025-02-21 05:54" + "finding": "2025-02-06 13:34" }, { "id": "cert_extlifeSpan", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "404 Not Found ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1732472800" + "finding": "1733079259" }, { "id": "HSTS_time", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -502104,7 +502387,7 @@ }, { "id": "heartbleed", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -502113,7 +502396,7 @@ }, { "id": "CCS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -502122,7 +502405,7 @@ }, { "id": "ticketbleed", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -502131,7 +502414,7 @@ }, { "id": "ROBOT", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -502140,7 +502423,7 @@ }, { "id": "secure_renego", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -502148,7 +502431,7 @@ }, { "id": "secure_client_renego", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -502157,7 +502440,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -502166,7 +502449,7 @@ }, { "id": "BREACH", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -502175,7 +502458,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -502184,14 +502467,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -502200,7 +502483,7 @@ }, { "id": "FREAK", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -502209,7 +502492,7 @@ }, { "id": "DROWN", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -502218,16 +502501,16 @@ }, { "id": "DROWN_hint", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6B49A5FEFBF218449C9439D158E839EFA3190B661909485F3AA5CFD9B1208A09" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" }, { "id": "LOGJAM", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -502236,7 +502519,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -502245,7 +502528,7 @@ }, { "id": "BEAST", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -502254,7 +502537,7 @@ }, { "id": "LUCKY13", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -502263,7 +502546,7 @@ }, { "id": "winshock", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -502272,7 +502555,7 @@ }, { "id": "RC4", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -502281,930 +502564,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "api.data.inclusion.beta.gouv.fr/80.247.13.145", + "ip": "pass.sports.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "222" - } - ], - "thirdparties": null, - "wappalyzer": { - "urls": { - "https://api.data.inclusion.beta.gouv.fr/": { - "status": 404 - } - }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": null, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": null, - "declaration-rgpd": null, - "betagouv": { - "id": "data-inclusion", - "type": "startup", - "attributes": { - "name": "data·inclusion", - "pitch": "Créer un référentiel commun de toutes les données de l’offre d’insertion des territoires", - "stats_url": "https://metabase.data.inclusion.gouv.fr/public/dashboard/77beb1ed-42c3-4f2a-bdee-5e8378699485", - "budget_url": "https://docs.google.com/document/d/1XAyC_ghQs9RtUtrfMRGHBvzqhjCWfqDbshT8b__XU9Q/edit?tab=t.0", - "link": "https://api.data.inclusion.gouv.fr/api/v0/docs#/", - "repository": "https://github.com/gip-inclusion/data-inclusion", - "contact": "data-inclusion@inclusion.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ADans%20le%20contexte%20du%20service%20public%20de%20l%E2%80%99insertion%20et%20de%20l%E2%80%99emploi%2C%20de%20la%20mise%20en%20oeuvre%20du%20SPIE%2C%20et%20de%20l%27exp%C3%A9rimentation%20de%20France%20Travail%2C%20un%20sujet%20revient%20de%20mani%C3%A8re%20pr%C3%A9gnante%20%3A%20l%E2%80%99acc%C3%A8s%20%C3%A0%20des%20donn%C3%A9es%20fiables%20sur%20les%20dispositifs%20et%20l%E2%80%99offre%20d%E2%80%99insertion%20au%20niveau%20national%20et%20sur%20chaque%20territoire.%0A%0ASi%20un%20grand%20nombre%20d%E2%80%99outils%20existent%2C%20dont%20plusieurs%20financ%C3%A9s%20par%20la%20d%C3%A9pense%20publique%20-%20portails%20locaux%20ou%20nationaux%2C%20annuaires%20d%E2%80%99associations%2C%20%C3%A9diteurs%20de%20logiciels%2C%20etc.%20-%2C%20%2A%2Ales%20donn%C3%A9es%20elles-m%C3%AAmes%20circulent%20mal%20d%E2%80%99un%20outil%20%C3%A0%20l%E2%80%99autre%20et%20un%20grand%20nombre%20d%E2%80%99acteurs%20sont%20contraints%20de%20%E2%80%9Cr%C3%A9inventer%20la%20roue%E2%80%9D%20%C3%A0%20leur%20%C3%A9chelle%20ou%20de%20voir%20leurs%20bases%20de%20donn%C3%A9es%20devenir%20peu%20%C3%A0%20peu%20obsol%C3%A8tes.%2A%2A%0A%0A%2ALe%20Minist%C3%A8re%20du%20Travail%2C%20de%20l%27Emploi%20et%20de%20l%27Insertion%20a%20lanc%C3%A9%20la%20cr%C3%A9ation%20d%E2%80%99un%20patrimoine%20commun%20de%20l%E2%80%99offre%20d%E2%80%99insertion%20en%20open%20data%20o%C3%B9%20chaque%20acteur%20pourra%20partager%20son%20offre%20de%20services%20en%20mati%C3%A8re%20d%E2%80%99insertion%2C%20et%20r%C3%A9cup%C3%A9rer%20les%20donn%C3%A9es%20des%20autres.%2A%0A%0A%23%23%20Notre%20service%0A%0Adata%C2%B7inclusion%20est%20une%20%2A%2Ad%C3%A9marche%20collective%2A%2A%20visant%20%C3%A0%20cr%C3%A9er%20%2A%2Aun%20r%C3%A9f%C3%A9rentiel%20commun%2A%2A%20de%20toutes%20les%20donn%C3%A9es%20de%20l%E2%80%99offre%20d%E2%80%99insertion%20des%20territoires%20afin%20de%20permettre%20%C3%A0%20tous%20les%20services%20num%C3%A9riques%20recensant%20et%20mettant%20en%20visibilit%C3%A9%20leur%20offre%20d%E2%80%99%C3%AAtre%20%2A%2Ainterop%C3%A9rables%2A%2A%20et%20de%20%2A%2Amutualiser%20les%20efforts%2A%2A%20de%20recensement%20et%20de%20mise%20%C3%A0%20jour.%0A%0A%23%23%23%20%2A%2ALes%20objectifs%20de%20data%C2%B7inclusion%20%3A%2A%2A%0A%0A%2A%20Un%20accompagnateur%20ou%20un%20usager%20doit%20acc%C3%A9der%20facilement%20%C3%A0%20l%E2%80%99ensemble%20de%20l%27offre%20connue%20sur%20un%20territoire%2C%20quel%20que%20soit%20l%E2%80%99outil%20en%20ligne%20utilis%C3%A9%20qui%20variera%20n%C3%A9cessairement%20selon%20le%20contexte%20et%20ses%20besoins%0A%2A%20Une%20structure%20ne%20doit%20pas%20saisir%20ou%20partager%20plus%20d%27une%20fois%20ses%20donn%C3%A9es%20-%20c%E2%80%99est%20la%20condition%20pour%20qu%E2%80%99elle%20joue%20le%20jeu%20du%20patrimoine%20commun%20et%20accepte%20de%20mettre%20%C3%A0%20jour%20les%20donn%C3%A9es%20cl%C3%A9s%20qui%20la%20concerne.%0A%0A%23%23%23%20%2A%2AQui%20est%20concern%C3%A9%20par%20data%C2%B7inclusion%20%3F%2A%2A%0A%0AD%E2%80%99une%20part%20les%20producteurs%20de%20donn%C3%A9es.%20Repr%C3%A9sentent%20l%27ensemble%20des%20sites%20d%C3%A9di%C3%A9s%20au%20recensement%20et%20%C3%A0%20la%20mise%20%C3%A0%20jour%20de%20l%27offre%20d%27insertion.%20Site%20local%20port%C3%A9%20par%20un%20d%C3%A9partement%2C%20outil%20national%20port%C3%A9%20par%20une%20administration%2C%20producteurs%20de%20catalogues%20%28Action%20logement%2C%20AFPA..%29%0A%0AD%27autre%20part%20les%20consommateurs%20de%20donn%C3%A9es.%20Toute%20personne%20qui%20souhaite%20acc%C3%A9der%20%C3%A0%20l%27ensemble%20des%20donn%C3%A9es%20afin%20de%20les%20afficher%20sur%20un%20service%20num%C3%A9rique%20ou%20dans%20un%20logiel%20interne.%20Des%20acteurs%20publics%20qui%20souhaitent%20analyser%20les%20donn%C3%A9es%2C%20des%20t%C3%AAtes%20de%20r%C3%A9seaux%20qui%20veulent%20acc%C3%A9der%20%C3%A0%20l%27offre%20des%20membres%20de%20leur%20organisation%2C%20des%20personnes%20en%20charge%20du%20d%C3%A9veloppement%20de%20logiciels%2C%20de%20sites%20internet%2C%20de%20cartographies..%0A%0AMais%20aussi%2C%20les%20offreurs%20de%20services%2C%20porteurs%20de%20solution%20qui%20ont%20d%C3%A9sormais%20un%20point%20d%E2%80%99acc%C3%A8s%20unique%20pour%20partager%20leur%20offre%20de%20services%20et%20gagner%20en%20visibilit%C3%A9%20aupr%C3%A8s%20des%20diff%C3%A9rents%20publics%20qu%E2%80%99ils%20accompagnent.%0A%0AEt%20enfin%2C%20les%20accompagnateurs%20qui%20ont%20des%20tr%C3%A9sors%20de%20ressources%20et%20bases%20de%20donn%C3%A9es%20sur%20les%20solutions%20%C3%A0%20leur%20territoire.%20S%E2%80%99ils%20contribuent%20au%20patrimoine%20commun%2C%20la%20promesse%20est%20de%20pouvoir%20utiliser%20des%20outils%20%C3%A0%20jour%20et%20de%20gagner%20du%20temps%20en%20mutualisant%20nos%20forces%20pour%20le%20travail%20fastidieux%20de%20collecte%20et%20mise%20%C3%A0%20jour%20des%20donn%C3%A9es.%0A%0A%23%23%20Comment%20contribuer%20au%20patrimoine%20commun%20%3F%0A%0A%23%23%23%20Mettre%20vos%20donn%C3%A9es%20%C3%A0%20disposition%20sur%20data%C2%B7inclusion%0A%0ALes%20modalit%C3%A9s%20de%20mise%20%C3%A0%20disposition%20de%20vos%20donn%C3%A9es%20pour%20int%C3%A9gration%20dans%20data%C2%B7inclusion%20peuvent%20%C3%AAtre%20tr%C3%A8s%20diff%C3%A9rentes%20selon%20l%27outil%20que%20vous%20utilisez%20et%20la%20structure%20de%20vos%20donn%C3%A9es.%0A%0ANous%20vous%20recommandons%20de%20nous%20contacter%20par%20email%20%3A%20%5Bdata-inclusion%40inclusion.gouv.fr%5D%28mailto%3Adata-inclusion%40inclusion.gouv.fr%29.%0A%0A%23%23%23%20Consommer%20et%20r%C3%A9utiliser%20les%20donn%C3%A9es%20de%20data%C2%B7inclusion%0A%0ALes%20donn%C3%A9es%20de%20data%C2%B7inclusion%20sont%20mises%20%C3%A0%20disposition%20en%20%5Bt%C3%A9l%C3%A9chargement%20libre%5D%28https%3A%2F%2Fwww.data.gouv.fr%2Ffr%2Fdatasets%2F6233723c2c1e4a54af2f6b2d%2F%29%20selon%20les%20principes%20de%20l%27Open%20Data%20pour%20int%C3%A9gration%20dans%20votre%20outil%20%28formats%20de%20donn%C3%A9es%20Excel%2C%20CSV%20et%20JSON%29.%20Nous%20mettons%20%C3%A9galement%20%C3%A0%20disposition%20%5Bune%20API%5D%28https%3A%2F%2Fwww.data.inclusion.beta.gouv.fr%2Fapi%2Flapi-data.inclusion%29%20pour%20la%20r%C3%A9cup%C3%A9ration%20de%20donn%C3%A9es%20en%20temps%20r%C3%A9el%2C%20%C3%A0%20int%C3%A9grer%20par%20vos%20%C3%A9quipes%20informatiques%20ou%20un%20prestataire.%5C%0AN%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20contacter%20pour%20que%20nous%20discutions%20de%20votre%20cas%20d%27usage%20des%20donn%C3%A9es%20data%C2%B7inclusion%20%3A%C2%A0%20%5Bdata-inclusion%40inclusion.gouv.fr%5D%28mailto%3Adata-inclusion%40inclusion.gouv.fr%29%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2022-03-17", - "end": "" - }, - { - "name": "construction", - "start": "2022-06-30", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-11-18", - "end": "" - } - ], - "sponsors": [ - "francetravail", - "mtei" - ], - "thematiques": [ - "Territoires", - "Open-Data", - "Inclusion" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/api-data-inclusion-beta-gouv-fr/", - "accessibility_status": "partiellement conforme" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "gip-inclusion" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": null, - "summary": { - "httpGrade": "C", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-21T05:54:00.000Z", - "testsslGrade": "A+", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A" - } - }, - { - "404": null, - "url": "https://api.exposition.inserjeunes.beta.gouv.fr", - "category": "inserjeunes", - "betaId": "exposition-ij", - "title": "Exposition des données InserJeunes", - "repositories": [ - "mission-apprentissage/trajectoires-pro" - ], - "tags": [ - "production", - "api" - ], - "tools": { - "lighthouse": false, - "thirdparties": false, - "declaration-rgpd": false, - "declaration-a11y": false, - "budget_page": false, - "dsfr": false, - "ecoindex": false, - "screenshot": false - }, - "http": { - "url": "https://api.exposition.inserjeunes.beta.gouv.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:30:58 GMT", - "grade": "B", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Access-Control-Allow-Headers": "Origin, X-Requested-With, Content-Type, Accept, API-Key", - "Access-Control-Allow-Origin": "*", - "Connection": "keep-alive", - "Content-Length": "70", - "Content-Security-Policy": "default-src 'self' https://img.notionusercontent.com/ https://www.notion.so/ https://plausible.io/ https://openmaptiles.github.io/ https://*.inserjeunes.beta.gouv.fr/ https://*.beta.gouv.fr/ https://*.data.gouv.fr/ 'unsafe-inline' data: blob:;", - "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:30:57 GMT", - "ETag": "W/\"46-xksMj9xKLPYOkQYDwEPgOtgLxzQ\"", - "Referrer-Policy": "no-referrer-when-downgrade", - "Strict-Transport-Security": "max-age=31536000; includeSubdomains", - "X-Content-Type-Options": "nosniff", - "X-Frame-Options": "SAMEORIGIN" + { + "id": "rating_spec", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "scan_id": 57067425, - "score": 75, - "start_time": "Sun, 20 Oct 2024 14:30:55 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 2, - "tests_passed": 8, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "default-src": [ - "https://img.notionusercontent.com/", - "blob:", - "https://*.data.gouv.fr/", - "https://www.notion.so/", - "https://*.beta.gouv.fr/", - "'self'", - "'unsafe-inline'", - "https://*.inserjeunes.beta.gouv.fr/", - "https://openmaptiles.github.io/", - "data:", - "https://plausible.io/" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "*", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://beta.gouv.fr/startups/?incubateur=mission-inserjeunes", - "redirects": true, - "route": [ - "http://api.exposition.inserjeunes.beta.gouv.fr/", - "https://beta.gouv.fr/startups/?incubateur=mission-inserjeunes" - ], - "status_code": 307 - }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer-when-downgrade", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-no-referrer-when-downgrade", - "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000; includeSubdomains", - "includeSubDomains": true, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "ifrs", - "url": "https://api.exposition.inserjeunes.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 99.982, - "down": false, - "down_since": null, - "up_since": "2024-11-24T06:45:26Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:35:22Z", - "next_check_at": "2024-11-24T18:36:21Z", - "created_at": "2024-04-28T01:12:30Z", - "mute_until": null, - "favicon_url": null, - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T18:27:27Z", - "expires_at": "2025-01-26T00:02:01Z", - "valid": true, - "error": null + { + "id": "rating_doc", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 259, - "connection": 150, - "handshake": 303, - "response": 181, - "total": 893 - } + { + "id": "protocol_support_score", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pass.sports.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "api.exposition.inserjeunes.beta.gouv.fr", - "protocol": "tcp", - "closed_ports": "997", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.11", - "vulnerabilities": [ - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-38408", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A", - "cvss": "9.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587", - "cvss": "9.8" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2020-15778", - "cvss": "7.8" - }, - { - "is_exploit": "true", - "type": "seebug", - "id": "SSV:92579", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "packetstorm", - "id": "PACKETSTORM:173661", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "cvss": "7.5" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2020-12062", - "cvss": "7.5" - }, - { - "is_exploit": "true", - "type": "zdt", - "id": "1337DAY-ID-26576", - "cvss": "7.5" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2021-28041", - "cvss": "7.1" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2021-41617", - "cvss": "7.0" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "cvss": "6.8" - }, - { - "is_exploit": "true", - "type": "githubexploit", - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "cvss": "6.8" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-51385", - "cvss": "6.5" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2023-48795", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2020-14145", - "cvss": "5.9" - }, - { - "is_exploit": "false", - "type": "cve", - "id": "CVE-2016-20012", - "cvss": "5.3" - }, - { - "is_exploit": "true", - "type": "packetstorm", - "id": "PACKETSTORM:140261", - "cvss": "0.0" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "not offered + downgraded to weaker protocol" + "severity": "OK", + "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -503212,7 +502957,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -503220,7 +502965,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -503228,7 +502973,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -503236,7 +502981,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -503244,7 +502989,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -503252,511 +502997,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "cipherorder_TLSv1_2", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-10-28 00:02" + "finding": "2024-11-08 13:34" }, { "id": "cert_notAfter", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-01-26 00:02" + "finding": "2025-02-06 13:34" }, { "id": "cert_extlifeSpan", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732473275" + "finding": "1733079315" }, { "id": "HSTS_time", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "OK", - "finding": "default-src 'self' https://img.notionusercontent.com/ https://www.notion.so/ https://plausible.io/ https://openmaptiles.github.io/ https://*.inserjeunes.beta.gouv.fr/ https://*.beta.gouv.fr/ https://*.data.gouv.fr/ 'unsafe-inline' data: blob:;" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "*" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "security_headers", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "no-referrer-when-downgrade" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -503764,7 +503453,7 @@ }, { "id": "heartbleed", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -503773,7 +503462,7 @@ }, { "id": "CCS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -503782,16 +503471,16 @@ }, { "id": "ticketbleed", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -503800,7 +503489,7 @@ }, { "id": "secure_renego", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -503808,7 +503497,7 @@ }, { "id": "secure_client_renego", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -503817,7 +503506,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -503826,7 +503515,7 @@ }, { "id": "BREACH", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -503835,7 +503524,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -503844,14 +503533,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -503860,7 +503549,7 @@ }, { "id": "FREAK", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -503869,7 +503558,7 @@ }, { "id": "DROWN", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -503878,34 +503567,34 @@ }, { "id": "DROWN_hint", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EAE9BB903A8CEA55DF3EB4EE40A08BF71B1F1BD5E158505B52E489D433057FA8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" }, { - "id": "LOGJAM-common_primes", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "LOGJAM", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "LOGJAM-common_primes", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "--" }, { "id": "BEAST", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -503914,7 +503603,7 @@ }, { "id": "LUCKY13", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -503923,7 +503612,7 @@ }, { "id": "winshock", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -503932,7 +503621,7 @@ }, { "id": "RC4", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -503941,1310 +503630,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-go_1178", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-android_81", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-libressl_283", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-android_90", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_102e", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-android_X", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_110l", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-android_11", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_111d", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-android_12", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-openssl_303", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-chrome_79_win10", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-apple_mail_16_0", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-chrome_101_win10", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-firefox_66_win81", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "rating_spec", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-firefox_100_win10", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "rating_doc", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_6_xp", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + "finding": "No connection" }, { - "id": "protocol_support_score", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_8_win7", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "No connection" }, { - "id": "protocol_support_score_weighted", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_8_xp", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "No connection" }, { - "id": "key_exchange_score", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_11_win7", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "key_exchange_score_weighted", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_11_win81", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { - "id": "cipher_strength_score", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_11_winphone81", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "No connection" }, { - "id": "cipher_strength_score_weighted", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-ie_11_win10", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "final_score", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-edge_15_win10", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "overall_grade", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { - "id": "scanTime", - "ip": "api.exposition.inserjeunes.beta.gouv.fr/141.94.2.159", + "id": "clientsimulation-safari_121_ios_122", + "ip": "pass.sports.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "52" - } - ], - "thirdparties": null, - "wappalyzer": { - "urls": { - "https://api.exposition.inserjeunes.beta.gouv.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": null, - "screenshot": false, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": null, - "declaration-a11y": null, - "declaration-rgpd": null, - "betagouv": { - "id": "exposition-ij", - "type": "startup", - "attributes": { - "name": "Exposition des données InserJeunes", - "pitch": "Éclairer les choix d’orientation des jeunes en exposant des données pertinentes relatives aux parcours de formation et à l’insertion professionnelle", - "stats_url": "https://statistiques.exposition.inserjeunes.beta.gouv.fr/", - "link": "https://documentation.exposition.inserjeunes.beta.gouv.fr/", - "repository": "https://github.com/mission-apprentissage/trajectoires-pro", - "contact": "contact@inserjeunes.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20choix%20d%E2%80%99orientation%20sont%20fond%C3%A9s%20sur%20des%20%2A%2Ainformations%20partielles%20et%20subjectives%20concernant%20les%20parcours%20de%20formation%20et%20le%20march%C3%A9%20de%20l%E2%80%99emploi%2A%2A.%0A%0ABon%20nombre%20de%20jeunes%20s%E2%80%99orientent%2C%20ou%20sont%20orient%C3%A9s%2C%20vers%20les%20%2A%2Afili%C3%A8res%20les%20plus%20connues%2C%20mais%20qui%20s%E2%80%99av%C3%A8rent%20souvent%20sans%20perspectives%2A%2A.%0A%0A%F0%9F%94%8E%20%2A%2A%2A1%2F3%20des%20v%C5%93ux%2A%2A%20prioritaires%20pour%20le%20scolaire%20sur%20la%20plateforme%20Affelnet%20se%20sont%20fait%20en%202021%20%2A%2Avers%20des%20fili%C3%A8res%20sans%20perspectives%2A%2A%20%28taux%20d%E2%80%99emploi%20%3C%2030%25%20ET%20taux%20de%20poursuite%20d%E2%80%99%C3%A9tudes%20%3C%2050%25%29%2A%0A%0APourtant%2C%20d%E2%80%99autres%20fili%C3%A8res%20offrent%20des%20devenirs%20plus%20favorables.%20Et%20%2A%2Ades%20donn%C3%A9es%2A%2A%2C%20issues%20notamment%20des%20services%20statistiques%20des%20minist%C3%A8res%20%3A%20%0A-%20la%20Direction%20de%20l%27%C3%A9valuation%2C%20de%20la%20prospective%20et%20de%20la%20performance%20%28DEPP%29%2C%20pour%20le%20Minist%C3%A8re%20de%20l%27%C3%89ducation%20nationale%20et%20de%20la%20Jeunesse%0A-%20la%20Direction%20de%20l%27Animation%20de%20la%20Recherche%2C%20des%20%C3%89tudes%20et%20des%20Statistiques%20%28DARES%29%2C%20pour%20le%20Minist%C3%A8re%20du%20Travail%2C%20de%20la%20Sant%C3%A9%20et%20des%20Solidarit%C3%A9s%0A-%20la%20sous-direction%20des%20Syst%C3%A8mes%20d%27Information%20et%20des%20%C3%89tudes%20Statistiques%20%28SIES%29%20et%20son%20dispositif%20InserSup%2C%20pour%20le%20Minist%C3%A8re%20de%20l%E2%80%99Enseignement%20sup%C3%A9rieur%20et%20de%20la%20Recherche%0A%0Aqui%20permettraient%20d%E2%80%99%C3%A9clairer%20ces%20choix%20d%E2%80%99orientation%20%2A%2Aexistent%2A%2A%20et%20sont%20enrichies%20r%C3%A9guli%C3%A8rement.%0A%0AElles%20ne%20sont%20malheureusement%20%2A%2Apas%20connues%2A%2A%20des%20jeunes%20et%20de%20leurs%20accompagnateurs%20et%20sont%20%2A%2Adifficilement%20compr%C3%A9hensibles.%2A%2A%0A%0A%23%23%20Notre%20solution%0A%0ANous%20%2A%2Aconstruisons%2A%2A%20un%20service%20destin%C3%A9%20%C3%A0%20%2A%2Adiffuser%20des%20informations%20de%20r%C3%A9f%C3%A9rence%2A%2A%20pr%C3%A9cises%20et%20contextualis%C3%A9es%2C%20permettant%20d%E2%80%99%2A%2A%C3%A9clairer%20les%20choix%20d%E2%80%99orientation%20d%E2%80%99un%20maximum%20de%20jeunes%2A%2A.%0A%0APour%20cela%2C%20nous%20%3A%0A%0A-%20Collectons%20des%20donn%C3%A9es%20et%20%2A%2Asynth%C3%A9tisons%20des%20indicateurs%20quantitatifs%20de%20r%C3%A9f%C3%A9rence%2C%20simples%20%C3%A0%20comprendre%2A%2A%2C%20relatifs%20%C3%A0%20l%E2%80%99orientation%20et%20%C3%A0%20l%E2%80%99insertion%20professionnelle%2C%20%C3%A0%20partir%20de%20diverses%20sources%20%28scolaire%2C%20sup%C3%A9rieur%2C%20travail%2C%20etc.%29.%0A-%20%2A%2ADiffusons%20ces%20indicateurs%2A%2A%20aupr%C3%A8s%20des%20parties%20prenantes%20impliqu%C3%A9es%20dans%20l%E2%80%99orientation%20des%20jeunes%2C%20notamment%20%2A%2Avia%20les%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A.%0A%0A%23%23%20Impact%20attendu%0A%0ANous%20d%C3%A9sirons%2C%20via%20notre%20action%20d%E2%80%99exposition%20aupr%C3%A8s%20du%20grand%20public%2C%20observer%20une%20%2A%2Amodification%20des%20choix%20d%E2%80%99orientation%20des%20jeunes%2A%2A.%20Nous%20souhaitons%20plus%20particuli%C3%A8rement%20observer%20une%20%2A%2Adiminution%20du%20nombre%20de%20v%C5%93ux%20effectu%C3%A9s%20vers%20des%20fili%C3%A8res%20offrant%20peu%20de%20perspectives%2A%2A.%0A%0ANos%20objectifs%20autour%20de%20la%20mesure%20d%E2%80%99impact%20en%202024%20%3A%20%0A%0A-%20Gr%C3%A2ce%20%C3%A0%20un%20partenariat%20renforc%C3%A9%20avec%20la%20plateforme%20Affelnet%2C%20qui%20nous%20permettra%20de%20r%C3%A9cup%C3%A9rer%20des%20donn%C3%A9es%20plus%20fines%20sur%20le%20trafic%20au%20sein%20de%20la%20plateforme%20d%E2%80%99affectation%2C%20%2A%2Aune%20%C3%A9tude%20statistique%20sera%20men%C3%A9e%20fin%20S1%20-%20d%C3%A9but%20S2%20pour%20mettre%20en%20regard%20exposition%20et%20voeux%2A%2A%20et%20%20%C3%A9valuer%20plus%20finement%20la%20contribution%20de%20notre%20action.%0A-%20Le%20chemin%20global%20amenant%20un%20jeune%20%C3%A0%20r%C3%A9viser%20ses%20v%C5%93ux%20d%E2%80%99orientation%20%C3%A9tant%20long%20et%20complexe%2C%20nous%20avons%20en%20outre%20mat%C3%A9rialis%C3%A9%20et%20d%C3%A9coup%C3%A9%20ce%20parcours%20%28indicateur%20%2A%2Avu%2A%2A%20%E2%86%92%20indicateur%20%2A%2Acompris%2A%2A%20%E2%86%92%20information%20%2A%2Aprioris%C3%A9e%2A%2A%20%E2%86%92%20%2A%2Av%C5%93u%20modifi%C3%A9%2A%2A%29%20et%20propos%C3%A9%20des%20exp%C3%A9riences%20pour%20mesurer%20la%20conversion%20entre%20chaque%20%C3%A9tape%2C%20en%20vue%20de%20l%E2%80%99am%C3%A9liorer.%0A%0A%23%23%20Strat%C3%A9gie%20de%20d%C3%A9ploiement%0A%0ANous%20avons%20pour%20ambition%20d%E2%80%99exposer%20les%20indicateurs%20InserJeunes%20au%20sein%20%2A%2Ades%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20c%E2%80%99est%20%C3%A0%20dire%20sur%20des%20sites%20dors%20et%20d%C3%A9j%C3%A0%20consult%C3%A9s%20massivement%20par%20les%20jeunes%20dans%20le%20cadre%20de%20leur%20orientation.%0A%0ANous%20souhaitons%20%C3%A0%20la%20fois%20exposer%20nos%20indicateurs%20%3A%20%0A%0A-%20sur%20%2A%2Aun%20maximum%20de%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20en%20proposant%20une%20r%C3%A9utilisation%20extr%C3%AAmement%20simple%20des%20donn%C3%A9es%20%28notamment%20%C3%A0%20l%E2%80%99aide%20d%E2%80%99un%20widget%20%E2%80%9Cclef%20en%20main%E2%80%9D%20et%20d%E2%80%99une%20API%29%0A-%20sur%20%2A%2Aun%20maximum%20de%20%E2%80%9Cchemins%20d%E2%80%99orientation%E2%80%9D%2A%2A%20au%20sein%20de%20ces%20plateformes%2C%20notamment%20en%20augmentant%20la%20couverture%20de%20nos%20donn%C3%A9es%0A%0AFin%202023%2C%20nos%20donn%C3%A9es%20%C3%A9taient%20disponibles%20%3A%20%0A%0A-%20Sur%20%2A%2A7%20des%20plus%20grandes%20plateformes%20d%E2%80%99orientation%2A%2A%2C%20dont%203%20cibles%20institutionnelles%20prioritaires%20%3A%20l%E2%80%99ONISEP%2C%20Parcousup%20et%20Affelnet%0A-%20%C3%80%20la%20%2A%2Amaille%20nationale%2C%20r%C3%A9gionale%20et%20de%20l%E2%80%99%C3%A9tablissement%2A%2A%20pour%20les%20formations%20de%20la%20%2A%2Avoie%20professionnelle%2A%2A%2C%20tant%20pour%20le%20scolaire%20que%20pour%20l%E2%80%99apprentissage.%0A%0ANos%20objectifs%20principaux%20pour%20S1-2024%20%3A%20%0A%0A-%20Exposer%20nos%20donn%C3%A9es%20sur%20%2A%2A10%20des%20principales%20plateformes%20d%E2%80%99orientation%2A%2A%0A-%20Int%C3%A9grer%20progressivement%20les%20%2A%2Adonn%C3%A9es%20InserSup%20des%20formations%20de%20l%27enseignement%20sup%C3%A9rieur%2A%2A%0A", - "events": [], - "phases": [ - { - "name": "construction", - "start": "2022-04-01", - "end": "" - } - ], - "sponsors": [ - "menjs", - "mesr", - "mtei", - "mtfp" - ], - "thematiques": [ - "Jeunesse", - "Formation" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/api-exposition-inserjeunes-beta-gouv-fr/", - "accessibility_status": "non conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "mission-inserjeunes" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "dsfr": null, - "summary": { - "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", - "uptime": 99.982, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 3, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-26T00:02:00.000Z", - "testsslGrade": "A+", - "statsGrade": "A", - "githubRepositoryGrade": "A" - } - }, - { - "404": null, - "url": "https://monprojetsup.fr", - "category": "MonProjetSup", - "betaId": "monprojetsup", - "title": "MonProjetSup", - "repositories": [ - "betagouv/monprojetsup" - ], - "http": { - "url": "https://monprojetsup.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:40:06 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 14:40:03 GMT", - "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", ; rel=shortlink", - "Server": "nginx/1.18.0 (Ubuntu)", - "Transfer-Encoding": "chunked" - }, - "scan_id": 57067602, - "score": 30, - "start_time": "Sun, 20 Oct 2024 14:40:01 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://monprojetsup.fr/", - "redirects": true, - "route": [ - "http://monprojetsup.fr/", - "https://monprojetsup.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "9pw6", - "url": "https://monprojetsup.fr", - "alias": null, - "last_status": 200, - "uptime": 99.995, - "down": false, - "down_since": null, - "up_since": "2024-11-24T13:36:51Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:40:11Z", - "next_check_at": "2024-11-24T18:41:10Z", - "created_at": "2024-05-21T21:45:32Z", - "mute_until": null, - "favicon_url": "https://monprojetsup.fr/wp-content/uploads/2024/04/cropped-favicon-192x192.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T18:34:13Z", - "expires_at": "2025-02-01T22:04:24Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.997, - "timings": { - "redirect": 0, - "namelookup": 110, - "connection": 132, - "handshake": 137, - "response": 229, - "total": 608 - } - }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "monprojetsup.fr", - "protocol": "tcp", - "closed_ports": "995", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.10", - "vulnerabilities": [ - { - "type": "githubexploit", - "cvss": "10.0", - "is_exploit": "true", - "id": "95499236-C9FE-56A6-9D7D-E943A24B633A" - }, - { - "type": "githubexploit", - "cvss": "10.0", - "is_exploit": "true", - "id": "2C119FFA-ECE0-5E14-A4A4-354A2C38071A" - }, - { - "type": "cve", - "cvss": "9.8", - "is_exploit": "false", - "id": "CVE-2023-38408" - }, - { - "type": "cve", - "cvss": "9.8", - "is_exploit": "false", - "id": "CVE-2023-28531" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "B8190CDB-3EB9-5631-9828-8064A1575B23" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "8FC9C5AB-3968-5F3C-825E-E8DB5379A623" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "8AD01159-548E-546E-AA87-2DE89F3927EC" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "33D623F7-98E0-5F75-80FA-81AA666D1340" - }, - { - "type": "githubexploit", - "cvss": "9.8", - "is_exploit": "true", - "id": "0221525F-07F5-5790-912D-F4B9E2D1B587" - }, - { - "type": "packetstorm", - "cvss": "8.1", - "is_exploit": "true", - "id": "PACKETSTORM:179290" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "FB2E9ED1-43D7-585C-A197-0D6628B20134" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "FA3992CE-9C4C-5350-8134-177126E0BD3F" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "F8981437-1287-5B69-93F1-657DFB1DCE59" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "F58A5CB2-2174-586F-9CA9-4C47F8F38B5E" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "EFD615F0-8F17-5471-AA83-0F491FD497AF" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "EC20B9C2-6857-5848-848A-A9F430D13EEB" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "EB13CBD6-BC93-5F14-A210-AC0B5A1D8572" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "E660E1AF-7A87-57E2-AEEF-CA14E1FEF7CD" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "E543E274-C20A-582A-8F8E-F8E3F381C345" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "E34FCCEC-226E-5A46-9B1C-BCD6EF7D3257" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "E24EEC0A-40F7-5BBC-9E4D-7B13522FF915" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "DC798E98-BA77-5F86-9C16-0CF8CD540EBB" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "DC473885-F54C-5F76-BAFD-0175E4A90C1D" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "D85F08E9-DB96-55E9-8DD2-22F01980F360" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "D572250A-BE94-501D-90C4-14A6C9C0AC47" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "D1E049F1-393E-552D-80D1-675022B26911" - }, - { - "type": "cve", - "cvss": "8.1", - "is_exploit": "false", - "id": "CVE-2024-6387" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "CFEBF7AF-651A-5302-80B8-F8146D5B33A6" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "CF80DDA9-42E7-5E06-8DA8-84C72658E191" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "CB2926E1-2355-5C82-A42A-D4F72F114F9B" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "C6FB6D50-F71D-5870-B671-D6A09A95627F" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "C5B2D4A1-8C3B-5FF7-B620-EDE207B027A0" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "C185263E-3E67-5550-B9C0-AB9C15351960" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "BDA609DA-6936-50DC-A325-19FE2CC68562" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "AA539633-36A9-53BC-97E8-19BC0E4E8D37" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "A377249D-3C48-56C9-98D6-C47013B3A043" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "9CDFE38D-80E9-55D4-A7A8-D5C20821303E" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "9A6454E9-662A-5A75-8261-73F46290FC3C" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "92254168-3B26-54C9-B9BE-B4B7563586B5" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "91752937-D1C1-5913-A96F-72F8B8AB4280" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "906CD901-3758-5F2C-8FA6-386BF9378AB3" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "896B5857-A9C8-5342-934A-74F1EA1934CF" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "81F0C05A-8650-5DE8-97E9-0D89F1807E5D" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "7C7167AF-E780-5506-BEFA-02E5362E8E48" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "7AA8980D-D89F-57EB-BFD1-18ED3AB1A7DD" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "79FE1ED7-EB3D-5978-A12E-AAB1FFECCCAC" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "795762E3-BAB4-54C6-B677-83B0ACC2B163" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "77DAD6A9-8142-5591-8605-C5DADE4EE744" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "743E5025-3BB8-5EC4-AC44-2AA679730661" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "73A19EF9-346D-5B2B-9792-05D9FE3414E2" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "6FD8F914-B663-533D-8866-23313FD37804" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "6E81EAE5-2156-5ACB-9046-D792C7FAF698" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "6B78D204-22B0-5D11-8A0C-6313958B473F" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "649197A2-0224-5B5C-9C4E-B5791D42A9FB" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "608FA50C-AEA1-5A83-8297-A15FC7D32A7C" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "5D2CB1F8-DC04-5545-8BC7-29EE3DA8890E" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "5C81C5C1-22D4-55B3-B843-5A9A60AAB6FD" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "56F97BB2-3DF6-5588-82AF-1D7B77F9AD45" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "53BCD84F-BD22-5C9D-95B6-4B83627AB37F" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "535C5505-40BC-5D18-B346-1FDF036F0B08" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "48603E8F-B170-57EE-85B9-67A7D9504891" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "4748B283-C2F6-5924-8241-342F98EEC2EE" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "452ADB71-199C-561E-B949-FCDE6288B925" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "418FD78F-82D2-5748-9EE9-CAFC34111864" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "3D426DCE-96C7-5F01-B0AB-4B11C9557441" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "31CC906F-9328-5944-B370-FBD98DF0DDD3" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "2FFB4379-2BD1-569F-9F38-1B6D272234C9" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "1FFDA397-F480-5C74-90F3-060E1FE11B2E" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "1F7A6000-9E6D-511C-B0F6-7CADB7200761" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "1CF00BB8-B891-5347-A2DC-2C6A6BFF7C99" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "1AB9F1F4-9798-59A0-9213-1D907E81E7F6" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "1A779279-F527-5C29-A64D-94AAA4ADD6FD" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "15C36683-070A-5CC1-B21F-5F0BF974D9D3" - }, - { - "type": "zdt", - "cvss": "8.1", - "is_exploit": "true", - "id": "1337DAY-ID-39674" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "11F020AC-F907-5606-8805-0516E06160EE" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "108E1D25-1F7E-534C-97CD-3F6045E32B98" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "0FC4BE81-312B-51F4-9D9B-66D8B5C093CD" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "0F9B3655-C7D4-55A9-8EB5-2EAD9CEAB180" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "0E9294FD-6B44-503A-84C2-C6E76E53B0B7" - }, - { - "type": "githubexploit", - "cvss": "8.1", - "is_exploit": "true", - "id": "0A8CA57C-ED38-5301-A03A-C841BD3082EC" - }, - { - "type": "seebug", - "cvss": "7.5", - "is_exploit": "true", - "id": "SSV:92579" - }, - { - "type": "packetstorm", - "cvss": "7.5", - "is_exploit": "true", - "id": "PACKETSTORM:173661" - }, - { - "type": "githubexploit", - "cvss": "7.5", - "is_exploit": "true", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807" - }, - { - "type": "zdt", - "cvss": "7.5", - "is_exploit": "true", - "id": "1337DAY-ID-26576" - }, - { - "type": "cve", - "cvss": "6.5", - "is_exploit": "false", - "id": "CVE-2023-51385" - }, - { - "type": "cve", - "cvss": "5.9", - "is_exploit": "false", - "id": "CVE-2023-48795" - }, - { - "type": "cve", - "cvss": "5.5", - "is_exploit": "false", - "id": "CVE-2023-51384" - }, - { - "type": "packetstorm", - "cvss": "0.0", - "is_exploit": "true", - "id": "PACKETSTORM:140261" - }, - { - "type": "githubexploit", - "cvss": "0.0", - "is_exploit": "true", - "id": "5C971D4B-2DD3-5894-9EC2-DAB952B4740D" - }, - { - "type": "githubexploit", - "cvss": "0.0", - "is_exploit": "true", - "id": "39E70D1A-F5D8-59D5-A0CF-E73D9BAA3118" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "rtsp", - "id": "5003", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "postgresql", - "product": "PostgreSQL DB", - "id": "5431", - "version": "9.6.0 or later", - "vulnerabilities": [] - } - } - ], - "grade": "F" - }, - "dependabot": null, - "codescan": null, - "testssl": [ + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pass.sports.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "service", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505252,7 +504023,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505260,7 +504031,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505268,7 +504039,7 @@ }, { "id": "cipherlist_LOW", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505276,7 +504047,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -505284,7 +504055,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -505292,469 +504063,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "monprojetsup.fr/162.19.61.97", + "id": "cipherorder_TLSv1_2", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-11-03 22:04" + "finding": "2024-11-08 13:34" }, { "id": "cert_notAfter", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-02-01 22:04" + "finding": "2025-02-06 13:34" }, { "id": "cert_extlifeSpan", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732473608" + "finding": "1733079370" }, { - "id": "HSTS", - "ip": "monprojetsup.fr/162.19.61.97", + "id": "HSTS_time", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "nginx/1.18.0 (Ubuntu)" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 at '/'" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -505762,7 +504519,7 @@ }, { "id": "heartbleed", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -505771,7 +504528,7 @@ }, { "id": "CCS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -505780,16 +504537,16 @@ }, { "id": "ticketbleed", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -505798,7 +504555,7 @@ }, { "id": "secure_renego", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -505806,7 +504563,7 @@ }, { "id": "secure_client_renego", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -505815,7 +504572,7 @@ }, { "id": "CRIME_TLS", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -505824,16 +504581,16 @@ }, { "id": "BREACH", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -505842,14 +504599,14 @@ }, { "id": "fallback_SCSV", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -505858,7 +504615,7 @@ }, { "id": "FREAK", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -505867,7 +504624,7 @@ }, { "id": "DROWN", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -505876,34 +504633,34 @@ }, { "id": "DROWN_hint", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=88C823F3955C80D2021B024E5710AFBE300B1A69CE295ECFAB9695914FFFD7E9" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" }, { - "id": "LOGJAM-common_primes", - "ip": "monprojetsup.fr/162.19.61.97", + "id": "LOGJAM", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "monprojetsup.fr/162.19.61.97", + "id": "LOGJAM-common_primes", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "--" }, { "id": "BEAST", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -505912,7 +504669,7 @@ }, { "id": "LUCKY13", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -505921,7 +504678,7 @@ }, { "id": "winshock", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -505930,7 +504687,7 @@ }, { "id": "RC4", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -505939,1426 +504696,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "monprojetsup.fr/162.19.61.97", + "ip": "pass.sports.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "clientsimulation-thunderbird_91_9", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "monprojetsup.fr/162.19.61.97", - "port": "443", - "severity": "INFO", - "finding": "59" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 18:38:47 GMT", - "link": "; rel=\"https://api.w.org/\"\n; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\"\n; rel=shortlink", - "server": "nginx/1.18.0 (Ubuntu)", - "transfer-encoding": "chunked" - }, - "endpoints": [ - { - "hostname": "monprojetsup.fr", - "ip": "162.19.61.97", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://monprojetsup.fr/": { - "status": 200 - } - }, - "technologies": [ - { - "slug": "wordpress", - "name": "WordPress", - "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", - "confidence": 100, - "version": "6.7.1", - "icon": "WordPress.svg", - "website": "https://wordpress.org", - "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - }, - { - "id": 11, - "slug": "blogs", - "name": "Blogs" - } - ], - "rootPath": true - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, - { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", - "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ubuntu", - "name": "Ubuntu", - "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", - "confidence": 100, - "version": null, - "icon": "Ubuntu.svg", - "website": "https://www.ubuntu.com/server", - "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 28, - "slug": "operating-systems", - "name": "Operating systems" - } - ], - "rootPath": true - }, - { - "slug": "contact-form-7", - "name": "Contact Form 7", - "description": "Contact Form 7 is an WordPress plugin which can manage multiple contact forms. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering.", - "confidence": 100, - "version": "6.0", - "icon": "Contact Form 7.png", - "website": "https://contactform7.com", - "cpe": null, - "categories": [ - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - }, - { - "id": 110, - "slug": "form-builders", - "name": "Form builders" - } - ], - "rootPath": true - }, - { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", - "confidence": 100, - "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "yoast-seo", - "name": "Yoast SEO", - "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", - "confidence": 100, - "version": "23.9", - "icon": "Yoast SEO.png", - "website": "https://yoast.com/wordpress/plugins/seo/", - "cpe": null, - "categories": [ - { - "id": 54, - "slug": "seo", - "name": "SEO" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" - } - ], - "rootPath": true - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.7.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "ionos", - "name": "IONOS", - "description": "IONOS is the web hosting and cloud partner for small and medium-sized businesses.", - "confidence": 100, - "version": null, - "icon": "IONOS.svg", - "website": "https://www.ionos.com", - "cpe": null, - "categories": [ - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - }, - { - "slug": "rss", - "name": "RSS", - "description": "RSS is a family of web feed formats used to publish frequently updated works—such as blog entries, news headlines, audio, and video—in a standardized format.", - "confidence": 100, - "version": null, - "icon": "RSS.svg", - "website": "https://www.rssboard.org/rss-specification", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ + "id": "clientsimulation-thunderbird_91_9", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, { - "requestedUrl": "https://monprojetsup.fr/", - "finalUrl": "https://monprojetsup.fr/", - "fetchTime": "2024-11-24T18:38:20.132Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.59 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.94 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 0.92 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.95 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.4 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 4012, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 3640, - "firstMeaningfulPaint": 4012, - "largestContentfulPaint": 9770, - "interactive": 4012, - "speedIndex": 5229, - "totalBlockingTime": 0, - "maxPotentialFID": 40, - "cumulativeLayoutShift": 0.14468603515625003, - "cumulativeLayoutShiftMainFrame": 0.14468603515625003, - "totalCumulativeLayoutShift": 0.14468603515625003, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 452030723, - "observedNavigationStart": 0, - "observedNavigationStartTs": 452030723, - "observedFirstPaint": 1014, - "observedFirstPaintTs": 453044499, - "observedFirstContentfulPaint": 1014, - "observedFirstContentfulPaintTs": 453044499, - "observedFirstContentfulPaintAllFrames": 1014, - "observedFirstContentfulPaintAllFramesTs": 453044499, - "observedFirstMeaningfulPaint": 1104, - "observedFirstMeaningfulPaintTs": 453134678, - "observedLargestContentfulPaint": 1305, - "observedLargestContentfulPaintTs": 453335308, - "observedLargestContentfulPaintAllFrames": 1305, - "observedLargestContentfulPaintAllFramesTs": 453335308, - "observedTraceEnd": 4468, - "observedTraceEndTs": 456498406, - "observedLoad": 2057, - "observedLoadTs": 454087297, - "observedDomContentLoaded": 1627, - "observedDomContentLoadedTs": 453657240, - "observedCumulativeLayoutShift": 0.14468603515625003, - "observedCumulativeLayoutShiftMainFrame": 0.14468603515625003, - "observedTotalCumulativeLayoutShift": 0.14468603515625003, - "observedFirstVisualChange": 1017, - "observedFirstVisualChangeTs": 453047723, - "observedLastVisualChange": 4467, - "observedLastVisualChangeTs": 456497723, - "observedSpeedIndex": 1353, - "observedSpeedIndexTs": 453383864 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 64, - "numScripts": 26, - "numStylesheets": 12, - "numFonts": 3, - "numTasks": 1695, - "numTasksOver10ms": 8, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 83.776, - "throughput": 33329238.934044417, - "maxRtt": 83.776, - "maxServerLatency": 3.3669999999999902, - "totalByteWeight": 4383499, - "totalTaskTime": 310.98699999999593, - "mainDocumentTransferSize": 120220 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": null - }, - "declaration-rgpd": [ + "id": "rating_spec", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 0, - "missingWords": [ - "directeur (ou) directrice", - "publication", - "hébergeur (ou) hébergement (ou) hebergeur (ou) hebergement", - "éditeur (ou) édité par (ou) editeur (ou) edité par" - ], - "missingTrackers": [], - "declarationUrl": "https://monprojetsup.fr/mentions-legales/" + "id": "rating_doc", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { - "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 2, - "missingWords": [ - "durée de la conservation (ou) durée de conservation", - "sous-traitant (ou) sous traitant" - ], - "missingTrackers": [], - "declarationUrl": "https://monprojetsup.fr/donnees-personnelles/" - } - ], - "betagouv": { - "id": "monprojetsup", - "type": "startup", - "attributes": { - "name": "MonProjetSup", - "pitch": "Améliorer l’orientation des lycéens en amont de Parcoursup", - "stats_url": "https://monprojetsup.fr/stats/", - "budget_url": "https://monprojetsup.fr/budget/", - "link": "https://beta.monprojetsup.fr/", - "repository": "https://github.com/betagouv/monprojetsup", - "contact": "hugo.gimbert@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0A%2A%2ALe%20parcours%20d%E2%80%99orientation%20des%20lyc%C3%A9ens%20concerne%20plus%20de%202%20millions%20d%E2%80%99%C3%A9l%C3%A8ves%2A%2A%20chaque%20ann%C3%A9e%20et%20s%E2%80%99%C3%A9tend%20de%20la%20seconde%20%28avec%20notamment%20le%20choix%20des%20EDS%29%20%C3%A0%20la%20Terminale%20%28avec%20le%20choix%20des%20v%C5%93ux%20sur%20Parcoursup%29.%20%0A%0ASelon%20un%20sondage%20r%C3%A9cent%20r%C3%A9alis%C3%A9%20par%20BVA%20pour%20l%27Etudiant%20aupr%C3%A8s%20de%201%20609%20lyc%C3%A9ens%20et%20%C3%A9tudiants%20entre%20la%20seconde%20et%20le%20bac%2B2%2C%20%2A%2A83%25%20d%E2%80%99entre%20eux%20se%20disent%20inquiets%20lorsqu%E2%80%99ils%20pensent%20%C3%A0%20leur%20choix%20d%E2%80%99orientation%2A%2A.%0AEt%20selon%20un%20sondage%20IPSOS%202022%20pour%20le%20Minist%C3%A8re%20de%20l%27Enseignement%20Sup%C3%A9rieur%20et%20de%20la%20Recherche%2C%20%2A%2A89%25%20des%20n%C3%A9o-bacheliers%20souhaiteraient%20un%20renforcement%20des%20outils%20d%E2%80%99aide%20%C3%A0%20l%E2%80%99orientation.%2A%2A%0A%0A%E2%80%9CComment%20pourrait-on%20am%C3%A9liorer%20le%20parcours%20d%27orientation%20de%20tous%20les%20lyc%C3%A9ens%20quels%20que%20soient%20leur%20origine%2Fparcours%2Ffili%C3%A8re%20et%20mieux%20les%20pr%C3%A9parer%20%C3%A0%20l%27%C3%A9tape%20du%20choix%20des%20voeux%20sur%20Parcoursup%20%3F%E2%80%9D%0A%0AVoici%20la%20question%20%C3%A0%20laquelle%20nous%20nous%20attelons%20%C3%A0%20r%C3%A9pondre%20dans%20le%20cadre%20de%20cette%20investigation.%0A%0A%23%23%20Probl%C3%A8me%0A%0APlusieurs%20probl%C3%A8mes%20existent%20aujourd%E2%80%99hui%20autour%20de%20l%E2%80%99orientation%20des%20lyc%C3%A9ens%20%3A%20%0A%2A%20un%20manque%20de%20pr%C3%A9paration%20de%20certains%20lyc%C3%A9ens%20au%20moment%20de%20formuler%20leurs%20v%C5%93ux%20Parcoursup%2C%20source%20de%20stress%2C%20d%E2%80%99auto-censure%20et%20de%20d%C3%A9ception%20pendant%20la%20phase%20d%E2%80%99admission%2C%0A%2A%20la%20difficult%C3%A9%20%C3%A0%20pr%C3%A9dire%20les%20r%C3%A9sultats%20des%20admissions%20sur%20Parcoursup%2C%20notamment%20pour%20les%20r%C3%A9f%C3%A9rents%20%28professeurs%20principaux%20et%20conseiller%20d%E2%80%99orientation%29%2C%0A%2A%20un%20fort%20co%C3%BBt%20d%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99information%20par%20un%20ph%C3%A9nom%C3%A8ne%20d%E2%80%99exc%C3%A8s%20d%E2%80%99information%20%28infob%C3%A9sit%C3%A9%29%20et%20de%20manque%20de%20personnalisation%20de%20l%E2%80%99acc%C3%A8s%20%C3%A0%20cette%20information%2C%0A%2A%20des%20in%C3%A9galit%C3%A9s%20d%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99information%20entre%20les%20diff%C3%A9rentes%20cat%C3%A9gories%20de%20lyc%C3%A9ens%2C%20dans%20un%20contexte%20d%E2%80%99offres%20priv%C3%A9es%20tr%C3%A8s%20visibles%20de%20%C2%AB%20coaching%20%C2%BB%20Parcoursup.%0A%0A%23%23%20Investigation%0A%0AL%E2%80%99investigation%20doit%20permettre%20de%20mieux%20cerner%20les%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99orientation%2C%20afin%20de%20comprendre%20quelles%20sont%20les%20probl%C3%A9matiques%20terrains%20rencontr%C3%A9es%20par%20les%20lyc%C3%A9ens%20et%20les%20parties%20prenantes%20qui%20interviennent%20dans%20le%20processus%20d%E2%80%99orientation.%0A%0ANous%20irons%20donc%20%C3%A0%20la%20rencontre%20de%205%20cibles%20prioritaires%20%3A%0A%2A%20un%20panel%20repr%C3%A9sentatif%20de%20lyc%C3%A9ens%20%28classes%20de%20la%202nde%20%C3%A0%20la%20Terminale%2C%20avec%20un%20mix%20de%20fili%C3%A8res%20et%20de%20typologie%20de%20lyc%C3%A9es%20en%20Ile-de-France%20et%20en%20r%C3%A9gion%20bordelaise%29%2C%0A%2A%20des%20%C3%A9tudiants%20en%201%C3%A8re%20ann%C3%A9e%20d%E2%80%99%C3%A9tudes%20sup%C3%A9rieures%2C%0A%2A%20les%20parents%20d%E2%80%99%C3%A9l%C3%A8ves%2C%20%0A%2A%20les%20professeurs%20principaux%2C%0A%2A%20les%20psyEN.%0A%0A%23%23%20Solution%20%2F%20MVP%0A%0AL%E2%80%99investigation%20a%20confirm%C3%A9%20les%20attentes%20fortes%20%0Ades%20lyc%C3%A9ens%20pour%20un%20accompagnement%20personnalis%C3%A9%2C%20ainsi%20que%20le%20besoin%20d%27outillage%20des%20%C3%A9quipes%20p%C3%A9dagogiques.%20Il%20y%20a%20effectivement%20une%20opportunit%C3%A9%20%C3%A0%20poursuivre%20le%20d%C3%A9veloppement%20d%E2%80%99un%20service%20public%20num%C3%A9rique%20%C3%A0%20impact.%20%0ALa%20solution%20envisag%C3%A9e%20consiste%20%C3%A0%20d%C3%A9velopper%20MonProjetSup%2C%20service%20permettant%20de%20proposer%20des%20suggestions%20de%20formations%20personnalis%C3%A9es%20selon%20le%20profil%20des%20%C3%A9l%C3%A8ves.%0A%0A%23%23%20Strat%C3%A9gie%20et%20impact%0A%0ALanc%C3%A9e%20en%20mars%202024%2C%20la%20SE%20MonProjetSup%20a%20pour%20objectif%20%C3%A0%206%20mois%20de%20construire%20un%20service%20num%C3%A9rique%20accessible%20pour%20les%20%C3%A9l%C3%A8ves%20de%202nde%20%C3%A0%20la%20Terminale%2C%20proposant%20des%20suggestions%20personnalis%C3%A9es%20de%20formations%2C%20ainsi%20qu%27un%20moteur%20de%20recherche.%0AFin%202024%2C%20nous%20aurons%20r%C3%A9ussi%20si%20%3A%0A%2A%20les%20%C3%A9l%C3%A8ves%20de%202nde%20ont%20ajout%C3%A9%20au%20moins%20une%20formation%20ou%20un%20m%C3%A9tier%20dans%20leur%20s%C3%A9lection%3B%20les%20%C3%A9l%C3%A8ves%20de%201%C3%A8re%20ont%20ajout%C3%A9%20plusieurs%20formations%20du%20sup%20et%20m%C3%A9tiers%20d%27int%C3%A9r%C3%AAt%20dans%20leur%20s%C3%A9lection%20et%20ont%20pris%20connaissance%20des%20attendus%20des%20formations%3B%20les%20%C3%A9l%C3%A8ves%20de%20Terminale%2C%20avant%20fin%20f%C3%A9vrier%2C%20pour%20chaque%20formation%20ajout%C3%A9e%20dans%20MPS%2C%20auront%20au%20moins%20trois%20favoris%20Parcoursup%2C%20r%C3%A9partis%20entre%20A%2B%20%28ambitieux%29%20A%20%28r%C3%A9aliste%29%20et%20B%20%28s%C3%A9curisant%29.%0A%2A%20%20les%20professeurs%20principaux%20sont%20prescripteurs%20du%20service%2C%20peuvent%20mieux%20suivre%20le%20projet%20d%27orientation%20de%20leurs%20%C3%A9l%C3%A8ves%20et%20MPS%20est%20le%20support%20d%27un%20dialogue%20de%20qualit%C3%A9%20avec%20leurs%20%C3%A9l%C3%A8ves.%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2023-11-11", - "end": "" - }, - { - "name": "construction", - "start": "2024-03-11", - "end": "" - } - ], - "sponsors": [ - "mesr" - ], - "thematiques": [ - "Jeunesse", - "Education" - ], - "analyse_risques": "true", - "dashlord_url": "https://dashlord.incubateur.net/url/monprojetsup-fr/", - "accessibility_status": "non conforme" + "id": "protocol_support_score", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "100" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://monprojetsup.fr", - "size": 7119.02, - "nodes": 700, - "requests": 61, - "grade": "D", - "score": 43, - "ges": 2.14, - "water": 3.21, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:35:19.563200", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "D", - "apdex": 0.997, - "apdexGrade": "A", - "uptime": 99.995, - "uptimeGrade": "A", - "nmapGrade": "F", - "nmapOpenPortsCount": 5, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-01T22:04:00.000Z", - "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.59, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.94, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.95, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "D", - "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "D", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://dashlord.romin.app.cc.anje-justice.fr", - "category": "justice", - "betaId": "romin", - "http": { - "url": "https://dashlord.romin.app.cc.anje-justice.fr", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:45:20 GMT", - "grade": "A+", - "hidden": false, - "likelihood_indicator": "LOW", - "response_headers": { - "Connection": "keep-alive", - "Content-Length": "1869334", - "Content-Security-Policy": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-jFpr4kwtC6jbq1DwA8lrZQ=='; upgrade-insecure-requests;", - "Cross-Origin-Embedder-Policy": "unsafe-none", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 20 Oct 2024 14:45:18 GMT", - "Keep-Alive": "timeout=5", - "Origin-Agent-Cluster": "?1", - "Permissions-Policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()", - "Referrer-Policy": "no-referrer", - "Sozu-Id": "01JAN67GY5DPQPMRQBYR5395AE", - "Strict-Transport-Security": "max-age=15552000; includeSubDomains;", - "Vary": "Accept-Encoding", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-XSS-Protection": "0", - "access-control-allow-origin": "*", - "content-type": "text/html;charset=utf-8" + "id": "protocol_support_score_weighted", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "30" }, - "scan_id": 57067714, - "score": 105, - "start_time": "Sun, 20 Oct 2024 14:45:15 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 1, - "tests_passed": 9, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'none'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "img-src": [ - "data:", - "https://romin-justice.directus.app/assets/", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'nonce-jfpr4kwtc6jbq1dwa8lrzq=='", - "'strict-dynamic'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "https:", - "'unsafe-inline'", - "'self'" - ], - "upgrade-insecure-requests": [ - "'none'" - ] - }, - "http": true, - "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": true, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "http://localhost:3000", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-restricted-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) files or headers, but is restricted to specific domains", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://dashlord.romin.app.cc.anje-justice.fr/", - "redirects": true, - "route": [ - "http://dashlord.romin.app.cc.anje-justice.fr/", - "https://dashlord.romin.app.cc.anje-justice.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=15552000; includeSubDomains;", - "includeSubDomains": true, - "max-age": 15552000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://tally.so/widgets/embed.js": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": "nosniff" - }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" - }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": "0" - }, - "pass": true, - "result": "x-xss-protection-disabled", - "score_description": "Deprecated X-XSS-Protection header set to \"0\" (disabled)", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "da91", - "url": "https://dashlord.romin.app.cc.anje-justice.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-23T16:42:12Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T18:49:31Z", - "next_check_at": "2024-11-24T18:50:30Z", - "created_at": "2024-05-26T01:15:51Z", - "mute_until": null, - "favicon_url": "https://dashlord.romin.app.cc.anje-justice.fr/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T18:43:33Z", - "expires_at": "2025-01-01T13:48:13Z", - "valid": true, - "error": null + { + "id": "key_exchange_score", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "90" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 105, - "connection": 104, - "handshake": 108, - "response": 273, - "total": 590 - } + { + "id": "key_exchange_score_weighted", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "pass.sports.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "dashlord.romin.app.cc.anje-justice.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "product": "Postfix smtpd", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "pass.sports.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -507366,7 +505089,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -507374,7 +505097,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -507382,7 +505105,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -507390,7 +505113,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -507398,7 +505121,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -507406,511 +505129,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "id": "cipherorder_TLSv1_2", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-10-03 13:48" + "finding": "2024-11-08 13:34" }, { "id": "cert_notAfter", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-01-01 13:48" + "finding": "2025-02-06 13:34" }, { "id": "cert_extlifeSpan", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732474019" + "finding": "1733079430" }, { "id": "HSTS_time", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-SX27fDwvzB06IoZxSbDBkw=='; upgrade-insecure-requests;" - }, - { - "id": "Permissions-Policy", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()" - }, - { - "id": "X-XSS-Protection", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "*" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Referrer-Policy", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "id": "security_headers", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -507918,7 +505585,7 @@ }, { "id": "heartbleed", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -507927,7 +505594,7 @@ }, { "id": "CCS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -507936,16 +505603,16 @@ }, { "id": "ticketbleed", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -507954,7 +505621,7 @@ }, { "id": "secure_renego", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -507962,16 +505629,16 @@ }, { "id": "secure_client_renego", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -507980,7 +505647,7 @@ }, { "id": "BREACH", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -507989,7 +505656,7 @@ }, { "id": "POODLE_SSL", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -507998,14 +505665,14 @@ }, { "id": "fallback_SCSV", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -508014,7 +505681,7 @@ }, { "id": "FREAK", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -508023,7 +505690,7 @@ }, { "id": "DROWN", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -508032,16 +505699,16 @@ }, { "id": "DROWN_hint", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C1EE2291CD258E4BF2A924211CD6E20C8E2D26C1F0A5A72ABA68210FF1321F4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" }, { "id": "LOGJAM", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -508050,16 +505717,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -508068,7 +505735,7 @@ }, { "id": "LUCKY13", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -508077,7 +505744,7 @@ }, { "id": "winshock", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -508086,7 +505753,7 @@ }, { "id": "RC4", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -508095,363 +505762,364 @@ }, { "id": "clientsimulation-android_60", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "dashlord.romin.app.cc.anje-justice.fr/91.208.207.214", + "ip": "pass.sports.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "229" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://tally.so/widgets/embed.js" + "url": "https://tarteaucitron.io/load.js?domain=www.pass.sports.gouv.fr&uuid=19b13211bfb1bd1efd6f804a26674ed864265114" + }, + { + "type": "unpkg", + "url": "https://unpkg.com/leaflet@1.9.4/dist/leaflet.css", + "details": { + "id": "unpkg", + "message": "Host files locally" + } }, { "type": "unknown", - "url": "https://tally.so/popup/wbqgQo?originPage=%2F&alignLeft=1&hideTitle=1" + "url": "https://cdn.tarteaucitron.io/lang/tarteaucitron.fr.min.js" + }, + { + "type": "unknown", + "url": "https://cdn.tarteaucitron.io/tarteaucitron.services.min.js" + }, + { + "type": "unknown", + "url": "https://tarteaucitron.io/log/?account=19b13211bfb1bd1efd6f804a26674ed864265114&domain=www.pass.sports.gouv.fr&status=!pass-sport_eligibility-form-support-data%3Dfalse!vimeo%3Dfalse&_time=1733079178304" } ], "cookies": [ { - "name": "_pk_ses.14.544d", - "value": "1", - "domain": "dashlord.romin.app.cc.anje-justice.fr", - "path": "/", - "expires": 1732475740, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.14.544d", - "value": "f2f4dfdc779945c3.1732473940.", - "domain": "dashlord.romin.app.cc.anje-justice.fr", + "name": "tarteaucitron", + "value": "!pass-sport_eligibility-form-support-data=waiting!vimeo=false", + "domain": "www.pass.sports.gouv.fr", "path": "/", - "expires": 1766429140, - "size": 42, + "expires": 1764615177, + "size": 74, "httpOnly": false, - "secure": false, + "secure": true, "session": false, "sameSite": "Lax", "sameParty": false, @@ -508460,33 +506128,20 @@ } ], "headers": { - "connection": "keep-alive", - "content-length": "1869334", - "content-security-policy": "base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://romin-justice.directus.app/assets/; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-ZuN+2c3Nfe9kDOCkeozxUA=='; upgrade-insecure-requests;", - "cross-origin-embedder-policy": "unsafe-none", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 24 Nov 2024 18:45:38 GMT", - "keep-alive": "timeout=5", - "origin-agent-cluster": "?1", - "permissions-policy": "camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()", - "referrer-policy": "no-referrer", - "sozu-id": "01JDFQWR1N299ZQHGNSP3PD5MQ", - "strict-transport-security": "max-age=15552000; includeSubDomains;", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-xss-protection": "0", - "access-control-allow-origin": "*", - "content-type": "text/html;charset=utf-8" + "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' 'nonce-Nzg3ZmFjMjgtZDdhNC00N2U5LTkxYWQtMzIyMjE3MDVmMDg0' 'strict-dynamic' https://client.crisp.chat/ https://stats.beta.gouv.fr/matomo.js https://tarteaucitron.io/ https://cdn.tarteaucitron.io/; style-src 'report-sample' 'unsafe-inline' 'self' https://unpkg.com https://client.crisp.chat/ https://cdn.tarteaucitron.io/; object-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' https://client.crisp.chat/ wss://client.relay.crisp.chat/ https://sports-sgsocialgouv.opendatasoft.com https://stats.beta.gouv.fr https://geo.api.gouv.fr; font-src 'self' https://client.crisp.chat/; frame-src 'self' https://player.vimeo.com https://pass-sport.crisp.help/; img-src 'self' data: https://image.crisp.chat/ https://client.crisp.chat/ https://storage.crisp.chat/ https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org https://i.vimeocdn.com https://unpkg.com https://tarteaucitron.io; manifest-src 'self'; media-src 'self'; report-uri https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1; worker-src 'none'; upgrade-insecure-requests;", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 18:52:55 GMT", + "strict-transport-security": "max-age=31536000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-powered-by": "Next.js", + "x-request-id": "497a84a6-0d40-40bd-ac83-188a699c2877\n497a84a6-0d40-40bd-ac83-188a699c2877" }, "endpoints": [ { - "hostname": "dashlord.romin.app.cc.anje-justice.fr", - "ip": "91.208.207.214", + "hostname": "pass.sports.gouv.fr", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -508541,8 +506196,64 @@ } }, { - "hostname": "tally.so", - "ip": "172.67.175.26", + "hostname": "tarteaucitron.io", + "ip": "51.68.111.231", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "unpkg.com", + "ip": "104.17.247.203", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -508559,30 +506270,107 @@ } } } + }, + { + "hostname": "cdn.tarteaucitron.io", + "ip": "51.68.111.234", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } } ] }, "wappalyzer": { "urls": { - "https://dashlord.romin.app.cc.anje-justice.fr/": { + "https://pass.sports.gouv.fr/": { + "status": 301 + }, + "https://www.pass.sports.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "slug": "cart-functionality", + "name": "Cart Functionality", + "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", "confidence": 100, "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "icon": "Cart-generic.svg", + "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", + "cpe": null, "categories": [ { - "id": 1, - "slug": "cms", - "name": "CMS" + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" } ], "rootPath": true @@ -508605,49 +506393,53 @@ ] }, { - "slug": "php", - "name": "PHP", - "description": "PHP is a general-purpose scripting language used for web development.", + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", "confidence": 100, - "version": null, - "icon": "PHP.svg", - "website": "https://php.net", - "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "version": "10.10.0", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", "categories": [ { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" } ] }, { - "slug": "vue-js", - "name": "Vue.js", - "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", "confidence": 100, "version": null, - "icon": "vue.svg", - "website": "https://vuejs.org", - "cpe": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, "slug": "javascript-frameworks", "name": "JavaScript frameworks" } - ], - "rootPath": true + ] }, { - "slug": "nuxt-js", - "name": "Nuxt.js", - "description": "Nuxt is a Vue framework for developing modern web applications.", + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": null, - "icon": "Nuxt.js.svg", - "website": "https://nuxt.com", - "cpe": null, + "version": "14.2.13", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 12, @@ -508673,41 +506465,76 @@ "rootPath": true }, { - "slug": "tally", - "name": "Tally", - "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, "version": null, - "icon": "Tally.svg", - "website": "https://tally.so/", + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "unpkg", + "name": "Unpkg", + "description": "Unpkg is a content delivery network for everything on npm.", + "confidence": 100, + "version": null, + "icon": "Unpkg.png", + "website": "https://unpkg.com", "cpe": null, "categories": [ { - "id": 73, - "slug": "surveys", - "name": "Surveys" + "id": 31, + "slug": "cdn", + "name": "CDN" } ], "rootPath": true }, { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, "categories": [ { - "id": 10, - "slug": "analytics", - "name": "Analytics" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, { "slug": "hsts", "name": "HSTS", @@ -508726,6 +506553,23 @@ ], "rootPath": true }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, { "slug": "pwa", "name": "PWA", @@ -508743,6 +506587,23 @@ } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -508750,10 +506611,12 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://dashlord.romin.app.cc.anje-justice.fr/", - "finalUrl": "https://dashlord.romin.app.cc.anje-justice.fr/", - "fetchTime": "2024-11-24T18:45:10.899Z", - "runWarnings": [], + "requestedUrl": "https://pass.sports.gouv.fr/", + "finalUrl": "https://www.pass.sports.gouv.fr/", + "fetchTime": "2024-12-01T18:52:26.861Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://pass.sports.gouv.fr/) was redirected to https://www.pass.sports.gouv.fr/. Try testing the second URL directly." + ], "categories": { "performance": { "title": "Performance", @@ -508763,7 +506626,7 @@ "snapshot" ], "id": "performance", - "score": 0.42 + "score": 0.66 }, "accessibility": { "title": "Accessibility", @@ -508774,7 +506637,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -508784,7 +506647,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -508795,7 +506658,7 @@ "snapshot" ], "id": "seo", - "score": 0.85 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -508805,7 +506668,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.5 } }, "audits": { @@ -508815,53 +506678,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10323, + "numericValue": 8887, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 10323, - "firstMeaningfulPaint": 10323, - "largestContentfulPaint": 11093, - "interactive": 10323, - "speedIndex": 10323, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.22038590325249566, - "cumulativeLayoutShiftMainFrame": 0.22038590325249566, - "totalCumulativeLayoutShift": 0.22038590325249566, + "firstContentfulPaint": 3633, + "firstMeaningfulPaint": 3633, + "largestContentfulPaint": 5004, + "interactive": 8887, + "speedIndex": 3880, + "totalBlockingTime": 91, + "maxPotentialFID": 111, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 364184923, + "observedTimeOriginTs": 375282159, "observedNavigationStart": 0, - "observedNavigationStartTs": 364184923, - "observedFirstPaint": 1168, - "observedFirstPaintTs": 365352892, - "observedFirstContentfulPaint": 1168, - "observedFirstContentfulPaintTs": 365352892, - "observedFirstContentfulPaintAllFrames": 1168, - "observedFirstContentfulPaintAllFramesTs": 365352892, - "observedFirstMeaningfulPaint": 1168, - "observedFirstMeaningfulPaintTs": 365352892, - "observedLargestContentfulPaint": 1168, - "observedLargestContentfulPaintTs": 365352892, - "observedLargestContentfulPaintAllFrames": 2320, - "observedLargestContentfulPaintAllFramesTs": 366505107, - "observedTraceEnd": 4752, - "observedTraceEndTs": 368937306, - "observedLoad": 2354, - "observedLoadTs": 366539026, - "observedDomContentLoaded": 1632, - "observedDomContentLoadedTs": 365817401, - "observedCumulativeLayoutShift": 0.22038590325249566, - "observedCumulativeLayoutShiftMainFrame": 0.22038590325249566, - "observedTotalCumulativeLayoutShift": 0.22038590325249566, - "observedFirstVisualChange": 1167, - "observedFirstVisualChangeTs": 365351923, - "observedLastVisualChange": 4750, - "observedLastVisualChangeTs": 368934923, - "observedSpeedIndex": 1872, - "observedSpeedIndexTs": 366056524 + "observedNavigationStartTs": 375282159, + "observedFirstPaint": 1197, + "observedFirstPaintTs": 376479649, + "observedFirstContentfulPaint": 1197, + "observedFirstContentfulPaintTs": 376479649, + "observedFirstContentfulPaintAllFrames": 1197, + "observedFirstContentfulPaintAllFramesTs": 376479649, + "observedFirstMeaningfulPaint": 1197, + "observedFirstMeaningfulPaintTs": 376479649, + "observedLargestContentfulPaint": 1197, + "observedLargestContentfulPaintTs": 376479649, + "observedLargestContentfulPaintAllFrames": 1197, + "observedLargestContentfulPaintAllFramesTs": 376479649, + "observedTraceEnd": 4875, + "observedTraceEndTs": 380157215, + "observedLoad": 2452, + "observedLoadTs": 377733674, + "observedDomContentLoaded": 1194, + "observedDomContentLoadedTs": 376476201, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1202, + "observedFirstVisualChangeTs": 376484159, + "observedLastVisualChange": 2469, + "observedLastVisualChangeTs": 377751159, + "observedSpeedIndex": 1264, + "observedSpeedIndexTs": 376545771 }, { "lcpInvalidated": false @@ -508879,23 +506742,23 @@ "type": "debugdata", "items": [ { - "numRequests": 75, - "numScripts": 37, + "numRequests": 71, + "numScripts": 17, "numStylesheets": 4, - "numFonts": 5, - "numTasks": 30, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, + "numFonts": 3, + "numTasks": 1897, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 27384725.06805261, - "maxRtt": 86.858, - "maxServerLatency": 93.73599999999999, - "totalByteWeight": 3620223, - "totalTaskTime": 3.194999999999999, - "mainDocumentTransferSize": 1870504 + "rtt": 3.118, + "throughput": 10772922.659975681, + "maxRtt": 107.606, + "maxServerLatency": 290.322, + "totalByteWeight": 970041, + "totalTaskTime": 385.54299999999546, + "mainDocumentTransferSize": 12044 } ] } @@ -508911,96 +506774,73 @@ "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales#accessibilité" + "mention": "Accessibilité : totalement conforme", + "declarationUrl": "https://pass.sports.gouv.fr/v2/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", "mention": "Mentions légales", - "maxScore": 0, - "score": 0, + "maxScore": 4, + "score": 4, "missingWords": [], "missingTrackers": [], - "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales" + "declarationUrl": "https://pass.sports.gouv.fr/v2/mentions-legales" }, { "slug": "pc", "mention": "Données personnelles", - "maxScore": 0, - "score": 0, - "missingWords": [], + "maxScore": 5, + "score": 4, + "missingWords": [ + "durée de la conservation (ou) durée de conservation" + ], "missingTrackers": [], - "declarationUrl": "https://dashlord.romin.app.cc.anje-justice.fr/mentions-legales#données-personnelles-et-sécurité" + "declarationUrl": "https://pass.sports.gouv.fr/v2/politique-de-confidentialite" } ], "betagouv": { - "id": "romin", + "id": "pass-sport", "type": "startup", "attributes": { - "name": "ROMIN", - "pitch": "Faciliter l'application du modèle efficace à la prévention de la récidive", - "stats_url": "https://romin.beta.gouv.fr/stats", - "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#ROMIN", - "repository": "https://github.com/betagouv/romin/", - "contact": "contact@romin.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALe%20%2A%2Aminist%C3%A8re%20de%20la%20Justice%2A%2A%20%E2%9A%96%20a%20enregistr%C3%A9%20une%20forte%20hausse%20des%20d%C3%A9cisions%20rendues%20par%20les%20juridictions%20correctionnelles%20%C3%A0%20partir%20de%202020.%20Parmi%20les%20d%C3%A9linquants%20condamn%C3%A9s%20cette%20ann%C3%A9e-l%C3%A0%20et%20les%20suivantes%2C%20%2Aplus%20de%2040%25%20%C3%A9taient%20en%20%C3%A9tat%20de%20r%C3%A9cidive%2A%2C%20ce%20qui%20signifie%20qu%E2%80%99ils%20%C3%A9taient%20connus%2C%20voire%20avaient%20%C3%A9t%C3%A9%20accompagn%C3%A9s%20par%20les%20Services%20P%C3%A9nitentiaires%20d%E2%80%99Insertion%20et%20de%20Probation%20%28%5BLes%20chiffres%20cl%C3%A9s%20de%20la%20justice%20%C3%A9dition%202023%20%28p.%2021%29%5D%28https%3A%2F%2Fwww.justice.gouv.fr%2Fsites%2Fdefault%2Ffiles%2F2023-10%2FChiffres_Cle%25CC%2581s_2023_En_ligne_0.pdf%29%29.%0A%0ADepuis%202018%2C%20le%20%5BR%C3%A9f%C3%A9rentiel%20des%20Pratiques%20Op%C3%A9rationnelles%20%F0%9F%93%96%5D%28https%3A%2F%2Fjournals.openedition.org%2Fcriminocorpus%2F10631%29%2C%20relatif%20%C3%A0%20la%20m%C3%A9thodologie%20d%E2%80%99intervention%20en%20SPIP%2C%20propose%20la%20transposition%20en%20France%20du%20mod%C3%A8le%20Risque-Besoins-R%C3%A9ceptivit%C3%A9%2C%20dont%20la%20validit%C3%A9%20a%20%C3%A9t%C3%A9%20%5Bscientifiquement%20d%C3%A9montr%C3%A9e%5D%28https%3A%2F%2Fwww.researchgate.net%2Fpublication%2F247523857_Validating_the_Principles_of_Effective_Intervention_A_Systematic_Review_of_the_Contributions_of_Meta-Analysis_in_the_Field_of_Corrections%29%20pour%20l%E2%80%99accompagnement%20des%20personnes%20condamn%C3%A9es%2C%20dans%20un%20objectif%20de%20pr%C3%A9vention%20de%20la%20r%C3%A9cidive.%20%0A%0A%23%23%20Probl%C3%A8me%0A%0ACette%20m%C3%A9thodologie%20suppose%20une%20adaptation%20des%20pratiques%20professionnelles%20en%20SPIP%20ainsi%20que%20du%20contexte%20d%E2%80%99intervention.%0A%0ACette%20impl%C3%A9mentation%20exige%20pour%20les%20professionnel.les%20de%20pouvoir%20visualiser%20la%20faisabilit%C3%A9%20g%C3%A9n%C3%A9rale%20de%20la%20m%C3%A9thodologie%20du%20RPO1.%20Au-del%C3%A0%20de%20l%27acculturation%20%C3%A0%20l%27%C3%A9valuation%20du%20risque%20de%20r%C3%A9cidive%2C%20de%20la%20guidance%20pour%20planifier%20l%27accompagnement%20et%20du%20soutien%20m%C3%A9thodologique%20au%20savoir-%C3%AAtre%20et%20aux%20techniques%20efficaces%20pour%20engager%20et%20soutenir%20le%20changement%2C%20ROMIN%20dynamise%20l%27accompagnement%20gr%C3%A2ce%20%C3%A0%20des%20outils%20d%E2%80%99intervention%20ciblant%20les%20facteurs%20de%20risque%20de%20r%C3%A9cidive.%0A%0A%2A%2AAfin%20de%20conforter%20les%20agents%20quant%20%C3%A0%20l%E2%80%99efficacit%C3%A9%20de%20leurs%20interventions%20et%20valoriser%20leur%20engagement%2C%20ROMIN%20partage%20les%20solutions%20d%27intervention%20de%20la%20communaut%C3%A9%20des%20professionnel.les%20en%20SPIP.%2A%2A%0A%0A%23%23%20Solution%20en%20construction%2Facc%C3%A9l%C3%A9ration%0A%0AEn%20pratique%C2%A0%3A%20je%20suis%20conseiller%20p%C3%A9nitentiaire%20d%E2%80%99insertion%20et%20de%20probation%20%28CPIP%29%2C%20j%E2%80%99%C3%A9value%20le%20profil%20de%20la%20personne%20condamn%C3%A9e%20que%20j%E2%80%99accompagne%20puis%20nous%20d%C3%A9finissons%20ensemble%20un%20plan%20d%E2%80%99accompagnement.%20%0A%0AQuels%20outils%20vais-je%20utiliser%20pour%20chacun%20des%20facteurs%20de%20risque%20%C3%A0%20travailler%C2%A0%3F%20%0AJe%20consulte%20ROMIN%20%F0%9F%92%BB%C2%A0%21%201%20seul%20crit%C3%A8re%20%C3%A0%20renseigner%20%3A%20le%20facteur%20de%20risque%20de%20r%C3%A9cidive.%20%0A%0AJ%E2%80%99acc%C3%A8de%20%C3%A0%20l%E2%80%99ensemble%20des%20outils%20d%E2%80%99intervention%20r%C3%A9pertori%C3%A9s.%20Je%20consulte%20la%20fiche-outil%2C%20je%20prends%20connaissance%20du%20temps%20n%C3%A9cessaire%20%C3%A0%20la%20mise%20en%20%C5%93uvre%2C%20du%20mode%20d%E2%80%99emploi%20et%20je%20t%C3%A9l%C3%A9charge%20les%20supports%20n%C3%A9cessaires.%0A%0AROMIN%20s%E2%80%99int%C3%A8gre%20%C3%A0%20l%E2%80%99environnement%20professionnel%20des%20agents%20et%20constitue%20un%20%C3%A9quipement%20suppl%C3%A9mentaire%20de%20soutien%20technique%2C%20en%20coordination%20avec%20les%20solutions%20existantes.%0A%0ALa%20communaut%C3%A9%20professionnelle%20%C3%A9change%20et%20parfait%20les%20outils%20partag%C3%A9s.%0ALa%20documentation%20m%C3%A9thodologique%2C%20accessible%20en%20permanence%2C%20offre%20une%20prise%20de%20recul%20aux%20professionnel.les%20garantissant%20un%20effet%20maximis%C3%A9%20des%20interventions.%0A%0A%23%23%20Prochaines%20%C3%A9tapes%0A%0A%2A%2AROMIN%20est%20en%20ligne%20et%20accessible%20aux%20premiers%20utilisateurs%20depuis%20avril%202023%2A%2A.%20Leurs%20retours%20permettent%20des%20ajustements%20et%20le%20d%C3%A9veloppement%20de%20nouvelles%20fonctionnalit%C3%A9s%20adapt%C3%A9es%20%C3%A0%20leurs%20besoins%20de%20terrain%20comme%20celui%20de%20partager%20des%20retours%20d%E2%80%99exp%C3%A9rience.%0A%0AROMIN%20donne%20acc%C3%A8s%20%C3%A0%20plus%20d%27une%20soixantaine%20d%E2%80%99outils%20cibl%C3%A9s%20et%20ce%20volume%20continue%20de%20grandir%20en%20permanence.%20Sous%20peu%2C%20au-del%C3%A0%20des%20outils%20mobilisables%20en%20entretien%20individuel%2C%20il%20donnera%20acc%C3%A8s%20aux%20diff%C3%A9rents%20programmes%20connus%20et%20valorisera%20les%20supports%20dont%20l%E2%80%99impact%20positif%20a%20%C3%A9t%C3%A9%20d%C3%A9montr%C3%A9.%20%0A%0AUne%20trentaine%20de%20SPIP%20participent%20%C3%A0%20l%E2%80%99exp%C3%A9rimentation%20de%20ROMIN.%20Le%20d%C3%A9ploiement%20de%20la%20solution%20num%C3%A9rique%20%C3%A0%20plus%20grande%20%C3%A9chelle%20mobilisera%20d%E2%80%99abord%20nos%20meilleurs%20ambassadeurs%20avant%20de%20s%E2%80%99%C3%A9tendre%20%C3%A0%20l%E2%80%99ensemble%20des%20agents.%0A%0A%2A%2AL%E2%80%99impact%20de%20ROMIN%20se%20mesure%20via%20les%20donn%C3%A9es%20statistiques%20de%20consultation%20auxquelles%20sont%20combin%C3%A9es%20les%20retours%20qualitatifs%20de%20nos%20utilisateurs%2A%2A.%20Au-del%C3%A0%2C%20les%20professionnel.les%20charg%C3%A9s%20du%20soutien%20technique%20%28directeur.ice%20p%C3%A9nitentiaire%20d%E2%80%99insertion%20et%20de%20probation%2C%20psychologues%20en%20SPIP%20et%20unit%C3%A9s%20de%20soutien%20m%C3%A9tier%29%20contribueront%20%C3%A0%20mesurer%20notre%20participation%20globale%20%C3%A0%20l%E2%80%99application%20du%20mod%C3%A8le%20efficace%20%C3%A0%20la%20pr%C3%A9vention%20de%20la%20r%C3%A9cidive.%0A", - "events": [ - { - "name": "committee", - "date": "2022-06-29", - "comment": "Kick-off de l'investigation" - }, - { - "name": "committee", - "date": "2022-11-17", - "comment": "Comité d'investigation, avis concluant pour un passage en phase de construction" - }, - { - "name": "committee", - "date": "2023-06-28", - "comment": "Comité de fin de la 1ère phase de construction" - }, - { - "name": "committee", - "date": "2024-01-18", - "comment": "Comité de fin de la 2e phase de construction" - } - ], + "name": "Pass Sport", + "pitch": "Permettre et faciliter la pratique sportive des 6-30 ans bénéficiaires de l'Allocation de Rentrée Scolaire (ARS), ou de l'Allocation Adulte Handicapé (AAH), de l’allocation d’éducation de l’enfant handicapé (AEEH) ou d'une bourse étudiante.", + "stats_url": "https://lecompteasso.associations.gouv.fr/carto/dashboard", + "link": "https://pass.sports.gouv.fr/", + "repository": "https://github.com/betagouv/pass-sport", + "contact": "clemence.lopez@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%27%C3%A9gal%20acc%C3%A8s%20%C3%A0%20la%20pratique%20sportive%20souffre%20de%20divers%20freins%20parmi%20lesquels%20la%20disponibilit%C3%A9%20des%20%C3%A9quipements%2C%20l%27accessibilit%C3%A9%20physique%2C%20le%20rapport%20individuel%20%C3%A0%20l%27effort%20mais%20aussi%20le%20co%C3%BBt%20de%20la%20pratique.%20Face%20%C3%A0%20ce%20constat%2C%20le%20minist%C3%A8re%20des%20sports%20a%20lanc%C3%A9%20en%202021%20le%20dispositif%20pass%27sport%20qui%20vise%20%C3%A0%20r%C3%A9soudre%20ce%20dernier%20frein%20financier.%20Toutefois%2C%20le%20dispositif%20peine%20%C3%A0%20atteindre%20son%20objectif%2C%20%C3%A0%20savoir%20permettre%20%C3%A0%202%20millions%20de%20jeunes%20de%20commencer%20une%20pratique%20sportive.%20%0A%0A%23%23%20Probl%C3%A8me%0A%0ALe%20dispositif%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20de%20toutes%20pi%C3%A8ces%20en%202021%20dans%20un%20temps%20tr%C3%A8s%20restreint.%20Il%20souffre%20ainsi%20de%20plusieurs%20probl%C3%A8mes%20qui%20concourent%20%C3%A0%20la%20non-r%C3%A9alisation%20de%20l%27objectif%20notamment%20le%20formatage%20manuel%20de%20plusieurs%20bases%20de%20donn%C3%A9es%20de%20fournisseurs%20diff%C3%A9rents%20et%20l%27utilisation%20unique%20du%20support%20mail%20pour%20l%27envoi%20des%20codes.%20Par%20ailleurs%2C%20la%20communication%20d%C3%A9ploy%C3%A9e%20pour%20ce%20dispositif%2C%20bien%20qu%27importante%2C%20ne%20permet%20pas%20de%20toucher%20pleinement%20la%20cible%20des%20b%C3%A9n%C3%A9ficiaires%20qui%20peine%20%C3%A0%20s%27acculturer%20%C3%A0%20cette%20aide%20et%20%C3%A0%20son%20fonctionnement.%20Enfin%2C%20le%20fonctionnement%20enti%C3%A8rement%20num%C3%A9rique%20du%20dispositif%20est%20un%20frein%20tant%20pour%20le%20public%20%C3%A9ligible%20que%20pour%20les%20associations%20dont%20la%20ma%C3%AEtrise%20de%20l%27outil%20num%C3%A9rique%20est%20parfois%20balbutiante.%20%0A%0A%0A%23%23%20Strat%C3%A9gie%0A%0ALe%20public%20cible%20du%20pass%27sport%20est%20tr%C3%A8s%20divers%2C%20il%20regroupe%20les%20enfants%20b%C3%A9n%C3%A9ficiaires%20de%20l%27allocation%20de%20rentr%C3%A9e%20scolaire%20ou%20de%20l%27allocation%20d%27%C3%A9ducation%20de%20l%27enfant%20handicap%C3%A9%20ainsi%20que%20les%20%C3%A9tudiants%20boursiers%20et%20les%20jeunes%20adultes%20b%C3%A9n%C3%A9ficiaires%20de%20l%27allocation%20adulte%20handicap%C3%A9.%20Aussi%2C%20il%20convient%20de%20mobiliser%20divers%20r%C3%A9seaux%20afin%20d%27entrer%20en%20contact%20avec%20chacun%20d%27entre%20eux%20%3A%20r%C3%A9seaux%20sociaux%2C%20%C3%A9tablissements%20scolaires%2C%20r%C3%A9seaux%20personnels.%20L%27objectif%20est%20de%20rencontrer%20l%27ensemble%20des%20classes%20d%27%C3%A2ges%20vis%C3%A9es%20afin%20de%20prendre%20en%20compte%20la%20diversit%C3%A9%20de%20leurs%20pratiques%20et%20usages.", + "events": [], "phases": [ { "name": "investigation", - "start": "2022-06-29", - "end": "2022-11-17" - }, - { - "name": "construction", - "start": "2022-11-17", + "start": "2023-08-21", "end": "" }, { - "name": "acceleration", - "start": "2024-01-18", + "name": "construction", + "start": "2024-03-01", "end": "" } ], "sponsors": [ - "mj" + "menjs" ], "thematiques": [ - "Justice" + "Santé", + "Jeunesse", + "Sport" ], - "dashlord_url": "https://dashlord.incubateur.net/url/dashlord-romin-app-cc-anje-justice-fr/", - "accessibility_status": "non conforme" + "accessibility_status": "totalement conforme" }, "relationships": { "incubator": { "data": { "type": "incubator", - "id": "justice" + "id": "dinum" } } } @@ -509009,16 +506849,16 @@ { "width": 1920, "height": 1080, - "url": "https://dashlord.romin.app.cc.anje-justice.fr", - "size": 10560.594, - "nodes": 263, - "requests": 47, + "url": "https://pass.sports.gouv.fr", + "size": 1211.53, + "nodes": 463, + "requests": 71, "grade": "C", - "score": 63, - "ges": 1.74, - "water": 2.61, + "score": 58, + "ges": 1.84, + "water": 2.76, "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:42:09.020985", + "date": "2024-12-01 18:49:00.396935", "page_type": null } ], @@ -509027,76 +506867,81 @@ "detected": true }, "summary": { - "httpGrade": "A+", + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-01T13:48:00.000Z", + "testsslExpireDate": "2025-02-06T13:34:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.42, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.98, + "cookiesCount": 1, + "trackersGrade": "C", + "trackersCount": 5, + "lighthouse_performance": 0.66, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, + "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.4, + "lighthouse_pwa": 0.5, "lighthouse_pwaGrade": "D", "statsGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "C", + "budgetPageGrade": "F", + "declaration-a11y": "A", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", + "declaration-rgpd-pc": "D", "ecoindexGrade": "C", "dsfrGrade": "A" } }, { "404": null, - "url": "https://pass.sports.gouv.fr", - "title": "pass Sport", - "repositories": [ - "betagouv/pass-sport" - ], - "betaId": "pass-sport", + "url": "https://jafer.beta.gouv.fr", + "category": "justice", + "betaId": "jafer", "http": { - "url": "https://pass.sports.gouv.fr", + "url": "https://jafer.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:45:27 GMT", - "grade": "B", + "end_time": "Sun, 20 Oct 2024 14:54:13 GMT", + "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", + "CF-Cache-Status": "DYNAMIC", + "CF-RAY": "8d59d77d3f79a3c5-SEA", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 20 Oct 2024 14:45:25 GMT", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 14:54:12 GMT", + "Server": "cloudflare", "Transfer-Encoding": "chunked", - "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "X-Powered-By": "Next.js", - "X-Request-ID": "930643d0-a2f8-486b-bacc-b5fc4719a877, 930643d0-a2f8-486b-bacc-b5fc4719a877", - "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' 'nonce-YzhlYzlhNzItNjZhMS00YmU1LWJhNjUtYTk0NzcyZTA0NzM4' 'strict-dynamic' https://client.crisp.chat/ https://stats.beta.gouv.fr/matomo.js https://tarteaucitron.io/ https://cdn.tarteaucitron.io/; style-src 'report-sample' 'unsafe-inline' 'self' https://unpkg.com https://client.crisp.chat/ https://cdn.tarteaucitron.io/; object-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' https://client.crisp.chat/ wss://client.relay.crisp.chat/ https://sports-sgsocialgouv.opendatasoft.com https://stats.beta.gouv.fr https://geo.api.gouv.fr; font-src 'self' https://client.crisp.chat/; frame-src 'self' https://player.vimeo.com https://pass-sport.crisp.help/; img-src 'self' data: https://image.crisp.chat/ https://client.crisp.chat/ https://storage.crisp.chat/ https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org https://i.vimeocdn.com https://unpkg.com https://tarteaucitron.io; manifest-src 'self'; media-src 'self'; report-uri https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1; worker-src 'none'; upgrade-insecure-requests;", - "strict-transport-security": "max-age=31536000" + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "no-store", + "content-security-policy": "frame-ancestors 'none';", + "referrer-policy": "origin", + "set-cookie": "jafer-beta-gouv_u1main=1729436051930x980905019816938000; path=/; domain=jafer.beta.gouv.fr; secure", + "vary": "Accept-Encoding", + "x-bubble-capacity-limit": "0 ms slower", + "x-bubble-capacity-used": "0.16 unit-seconds used", + "x-bubble-perf": "{\"total\":144.8,\"percents\":{\"top\":{\"bubble_cpu\":24.8,\"block\":74.7,\"capacity_rl\":0,\"other_pause\":0,\"pre_fiber\":0.4},\"sub\":{\"pp_userdb\":1.4,\"pp_wait_userdb\":0,\"http_request\":0,\"serverjson\":91.3,\"appserver_cache_misses_time\":0,\"redis\":123.7,\"fiber_queue\":1.7,\"capacity_wait\":1.7}},\"counts\":{\"pp_userdb\":1,\"http_request\":0,\"derived_build\":0,\"derived_cache_attempts\":9,\"derived_cache_memory_misses\":9,\"serverjson\":35,\"appserver_cache_attempts\":1,\"appserver_mem_cache_hits\":0,\"appserver_cache_hits\":1,\"appserver_cache_misses\":0,\"redis\":75,\"fiber_queue\":56,\"blocks\":55},\"misc\":{\"userdb_results\":0,\"userdb_data\":0,\"spent_time\":10390966}}", + "x-frame-options": "DENY", + "x-powered-by": "Express" }, - "scan_id": 57067716, - "score": 70, - "start_time": "Sun, 20 Oct 2024 14:45:23 GMT", + "scan_id": 57067815, + "score": 0, + "start_time": "Sun, 20 Oct 2024 14:54:11 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 7, + "tests_failed": 5, + "tests_passed": 5, "tests_quantity": 10, "details": { "content-security-policy": { @@ -509104,74 +506949,7 @@ "name": "content-security-policy", "output": { "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https://stats.beta.gouv.fr", - "https://client.crisp.chat/", - "https://geo.api.gouv.fr", - "'self'", - "wss://client.relay.crisp.chat/", - "https://sports-sgsocialgouv.opendatasoft.com" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https://client.crisp.chat/", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-src": [ - "https://player.vimeo.com", - "https://pass-sport.crisp.help/", - "'self'" - ], - "img-src": [ - "https://c.tile.openstreetmap.org", - "https://client.crisp.chat/", - "https://tarteaucitron.io", - "'self'", - "data:", - "https://storage.crisp.chat/", - "https://a.tile.openstreetmap.org", - "https://b.tile.openstreetmap.org", - "https://i.vimeocdn.com", - "https://image.crisp.chat/", - "https://unpkg.com" - ], - "manifest-src": [ - "'self'" - ], - "media-src": [ - "'self'" - ], - "object-src": [ - "'none'" - ], - "report-uri": [ - "https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1" - ], - "script-src": [ - "'report-sample'", - "'strict-dynamic'", - "'nonce-yzhlyzlhnzitnjzhms00ymu1lwjhnjutytk0nzcyzta0nzm4'" - ], - "style-src": [ - "'report-sample'", - "https://client.crisp.chat/", - "'unsafe-inline'", - "https://cdn.tarteaucitron.io/", - "'self'", - "https://unpkg.com" - ], - "upgrade-insecure-requests": [ - "'none'" - ], - "worker-src": [ + "frame-ancestors": [ "'none'" ] }, @@ -509179,34 +506957,65 @@ "meta": false, "numPolicies": 1, "policy": { - "antiClickjacking": false, + "antiClickjacking": true, "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, + "insecureBaseUri": true, + "insecureFormAction": true, "insecureSchemeActive": false, "insecureSchemePassive": false, - "strictDynamic": true, + "strictDynamic": false, "unsafeEval": false, - "unsafeInline": false, + "unsafeInline": true, "unsafeInlineStyle": true, - "unsafeObjects": false + "unsafeObjects": true } }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": null, - "sameSite": null + "data": { + "jafer-beta-gouv_live_u2main": { + "domain": ".jafer.beta.gouv.fr", + "expires": 1729695251, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "jafer-beta-gouv_live_u2main.sig": { + "domain": ".jafer.beta.gouv.fr", + "expires": 1729695251, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "jafer-beta-gouv_u1main": { + "domain": ".jafer.beta.gouv.fr", + "expires": null, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + } + }, + "sameSite": false }, "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", + "result": "cookies-secure-with-httponly-sessions", + "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", "score_modifier": 0 }, "cross-origin-resource-sharing": { @@ -509228,57 +507037,87 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://www.pass.sports.gouv.fr/", + "destination": "https://jafer.beta.gouv.fr/non_connecte", "redirects": true, "route": [ - "http://pass.sports.gouv.fr/", - "https://www.pass.sports.gouv.fr/" + "http://jafer.beta.gouv.fr/", + "https://jafer.beta.gouv.fr/", + "https://jafer.beta.gouv.fr/non_connecte" ], - "status_code": 301 + "status_code": 200 }, - "pass": false, - "result": "redirection-off-host-from-http", - "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", - "score_modifier": -5 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, - "meta": false + "data": "origin, origin", + "http": true, + "meta": true }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "pass": false, + "result": "referrer-policy-unsafe", + "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", + "score_modifier": -5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", + "data": null, "includeSubDomains": false, - "max-age": 31536000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": {} + "data": { + "//eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1539208662229x803640740225091600/download.js": { + "crossorigin": null, + "integrity": null + }, + "//eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1618227041113x740068462949819800/clipboard.min.js": { + "crossorigin": null, + "integrity": null + }, + "https://cdnjs.cloudflare.com/ajax/libs/apexcharts/3.37.3/apexcharts.min.js": { + "crossorigin": null, + "integrity": null + }, + "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery-xss.toast.min.js": { + "crossorigin": null, + "integrity": null + }, + "https://unpkg.com/@dotlottie/player-component@1.0.0/dist/dotlottie-player.js": { + "crossorigin": null, + "integrity": null + }, + "https://unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js": { + "crossorigin": null, + "integrity": null + }, + "https://unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js": { + "crossorigin": null, + "integrity": null + } + } }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 + "pass": false, + "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src=\"//...\"", + "score_modifier": -50 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -509295,12 +507134,12 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "DENY" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -509316,16 +507155,16 @@ } }, "updownio": { - "token": "7pay", - "url": "https://pass.sports.gouv.fr", - "alias": null, + "token": "s8or", + "url": "https://jafer.beta.gouv.fr", + "alias": "", "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-24T02:31:16Z", + "up_since": "2024-11-28T16:09:52Z", "error": null, - "period": 60, + "period": 300, "apdex_t": 0.5, "string_match": "", "enabled": true, @@ -509335,132 +507174,150 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T18:55:17Z", - "next_check_at": "2024-11-24T18:56:17Z", - "created_at": "2024-06-02T01:16:12Z", + "last_check_at": "2024-12-01T18:59:00Z", + "next_check_at": "2024-12-01T19:03:59Z", + "created_at": "2024-06-16T01:18:28Z", "mute_until": null, - "favicon_url": "https://www.pass.sports.gouv.fr/_next/static/media/favicon.8c087985.ico", + "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T18:54:19Z", - "expires_at": "2025-02-06T13:34:55Z", + "tested_at": "2024-12-01T18:34:07Z", + "expires_at": "2025-02-19T16:01:25Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.875, "timings": { - "redirect": 510, - "namelookup": 51, - "connection": 142, - "handshake": 146, - "response": 169, - "total": 1017 + "redirect": 565, + "namelookup": 0, + "connection": 0, + "handshake": 0, + "response": 406, + "total": 972 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { - "host": "pass.sports.gouv.fr", + "host": "jafer.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "996", "open_ports": [ { "service": { "name": "http", + "product": "Cloudflare http proxy", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", + "name": "http", + "product": "Cloudflare http proxy", "id": "443", "vulnerabilities": [] } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "Cloudflare http proxy", + "id": "8443", + "vulnerabilities": [] + } } ], - "grade": "A" + "grade": "B" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -509468,7 +507325,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -509476,7 +507333,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -509484,7 +507341,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -509492,7 +507349,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -509500,7 +507357,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -509508,1521 +507365,805 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "FS_ECDHE_curves", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_keySize ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_keyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_extKeyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_serialNumber ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "0341CE2B819BB5CCDCD070D6FF50DEA7E040" + "finding": "483B2EA4F84A3B4813ED95CF32F30098" }, { - "id": "cert_serialNumberLen", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_serialNumberLen ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_fingerprintSHA1 ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "365E4082DE252B3FAE9E9A512DF13536A8C0BE8E" + "finding": "9B59D8A7BB9D18FC76D1F26F71CFD29D172F6AF8" }, { - "id": "cert_fingerprintSHA256", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_fingerprintSHA256 ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" }, { - "id": "cert", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIE9jCCA96gAwIBAgISA0HOK4Gbtczc0HDW/1Dep+BAMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMTA4MTMzNDU2WhcNMjUwMjA2MTMzNDU1WjAeMRwwGgYDVQQDExNwYXNzLnNwb3J0cy5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopZ8f9YrM5YZ6bqIrWd1b+bE0Ut41Y3Q8YZUUyzmf9d3U0tCRwHlQqNnokaHJcDIgxHyU+cEgeZSksXGPV5ayPcbH6DMBJNMTdSxYYl6pIfniXzPZLJHCMm8NKrpkAxiQgKuuKdVvhnJOdGHgN/3qJgSR5izwsMc6ex9+ZOH9WsC06luHGzjLSXK7HP8pG8yyWG6aIOratSB/auKnYEDB1Njod6NmPYq8zqIgAh6l/Ud6qeH/xTEXBs5uABYFBMcwrNzMiKZZEN87+WjvKC+JTHaS4ENqHpK3sxQffHZL8ZUldkSnLFEJpFLHw/sFy8mF9s+PmG7TBaKAVwKIk1fbwIDAQABo4ICFzCCAhMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ89tHtgb+nRjOh4JcrFxq/o6kI2jAfBgNVHSMEGDAWgBTFz0ak6vTDwHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTEuaS5sZW5jci5vcmcvMB4GA1UdEQQXMBWCE3Bhc3Muc3BvcnRzLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZMMMbtMAAAEAwBHMEUCIHxwFWK+QWVuNpaMl/QS+E2+0Mr/DECC1GSaHH3AUWi1AiEAjhmkdKVGzJgzXRfK2lVKalM1bNt1IWNuRu7upY6dvecAdgCi4wrkRe+9rZt+OO1HZ3dT14JbhJTXK14bLMS5UKRH5wAAAZMMMbtPAAAEAwBHMEUCIQCyWAHxODSmQlrxmcG766f78qUQoXrS2jCfDR5JxIBe0QIgMBDqAYWd2yuYnQ2MvMO9ZlNyV3j3nieg3KoVq/Ylu8swDQYJKoZIhvcNAQELBQADggEBAKpVl1Iz7cwHD/Pi6Z2izAn2MaD0Q8AZdQqz9dFT3zDBkuhp3piTx1/q3PRFosn2ED0q2llC1NUFPrufY1wDPKwnb5rDVQcBB2UYFwt+BKHdRfk7fAB7YjNSwoQ2anzEs1Y91MK8r+/TI/TaL5aXxmXPbPgvHXjdq3UGE+vmdWbSD/QwPdQ/lATUDbN2YOsp9TtMTKugXH9dQLsei7AL09YdGz33odJjv8wrjOeSkQ2PwSANeWLATHJv/wXKKnxEzjtsbXDw7VPXV4HCJx2IrLsYrRBBW7mnq1xmDlypMXLo6bxst+BrHSXS6l26OXlMs1zCUgI6C1z5w+bfPtdcHnY=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_commonName ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_commonName_wo_SNI ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "*.osc-secnum-fr1.scalingo.io" + "finding": "ssl967779.cloudflaressl.com" }, { - "id": "cert_subjectAltName", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_subjectAltName ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_trust", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_trust ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_chain_of_trust ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_certificatePolicies_EV ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_expirationStatus ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "79 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_notBefore ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "2024-11-08 13:34" + "finding": "2024-11-21 15:01" }, { - "id": "cert_notAfter", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_notAfter ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "2025-02-06 13:34" + "finding": "2025-02-19 15:59" }, { - "id": "cert_extlifeSpan", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_extlifeSpan ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_eTLS ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http://r11.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2" - }, - { - "id": "certs_list_ordering_problem", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_crlDistributionPoints ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2027-03-12 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "http://c.pki.goog/wr1/tyyTOlCKhGQ.crl" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_ocspURL ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "http://o.pki.goog/s/wr1/SDs" }, { - "id": "intermediate_cert_badOCSP", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "OCSP_stapling ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "301 Moved Permanently ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1732474156" + "finding": "offered" }, { - "id": "HSTS_time", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_ocspRevoked ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "security_headers", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "finding": "--" + "finding": "not revoked" }, { - "id": "banner_reverseproxy", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "cert_mustStapleExtension ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "cwe": "CWE-200", "finding": "--" }, { - "id": "heartbleed", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" - }, - { - "id": "LOGJAM", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "pass.sports.gouv.fr/80.247.13.145", + "id": "DNS_CAArecord ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", + "severity": "LOW", "finding": "--" }, { - "id": "BEAST", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "pass.sports.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certificate_transparency ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "h2" + "finding": "yes (certificate extension)" }, { - "id": "ALPN", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certs_countServer ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" + "finding": "3" }, { - "id": "cipherlist_3DES_IDEA", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certs_list_ordering_problem ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "no" }, { - "id": "cipherlist_OBSOLETED", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_caIssuers ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" + "finding": "WR1 (Google Trust Services from US)" }, { - "id": "cipherlist_STRONG_NOFS", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "server" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cipherorder_TLSv1_2", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "pass.sports.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" }, { - "id": "FS_ciphers", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "2023-12-13 09:00" }, { - "id": "FS_ECDHE_curves", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "2029-02-20 14:00" }, { - "id": "TLS_extensions", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_expiration <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "TLS_session_ticket", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_chain <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only ( ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "yes" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "sessionresumption_ticket", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { - "id": "sessionresumption_ID", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "2020-06-19 00:00" }, { - "id": "TLS_timestamp", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "random" + "severity": "OK", + "finding": "2028-01-28 00:00" }, { - "id": "certificate_compression", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_expiration <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "none" + "severity": "OK", + "finding": "ok > 40 days" }, { - "id": "clientAuth", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_chain <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "none" + "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { - "id": "cert_numbers", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_badOCSP ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "1" + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "cert_signatureAlgorithm", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_signatureAlgorithm ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "ECDSA with SHA256" }, { - "id": "cert_keySize", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_keySize ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" }, { - "id": "cert_keyUsage", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_keyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" + "finding": "Digital Signature" }, { - "id": "cert_extKeyUsage", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_extKeyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_serialNumber ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "0341CE2B819BB5CCDCD070D6FF50DEA7E040" + "finding": "5A1546D018798A9C131BE1FFEDC84F36" }, { - "id": "cert_serialNumberLen", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_serialNumberLen ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_fingerprintSHA1 ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "365E4082DE252B3FAE9E9A512DF13536A8C0BE8E" + "finding": "9CB2993E39782365244386B6C1271B5F7C55159E" }, { - "id": "cert_fingerprintSHA256", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_fingerprintSHA256 ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "A7790F66F0F26BA49A4467EEE7D10C251424F858023E19D2AD3970B1CA7087AC" }, { - "id": "cert", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIE9jCCA96gAwIBAgISA0HOK4Gbtczc0HDW/1Dep+BAMA0GCSqGSIb3DQEBCwUAMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTEwHhcNMjQxMTA4MTMzNDU2WhcNMjUwMjA2MTMzNDU1WjAeMRwwGgYDVQQDExNwYXNzLnNwb3J0cy5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopZ8f9YrM5YZ6bqIrWd1b+bE0Ut41Y3Q8YZUUyzmf9d3U0tCRwHlQqNnokaHJcDIgxHyU+cEgeZSksXGPV5ayPcbH6DMBJNMTdSxYYl6pIfniXzPZLJHCMm8NKrpkAxiQgKuuKdVvhnJOdGHgN/3qJgSR5izwsMc6ex9+ZOH9WsC06luHGzjLSXK7HP8pG8yyWG6aIOratSB/auKnYEDB1Njod6NmPYq8zqIgAh6l/Ud6qeH/xTEXBs5uABYFBMcwrNzMiKZZEN87+WjvKC+JTHaS4ENqHpK3sxQffHZL8ZUldkSnLFEJpFLHw/sFy8mF9s+PmG7TBaKAVwKIk1fbwIDAQABo4ICFzCCAhMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ89tHtgb+nRjOh4JcrFxq/o6kI2jAfBgNVHSMEGDAWgBTFz0ak6vTDwHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTEuaS5sZW5jci5vcmcvMB4GA1UdEQQXMBWCE3Bhc3Muc3BvcnRzLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZMMMbtMAAAEAwBHMEUCIHxwFWK+QWVuNpaMl/QS+E2+0Mr/DECC1GSaHH3AUWi1AiEAjhmkdKVGzJgzXRfK2lVKalM1bNt1IWNuRu7upY6dvecAdgCi4wrkRe+9rZt+OO1HZ3dT14JbhJTXK14bLMS5UKRH5wAAAZMMMbtPAAAEAwBHMEUCIQCyWAHxODSmQlrxmcG766f78qUQoXrS2jCfDR5JxIBe0QIgMBDqAYWd2yuYnQ2MvMO9ZlNyV3j3nieg3KoVq/Ylu8swDQYJKoZIhvcNAQELBQADggEBAKpVl1Iz7cwHD/Pi6Z2izAn2MaD0Q8AZdQqz9dFT3zDBkuhp3piTx1/q3PRFosn2ED0q2llC1NUFPrufY1wDPKwnb5rDVQcBB2UYFwt+BKHdRfk7fAB7YjNSwoQ2anzEs1Y91MK8r+/TI/TaL5aXxmXPbPgvHXjdq3UGE+vmdWbSD/QwPdQ/lATUDbN2YOsp9TtMTKugXH9dQLsei7AL09YdGz33odJjv8wrjOeSkQ2PwSANeWLATHJv/wXKKnxEzjtsbXDw7VPXV4HCJx2IrLsYrRBBW7mnq1xmDlypMXLo6bxst+BrHSXS6l26OXlMs1zCUgI6C1z5w+bfPtdcHnY=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_commonName ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_commonName_wo_SNI ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "*.osc-secnum-fr1.scalingo.io" + "finding": "ssl967779.cloudflaressl.com" }, { - "id": "cert_subjectAltName", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_subjectAltName ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_trust", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_trust ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_chain_of_trust ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_certificatePolicies_EV ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_expirationStatus ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "79 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_notBefore ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "2024-11-08 13:34" + "finding": "2024-11-21 15:01" }, { - "id": "cert_notAfter", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_notAfter ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "2025-02-06 13:34" + "finding": "2025-02-19 16:01" }, { - "id": "cert_extlifeSpan", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_extlifeSpan ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_eTLS ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_crlDistributionPoints ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/btvd66Z9uQY.crl" }, { - "id": "cert_ocspURL", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_ocspURL ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/WhU" }, { - "id": "OCSP_stapling", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "OCSP_stapling ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_ocspRevoked ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "DNS_CAArecord ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certificate_transparency ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certs_countServer ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "certs_list_ordering_problem ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "cert_caIssuers ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_expiration <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_chain <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { - "id": "HTTP_clock_skew", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2023-11-15 03:43" }, { - "id": "HTTP_headerTime", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "1732474250" + "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { - "id": "HSTS_time", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "intermediate_cert_badOCSP ", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HSTS_subdomains", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "HTTP_status_code", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "302 Found ('/')" }, { - "id": "HSTS_preload", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "id": "HTTP_clock_skew", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "INFO", + "finding": "1733079454" + }, + { + "id": "HSTS", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Express" }, { "id": "cookie_count", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "3 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "cookie_secure", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "OK", + "finding": "All (3) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "INFO", + "finding": "3/3 at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -511030,7 +508171,7 @@ }, { "id": "heartbleed", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -511039,7 +508180,7 @@ }, { "id": "CCS", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -511048,7 +508189,7 @@ }, { "id": "ticketbleed", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -511057,16 +508198,16 @@ }, { "id": "ROBOT", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -511074,7 +508215,7 @@ }, { "id": "secure_client_renego", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -511083,7 +508224,7 @@ }, { "id": "CRIME_TLS", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -511092,7 +508233,7 @@ }, { "id": "BREACH", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -511101,7 +508242,7 @@ }, { "id": "POODLE_SSL", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -511110,14 +508251,14 @@ }, { "id": "fallback_SCSV", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -511126,7 +508267,7 @@ }, { "id": "FREAK", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -511135,7 +508276,7 @@ }, { "id": "DROWN", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -511144,16 +508285,16 @@ }, { "id": "DROWN_hint", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" }, { "id": "LOGJAM", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -511162,16 +508303,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -511180,7 +508321,7 @@ }, { "id": "LUCKY13", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -511189,7 +508330,7 @@ }, { "id": "winshock", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -511198,7 +508339,7 @@ }, { "id": "RC4", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -511207,392 +508348,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 DES-CBC3-SHA" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pass.sports.gouv.fr/185.21.194.105", + "ip": "jafer.beta.gouv.fr/104.19.240.93", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "jafer.beta.gouv.fr/104.19.240.93", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -511600,7 +508748,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -511608,7 +508756,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -511616,7 +508764,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -511624,7 +508772,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -511632,7 +508780,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -511640,455 +508788,805 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "FS_ECDHE_curves", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_keySize ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_keyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_extKeyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Server Authentication" }, { - "id": "cert_serialNumber", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_serialNumber ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "0341CE2B819BB5CCDCD070D6FF50DEA7E040" + "finding": "483B2EA4F84A3B4813ED95CF32F30098" }, { - "id": "cert_serialNumberLen", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_serialNumberLen ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { - "id": "cert_fingerprintSHA1", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_fingerprintSHA1 ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "365E4082DE252B3FAE9E9A512DF13536A8C0BE8E" + "finding": "9B59D8A7BB9D18FC76D1F26F71CFD29D172F6AF8" }, { - "id": "cert_fingerprintSHA256", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_fingerprintSHA256 ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" }, { - "id": "cert", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_commonName ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_commonName_wo_SNI ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "*.osc-secnum-fr1.scalingo.io" + "finding": "ssl967779.cloudflaressl.com" }, { - "id": "cert_subjectAltName", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_subjectAltName ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "pass.sports.gouv.fr" + "finding": "jafer.beta.gouv.fr" + }, + { + "id": "cert_trust ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "79 >= 60 days" + }, + { + "id": "cert_notBefore ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "2024-11-21 15:01" + }, + { + "id": "cert_notAfter ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "2025-02-19 15:59" + }, + { + "id": "cert_extlifeSpan ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "http://c.pki.goog/wr1/tyyTOlCKhGQ.crl" + }, + { + "id": "cert_ocspURL ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "http://o.pki.goog/s/wr1/SDs" + }, + { + "id": "OCSP_stapling ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "WR1 (Google Trust Services from US)" + }, + { + "id": "intermediate_cert <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + }, + { + "id": "intermediate_cert_notBefore <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "2023-12-13 09:00" + }, + { + "id": "intermediate_cert_notAfter <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "2029-02-20 14:00" + }, + { + "id": "intermediate_cert_expiration <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "WR1 <-- GTS Root R1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "2020-06-19 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "GTS Root R1 <-- GlobalSign Root CA" + }, + { + "id": "intermediate_cert_badOCSP ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "cert_signatureAlgorithm ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "ECDSA with SHA256" + }, + { + "id": "cert_keySize ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" + }, + { + "id": "cert_keyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature" + }, + { + "id": "cert_extKeyUsage ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication" + }, + { + "id": "cert_serialNumber ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "5A1546D018798A9C131BE1FFEDC84F36" + }, + { + "id": "cert_serialNumberLen ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1 ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "9CB2993E39782365244386B6C1271B5F7C55159E" + }, + { + "id": "cert_fingerprintSHA256 ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "A7790F66F0F26BA49A4467EEE7D10C251424F858023E19D2AD3970B1CA7087AC" + }, + { + "id": "cert ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "jafer.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "ssl967779.cloudflaressl.com" + }, + { + "id": "cert_subjectAltName ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "jafer.beta.gouv.fr" }, { - "id": "cert_trust", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_trust ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_chain_of_trust ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_certificatePolicies_EV ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_expirationStatus ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "79 >= 60 days" }, { - "id": "cert_notBefore", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_notBefore ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "2024-11-08 13:34" + "finding": "2024-11-21 15:01" }, { - "id": "cert_notAfter", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_notAfter ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "2025-02-06 13:34" + "finding": "2025-02-19 16:01" }, { - "id": "cert_extlifeSpan", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_extlifeSpan ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_eTLS ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_crlDistributionPoints ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://c.pki.goog/we1/btvd66Z9uQY.crl" }, { - "id": "cert_ocspURL", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_ocspURL ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://o.pki.goog/s/we1/WhU" }, { - "id": "OCSP_stapling", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "OCSP_stapling ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { - "id": "cert_mustStapleExtension", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_ocspRevoked ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "DNS_CAArecord ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "certificate_transparency ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "certs_countServer ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { - "id": "certs_list_ordering_problem", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "certs_list_ordering_problem ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "cert_caIssuers ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "WE1 (Google Trust Services from US)" }, { - "id": "intermediate_cert <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_fingerprintSHA256 <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" }, { - "id": "intermediate_cert_notBefore <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notBefore <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "2024-03-13 00:00" + "finding": "2023-12-13 09:00" }, { - "id": "intermediate_cert_notAfter <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notAfter <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "2027-03-12 23:59" + "finding": "2029-02-20 14:00" }, { - "id": "intermediate_cert_expiration <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_expiration <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1>", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_chain <#1> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "WE1 <-- GTS Root R4" }, { - "id": "intermediate_cert_badOCSP", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "HTTP_status_code", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" }, { - "id": "HTTP_clock_skew", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notBefore <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "2023-11-15 03:43" }, { - "id": "HTTP_headerTime", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_notAfter <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "2028-01-28 00:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "1732474345" + "finding": "GTS Root R4 <-- GlobalSign Root CA" }, { - "id": "HSTS_time", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "intermediate_cert_badOCSP ", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "intermediate certificate(s) is/are ok" }, { - "id": "HSTS_subdomains", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "HTTP_status_code", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "302 Found ('/')" }, { - "id": "HSTS_preload", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "id": "HTTP_clock_skew", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "1733079511" + }, + { + "id": "HSTS", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "cloudflare" }, { "id": "banner_application", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "x-powered-by: Express" }, { "id": "cookie_count", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "3 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "cookie_secure", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "All (3) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "3/3 at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -512096,7 +509594,7 @@ }, { "id": "heartbleed", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -512105,7 +509603,7 @@ }, { "id": "CCS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -512114,7 +509612,7 @@ }, { "id": "ticketbleed", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -512123,16 +509621,16 @@ }, { "id": "ROBOT", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -512140,7 +509638,7 @@ }, { "id": "secure_client_renego", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -512149,7 +509647,7 @@ }, { "id": "CRIME_TLS", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -512158,7 +509656,7 @@ }, { "id": "BREACH", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -512167,7 +509665,7 @@ }, { "id": "POODLE_SSL", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -512176,14 +509674,14 @@ }, { "id": "fallback_SCSV", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -512192,7 +509690,7 @@ }, { "id": "FREAK", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -512201,7 +509699,7 @@ }, { "id": "DROWN", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -512210,16 +509708,16 @@ }, { "id": "DROWN_hint", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" }, { "id": "LOGJAM", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -512228,16 +509726,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -512246,7 +509744,7 @@ }, { "id": "LUCKY13", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -512255,7 +509753,7 @@ }, { "id": "winshock", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -512264,7 +509762,7 @@ }, { "id": "RC4", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -512273,392 +509771,1856 @@ }, { "id": "clientsimulation-android_60", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.0 DES-CBC3-SHA" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pass.sports.gouv.fr/148.253.96.193", + "ip": "jafer.beta.gouv.fr/104.19.241.93", "port": "443", "severity": "INFO", "finding": "30" }, { - "id": "key_exchange_score", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "90" - }, + "id": "key_exchange_score", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "jafer.beta.gouv.fr/104.19.241.93", + "port": "443", + "severity": "INFO", + "finding": "117" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1618227041113x740068462949819800/clipboard.min.js" + }, + { + "type": "cloudflare", + "url": "https://cdnjs.cloudflare.com/ajax/libs/apexcharts/3.37.3/apexcharts.min.js", + "details": { + "id": "cloudflare", + "message": "Host files locally" + } + }, + { + "type": "cloudfront", + "url": "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery.toast.min.css", + "details": { + "id": "cloudfront", + "message": "Host files locally" + } + }, + { + "type": "cloudfront", + "url": "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery-xss.toast.min.js", + "details": { + "id": "cloudfront", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1539208662229x803640740225091600/download.js" + }, + { + "type": "unpkg", + "url": "https://unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + }, + { + "type": "unpkg", + "url": "https://unpkg.com/@dotlottie/player-component@1.0.0/dist/dotlottie-player.js", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + }, + { + "type": "unpkg", + "url": "https://unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678207023328x554327879471268500/font-marianne-bold.css" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206894280x278115442214581500/font-marianne-med.css" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206971846x188133202385374360/font-marianne-reg.css" + }, + { + "type": "unpkg", + "url": "https://unpkg.com/@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + }, + { + "type": "unpkg", + "url": "https://unpkg.com/@lottiefiles/lottie-interactivity@1.6.2/dist/lottie-interactivity.min.js", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206650950x598128875872265300/Marianne-Bold.otf" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206794930x218136516585784700/Marianne-Medium.otf" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206600203x993608576952853400/Marianne-Regular.otf" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206650950x598128875872265300/Marianne-Bold.otf" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206794930x218136516585784700/Marianne-Medium.otf" + }, + { + "type": "unknown", + "url": "https://s3.amazonaws.com/appforest_uf/f1678206600203x993608576952853400/Marianne-Regular.otf" + }, + { + "type": "unknown", + "url": "https://plst237.s3.amazonaws.com/plst.js" + }, + { + "type": "unknown", + "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1689752999514x770475554639616500/Bloc%20marque.svg" + }, + { + "type": "unknown", + "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1689753010294x976748322062495200/Badge%20-%20Personnalise%CC%81.svg" + }, + { + "type": "unknown", + "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1679646346305x338382775079305150/external-link.svg" + } + ], + "cookies": [ + { + "name": "jafer-beta-gouv_u1main", + "value": "1733079381941x157515709676080200", + "domain": ".jafer.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 54, + "httpOnly": false, + "secure": true, + "session": true, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "jafer-beta-gouv_live_u2main.sig", + "value": "OQ_mshMFDoH47khxxQ1oOSdsWog", + "domain": ".jafer.beta.gouv.fr", + "path": "/", + "expires": 1733338581.082237, + "size": 58, + "httpOnly": true, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "jafer-beta-gouv_live_u2main", + "value": "bus|1733079381941x157515709676080200|1733079381956x633902434791544300", + "domain": ".jafer.beta.gouv.fr", + "path": "/", + "expires": 1733338581.082098, + "size": 96, + "httpOnly": true, + "secure": true, + "session": false, + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "alt-svc": "h3=\":443\"; ma=86400", + "cache-control": "no-store", + "cf-cache-status": "DYNAMIC", + "cf-ray": "8eb54bfa0ff60614-IAD", + "content-encoding": "br", + "content-security-policy": "frame-ancestors 'none';", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 18:56:22 GMT", + "referrer-policy": "origin", + "server": "cloudflare", + "set-cookie": "jafer-beta-gouv_u1main=1733079381941x157515709676080200; path=/; domain=jafer.beta.gouv.fr; secure", + "vary": "Accept-Encoding", + "x-bubble-capacity-limit": "0 ms slower", + "x-bubble-capacity-used": "0.174 unit-seconds used", + "x-bubble-perf": "{\"total\":197.5,\"percents\":{\"top\":{\"bubble_cpu\":38.3,\"block\":59.8,\"capacity_rl\":0,\"other_pause\":0,\"pre_fiber\":0.7},\"sub\":{\"pp_userdb\":0,\"pp_wait_userdb\":0,\"http_request\":0,\"serverjson\":21.7,\"appserver_cache_misses_time\":0,\"redis\":74,\"fiber_queue\":9,\"capacity_wait\":1.3}},\"counts\":{\"pp_userdb\":0,\"http_request\":0,\"derived_build\":0,\"derived_cache_attempts\":8,\"derived_cache_memory_misses\":8,\"serverjson\":35,\"appserver_cache_attempts\":1,\"appserver_mem_cache_hits\":0,\"appserver_cache_hits\":1,\"appserver_cache_misses\":0,\"redis\":76,\"fiber_queue\":68,\"blocks\":67},\"misc\":{\"userdb_results\":0,\"userdb_data\":0,\"spent_time\":11339327}}", + "x-frame-options": "DENY", + "x-powered-by": "Express" + }, + "endpoints": [ + { + "hostname": "jafer.beta.gouv.fr", + "ip": "104.19.241.93", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io", + "ip": "104.17.123.183", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "cdnjs.cloudflare.com", + "ip": "104.17.25.14", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "d2tf8y1b8kxrzw.cloudfront.net", + "ip": "52.85.150.224", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "unpkg.com", + "ip": "104.17.249.203", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "s3.amazonaws.com", + "ip": "52.217.33.102", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "plst237.s3.amazonaws.com", + "ip": "16.15.176.92", + "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "de": "Ashburn", + "en": "Ashburn", + "es": "Ashburn", + "fr": "Ashburn", + "ja": "アッシュバーン", + "pt-BR": "Ashburn", + "ru": "Ашберн", + "zh-CN": "阿什本" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "de": "Virginia", + "en": "Virginia", + "es": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://jafer.beta.gouv.fr/": { + "status": 302 + }, + "https://jafer.beta.gouv.fr/non_connecte": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "algolia", + "name": "Algolia", + "description": "Algolia offers a hosted web search product delivering real-time results.", + "confidence": 100, + "version": "3.35.1", + "icon": "Algolia.svg", + "website": "https://www.algolia.com", + "cpe": null, + "categories": [ + { + "id": 29, + "slug": "search-engines", + "name": "Search engines" + } + ] + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": null, + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "apexcharts-js", + "name": "ApexCharts.js", + "description": "ApexCharts is a modern JavaScript charting library that empowers developers to build interactive data visualizations for commercial and non-commercial projects.", + "confidence": 100, + "version": null, + "icon": "apexcharts.svg", + "website": "https://apexcharts.com", + "cpe": null, + "categories": [ + { + "id": 25, + "slug": "javascript-graphics", + "name": "JavaScript graphics" + } + ] + }, + { + "slug": "bubble", + "name": "Bubble", + "description": "Bubble is a no-code platform that lets anyone build web apps without writing any code.", + "confidence": 100, + "version": null, + "icon": "bubble.png", + "website": "https://bubble.io", + "cpe": null, + "categories": [ + { + "id": 51, + "slug": "page-builders", + "name": "Page builders" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "express", + "name": "Express", + "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", + "confidence": 100, + "version": null, + "icon": "Express.svg", + "website": "https://expressjs.com", + "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + } + ] + }, + { + "slug": "unpkg", + "name": "Unpkg", + "description": "Unpkg is a content delivery network for everything on npm.", + "confidence": 100, + "version": null, + "icon": "Unpkg.png", + "website": "https://unpkg.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ] + }, + { + "slug": "cdnjs", + "name": "cdnjs", + "description": "cdnjs is a free distributed JS library delivery service.", + "confidence": 100, + "version": null, + "icon": "cdnjs.svg", + "website": "https://cdnjs.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ] + }, + { + "slug": "clipboard-js", + "name": "Clipboard.js", + "description": null, + "confidence": 100, + "version": null, + "icon": "Clipboard.js.svg", + "website": "https://clipboardjs.com/", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "lit-html", + "name": "lit-html", + "description": "lit-html is a simple, modern, safe, small and fast HTML templating library for JavaScript.", + "confidence": 100, + "version": "2.1.2", + "icon": "Lit.svg", + "website": "https://lit.dev", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "lit-element", + "name": "lit-element", + "description": "lit-element is a simple base class for creating web components that work in any web page with any framework. lit-element uses lit-html to render into shadow DOM, and adds API to manage properties and attributes.", + "confidence": 100, + "version": "3.1.2", + "icon": "Lit.svg", + "website": "https://lit.dev", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "jquery-migrate", + "name": "jQuery Migrate", + "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", + "confidence": 100, + "version": "3.4.1", + "icon": "jQuery.svg", + "website": "https://github.com/jquery/jquery-migrate", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.6.4", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.35.1", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ] + }, + { + "slug": "cloudflare", + "name": "Cloudflare", + "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", + "confidence": 100, + "version": null, + "icon": "CloudFlare.svg", + "website": "https://www.cloudflare.com", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ] + }, + { + "slug": "lottiefiles", + "name": "LottieFiles", + "description": "LottieFiles is an open-source animation file format that's tiny, high quality, interactive, and can be manipulated at runtime.", + "confidence": 100, + "version": null, + "icon": "LottieFiles.svg", + "website": "https://lottiefiles.com", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "http-3", + "name": "HTTP/3", + "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", + "confidence": 100, + "version": null, + "icon": "HTTP3.svg", + "website": "https://httpwg.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://jafer.beta.gouv.fr/", + "finalUrl": "https://jafer.beta.gouv.fr/non_connecte", + "fetchTime": "2024-12-01T18:55:57.077Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://jafer.beta.gouv.fr/) was redirected to https://jafer.beta.gouv.fr/non_connecte. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.45 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.82 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.85 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 12973, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 12430, + "firstMeaningfulPaint": 12585, + "largestContentfulPaint": 12740, + "interactive": 12973, + "speedIndex": 12430, + "totalBlockingTime": 142, + "maxPotentialFID": 333, + "cumulativeLayoutShift": 0.0007443580627441407, + "cumulativeLayoutShiftMainFrame": 0.0007443580627441407, + "totalCumulativeLayoutShift": 0.0007443580627441407, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 381672281, + "observedNavigationStart": 0, + "observedNavigationStartTs": 381672281, + "observedFirstPaint": 1423, + "observedFirstPaintTs": 383095464, + "observedFirstContentfulPaint": 1423, + "observedFirstContentfulPaintTs": 383095464, + "observedFirstContentfulPaintAllFrames": 1423, + "observedFirstContentfulPaintAllFramesTs": 383095464, + "observedFirstMeaningfulPaint": 1423, + "observedFirstMeaningfulPaintTs": 383095464, + "observedLargestContentfulPaint": 1423, + "observedLargestContentfulPaintTs": 383095464, + "observedLargestContentfulPaintAllFrames": 1423, + "observedLargestContentfulPaintAllFramesTs": 383095464, + "observedTraceEnd": 4154, + "observedTraceEndTs": 385826688, + "observedLoad": 1165, + "observedLoadTs": 382837427, + "observedDomContentLoaded": 1165, + "observedDomContentLoadedTs": 382836896, + "observedCumulativeLayoutShift": 0.0007443580627441407, + "observedCumulativeLayoutShiftMainFrame": 0.0007443580627441407, + "observedTotalCumulativeLayoutShift": 0.0007443580627441407, + "observedFirstVisualChange": 1429, + "observedFirstVisualChangeTs": 383101281, + "observedLastVisualChange": 2029, + "observedLastVisualChangeTs": 383701281, + "observedSpeedIndex": 1445, + "observedSpeedIndexTs": 383116841 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 34, + "numScripts": 13, + "numStylesheets": 5, + "numFonts": 3, + "numTasks": 842, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 4, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 123913954.59068981, + "maxRtt": 5.485999999999997, + "maxServerLatency": 75.062, + "totalByteWeight": 1896699, + "totalTaskTime": 618.9760000000002, + "mainDocumentTransferSize": 4593 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "F" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "key_exchange_score_weighted", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "27" + "slug": "ml", + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://jafer.beta.gouv.fr/mentions" }, { - "id": "cipher_strength_score", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "pc", + "mention": "Politique de confidentialité", + "maxScore": 7, + "score": 7, + "missingWords": [], + "missingTrackers": [], + "declarationUrl": "https://jafer.beta.gouv.fr/politique-confidentialite" + } + ], + "betagouv": { + "id": "jafer", + "type": "startup", + "attributes": { + "name": "JAFER", + "pitch": "Diminuer les délais de prise en charge, par les espaces de rencontre, des mesures judiciaires ordonnant des visites parent/enfant ", + "stats_url": "https://jafer.beta.gouv.fr/chiffres-cles", + "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#JAFER", + "link": "https://jafer.beta.gouv.fr/", + "contact": "jafer.sadjav-sg@justice.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AUn%20espace%20de%20rencontre%20est%20un%20lieu%20%C2%AB%20neutre%20%C2%BB%20permettant%20%C3%A0%20un%20enfant%20confi%C3%A9%20%C3%A0%20un%20parent%20de%20rencontrer%20l%E2%80%99autre%20parent%20dans%20des%20conditions%20permettant%20de%20favoriser%20la%20reprise%20du%20lien%20tout%20en%20assurant%20la%20s%C3%A9curit%C3%A9%20physique%20et%20psychique%20de%20l%E2%80%99enfant%20et%20des%20parents.%20Il%20existe%20192%20espaces%20de%20rencontre.%20%20En%202021%2C%20pr%C3%A8s%20de%2030%20000%20enfants%20ont%20%C3%A9t%C3%A9%20accueillis%20dans%20un%20espace%20de%20rencontre%2C%20dont%2090%25%20suite%20%C3%A0%20l%E2%80%99ordonnance%20d%E2%80%99un%20juge%20aux%20affaires%20familiales.%20%20%20Les%20d%C3%A9lais%20de%20prise%20en%20charge%20d%E2%80%99une%20mesure%20sont%20actuellement%20trop%20importants%20et%20peuvent%20aggraver%20les%20situations%20de%20ruptures%20familiales.%20%20Comment%20mieux%20r%C3%A9partir%20la%20charge%20de%20travail%20des%20espaces%20de%20rencontre%20et%20diminuer%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20mesures%20afin%20de%20rendre%20un%20meilleur%20service%20aux%20familles%20%3F%0A%0A%23%23%20Probl%C3%A8me%0A%0ALes%20d%C3%A9lais%20de%20prise%20en%20charge%20d%E2%80%99une%20mesure%20sont%20actuellement%20trop%20importants%20et%20peuvent%20aggraver%20les%20situations%20de%20ruptures%20familiales.%20Comment%20mieux%20r%C3%A9partir%20la%20charge%20de%20travail%20des%20espaces%20de%20rencontre%20et%20diminuer%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20mesures%20afin%20de%20rendre%20un%20meilleur%20service%20aux%20familles%20%3F%20Par%20ailleurs%2C%20au%20moment%20de%20d%C3%A9signer%20un%20espace%20de%20rencontre%2C%20les%20juges%20aux%20affaires%20familiales%20ne%20connaissent%20pas%20pr%C3%A9cis%C3%A9ment%20la%20dur%C3%A9e%20d%E2%80%99attente%20ni%20les%20modalit%C3%A9s%20d%E2%80%99accueil%20des%20diff%C3%A9rentes%20structures%20existantes.%20%0A%0A%23%23%20Solution%0A%0AAfin%20de%20favoriser%20la%20connaissance%20des%20modalit%C3%A9s%20d%E2%80%99accueil%20au%20sein%20des%20espaces%20de%20rencontre%20par%20les%20juges%20aux%20affaires%20familiales%2C%20nous%20proposons%20la%20mise%20en%20place%20d%E2%80%99un%20outil%20de%20suivi%20des%20d%C3%A9lais%20d%E2%80%99attente%20et%20des%20modalit%C3%A9s%20particuli%C3%A8res%20d%E2%80%99accueil.%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%20%C3%89tendre%20la%20couverture%20g%C3%A9ographique%20%C3%A0%20l%27%C3%A9chelle%20nationale.%20%0A%0A%2A%20Enrichir%20fonctionnellement%20le%20produit%20%3A%20%0A%2A%20Permettre%20aux%20JAFs%20de%20compl%C3%A9ter%20une%20mesure%20et%20la%20transmettre%20aux%20espaces%20de%20rencontres%2C%20%0A%2A%20Am%C3%A9liorer%20la%20communication%20entre%20juges%20et%20espaces%20de%20rencontre%20via%20notamment%20une%20messagerie%20interne%2C%20%0A%2A%20Permettre%20aux%20espaces%20de%20rencontre%20de%20g%C3%A9rer%20leur%20espace%20%C3%A0%20plusieurs%20contacts.%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2022-06-29", + "end": "2022-12-06" + }, + { + "name": "construction", + "start": "2022-12-07", + "end": "" + } + ], + "sponsors": [ + "mj" + ], + "thematiques": [ + "Justice" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/jafer-beta-gouv-fr/best-practices/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "justice" + } + } + } + }, + "ecoindex": [ { - "id": "cipher_strength_score_weighted", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" + "width": 1920, + "height": 1080, + "url": "https://jafer.beta.gouv.fr", + "size": 1894.723, + "nodes": 161, + "requests": 31, + "grade": "B", + "score": 76, + "ges": 1.48, + "water": 2.22, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 18:52:49.480111", + "page_type": "website" + } + ], + "sonarcloud": null, + "dsfr": { + "detected": false + }, + "summary": { + "httpGrade": "F", + "apdex": 0.875, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 4, + "nmapOpenPortsGrade": "F", + "testsslExpireSoon": null, + "testsslExpireDate": null, + "testsslGrade": "A", + "cookiesGrade": "C", + "cookiesCount": 3, + "trackersGrade": "F", + "trackersCount": 23, + "lighthouse_performance": 0.45, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.82, + "lighthouse_accessibilityGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.85, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "F", + "budgetPageGrade": "A", + "declaration-a11y": "F", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A", + "ecoindexGrade": "B", + "dsfrGrade": "F" + } + }, + { + "404": null, + "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "category": "justice", + "betaId": "precontentieux", + "http": { + "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "algorithm_version": 3, + "end_time": "Sun, 20 Oct 2024 15:02:34 GMT", + "grade": "D-", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=0, must-revalidate, private", + "Connection": "Keep-Alive", + "Content-Encoding": "gzip", + "Content-Length": "6580", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 20 Oct 2024 15:02:33 GMT", + "Expires": "Sun, 20 Oct 2024 15:02:33 GMT", + "Keep-Alive": "timeout=5, max=100", + "Server": "Apache", + "Sozu-Id": "01JAN7741KMK71E5HT48R0JH4S", + "Vary": "Accept-Encoding" }, - { - "id": "final_score", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" + "scan_id": 57068028, + "score": 25, + "start_time": "Sun, 20 Oct 2024 15:02:32 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 5, + "tests_quantity": 10, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "redirects": true, + "route": [ + "http://dev.precontentieux.app.cc.anje-justice.fr/", + "https://dev.precontentieux.app.cc.anje-justice.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.jsdelivr.net/npm/css-vars-ponyfill@2": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-disabled", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-implemented", + "score_description": "Deprecated X-XSS-Protection header not implemented", + "score_modifier": 0 + } + } + }, + "updownio": { + "token": "0m32", + "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-11-27T14:44:23Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T19:10:44Z", + "next_check_at": "2024-12-01T19:11:44Z", + "created_at": "2024-06-30T01:19:26Z", + "mute_until": null, + "favicon_url": "https://dev.precontentieux.app.cc.anje-justice.fr/dsfr/favicon/favicon.ico", + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T19:10:44Z", + "expires_at": "2025-02-03T23:23:07Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "pass.sports.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 1, + "timings": { + "redirect": 0, + "namelookup": 44, + "connection": 110, + "handshake": 114, + "response": 176, + "total": 445 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "dev.precontentieux.app.cc.anje-justice.fr", + "protocol": "tcp", + "closed_ports": "986", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "bgp", + "id": "179", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "socks", + "id": "1080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "pvuniwien", + "id": "1081", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ppp", + "id": "3000", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5002", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "smtp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "ssh", + "id": "5357", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5666", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "amqp", + "product": "RabbitMQ", + "id": "5800", + "version": "3.12.14", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "5902", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "5962", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "9999", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "pass.sports.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -512666,7 +511628,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -512674,7 +511636,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -512682,7 +511644,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -512690,7 +511652,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -512698,7 +511660,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -512706,455 +511668,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "id": "cipher-tls1_2_xc02f", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "2024-11-08 13:34" + "finding": "2024-11-05 23:23" }, { "id": "cert_notAfter", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "2025-02-06 13:34" + "finding": "2025-02-03 23:23" }, { "id": "cert_extlifeSpan", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pass.sports.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1732474439" - }, - { - "id": "HSTS_time", - "ip": "pass.sports.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "1733080056" }, { - "id": "HSTS_preload", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "Apache" }, { "id": "banner_application", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "id": "Cache-Control", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -513162,7 +512124,7 @@ }, { "id": "heartbleed", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -513171,7 +512133,7 @@ }, { "id": "CCS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -513180,16 +512142,16 @@ }, { "id": "ticketbleed", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "not vulnerable" + "finding": "no session ticket extension" }, { "id": "ROBOT", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -513198,7 +512160,7 @@ }, { "id": "secure_renego", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -513206,16 +512168,16 @@ }, { "id": "secure_client_renego", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -513224,16 +512186,16 @@ }, { "id": "BREACH", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -513242,14 +512204,14 @@ }, { "id": "fallback_SCSV", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -513258,7 +512220,7 @@ }, { "id": "FREAK", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -513267,7 +512229,7 @@ }, { "id": "DROWN", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -513276,16 +512238,16 @@ }, { "id": "DROWN_hint", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6F3008259579B84914EA1E6AFBA97739A002F511C411B819F00E265E5E13A386" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=23C627AB729D73E6A3148F87A50177CF831DA709923E13A9E83506228B6E1F28" }, { "id": "LOGJAM", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -513294,16 +512256,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -513312,7 +512274,7 @@ }, { "id": "LUCKY13", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -513321,7 +512283,7 @@ }, { "id": "winshock", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -513330,7 +512292,7 @@ }, { "id": "RC4", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -513339,490 +512301,354 @@ }, { "id": "clientsimulation-android_60", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "36" }, { "id": "final_score", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "93" }, { "id": "overall_grade", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "pass.sports.gouv.fr/80.247.12.255", + "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "383" + "finding": "100" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://tarteaucitron.io/load.js?domain=www.pass.sports.gouv.fr&uuid=19b13211bfb1bd1efd6f804a26674ed864265114" - }, - { - "type": "unknown", - "url": "https://cdn.tarteaucitron.io/lang/tarteaucitron.fr.min.js" - }, - { - "type": "unknown", - "url": "https://cdn.tarteaucitron.io/tarteaucitron.services.min.js" - }, - { - "type": "unknown", - "url": "https://tarteaucitron.io/log/?account=19b13211bfb1bd1efd6f804a26674ed864265114&domain=www.pass.sports.gouv.fr&status=!pass-sport_eligibility-form-support-data%3Dfalse!vimeo%3Dfalse&_time=1732474042578" - } - ], - "cookies": [ - { - "name": "tarteaucitron", - "value": "!pass-sport_eligibility-form-support-data=waiting!vimeo=false", - "domain": "www.pass.sports.gouv.fr", - "path": "/", - "expires": 1764010041, - "size": 74, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], + "trackers": [], + "cookies": [], "headers": { - "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", + "cache-control": "max-age=0, must-revalidate, private", + "connection": "Keep-Alive", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self' 'nonce-YzEzYzFmMGQtMmUyZS00OWQ4LWJlYTEtM2RmNDdmOTljYjdm' 'strict-dynamic' https://client.crisp.chat/ https://stats.beta.gouv.fr/matomo.js https://tarteaucitron.io/ https://cdn.tarteaucitron.io/; style-src 'report-sample' 'unsafe-inline' 'self' https://unpkg.com https://client.crisp.chat/ https://cdn.tarteaucitron.io/; object-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' https://client.crisp.chat/ wss://client.relay.crisp.chat/ https://sports-sgsocialgouv.opendatasoft.com https://stats.beta.gouv.fr https://geo.api.gouv.fr; font-src 'self' https://client.crisp.chat/; frame-src 'self' https://player.vimeo.com https://pass-sport.crisp.help/; img-src 'self' data: https://image.crisp.chat/ https://client.crisp.chat/ https://storage.crisp.chat/ https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org https://i.vimeocdn.com https://unpkg.com https://tarteaucitron.io; manifest-src 'self'; media-src 'self'; report-uri https://66ab4d8ba05c71ef29160216.endpoint.csper.io/?v=1; worker-src 'none'; upgrade-insecure-requests;", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 24 Nov 2024 18:47:19 GMT", - "strict-transport-security": "max-age=31536000", - "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", - "x-powered-by": "Next.js", - "x-request-id": "e3810c0f-db04-4add-9a07-ef67257f6db8\ne3810c0f-db04-4add-9a07-ef67257f6db8" + "content-length": "6483", + "content-type": "text/html; charset=UTF-8", + "date": "Sun, 01 Dec 2024 19:06:14 GMT", + "expires": "Sun, 01 Dec 2024 19:06:14 GMT", + "keep-alive": "timeout=5, max=100", + "server": "Apache", + "sozu-id": "01JE1SVGDKH74PEYZSC2SW3JYN", + "vary": "Accept-Encoding" }, "endpoints": [ { - "hostname": "pass.sports.gouv.fr", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "tarteaucitron.io", - "ip": "51.68.111.231", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.tarteaucitron.io", - "ip": "51.68.111.234", + "hostname": "dev.precontentieux.app.cc.anje-justice.fr", + "ip": "91.208.207.214", "geoip": { "continent": { "code": "EU", @@ -513880,32 +512706,11 @@ }, "wappalyzer": { "urls": { - "https://pass.sports.gouv.fr/": { - "status": 301 - }, - "https://www.pass.sports.gouv.fr/": { + "https://dev.precontentieux.app.cc.anje-justice.fr/": { "status": 200 } }, "technologies": [ - { - "slug": "cart-functionality", - "name": "Cart Functionality", - "description": "Websites that have a shopping cart or checkout page, either using a known ecommerce platform or a custom solution.", - "confidence": 100, - "version": null, - "icon": "Cart-generic.svg", - "website": "https://www.wappalyzer.com/technologies/ecommerce/cart-functionality", - "cpe": null, - "categories": [ - { - "id": 6, - "slug": "ecommerce", - "name": "Ecommerce" - } - ], - "rootPath": true - }, { "slug": "sentry", "name": "Sentry", @@ -513925,182 +512730,23 @@ "rootPath": true }, { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": "10.10.0", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "slug": "apache-http-server", + "name": "Apache HTTP Server", + "description": "Apache is a free and open-source cross-platform web server software.", "confidence": 100, "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.2.13", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "icon": "Apache.svg", + "website": "https://httpd.apache.org/", + "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, { "id": 22, "slug": "web-servers", "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" } ], "rootPath": true }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 100, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, { "slug": "pwa", "name": "PWA", @@ -514118,23 +512764,6 @@ } ], "rootPath": true - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] } ] }, @@ -514142,12 +512771,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://pass.sports.gouv.fr/", - "finalUrl": "https://www.pass.sports.gouv.fr/", - "fetchTime": "2024-11-24T18:46:51.205Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://pass.sports.gouv.fr/) was redirected to https://www.pass.sports.gouv.fr/. Try testing the second URL directly." - ], + "requestedUrl": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "finalUrl": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "fetchTime": "2024-12-01T19:05:44.321Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -514157,7 +512784,7 @@ "snapshot" ], "id": "performance", - "score": 0.77 + "score": 0.7 }, "accessibility": { "title": "Accessibility", @@ -514168,7 +512795,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.98 }, "best-practices": { "title": "Best Practices", @@ -514178,7 +512805,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -514189,7 +512816,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.83 }, "pwa": { "title": "PWA", @@ -514199,7 +512826,7 @@ "navigation" ], "id": "pwa", - "score": 0.5 + "score": 0.4 } }, "audits": { @@ -514209,53 +512836,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7346, + "numericValue": 2603, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2696, - "firstMeaningfulPaint": 2696, - "largestContentfulPaint": 3521, - "interactive": 7346, - "speedIndex": 5121, - "totalBlockingTime": 87, - "maxPotentialFID": 109, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, + "firstContentfulPaint": 2123, + "firstMeaningfulPaint": 2123, + "largestContentfulPaint": 15076, + "interactive": 2603, + "speedIndex": 4496, + "totalBlockingTime": 27, + "maxPotentialFID": 103, + "cumulativeLayoutShift": 0.005674228244357638, + "cumulativeLayoutShiftMainFrame": 0.005674228244357638, + "totalCumulativeLayoutShift": 0.005674228244357638, "observedTimeOrigin": 0, - "observedTimeOriginTs": 455019980, + "observedTimeOriginTs": 388316104, "observedNavigationStart": 0, - "observedNavigationStartTs": 455019980, - "observedFirstPaint": 1613, - "observedFirstPaintTs": 456633308, - "observedFirstContentfulPaint": 1613, - "observedFirstContentfulPaintTs": 456633308, - "observedFirstContentfulPaintAllFrames": 1613, - "observedFirstContentfulPaintAllFramesTs": 456633308, - "observedFirstMeaningfulPaint": 1613, - "observedFirstMeaningfulPaintTs": 456633308, - "observedLargestContentfulPaint": 1613, - "observedLargestContentfulPaintTs": 456633308, - "observedLargestContentfulPaintAllFrames": 1613, - "observedLargestContentfulPaintAllFramesTs": 456633308, - "observedTraceEnd": 5682, - "observedTraceEndTs": 460702058, - "observedLoad": 3188, - "observedLoadTs": 458208448, - "observedDomContentLoaded": 1607, - "observedDomContentLoadedTs": 456627215, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1611, - "observedFirstVisualChangeTs": 456630980, - "observedLastVisualChange": 3195, - "observedLastVisualChangeTs": 458214980, - "observedSpeedIndex": 1679, - "observedSpeedIndexTs": 456698898 + "observedNavigationStartTs": 388316104, + "observedFirstPaint": 1116, + "observedFirstPaintTs": 389432530, + "observedFirstContentfulPaint": 1116, + "observedFirstContentfulPaintTs": 389432530, + "observedFirstContentfulPaintAllFrames": 1116, + "observedFirstContentfulPaintAllFramesTs": 389432530, + "observedFirstMeaningfulPaint": 1116, + "observedFirstMeaningfulPaintTs": 389432530, + "observedLargestContentfulPaint": 2388, + "observedLargestContentfulPaintTs": 390704451, + "observedLargestContentfulPaintAllFrames": 2388, + "observedLargestContentfulPaintAllFramesTs": 390704451, + "observedTraceEnd": 4783, + "observedTraceEndTs": 393099033, + "observedLoad": 2329, + "observedLoadTs": 390644875, + "observedDomContentLoaded": 1215, + "observedDomContentLoadedTs": 389531213, + "observedCumulativeLayoutShift": 0.005674228244357638, + "observedCumulativeLayoutShiftMainFrame": 0.005674228244357638, + "observedTotalCumulativeLayoutShift": 0.005674228244357638, + "observedFirstVisualChange": 1118, + "observedFirstVisualChangeTs": 389434104, + "observedLastVisualChange": 2401, + "observedLastVisualChangeTs": 390717104, + "observedSpeedIndex": 2299, + "observedSpeedIndexTs": 390615208 }, { "lcpInvalidated": false @@ -514273,23 +512900,23 @@ "type": "debugdata", "items": [ { - "numRequests": 70, - "numScripts": 17, + "numRequests": 32, + "numScripts": 2, "numStylesheets": 3, - "numFonts": 3, - "numTasks": 1958, + "numFonts": 5, + "numTasks": 1544, "numTasksOver10ms": 5, "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 145.822, - "throughput": 8413354.47371149, - "maxRtt": 156.829, - "maxServerLatency": 429.14200000000005, - "totalByteWeight": 934061, - "totalTaskTime": 358.9229999999976, - "mainDocumentTransferSize": 11865 + "rtt": 136.54000000000002, + "throughput": 13193698.238532912, + "maxRtt": 136.54000000000002, + "maxServerLatency": 6.59099999999998, + "totalByteWeight": 2510708, + "totalTaskTime": 258.7909999999976, + "mainDocumentTransferSize": 6849 } ] } @@ -514299,97 +512926,50 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { - "grade": "A" + "grade": "F" }, "budget_page": { "grade": "F" }, "declaration-a11y": { - "mention": "Accessibilité : totalement conforme", - "declarationUrl": "https://pass.sports.gouv.fr/v2/accessibilite" + "mention": "Accessibilité : non conforme" }, "declaration-rgpd": [ { "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, + "mention": null, + "maxScore": 0, + "score": 0, "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://pass.sports.gouv.fr/v2/mentions-legales" + "missingTrackers": [] }, { "slug": "pc", - "mention": "Données personnelles", - "maxScore": 4, - "score": 3, - "missingWords": [ - "durée de la conservation (ou) durée de conservation" - ], - "missingTrackers": [], - "declarationUrl": "https://pass.sports.gouv.fr/v2/politique-de-confidentialite" + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] } ], - "betagouv": { - "id": "pass-sport", - "type": "startup", - "attributes": { - "name": "Pass Sport", - "pitch": "Permettre et faciliter la pratique sportive des 6-30 ans bénéficiaires de l'Allocation de Rentrée Scolaire (ARS), ou de l'Allocation Adulte Handicapé (AAH), de l’allocation d’éducation de l’enfant handicapé (AEEH) ou d'une bourse étudiante.", - "stats_url": "https://lecompteasso.associations.gouv.fr/carto/dashboard", - "link": "https://pass.sports.gouv.fr/", - "repository": "https://github.com/betagouv/pass-sport", - "contact": "clemence.lopez@beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AL%27%C3%A9gal%20acc%C3%A8s%20%C3%A0%20la%20pratique%20sportive%20souffre%20de%20divers%20freins%20parmi%20lesquels%20la%20disponibilit%C3%A9%20des%20%C3%A9quipements%2C%20l%27accessibilit%C3%A9%20physique%2C%20le%20rapport%20individuel%20%C3%A0%20l%27effort%20mais%20aussi%20le%20co%C3%BBt%20de%20la%20pratique.%20Face%20%C3%A0%20ce%20constat%2C%20le%20minist%C3%A8re%20des%20sports%20a%20lanc%C3%A9%20en%202021%20le%20dispositif%20pass%27sport%20qui%20vise%20%C3%A0%20r%C3%A9soudre%20ce%20dernier%20frein%20financier.%20Toutefois%2C%20le%20dispositif%20peine%20%C3%A0%20atteindre%20son%20objectif%2C%20%C3%A0%20savoir%20permettre%20%C3%A0%202%20millions%20de%20jeunes%20de%20commencer%20une%20pratique%20sportive.%20%0A%0A%23%23%20Probl%C3%A8me%0A%0ALe%20dispositif%20a%20%C3%A9t%C3%A9%20cr%C3%A9%C3%A9%20de%20toutes%20pi%C3%A8ces%20en%202021%20dans%20un%20temps%20tr%C3%A8s%20restreint.%20Il%20souffre%20ainsi%20de%20plusieurs%20probl%C3%A8mes%20qui%20concourent%20%C3%A0%20la%20non-r%C3%A9alisation%20de%20l%27objectif%20notamment%20le%20formatage%20manuel%20de%20plusieurs%20bases%20de%20donn%C3%A9es%20de%20fournisseurs%20diff%C3%A9rents%20et%20l%27utilisation%20unique%20du%20support%20mail%20pour%20l%27envoi%20des%20codes.%20Par%20ailleurs%2C%20la%20communication%20d%C3%A9ploy%C3%A9e%20pour%20ce%20dispositif%2C%20bien%20qu%27importante%2C%20ne%20permet%20pas%20de%20toucher%20pleinement%20la%20cible%20des%20b%C3%A9n%C3%A9ficiaires%20qui%20peine%20%C3%A0%20s%27acculturer%20%C3%A0%20cette%20aide%20et%20%C3%A0%20son%20fonctionnement.%20Enfin%2C%20le%20fonctionnement%20enti%C3%A8rement%20num%C3%A9rique%20du%20dispositif%20est%20un%20frein%20tant%20pour%20le%20public%20%C3%A9ligible%20que%20pour%20les%20associations%20dont%20la%20ma%C3%AEtrise%20de%20l%27outil%20num%C3%A9rique%20est%20parfois%20balbutiante.%20%0A%0A%0A%23%23%20Strat%C3%A9gie%0A%0ALe%20public%20cible%20du%20pass%27sport%20est%20tr%C3%A8s%20divers%2C%20il%20regroupe%20les%20enfants%20b%C3%A9n%C3%A9ficiaires%20de%20l%27allocation%20de%20rentr%C3%A9e%20scolaire%20ou%20de%20l%27allocation%20d%27%C3%A9ducation%20de%20l%27enfant%20handicap%C3%A9%20ainsi%20que%20les%20%C3%A9tudiants%20boursiers%20et%20les%20jeunes%20adultes%20b%C3%A9n%C3%A9ficiaires%20de%20l%27allocation%20adulte%20handicap%C3%A9.%20Aussi%2C%20il%20convient%20de%20mobiliser%20divers%20r%C3%A9seaux%20afin%20d%27entrer%20en%20contact%20avec%20chacun%20d%27entre%20eux%20%3A%20r%C3%A9seaux%20sociaux%2C%20%C3%A9tablissements%20scolaires%2C%20r%C3%A9seaux%20personnels.%20L%27objectif%20est%20de%20rencontrer%20l%27ensemble%20des%20classes%20d%27%C3%A2ges%20vis%C3%A9es%20afin%20de%20prendre%20en%20compte%20la%20diversit%C3%A9%20de%20leurs%20pratiques%20et%20usages.", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2023-08-21", - "end": "" - }, - { - "name": "construction", - "start": "2024-03-01", - "end": "" - } - ], - "sponsors": [ - "menjs" - ], - "thematiques": [ - "Santé", - "Jeunesse", - "Sport" - ], - "accessibility_status": "totalement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "dinum" - } - } - } - }, + "betagouv": null, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://pass.sports.gouv.fr", - "size": 1173.203, - "nodes": 462, - "requests": 70, - "grade": "C", - "score": 59, - "ges": 1.82, - "water": 2.73, + "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", + "size": 2579.947, + "nodes": 244, + "requests": 28, + "grade": "B", + "score": 72, + "ges": 1.56, + "water": 2.34, "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:43:36.822596", + "date": "2024-12-01 19:02:40.807372", "page_type": null } ], @@ -514398,156 +512978,114 @@ "detected": true }, "summary": { - "httpGrade": "B", + "httpGrade": "D-", "apdex": 1, "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 14, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-06T13:34:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 1, - "trackersGrade": "C", - "trackersCount": 4, - "lighthouse_performance": 0.77, + "testsslExpireDate": "2025-02-03T23:23:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.7, "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.5, + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", - "statsGrade": "A", - "githubRepositoryGrade": "A", + "statsGrade": "F", + "githubRepositoryGrade": "F", "budgetPageGrade": "F", - "declaration-a11y": "A", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "D", - "ecoindexGrade": "C", + "declaration-a11y": "D", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", "dsfrGrade": "A" } }, { "404": null, - "url": "https://jafer.beta.gouv.fr", - "category": "justice", - "betaId": "jafer", + "url": "https://maestro.beta.gouv.fr", + "category": "dinum", + "betaId": "maestro", + "repositories": [ + "betagouv/maestro" + ], "http": { - "url": "https://jafer.beta.gouv.fr", + "url": "https://maestro.beta.gouv.fr", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 14:54:13 GMT", + "end_time": "Sun, 20 Oct 2024 15:13:47 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "8d59d77d3f79a3c5-SEA", - "Connection": "keep-alive", - "Content-Encoding": "gzip", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 14:54:12 GMT", - "Server": "cloudflare", - "Transfer-Encoding": "chunked", - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "no-store", - "content-security-policy": "frame-ancestors 'none';", - "referrer-policy": "origin", - "set-cookie": "jafer-beta-gouv_u1main=1729436051930x980905019816938000; path=/; domain=jafer.beta.gouv.fr; secure", - "vary": "Accept-Encoding", - "x-bubble-capacity-limit": "0 ms slower", - "x-bubble-capacity-used": "0.16 unit-seconds used", - "x-bubble-perf": "{\"total\":144.8,\"percents\":{\"top\":{\"bubble_cpu\":24.8,\"block\":74.7,\"capacity_rl\":0,\"other_pause\":0,\"pre_fiber\":0.4},\"sub\":{\"pp_userdb\":1.4,\"pp_wait_userdb\":0,\"http_request\":0,\"serverjson\":91.3,\"appserver_cache_misses_time\":0,\"redis\":123.7,\"fiber_queue\":1.7,\"capacity_wait\":1.7}},\"counts\":{\"pp_userdb\":1,\"http_request\":0,\"derived_build\":0,\"derived_cache_attempts\":9,\"derived_cache_memory_misses\":9,\"serverjson\":35,\"appserver_cache_attempts\":1,\"appserver_mem_cache_hits\":0,\"appserver_cache_hits\":1,\"appserver_cache_misses\":0,\"redis\":75,\"fiber_queue\":56,\"blocks\":55},\"misc\":{\"userdb_results\":0,\"userdb_data\":0,\"spent_time\":10390966}}", - "x-frame-options": "DENY", - "x-powered-by": "Express" + "cache-control": "no-store, no-cache, must-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf8", + "date": "Sun, 20 Oct 2024 15:13:46 GMT", + "pragma": "no-cache", + "server": "nginx", + "set-cookie": "SERVERID77446=200172|ZxUeL|ZxUeL; path=/; HttpOnly", + "transfer-encoding": "chunked", + "x-iplb-instance": "52193", + "x-iplb-request-id": "68C607D5:8C00_D5BA2105:0050_67151E2A_A27ED88:737F" }, - "scan_id": 57067815, + "scan_id": 57068627, "score": 0, - "start_time": "Sun, 20 Oct 2024 14:54:11 GMT", + "start_time": "Sun, 20 Oct 2024 15:13:45 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, + "tests_failed": 6, + "tests_passed": 4, "tests_quantity": 10, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "frame-ancestors": [ - "'none'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": true, - "unsafeInlineStyle": true, - "unsafeObjects": true - } + "numPolicies": 0, + "policy": null }, "pass": false, - "result": "csp-implemented-with-unsafe-inline", - "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", - "score_modifier": -20 + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "cookies": { "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { "data": { - "jafer-beta-gouv_live_u2main": { - "domain": ".jafer.beta.gouv.fr", - "expires": 1729695251, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - }, - "jafer-beta-gouv_live_u2main.sig": { - "domain": ".jafer.beta.gouv.fr", - "expires": 1729695251, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": true - }, - "jafer-beta-gouv_u1main": { - "domain": ".jafer.beta.gouv.fr", + "SERVERID77446": { + "domain": "maestro.beta.gouv.fr", "expires": null, - "httponly": false, + "httponly": true, "max-age": null, "path": "/", "port": null, "samesite": false, - "secure": true + "secure": false } }, - "sameSite": false + "sameSite": null }, - "pass": true, - "result": "cookies-secure-with-httponly-sessions", - "score_description": "All cookies use the Secure flag and all session cookies use the HttpOnly flag", - "score_modifier": 0 + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -514568,32 +513106,30 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://jafer.beta.gouv.fr/non_connecte", - "redirects": true, + "destination": "http://maestro.beta.gouv.fr/", + "redirects": false, "route": [ - "http://jafer.beta.gouv.fr/", - "https://jafer.beta.gouv.fr/", - "https://jafer.beta.gouv.fr/non_connecte" + "http://maestro.beta.gouv.fr/" ], "status_code": 200 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 }, "referrer-policy": { "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "origin, origin", - "http": true, - "meta": true + "data": null, + "http": false, + "meta": false }, - "pass": false, - "result": "referrer-policy-unsafe", - "score_description": "Referrer-Policy header set unsafely to \"origin\", \"origin-when-cross-origin\", or \"unsafe-url\"", - "score_modifier": -5 + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -514606,49 +513142,20 @@ "preloaded": false }, "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "result": "hsts-not-implemented-no-https", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set for sites not available over HTTPS", "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", "name": "subresource-integrity", "output": { - "data": { - "//eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1539208662229x803640740225091600/download.js": { - "crossorigin": null, - "integrity": null - }, - "//eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1618227041113x740068462949819800/clipboard.min.js": { - "crossorigin": null, - "integrity": null - }, - "https://cdnjs.cloudflare.com/ajax/libs/apexcharts/3.37.3/apexcharts.min.js": { - "crossorigin": null, - "integrity": null - }, - "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery-xss.toast.min.js": { - "crossorigin": null, - "integrity": null - }, - "https://unpkg.com/@dotlottie/player-component@1.0.0/dist/dotlottie-player.js": { - "crossorigin": null, - "integrity": null - }, - "https://unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js": { - "crossorigin": null, - "integrity": null - }, - "https://unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js": { - "crossorigin": null, - "integrity": null - } - } + "data": {} }, - "pass": false, - "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src=\"//...\"", - "score_modifier": -50 + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", @@ -514665,12 +513172,12 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "DENY" + "data": null }, - "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-disabled", @@ -514686,16 +513193,16 @@ } }, "updownio": { - "token": "s8or", - "url": "https://jafer.beta.gouv.fr", + "token": "umtm", + "url": "https://maestro.beta.gouv.fr", "alias": "", "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-19T18:40:16Z", + "up_since": "2024-12-01T19:15:52Z", "error": null, - "period": 300, + "period": 60, "apdex_t": 0.5, "string_match": "", "enabled": true, @@ -514705,150 +513212,132 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-24T18:53:45Z", - "next_check_at": "2024-11-24T18:58:44Z", - "created_at": "2024-06-16T01:18:28Z", + "last_check_at": "2024-12-01T19:21:52Z", + "next_check_at": "2024-12-01T19:22:51Z", + "created_at": "2024-07-02T13:30:22Z", "mute_until": null, - "favicon_url": null, + "favicon_url": "https://maestro.beta.gouv.fr/dsfr/favicon/favicon.ico?v=1.12.1", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-24T18:13:55Z", - "expires_at": "2025-02-19T16:01:25Z", + "tested_at": "2024-12-01T19:16:54Z", + "expires_at": "2025-01-27T14:19:47Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.952, - "timings": { - "redirect": 434, - "namelookup": 0, - "connection": 0, - "handshake": 0, - "response": 354, - "total": 787 + "apdex": 0.967, + "timings": { + "redirect": 0, + "namelookup": 139, + "connection": 157, + "handshake": 122, + "response": 131, + "total": 556 } }, "uptimeGrade": "A", - "apdexGrade": "E" + "apdexGrade": "D" }, "nmap": { - "host": "jafer.beta.gouv.fr", + "host": "maestro.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "998", "open_ports": [ { "service": { "name": "http", - "product": "Cloudflare http proxy", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "http", - "product": "Cloudflare http proxy", + "name": "https", "id": "443", "vulnerabilities": [] } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "Cloudflare http proxy", - "id": "8443", - "vulnerabilities": [] - } } ], - "grade": "B" + "grade": "A" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -514856,7 +513345,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -514864,7 +513353,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -514872,7 +513361,7 @@ }, { "id": "cipherlist_LOW", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -514880,7 +513369,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -514888,7 +513377,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -514896,805 +513385,1605 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "offered" + "severity": "INFO", + "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_signatureAlgorithm", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_keySize", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_keyUsage", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_extKeyUsage", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_serialNumber", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "483B2EA4F84A3B4813ED95CF32F30098" + "finding": "03959202747C015D48F6EC5A246A51F919BC" }, { - "id": "cert_serialNumberLen ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_serialNumberLen", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_fingerprintSHA1", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "9B59D8A7BB9D18FC76D1F26F71CFD29D172F6AF8" + "finding": "1C35AF437FEED1B72C3EF7A1F80C246E3D23E198" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_fingerprintSHA256", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" + "finding": "4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { - "id": "cert ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_commonName", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_commonName_wo_SNI", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "ssl967779.cloudflaressl.com" + "finding": "*.osc-secnum-fr1.scalingo.io" }, { - "id": "cert_subjectAltName ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_subjectAltName", + "ip": "maestro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_trust", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "56 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-10-29 14:19" + }, + { + "id": "cert_notAfter", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-01-27 14:19" + }, + { + "id": "cert_extlifeSpan", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r10.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2" + }, + { + "id": "certs_list_ordering_problem", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R10 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2024-03-13 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2027-03-12 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R10 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1733080708" + }, + { + "id": "HSTS_time", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "180 days (=15552000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" + }, + { + "id": "Expect-CT", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "max-age=0" + }, + { + "id": "X-XSS-Protection", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "public, max-age=0" + }, + { + "id": "banner_reverseproxy", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" + }, + { + "id": "LOGJAM", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "maestro.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "offered with final" }, { - "id": "cert_chain_of_trust ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "ALPN_HTTP2", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "passed." + "finding": "h2" }, { - "id": "cert_certificatePolicies_EV ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "ALPN", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "no" + "finding": "http/1.1" }, { - "id": "cert_expirationStatus ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_NULL", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "86 >= 60 days" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_notBefore ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_aNULL", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "2024-11-21 15:01" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_notAfter ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_EXPORT", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-19 15:59" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_extlifeSpan ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_LOW", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_eTLS ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_3DES_IDEA", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "not present" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cert_crlDistributionPoints ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_OBSOLETED", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr1/tyyTOlCKhGQ.crl" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cert_ocspURL ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_STRONG_NOFS", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/SDs" + "finding": "not offered" }, { - "id": "OCSP_stapling ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherlist_STRONG_FS", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cert_ocspRevoked ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipher_order-tls1_2", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "not revoked" + "finding": "server" }, { - "id": "cert_mustStapleExtension ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipherorder_TLSv1_2", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "DNS_CAArecord ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cipher_order", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "server" }, { - "id": "certificate_transparency ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "FS", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "yes (certificate extension)" + "finding": "offered" }, { - "id": "certs_countServer ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "FS_ciphers", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "certs_list_ordering_problem ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "FS_ECDHE_curves", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" }, { - "id": "cert_caIssuers ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "TLS_extensions", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { - "id": "intermediate_cert <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "TLS_session_ticket", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFCzCCAvOgAwIBAgIQf9niwtIEigR0tieibQhopzANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjMxMjEzMDkwMDAwWhcNMjkwMjIwMTQwMDAwWjA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPbjYWircr7kaYAx1TcA937qNLoHK+jyMtwkfGj1yN+T3mGo7uMyINyRFIuLBizvRpDXICfd7VJg/DbpvPfg7XIM/GkDujggbaOp3/bFa/3OlhlEXkabxPD8kTwK1hRHIggdAPK55oamJqj4oiV3lpK+IkM352YyxdvFFpfiMHsf92gfHuuFi1azUV76HmSCg5lzHZBx+Vp56uz5i8no2KA+Gwl01Qb5NMSh/4233xkJkVf+OW7e4xgepyPVId3yVkpQtwqp7oqLlHyKdaECVgb0Lh1z/njwzwwoNGMyDmS3cEdqFop10VGO/YKHc1rQ6tRuRibuKq+MzvN34PJrMHAgMBAAGjgf4wgfswDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBRmaUnU3iqckQPPiQ4kuA4wA26ILjAfBgNVHSMEGDAWgBTkrysmcRorSCeFL1JmLO/wiRNxPjA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUHMAKGGGh0dHA6Ly9pLnBraS5nb29nL3IxLmNydDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vYy5wa2kuZ29vZy9yL3IxLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAgEATuazCBEgkWAn+VGQTQIY7rjBidUihJfm1t/mTjo7KQR+3iDx4o2L06oeF0Q3wpKYpQgI/TeMqUlYMWQmZbWPE0PX8pfsVAE5E5tVOjh34bNAJwDPVnsZVJwzN3nw5BGQ7sxRspFzIcM/qbbTpNeXf9II4Wsk2+Tv6FSVFZUL3/0uHradbruDWjRQ4IZ7mYqKiEqk08dpOZ+TmBzwykEGy1/IXberb6Ap1SSnn2+RI7t6N/fqPCrwwFjp8kg1G6etRATGBaPYCx+GjJMFPX+k97Alvoj3/98SvqdegLPYEPjvxUclHpiKLD63NMmVarVQddIL6kOvTe5k0pnxRnR+mndGHIQc77TLbcZFeja56PynlSqmer578c7CBrPqo1BVmPyWUK+v6sGuzs7Mq7QQaxVs4710cI/MpPp1ovxMVt17ENKxLk34LpEKAKVmqwnzbHHRjhXNeCC984XDOwLEp0K4MzHl8ZOWJQAakCdVlFC+PyA3GP2JX/QLoqWNHGuN9c9vLObDhHVs/L+65De+OdnnjpFGI9xxtsNyRsyaHdFAf5z7ulOoXDXkHCCej/Ehs5docReNt16W2xbH/EBuirJrOzFE2rtALxksl1TdEjOfIKXOJfUqQeVI5+hA7V+n1+A/n7Npg0S+5ODytWh5XW54ccN1drJnMK54ttozh0c=\n-----END CERTIFICATE-----" + "finding": "valid for 300 seconds only ( ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "SSL_sessionID_support", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + "finding": "yes" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "sessionresumption_ticket", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "not supported" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "sessionresumption_ID", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" + "finding": "not supported" }, { - "id": "intermediate_cert <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "TLS_timestamp", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "random" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "certificate_compression", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "none" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "clientAuth", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "none" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_numbers", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1" }, { - "id": "cert_signatureAlgorithm ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_signatureAlgorithm", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_keySize", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_keyUsage", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "Digital Signature" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_extKeyUsage", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_serialNumber", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "5A1546D018798A9C131BE1FFEDC84F36" + "finding": "03959202747C015D48F6EC5A246A51F919BC" }, { - "id": "cert_serialNumberLen ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_serialNumberLen", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_fingerprintSHA1", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "9CB2993E39782365244386B6C1271B5F7C55159E" + "finding": "1C35AF437FEED1B72C3EF7A1F80C246E3D23E198" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_fingerprintSHA256", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "A7790F66F0F26BA49A4467EEE7D10C251424F858023E19D2AD3970B1CA7087AC" + "finding": "4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { - "id": "cert ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_commonName", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_commonName_wo_SNI", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "ssl967779.cloudflaressl.com" + "finding": "*.osc-secnum-fr1.scalingo.io" }, { - "id": "cert_subjectAltName ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_subjectAltName", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_trust", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_chain_of_trust", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_certificatePolicies_EV", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_expirationStatus", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "86 >= 60 days" + "finding": "56 >= 30 days" }, { - "id": "cert_notBefore ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_notBefore", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2024-11-21 15:01" + "finding": "2024-10-29 14:19" }, { - "id": "cert_notAfter ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_notAfter", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2025-02-19 16:01" + "finding": "2025-01-27 14:19" }, { - "id": "cert_extlifeSpan ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_extlifeSpan", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_eTLS", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_crlDistributionPoints", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/btvd66Z9uQY.crl" + "finding": "--" }, { - "id": "cert_ocspURL ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_ocspURL", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/WhU" - }, - { - "id": "OCSP_stapling ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://r10.o.lencr.org" }, { - "id": "cert_ocspRevoked ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "OCSP_stapling", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_mustStapleExtension", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "DNS_CAArecord", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "certificate_transparency", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "certs_countServer", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { - "id": "certs_list_ordering_problem ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "certs_list_ordering_problem", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cert_caIssuers", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "R10 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_notBefore <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_notAfter <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_expiration <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_chain <#1>", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "R10 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "intermediate_cert_badOCSP", + "ip": "maestro.beta.gouv.fr/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HTTP_clock_skew", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HTTP_headerTime", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "1733080768" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HSTS_time", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HSTS_subdomains", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "ok > 40 days" + "finding": "includes subdomains" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HSTS_preload", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "domain is NOT marked for preloading" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "HPKP", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "HTTP_status_code", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "banner_server", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "No Server banner line in header, interesting!" }, { - "id": "HTTP_clock_skew", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "banner_application", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "No application banner found" }, { - "id": "HTTP_headerTime", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "cookie_count", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1732474411" + "finding": "0 at '/'" }, { - "id": "HSTS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "X-Frame-Options", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "SAMEORIGIN" }, { - "id": "HPKP", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "X-Content-Type-Options", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "severity": "OK", + "finding": "nosniff" }, { - "id": "banner_server", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "Content-Security-Policy", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "cloudflare" + "severity": "OK", + "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { - "id": "banner_application", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "Expect-CT", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "x-powered-by: Express" + "severity": "OK", + "finding": "max-age=0" }, { - "id": "cookie_count", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "X-XSS-Protection", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "3 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "cookie_secure", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "OK", - "finding": "All (3) at '/' marked as secure" + "finding": "0" }, { - "id": "cookie_httponly", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "Referrer-Policy", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "3/3 at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" + "finding": "no-referrer" }, { - "id": "security_headers", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "id": "Cache-Control", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -515702,7 +514991,7 @@ }, { "id": "heartbleed", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -515711,7 +515000,7 @@ }, { "id": "CCS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -515720,7 +515009,7 @@ }, { "id": "ticketbleed", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -515729,16 +515018,16 @@ }, { "id": "ROBOT", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -515746,7 +515035,7 @@ }, { "id": "secure_client_renego", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -515755,7 +515044,7 @@ }, { "id": "CRIME_TLS", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -515764,16 +515053,16 @@ }, { "id": "BREACH", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -515782,14 +515071,14 @@ }, { "id": "fallback_SCSV", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -515798,7 +515087,7 @@ }, { "id": "FREAK", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -515807,7 +515096,7 @@ }, { "id": "DROWN", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -515816,16 +515105,16 @@ }, { "id": "DROWN_hint", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { "id": "LOGJAM", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -515834,16 +515123,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -515852,7 +515141,7 @@ }, { "id": "LUCKY13", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -515861,7 +515150,7 @@ }, { "id": "winshock", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -515870,7 +515159,7 @@ }, { "id": "RC4", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -515879,1245 +515168,930 @@ }, { "id": "clientsimulation-android_60", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.0 DES-CBC3-SHA" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "jafer.beta.gouv.fr/104.19.240.93", + "ip": "maestro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "jafer.beta.gouv.fr/104.19.240.93", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "service", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" - }, - { - "id": "FS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "FS_ECDHE_curves", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "prime256v1" - }, - { - "id": "TLS_extensions", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'EC point formats/#11' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" - }, - { - "id": "TLS_session_ticket", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "valid for 64800 seconds only (", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication" - }, - { - "id": "cert_serialNumber ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "483B2EA4F84A3B4813ED95CF32F30098" - }, - { - "id": "cert_serialNumberLen ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1 ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "9B59D8A7BB9D18FC76D1F26F71CFD29D172F6AF8" - }, - { - "id": "cert_fingerprintSHA256 ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" - }, - { - "id": "cert ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFLzCCBBegAwIBAgIQSDsupPhKO0gT7ZXPMvMAmDANBgkqhkiG9w0BAQsFADA7MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYDVQQDEwNXUjEwHhcNMjQxMTIxMTUwMTE5WhcNMjUwMjE5MTU1OTU3WjAdMRswGQYDVQQDExJqYWZlci5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuV75n6WHD6h2JIWXyk5dJJ6D+spLmzBfZJxK+cM2m1gRh495HIWRchpjwGyOwf2yl73WNl3xUz8LpyAo115enFHIEaPoACIm7xIi87yu3NsspV+AQp5ErTM32RxpJXDiI2/n5dJY9kkS9m0xMvShd2hnFMI8Q71Eoo5Ua4KIGUGsiqmF66MvN+w6QWVS2T6ROT1/6UBC9/qKSCVmsP0u4J4vRKa2+XIb7ra1VUOHB3LlaXE56lQrHd8OxLUg77ecCKMoD2vEiRx39xD6lkGnJ/YqfjNtARmQUFf4plCglOgEo0T63DD/JU3cBEfZ41m+zUjU51Q6aDWOZibTTLNIhAgMBAAGjggJLMIICRzAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUc5EZ36sA5Ting0GWKdFHrz3kGxcwHwYDVR0jBBgwFoAUZmlJ1N4qnJEDz4kOJLgOMANuiC4wXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dyMS9TRHMwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dyMS5jcnQwHQYDVR0RBBYwFIISamFmZXIuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMS90eXlUT2xDS2hHUS5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZNPdN4uAAAEAwBHMEUCIFR7ceW5GEDdD7Lc3dBrIh5SEhn+Grfea97VNGCEt+noAiEA/eoOnRYOgvav5jA508NIVj1w3UJMrLLyGD4m6OskKs4AdgDgkrP8DB3I52g2H95huZZNClJ4GYpy1nLEsE2lbW9UBAAAAZNPdN6FAAAEAwBHMEUCIGCecHmtO1ZfPO5YILBrXLF8PyecqGFXWyIivoIYaQBnAiEAxLXuCC7olcQcpxJhDdokut4FKyedrktLUAdvh6wP0GYwDQYJKoZIhvcNAQELBQADggEBAE3m7Xxzd73sNHdplQpRlVTtqeQkTHxZZJ/CD0+n3lEDL2hJvfGHa+C9AaSAuzzfG65zECcUkE90Q5CXAXuaQEUHVpXGrnQsfT5UmWnfsSXuzF2/eoSYYfb57o+2VjLKYs8HJ4SjyQSLIzIj6sfnvQ9UyFOH1n12sDyNLrhd1bMWDZHBgNfJs9XzJo2pwmVUItNpR3a4eRovJkt+WUZrxCaxCghTkNsatU/XHqb+1Qq43ApDjFRfOBfi8lRh/VnCWvif3cwRT7i3nPgZYDXDEsql7FsSI3CRQby+zwHs49gcqGBiEYMNA4FVSMS1Quw4gHoPSifDJAMghjVlilwy9ZY=\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "jafer.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "ssl967779.cloudflaressl.com" - }, - { - "id": "cert_subjectAltName ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "jafer.beta.gouv.fr" - }, - { - "id": "cert_trust ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "no" + "finding": "http/1.1" }, { - "id": "cert_expirationStatus ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_NULL", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "86 >= 60 days" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_notBefore ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_aNULL", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "2024-11-21 15:01" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_notAfter ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_EXPORT", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-02-19 15:59" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_extlifeSpan ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_LOW", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cert_eTLS ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_3DES_IDEA", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not present" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cert_crlDistributionPoints ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_OBSOLETED", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/wr1/tyyTOlCKhGQ.crl" + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cert_ocspURL ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_STRONG_NOFS", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/wr1/SDs" + "finding": "not offered" }, { - "id": "OCSP_stapling ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherlist_STRONG_FS", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { - "id": "cert_ocspRevoked ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipher_order-tls1_2", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "not revoked" + "finding": "server" }, { - "id": "cert_mustStapleExtension ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipherorder_TLSv1_2", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "DNS_CAArecord ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cipher_order", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "--" + "severity": "OK", + "finding": "server" }, { - "id": "certificate_transparency ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "FS", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "yes (certificate extension)" + "finding": "offered" }, { - "id": "certs_countServer ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "FS_ciphers", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { - "id": "certs_list_ordering_problem ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "FS_ECDHE_curves", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" }, { - "id": "cert_caIssuers ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "TLS_extensions", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WR1 (Google Trust Services from US)" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { - "id": "intermediate_cert <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "TLS_session_ticket", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "valid for 300 seconds only ( ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "SSL_sessionID_support", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "B10B6F00E609509E8700F6D34687A2BFCE38EA05A8FDF1CDC40C3A2A0D0D0E45" + "finding": "yes" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "sessionresumption_ticket", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" - }, - { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "2029-02-20 14:00" - }, - { - "id": "intermediate_cert_expiration <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "not supported" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "sessionresumption_ID", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WR1 <-- GTS Root R1" + "finding": "not supported" }, { - "id": "intermediate_cert <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "TLS_timestamp", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" + "finding": "random" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "certificate_compression", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" + "finding": "none" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "clientAuth", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "finding": "none" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_numbers", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "finding": "1" }, { - "id": "cert_signatureAlgorithm ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_signatureAlgorithm", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "SHA256 with RSA" }, { - "id": "cert_keySize ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_keySize", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "EC 256 bits (curve P-256)" + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" }, { - "id": "cert_keyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_keyUsage", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "Digital Signature" + "finding": "Digital Signature, Key Encipherment" }, { - "id": "cert_extKeyUsage ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_extKeyUsage", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication" + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { - "id": "cert_serialNumber ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_serialNumber", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "5A1546D018798A9C131BE1FFEDC84F36" + "finding": "03959202747C015D48F6EC5A246A51F919BC" }, { - "id": "cert_serialNumberLen ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_serialNumberLen", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { - "id": "cert_fingerprintSHA1 ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_fingerprintSHA1", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "9CB2993E39782365244386B6C1271B5F7C55159E" + "finding": "1C35AF437FEED1B72C3EF7A1F80C246E3D23E198" }, { - "id": "cert_fingerprintSHA256 ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_fingerprintSHA256", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "A7790F66F0F26BA49A4467EEE7D10C251424F858023E19D2AD3970B1CA7087AC" + "finding": "4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { - "id": "cert ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "cert_commonName ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_commonName", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_commonName_wo_SNI ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_commonName_wo_SNI", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "ssl967779.cloudflaressl.com" + "finding": "*.osc-secnum-fr1.scalingo.io" }, { - "id": "cert_subjectAltName ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_subjectAltName", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "jafer.beta.gouv.fr" + "finding": "maestro.beta.gouv.fr" }, { - "id": "cert_trust ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_trust", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { - "id": "cert_chain_of_trust ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_chain_of_trust", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "passed." }, { - "id": "cert_certificatePolicies_EV ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_certificatePolicies_EV", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_expirationStatus ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_expirationStatus", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "86 >= 60 days" + "finding": "56 >= 30 days" }, { - "id": "cert_notBefore ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_notBefore", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2024-11-21 15:01" + "finding": "2024-10-29 14:19" }, { - "id": "cert_notAfter ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_notAfter", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2025-02-19 16:01" + "finding": "2025-01-27 14:19" }, { - "id": "cert_extlifeSpan ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_extlifeSpan", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { - "id": "cert_eTLS ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_eTLS", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { - "id": "cert_crlDistributionPoints ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_crlDistributionPoints", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://c.pki.goog/we1/btvd66Z9uQY.crl" + "finding": "--" }, { - "id": "cert_ocspURL ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_ocspURL", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "http://o.pki.goog/s/we1/WhU" - }, - { - "id": "OCSP_stapling ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "offered" + "finding": "http://r10.o.lencr.org" }, { - "id": "cert_ocspRevoked ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "OCSP_stapling", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "LOW", + "finding": "not offered" }, { - "id": "cert_mustStapleExtension ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_mustStapleExtension", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { - "id": "DNS_CAArecord ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "DNS_CAArecord", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { - "id": "certificate_transparency ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "certificate_transparency", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { - "id": "certs_countServer ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "certs_countServer", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "2" }, { - "id": "certs_list_ordering_problem ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "certs_list_ordering_problem", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { - "id": "cert_caIssuers ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cert_caIssuers", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WE1 (Google Trust Services from US)" + "finding": "R10 (Let's Encrypt from US)" }, { - "id": "intermediate_cert <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { - "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1DFC1605FBAD358D8BC844F76D15203FAC9CA5C1A79FD4857FFAF2864FBEBF96" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { - "id": "intermediate_cert_notBefore <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_notBefore <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-12-13 09:00" + "finding": "2024-03-13 00:00" }, { - "id": "intermediate_cert_notAfter <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_notAfter <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2029-02-20 14:00" + "finding": "2027-03-12 23:59" }, { - "id": "intermediate_cert_expiration <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_expiration <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { - "id": "intermediate_cert_chain <#1> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_chain <#1>", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "WE1 <-- GTS Root R4" + "finding": "R10 <-- ISRG Root X1" }, { - "id": "intermediate_cert <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "intermediate_cert_badOCSP", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "200 OK ('/')" }, { - "id": "intermediate_cert_fingerprintSHA256 <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HTTP_clock_skew", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "76B27B80A58027DC3CF1DA68DAC17010ED93997D0B603E2FADBE85012493B5A7" + "finding": "0 seconds from localtime" }, { - "id": "intermediate_cert_notBefore <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HTTP_headerTime", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-11-15 03:43" + "finding": "1733080826" }, { - "id": "intermediate_cert_notAfter <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HSTS_time", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2028-01-28 00:00" + "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { - "id": "intermediate_cert_expiration <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HSTS_subdomains", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "ok > 40 days" + "finding": "includes subdomains" }, { - "id": "intermediate_cert_chain <#2> ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HSTS_preload", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "GTS Root R4 <-- GlobalSign Root CA" + "finding": "domain is NOT marked for preloading" }, { - "id": "intermediate_cert_badOCSP ", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "HPKP", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" }, { - "id": "HTTP_status_code", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "banner_server", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "302 Found ('/')" + "finding": "No Server banner line in header, interesting!" }, { - "id": "HTTP_clock_skew", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "banner_application", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "No application banner found" }, { - "id": "HTTP_headerTime", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "cookie_count", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1732474465" + "finding": "0 at '/'" }, { - "id": "HSTS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "X-Frame-Options", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "SAMEORIGIN" }, { - "id": "HPKP", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "X-Content-Type-Options", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" + "severity": "OK", + "finding": "nosniff" }, { - "id": "banner_server", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "Content-Security-Policy", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "cloudflare" + "severity": "OK", + "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { - "id": "banner_application", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "Expect-CT", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "x-powered-by: Express" + "severity": "OK", + "finding": "max-age=0" }, { - "id": "cookie_count", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "X-XSS-Protection", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "cookie_secure", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "All (3) at '/' marked as secure" + "finding": "0" }, { - "id": "cookie_httponly", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "Referrer-Policy", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "3/3 at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" + "finding": "no-referrer" }, { - "id": "security_headers", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "id": "Cache-Control", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -517125,7 +516099,7 @@ }, { "id": "heartbleed", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -517134,7 +516108,7 @@ }, { "id": "CCS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -517143,7 +516117,7 @@ }, { "id": "ticketbleed", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -517152,16 +516126,16 @@ }, { "id": "ROBOT", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -517169,7 +516143,7 @@ }, { "id": "secure_client_renego", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -517178,7 +516152,7 @@ }, { "id": "CRIME_TLS", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -517187,16 +516161,16 @@ }, { "id": "BREACH", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -517205,14 +516179,14 @@ }, { "id": "fallback_SCSV", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -517221,7 +516195,7 @@ }, { "id": "FREAK", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -517230,7 +516204,7 @@ }, { "id": "DROWN", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -517239,16 +516213,16 @@ }, { "id": "DROWN_hint", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2E22AAADF739E32D6C577C57740EE573127A8867A0F003A3D562E35018B0DD23" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { "id": "LOGJAM", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -517257,16 +516231,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -517275,7 +516249,7 @@ }, { "id": "LUCKY13", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -517284,7 +516258,7 @@ }, { "id": "winshock", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -517293,7 +516267,7 @@ }, { "id": "RC4", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -517302,1857 +516276,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.0 DES-CBC3-SHA" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "jafer.beta.gouv.fr/104.19.241.93", + "ip": "maestro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { - "id": "clientsimulation-java_8u161", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, - { - "id": "scanTime", - "ip": "jafer.beta.gouv.fr/104.19.241.93", - "port": "443", - "severity": "INFO", - "finding": "112" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1618227041113x740068462949819800/clipboard.min.js" - }, - { - "type": "cloudflare", - "url": "https://cdnjs.cloudflare.com/ajax/libs/apexcharts/3.37.3/apexcharts.min.js", - "details": { - "id": "cloudflare", - "message": "Host files locally" - } - }, - { - "type": "cloudfront", - "url": "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery.toast.min.css", - "details": { - "id": "cloudfront", - "message": "Host files locally" - } - }, - { - "type": "cloudfront", - "url": "https://d2tf8y1b8kxrzw.cloudfront.net/serve_files/airalert/jquery-xss.toast.min.js", - "details": { - "id": "cloudfront", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1539208662229x803640740225091600/download.js" - }, - { - "type": "unpkg", - "url": "https://unpkg.com/@lottiefiles/lottie-player@latest/dist/lottie-player.js", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - }, - { - "type": "unpkg", - "url": "https://unpkg.com/@dotlottie/player-component@1.0.0/dist/dotlottie-player.js", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - }, - { - "type": "unpkg", - "url": "https://unpkg.com/@lottiefiles/lottie-interactivity@latest/dist/lottie-interactivity.min.js", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678207023328x554327879471268500/font-marianne-bold.css" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206894280x278115442214581500/font-marianne-med.css" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206971846x188133202385374360/font-marianne-reg.css" - }, - { - "type": "unpkg", - "url": "https://unpkg.com/@lottiefiles/lottie-player@2.0.12/dist/lottie-player.js", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - }, - { - "type": "unpkg", - "url": "https://unpkg.com/@lottiefiles/lottie-interactivity@1.6.2/dist/lottie-interactivity.min.js", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206650950x598128875872265300/Marianne-Bold.otf" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206794930x218136516585784700/Marianne-Medium.otf" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206600203x993608576952853400/Marianne-Regular.otf" - }, - { - "type": "unknown", - "url": "https://plst237.s3.amazonaws.com/plst.js" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206650950x598128875872265300/Marianne-Bold.otf" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206794930x218136516585784700/Marianne-Medium.otf" - }, - { - "type": "unknown", - "url": "https://s3.amazonaws.com/appforest_uf/f1678206600203x993608576952853400/Marianne-Regular.otf" - }, - { - "type": "unknown", - "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1689752999514x770475554639616500/Bloc%20marque.svg" - }, - { - "type": "unknown", - "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1689753010294x976748322062495200/Badge%20-%20Personnalise%CC%81.svg" - }, - { - "type": "unknown", - "url": "https://eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io/f1679646346305x338382775079305150/external-link.svg" - } - ], - "cookies": [ - { - "name": "jafer-beta-gouv_u1main", - "value": "1732474337034x461383602647933440", - "domain": ".jafer.beta.gouv.fr", - "path": "/", - "expires": -1, - "size": 54, - "httpOnly": false, - "secure": true, - "session": true, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "jafer-beta-gouv_live_u2main.sig", - "value": "2GkJNYJOXL-tbBw2v27e2UEBhRQ", - "domain": ".jafer.beta.gouv.fr", - "path": "/", - "expires": 1732733537.105916, - "size": 58, - "httpOnly": true, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "jafer-beta-gouv_live_u2main", - "value": "bus|1732474337034x461383602647933440|1732474337044x515810268858968060", - "domain": ".jafer.beta.gouv.fr", - "path": "/", - "expires": 1732733537.105796, - "size": 96, - "httpOnly": true, - "secure": true, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "alt-svc": "h3=\":443\"; ma=86400", - "cache-control": "no-store", - "cf-cache-status": "DYNAMIC", - "cf-ray": "8e7b985ef8672364-SJC", - "content-encoding": "br", - "content-security-policy": "frame-ancestors 'none';", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 18:52:17 GMT", - "referrer-policy": "origin", - "server": "cloudflare", - "set-cookie": "jafer-beta-gouv_u1main=1732474337034x461383602647933440; path=/; domain=jafer.beta.gouv.fr; secure", - "vary": "Accept-Encoding", - "x-bubble-capacity-limit": "0 ms slower", - "x-bubble-capacity-used": "0.168 unit-seconds used", - "x-bubble-perf": "{\"total\":101.8,\"percents\":{\"top\":{\"bubble_cpu\":38.6,\"block\":60.9,\"capacity_rl\":0,\"other_pause\":0,\"pre_fiber\":0.6},\"sub\":{\"pp_userdb\":2,\"pp_wait_userdb\":0,\"http_request\":0,\"serverjson\":47.7,\"appserver_cache_misses_time\":0,\"redis\":62.1,\"fiber_queue\":4.4,\"capacity_wait\":1.8}},\"counts\":{\"pp_userdb\":1,\"http_request\":0,\"derived_build\":0,\"derived_cache_attempts\":9,\"derived_cache_memory_misses\":9,\"serverjson\":35,\"appserver_cache_attempts\":1,\"appserver_mem_cache_hits\":0,\"appserver_cache_hits\":1,\"appserver_cache_misses\":0,\"redis\":78,\"fiber_queue\":63,\"blocks\":62},\"misc\":{\"userdb_results\":0,\"userdb_data\":0,\"spent_time\":10894680}}", - "x-frame-options": "DENY", - "x-powered-by": "Express" + "id": "clientsimulation-ie_11_win7", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, - "endpoints": [ - { - "hostname": "jafer.beta.gouv.fr", - "ip": "104.19.240.93", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "eba3cd73b26da308c33fac00f2897fc9.cdn.bubble.io", - "ip": "104.17.123.183", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.25.14", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "d2tf8y1b8kxrzw.cloudfront.net", - "ip": "65.8.165.40", - "geoip": { - "city": { - "geoname_id": 5391959, - "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 37.7809, - "longitude": -122.4245, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94142" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "unpkg.com", - "ip": "104.17.245.203", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "s3.amazonaws.com", - "ip": "52.217.129.48", - "geoip": { - "city": { - "geoname_id": 4744870, - "names": { - "de": "Ashburn", - "en": "Ashburn", - "es": "Ashburn", - "fr": "Ashburn", - "ja": "アッシュバーン", - "pt-BR": "Ashburn", - "ru": "Ашберн", - "zh-CN": "阿什本" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20149" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "de": "Virginia", - "en": "Virginia", - "es": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - }, - { - "hostname": "plst237.s3.amazonaws.com", - "ip": "3.5.29.160", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://jafer.beta.gouv.fr/": { - "status": 302 - }, - "https://jafer.beta.gouv.fr/non_connecte": { - "status": 200 - } + { + "id": "clientsimulation-ie_11_win81", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, - "technologies": [ - { - "slug": "algolia", - "name": "Algolia", - "description": "Algolia offers a hosted web search product delivering real-time results.", - "confidence": 100, - "version": "3.35.1", - "icon": "Algolia.svg", - "website": "https://www.algolia.com", - "cpe": null, - "categories": [ - { - "id": 29, - "slug": "search-engines", - "name": "Search engines" - } - ] - }, - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": null, - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "apexcharts-js", - "name": "ApexCharts.js", - "description": "ApexCharts is a modern JavaScript charting library that empowers developers to build interactive data visualizations for commercial and non-commercial projects.", - "confidence": 100, - "version": null, - "icon": "apexcharts.svg", - "website": "https://apexcharts.com", - "cpe": null, - "categories": [ - { - "id": 25, - "slug": "javascript-graphics", - "name": "JavaScript graphics" - } - ] - }, - { - "slug": "bubble", - "name": "Bubble", - "description": "Bubble is a no-code platform that lets anyone build web apps without writing any code.", - "confidence": 100, - "version": null, - "icon": "bubble.png", - "website": "https://bubble.io", - "cpe": null, - "categories": [ - { - "id": 51, - "slug": "page-builders", - "name": "Page builders" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ] - }, - { - "slug": "express", - "name": "Express", - "description": "Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.", - "confidence": 100, - "version": null, - "icon": "Express.svg", - "website": "https://expressjs.com", - "cpe": "cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - } - ] - }, - { - "slug": "unpkg", - "name": "Unpkg", - "description": "Unpkg is a content delivery network for everything on npm.", - "confidence": 100, - "version": null, - "icon": "Unpkg.png", - "website": "https://unpkg.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ] - }, - { - "slug": "cdnjs", - "name": "cdnjs", - "description": "cdnjs is a free distributed JS library delivery service.", - "confidence": 100, - "version": null, - "icon": "cdnjs.svg", - "website": "https://cdnjs.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ] - }, - { - "slug": "clipboard-js", - "name": "Clipboard.js", - "description": null, - "confidence": 100, - "version": null, - "icon": "Clipboard.js.svg", - "website": "https://clipboardjs.com/", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "lit-html", - "name": "lit-html", - "description": "lit-html is a simple, modern, safe, small and fast HTML templating library for JavaScript.", - "confidence": 100, - "version": "2.1.2", - "icon": "Lit.svg", - "website": "https://lit.dev", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "lit-element", - "name": "lit-element", - "description": "lit-element is a simple base class for creating web components that work in any web page with any framework. lit-element uses lit-html to render into shadow DOM, and adds API to manage properties and attributes.", - "confidence": 100, - "version": "3.1.2", - "icon": "Lit.svg", - "website": "https://lit.dev", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "jquery-migrate", - "name": "jQuery Migrate", - "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", - "confidence": 100, - "version": "3.4.1", - "icon": "jQuery.svg", - "website": "https://github.com/jquery/jquery-migrate", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.6.4", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.35.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ] - }, - { - "slug": "cloudflare", - "name": "Cloudflare", - "description": "Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.", - "confidence": 100, - "version": null, - "icon": "CloudFlare.svg", - "website": "https://www.cloudflare.com", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ] - }, - { - "slug": "lottiefiles", - "name": "LottieFiles", - "description": "LottieFiles is an open-source animation file format that's tiny, high quality, interactive, and can be manipulated at runtime.", - "confidence": 100, - "version": null, - "icon": "LottieFiles.svg", - "website": "https://lottiefiles.com", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "http-3", - "name": "HTTP/3", - "description": "HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web.", - "confidence": 100, - "version": null, - "icon": "HTTP3.svg", - "website": "https://httpwg.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ { - "requestedUrl": "https://jafer.beta.gouv.fr/", - "finalUrl": "https://jafer.beta.gouv.fr/non_connecte", - "fetchTime": "2024-11-24T18:51:53.412Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://jafer.beta.gouv.fr/) was redirected to https://jafer.beta.gouv.fr/non_connecte. Try testing the second URL directly." - ], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.43 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.82 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.85 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 13059, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 12528, - "firstMeaningfulPaint": 12680, - "largestContentfulPaint": 12756, - "interactive": 13059, - "speedIndex": 12528, - "totalBlockingTime": 222, - "maxPotentialFID": 348, - "cumulativeLayoutShift": 0.000923746109008789, - "cumulativeLayoutShiftMainFrame": 0.000923746109008789, - "totalCumulativeLayoutShift": 0.000923746109008789, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 373220236, - "observedNavigationStart": 0, - "observedNavigationStartTs": 373220236, - "observedFirstPaint": 1270, - "observedFirstPaintTs": 374489924, - "observedFirstContentfulPaint": 1270, - "observedFirstContentfulPaintTs": 374489924, - "observedFirstContentfulPaintAllFrames": 1270, - "observedFirstContentfulPaintAllFramesTs": 374489924, - "observedFirstMeaningfulPaint": 1270, - "observedFirstMeaningfulPaintTs": 374489924, - "observedLargestContentfulPaint": 1270, - "observedLargestContentfulPaintTs": 374489924, - "observedLargestContentfulPaintAllFrames": 1270, - "observedLargestContentfulPaintAllFramesTs": 374489924, - "observedTraceEnd": 3768, - "observedTraceEndTs": 376988203, - "observedLoad": 1272, - "observedLoadTs": 374491840, - "observedDomContentLoaded": 1050, - "observedDomContentLoadedTs": 374270722, - "observedCumulativeLayoutShift": 0.000923746109008789, - "observedCumulativeLayoutShiftMainFrame": 0.000923746109008789, - "observedTotalCumulativeLayoutShift": 0.000923746109008789, - "observedFirstVisualChange": 1281, - "observedFirstVisualChangeTs": 374501236, - "observedLastVisualChange": 1881, - "observedLastVisualChangeTs": 375101236, - "observedSpeedIndex": 1301, - "observedSpeedIndexTs": 374521019 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 34, - "numScripts": 13, - "numStylesheets": 5, - "numFonts": 3, - "numTasks": 927, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, - "numTasksOver100ms": 2, - "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 61457104.03725153, - "maxRtt": 66.781, - "maxServerLatency": 57.903000000000006, - "totalByteWeight": 1901139, - "totalTaskTime": 612.147, - "mainDocumentTransferSize": 4583 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "A" - }, - "github_repository": { - "grade": "F" - }, - "budget_page": { - "grade": "A" - }, - "declaration-a11y": { - "mention": null - }, - "declaration-rgpd": [ + "id": "clientsimulation-ie_11_winphone81", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, { - "slug": "ml", - "mention": "Mentions légales", - "maxScore": 4, - "score": 4, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://jafer.beta.gouv.fr/mentions" + "id": "clientsimulation-ie_11_win10", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { - "slug": "pc", - "mention": "Politique de confidentialité", - "maxScore": 7, - "score": 7, - "missingWords": [], - "missingTrackers": [], - "declarationUrl": "https://jafer.beta.gouv.fr/politique-confidentialite" - } - ], - "betagouv": { - "id": "jafer", - "type": "startup", - "attributes": { - "name": "JAFER", - "pitch": "Diminuer les délais de prise en charge, par les espaces de rencontre, des mesures judiciaires ordonnant des visites parent/enfant ", - "stats_url": "https://jafer.beta.gouv.fr/chiffres-cles", - "budget_url": "https://pad.numerique.gouv.fr/s/WYougVwWu#JAFER", - "link": "https://jafer.beta.gouv.fr/", - "contact": "jafer.sadjav-sg@justice.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AUn%20espace%20de%20rencontre%20est%20un%20lieu%20%C2%AB%20neutre%20%C2%BB%20permettant%20%C3%A0%20un%20enfant%20confi%C3%A9%20%C3%A0%20un%20parent%20de%20rencontrer%20l%E2%80%99autre%20parent%20dans%20des%20conditions%20permettant%20de%20favoriser%20la%20reprise%20du%20lien%20tout%20en%20assurant%20la%20s%C3%A9curit%C3%A9%20physique%20et%20psychique%20de%20l%E2%80%99enfant%20et%20des%20parents.%20Il%20existe%20192%20espaces%20de%20rencontre.%20%20En%202021%2C%20pr%C3%A8s%20de%2030%20000%20enfants%20ont%20%C3%A9t%C3%A9%20accueillis%20dans%20un%20espace%20de%20rencontre%2C%20dont%2090%25%20suite%20%C3%A0%20l%E2%80%99ordonnance%20d%E2%80%99un%20juge%20aux%20affaires%20familiales.%20%20%20Les%20d%C3%A9lais%20de%20prise%20en%20charge%20d%E2%80%99une%20mesure%20sont%20actuellement%20trop%20importants%20et%20peuvent%20aggraver%20les%20situations%20de%20ruptures%20familiales.%20%20Comment%20mieux%20r%C3%A9partir%20la%20charge%20de%20travail%20des%20espaces%20de%20rencontre%20et%20diminuer%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20mesures%20afin%20de%20rendre%20un%20meilleur%20service%20aux%20familles%20%3F%0A%0A%23%23%20Probl%C3%A8me%0A%0ALes%20d%C3%A9lais%20de%20prise%20en%20charge%20d%E2%80%99une%20mesure%20sont%20actuellement%20trop%20importants%20et%20peuvent%20aggraver%20les%20situations%20de%20ruptures%20familiales.%20Comment%20mieux%20r%C3%A9partir%20la%20charge%20de%20travail%20des%20espaces%20de%20rencontre%20et%20diminuer%20les%20d%C3%A9lais%20de%20prise%20en%20charge%20des%20mesures%20afin%20de%20rendre%20un%20meilleur%20service%20aux%20familles%20%3F%20Par%20ailleurs%2C%20au%20moment%20de%20d%C3%A9signer%20un%20espace%20de%20rencontre%2C%20les%20juges%20aux%20affaires%20familiales%20ne%20connaissent%20pas%20pr%C3%A9cis%C3%A9ment%20la%20dur%C3%A9e%20d%E2%80%99attente%20ni%20les%20modalit%C3%A9s%20d%E2%80%99accueil%20des%20diff%C3%A9rentes%20structures%20existantes.%20%0A%0A%23%23%20Solution%0A%0AAfin%20de%20favoriser%20la%20connaissance%20des%20modalit%C3%A9s%20d%E2%80%99accueil%20au%20sein%20des%20espaces%20de%20rencontre%20par%20les%20juges%20aux%20affaires%20familiales%2C%20nous%20proposons%20la%20mise%20en%20place%20d%E2%80%99un%20outil%20de%20suivi%20des%20d%C3%A9lais%20d%E2%80%99attente%20et%20des%20modalit%C3%A9s%20particuli%C3%A8res%20d%E2%80%99accueil.%0A%0A%23%23%20Strat%C3%A9gie%0A%0A%2A%20%C3%89tendre%20la%20couverture%20g%C3%A9ographique%20%C3%A0%20l%27%C3%A9chelle%20nationale.%20%0A%0A%2A%20Enrichir%20fonctionnellement%20le%20produit%20%3A%20%0A%2A%20Permettre%20aux%20JAFs%20de%20compl%C3%A9ter%20une%20mesure%20et%20la%20transmettre%20aux%20espaces%20de%20rencontres%2C%20%0A%2A%20Am%C3%A9liorer%20la%20communication%20entre%20juges%20et%20espaces%20de%20rencontre%20via%20notamment%20une%20messagerie%20interne%2C%20%0A%2A%20Permettre%20aux%20espaces%20de%20rencontre%20de%20g%C3%A9rer%20leur%20espace%20%C3%A0%20plusieurs%20contacts.%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2022-06-29", - "end": "2022-12-06" - }, - { - "name": "construction", - "start": "2022-12-07", - "end": "" - } - ], - "sponsors": [ - "mj" - ], - "thematiques": [ - "Justice" - ], - "dashlord_url": "https://dashlord.incubateur.net/url/jafer-beta-gouv-fr/best-practices/", - "accessibility_status": "partiellement conforme" + "id": "clientsimulation-edge_15_win10", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "justice" - } - } - } - }, - "ecoindex": [ { - "width": 1920, - "height": 1080, - "url": "https://jafer.beta.gouv.fr", - "size": 1874.973, - "nodes": 162, - "requests": 31, - "grade": "B", - "score": 76, - "ges": 1.48, - "water": 2.22, - "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:48:45.036097", - "page_type": "website" - } - ], - "sonarcloud": null, - "dsfr": { - "detected": false - }, - "summary": { - "httpGrade": "F", - "apdex": 0.952, - "apdexGrade": "E", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 4, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": null, - "testsslExpireDate": null, - "testsslGrade": "A", - "cookiesGrade": "C", - "cookiesCount": 3, - "trackersGrade": "F", - "trackersCount": 23, - "lighthouse_performance": 0.43, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.82, - "lighthouse_accessibilityGrade": "B", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.85, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", - "statsGrade": "A", - "githubRepositoryGrade": "F", - "budgetPageGrade": "A", - "declaration-a11y": "F", - "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "A", - "ecoindexGrade": "B", - "dsfrGrade": "F" - } - }, - { - "404": null, - "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "category": "justice", - "betaId": "precontentieux", - "http": { - "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 15:02:34 GMT", - "grade": "D-", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Cache-Control": "max-age=0, must-revalidate, private", - "Connection": "Keep-Alive", - "Content-Encoding": "gzip", - "Content-Length": "6580", - "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 20 Oct 2024 15:02:33 GMT", - "Expires": "Sun, 20 Oct 2024 15:02:33 GMT", - "Keep-Alive": "timeout=5, max=100", - "Server": "Apache", - "Sozu-Id": "01JAN7741KMK71E5HT48R0JH4S", - "Vary": "Accept-Encoding" + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, - "scan_id": 57068028, - "score": 25, - "start_time": "Sun, 20 Oct 2024 15:02:32 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 5, - "tests_passed": 5, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "redirects": true, - "route": [ - "http://dev.precontentieux.app.cc.anje-justice.fr/", - "https://dev.precontentieux.app.cc.anje-justice.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": { - "https://cdn.jsdelivr.net/npm/css-vars-ponyfill@2": { - "crossorigin": null, - "integrity": null - } - } - }, - "pass": false, - "result": "sri-not-implemented-but-external-scripts-loaded-securely", - "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", - "score_modifier": -5 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "0m32", - "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T16:25:02Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T19:06:50Z", - "next_check_at": "2024-11-24T19:07:50Z", - "created_at": "2024-06-30T01:19:26Z", - "mute_until": null, - "favicon_url": "https://dev.precontentieux.app.cc.anje-justice.fr/dsfr/favicon/favicon.ico", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T19:05:51Z", - "expires_at": "2025-02-03T23:23:07Z", - "valid": true, - "error": null + { + "id": "rating_spec", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, - "metrics": { - "apdex": 1, - "timings": { - "redirect": 0, - "namelookup": 47, - "connection": 130, - "handshake": 133, - "response": 198, - "total": 508 - } + { + "id": "rating_doc", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "maestro.beta.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" }, - "uptimeGrade": "A", - "apdexGrade": "A" - }, - "nmap": { - "host": "dev.precontentieux.app.cc.anje-justice.fr", - "protocol": "tcp", - "closed_ports": "986", - "open_ports": [ - { - "service": { - "name": "http", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "bgp", - "id": "179", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "https", - "id": "443", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "socks", - "id": "1080", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "pvuniwien", - "id": "1081", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ppp", - "id": "3000", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5002", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "smtp", - "product": "Postfix smtpd", - "id": "5221", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "ssh", - "id": "5357", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5666", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "amqp", - "product": "RabbitMQ", - "id": "5800", - "version": "3.12.14", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "5902", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "unknown", - "id": "5962", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "tcpwrapped", - "id": "9999", - "vulnerabilities": [] - } - } - ], - "grade": "B" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, + { + "id": "ALPN_HTTP2", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, { "id": "ALPN", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519160,7 +516669,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519168,7 +516677,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519176,7 +516685,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519184,7 +516693,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519192,7 +516701,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519200,455 +516709,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 384 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "id": "cipherorder_TLSv1_2", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "no -- no lifetime advertised" + "finding": "valid for 300 seconds only (= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2024-11-05 23:23" + "finding": "2024-10-29 14:19" }, { "id": "cert_notAfter", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2025-02-03 23:23" + "finding": "2025-01-27 14:19" }, { "id": "cert_extlifeSpan", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "http://r11.o.lencr.org" + "finding": "http://r10.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 (Let's Encrypt from US)" + "finding": "R10 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAwWhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJDAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxGAGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnwSVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLPXzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAUebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAChhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcGA1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcNAQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1yv4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE3801S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtnUfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoVaneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+ZWghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/RPBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/qpdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjVuYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBaFw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFLYlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KRmudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIozwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfdu6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p91n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZQjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyzrsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2EiRmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLxKPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" + "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "R11 <-- ISRG Root X1" + "finding": "R10 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1732475052" + "finding": "1733080884" }, { - "id": "HSTS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "id": "HSTS_time", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "180 days (=15552000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "Apache" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, + { + "id": "X-Frame-Options", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" + }, + { + "id": "Expect-CT", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "max-age=0" + }, + { + "id": "X-XSS-Protection", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "maestro.beta.gouv.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, { "id": "Cache-Control", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "max-age=0, must-revalidate, private" + "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -519656,7 +517207,7 @@ }, { "id": "heartbleed", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -519665,7 +517216,7 @@ }, { "id": "CCS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -519674,16 +517225,16 @@ }, { "id": "ticketbleed", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "no session ticket extension" + "finding": "not vulnerable" }, { "id": "ROBOT", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -519692,7 +517243,7 @@ }, { "id": "secure_renego", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -519700,16 +517251,16 @@ }, { "id": "secure_client_renego", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -519718,7 +517269,7 @@ }, { "id": "BREACH", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -519727,7 +517278,7 @@ }, { "id": "POODLE_SSL", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -519736,14 +517287,14 @@ }, { "id": "fallback_SCSV", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -519752,7 +517303,7 @@ }, { "id": "FREAK", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -519761,7 +517312,7 @@ }, { "id": "DROWN", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -519770,16 +517321,16 @@ }, { "id": "DROWN_hint", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=23C627AB729D73E6A3148F87A50177CF831DA709923E13A9E83506228B6E1F28" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" }, { "id": "LOGJAM", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -519788,16 +517339,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -519806,7 +517357,7 @@ }, { "id": "LUCKY13", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -519815,7 +517366,7 @@ }, { "id": "winshock", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -519824,7 +517375,7 @@ }, { "id": "RC4", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -519833,354 +517384,375 @@ }, { "id": "clientsimulation-android_60", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "A" + "finding": "A+" }, { - "id": "grade_cap_reason_1", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "id": "scanProblem", + "ip": "maestro.beta.gouv.fr/213.186.33.5", "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "severity": "FATAL", + "finding": "repeated TCP connect problems, giving up" }, { "id": "scanTime", - "ip": "dev.precontentieux.app.cc.anje-justice.fr/91.208.207.214", + "ip": "maestro.beta.gouv.fr/213.186.33.5", "port": "443", "severity": "INFO", - "finding": "102" + "finding": "238" } ], "thirdparties": { - "trackers": [], + "trackers": [ + { + "type": "unpkg", + "url": "https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css", + "details": { + "id": "unpkg", + "message": "Host files locally" + } + } + ], "cookies": [], "headers": { - "cache-control": "max-age=0, must-revalidate, private", - "connection": "Keep-Alive", + "cache-control": "public, max-age=0", "content-encoding": "gzip", - "content-length": "6353", + "content-security-policy": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 24 Nov 2024 19:02:48 GMT", - "expires": "Sun, 24 Nov 2024 19:02:48 GMT", - "keep-alive": "timeout=5, max=100", - "server": "Apache", - "sozu-id": "01JDFRW6DBAD6QJVXYYHNJVXGC", - "vary": "Accept-Encoding" + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 01 Dec 2024 19:17:37 GMT", + "etag": "W/\"542-1936d567960\"", + "expect-ct": "max-age=0", + "last-modified": "Wed, 27 Nov 2024 11:16:44 GMT", + "origin-agent-cluster": "?1", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=15552000; includeSubDomains", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-ratelimit-limit": "10000", + "x-ratelimit-remaining": "9896", + "x-ratelimit-reset": "1733080908", + "x-request-id": "78bc5b59-fbd6-4282-a2e2-ef47017bf1aa", + "x-xss-protection": "0" }, "endpoints": [ { - "hostname": "dev.precontentieux.app.cc.anje-justice.fr", - "ip": "91.208.207.214", + "hostname": "maestro.beta.gouv.fr", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -520233,51 +517805,164 @@ } } } + }, + { + "hostname": "unpkg.com", + "ip": "104.17.249.203", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } } ] }, "wappalyzer": { "urls": { - "https://dev.precontentieux.app.cc.anje-justice.fr/": { + "https://maestro.beta.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "sentry", - "name": "Sentry", - "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", "confidence": 100, "version": null, - "icon": "Sentry.svg", - "website": "https://sentry.io/", + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "unpkg", + "name": "Unpkg", + "description": "Unpkg is a content delivery network for everything on npm.", + "confidence": 100, + "version": null, + "icon": "Unpkg.png", + "website": "https://unpkg.com", "cpe": null, "categories": [ { - "id": 13, - "slug": "issue-trackers", - "name": "Issue trackers" + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "apache-http-server", - "name": "Apache HTTP Server", - "description": "Apache is a free and open-source cross-platform web server software.", - "confidence": 100, + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, "version": null, - "icon": "Apache.svg", - "website": "https://httpd.apache.org/", - "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } - ], - "rootPath": true + ] }, { "slug": "pwa", @@ -520296,6 +517981,23 @@ } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -520303,9 +518005,9 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "finalUrl": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "fetchTime": "2024-11-24T19:02:22.534Z", + "requestedUrl": "https://maestro.beta.gouv.fr/", + "finalUrl": "https://maestro.beta.gouv.fr/", + "fetchTime": "2024-12-01T19:17:08.589Z", "runWarnings": [], "categories": { "performance": { @@ -520316,7 +518018,7 @@ "snapshot" ], "id": "performance", - "score": 0.71 + "score": 0.7 }, "accessibility": { "title": "Accessibility", @@ -520327,7 +518029,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.98 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -520337,7 +518039,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": null }, "seo": { "title": "SEO", @@ -520348,7 +518050,7 @@ "snapshot" ], "id": "seo", - "score": 0.83 + "score": 0.92 }, "pwa": { "title": "PWA", @@ -520358,7 +518060,7 @@ "navigation" ], "id": "pwa", - "score": 0.4 + "score": 0.6 } }, "audits": { @@ -520368,53 +518070,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2120, + "numericValue": 2296, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2120, - "firstMeaningfulPaint": 2120, - "largestContentfulPaint": 15067, - "interactive": 2120, - "speedIndex": 4291, + "firstContentfulPaint": 2296, + "firstMeaningfulPaint": 2296, + "largestContentfulPaint": 9132, + "interactive": 2296, + "speedIndex": 4237, "totalBlockingTime": 0, - "maxPotentialFID": 41, - "cumulativeLayoutShift": 0.009268568250868055, - "cumulativeLayoutShiftMainFrame": 0.009268568250868055, - "totalCumulativeLayoutShift": 0.009268568250868055, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.025203030904134116, + "cumulativeLayoutShiftMainFrame": 0.025203030904134116, + "totalCumulativeLayoutShift": 0.025203030904134116, "observedTimeOrigin": 0, - "observedTimeOriginTs": 497924871, + "observedTimeOriginTs": 885474828, "observedNavigationStart": 0, - "observedNavigationStartTs": 497924871, - "observedFirstPaint": 1228, - "observedFirstPaintTs": 499153244, - "observedFirstContentfulPaint": 1228, - "observedFirstContentfulPaintTs": 499153244, - "observedFirstContentfulPaintAllFrames": 1228, - "observedFirstContentfulPaintAllFramesTs": 499153244, - "observedFirstMeaningfulPaint": 1228, - "observedFirstMeaningfulPaintTs": 499153244, - "observedLargestContentfulPaint": 2342, - "observedLargestContentfulPaintTs": 500266534, - "observedLargestContentfulPaintAllFrames": 2342, - "observedLargestContentfulPaintAllFramesTs": 500266534, - "observedTraceEnd": 4743, - "observedTraceEndTs": 502667746, - "observedLoad": 2275, - "observedLoadTs": 500199712, - "observedDomContentLoaded": 1336, - "observedDomContentLoadedTs": 499260655, - "observedCumulativeLayoutShift": 0.009268568250868055, - "observedCumulativeLayoutShiftMainFrame": 0.009268568250868055, - "observedTotalCumulativeLayoutShift": 0.009268568250868055, - "observedFirstVisualChange": 1238, - "observedFirstVisualChangeTs": 499162871, - "observedLastVisualChange": 2355, - "observedLastVisualChangeTs": 500279871, - "observedSpeedIndex": 2151, - "observedSpeedIndexTs": 500075663 + "observedNavigationStartTs": 885474828, + "observedFirstPaint": 2066, + "observedFirstPaintTs": 887541324, + "observedFirstContentfulPaint": 2066, + "observedFirstContentfulPaintTs": 887541324, + "observedFirstContentfulPaintAllFrames": 2066, + "observedFirstContentfulPaintAllFramesTs": 887541324, + "observedFirstMeaningfulPaint": 2066, + "observedFirstMeaningfulPaintTs": 887541324, + "observedLargestContentfulPaint": 2203, + "observedLargestContentfulPaintTs": 887677932, + "observedLargestContentfulPaintAllFrames": 2203, + "observedLargestContentfulPaintAllFramesTs": 887677932, + "observedTraceEnd": 4946, + "observedTraceEndTs": 890420835, + "observedLoad": 2169, + "observedLoadTs": 887643685, + "observedDomContentLoaded": 1909, + "observedDomContentLoadedTs": 887383751, + "observedCumulativeLayoutShift": 0.025203030904134116, + "observedCumulativeLayoutShiftMainFrame": 0.025203030904134116, + "observedTotalCumulativeLayoutShift": 0.025203030904134116, + "observedFirstVisualChange": 2073, + "observedFirstVisualChangeTs": 887547828, + "observedLastVisualChange": 2689, + "observedLastVisualChangeTs": 888163828, + "observedSpeedIndex": 2139, + "observedSpeedIndexTs": 887613494 }, { "lcpInvalidated": false @@ -520432,23 +518134,23 @@ "type": "debugdata", "items": [ { - "numRequests": 32, + "numRequests": 30, "numScripts": 2, - "numStylesheets": 3, - "numFonts": 5, - "numTasks": 1506, - "numTasksOver10ms": 5, - "numTasksOver25ms": 1, + "numStylesheets": 4, + "numFonts": 6, + "numTasks": 38, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 152.241, - "throughput": 14189668.230374267, - "maxRtt": 152.241, - "maxServerLatency": 5.830999999999989, - "totalByteWeight": 2510578, - "totalTaskTime": 242.1119999999986, - "mainDocumentTransferSize": 6719 + "rtt": 3.3209999999999997, + "throughput": 18768644.374992225, + "maxRtt": 101.913, + "maxServerLatency": 20.857, + "totalByteWeight": 1508016, + "totalTaskTime": 5.386, + "mainDocumentTransferSize": 1673 } ] } @@ -520461,7 +518163,7 @@ "grade": "F" }, "github_repository": { - "grade": "F" + "grade": "A" }, "budget_page": { "grade": "F" @@ -520487,21 +518189,63 @@ "missingTrackers": [] } ], - "betagouv": null, + "betagouv": { + "id": "maestro", + "type": "startup", + "attributes": { + "name": "Maestro", + "pitch": "Faciliter le processus de contrôle et surveillance des denrées alimentaires en permettant la circulation et l'accès en temps réel d'une donnée de qualité entre les différents acteurs.", + "stats_url": "", + "repository": "https://github.com/betagouv/maestro", + "contact": "diane.cuzzucoli@agriculture.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AChaque%20ann%C3%A9e%2C%20dans%20le%20cadre%20du%20dispositif%20de%20s%C3%A9curisation%20sanitaire%20de%20la%20cha%C3%AEne%20alimentaire%2C%20la%20direction%20g%C3%A9n%C3%A9rale%20de%20l%27alimentation%20%28DGAl%29%2C%20au%20sein%20du%20Minist%C3%A8re%20de%20l%27Agriculture%20et%20de%20la%20Souverainet%C3%A9%20Alimentaire%20pilote%20et%20coordonne%20un%20dispositif%20de%20plans%20de%20surveillance%20et%20de%20plans%20de%20contr%C3%B4le%20%28PSPC%29.%20Ces%20plans%20visent%20%C3%A0%20surveiller%2Fcontr%C3%B4ler%20la%20contamination%20des%20productions%20primaires%20animales%20et%20v%C3%A9g%C3%A9tales%2C%20des%20denr%C3%A9es%20alimentaires%20d%27origine%20animale%20et%20de%20l%27alimentation%20animale.%0A%0ALe%20dispositif%20s%27articule%20autour%20de%204%20grandes%20phases%20prises%20en%20charge%20par%20diff%C3%A9rents%20acteurs%20%3A%20programmation%2C%20pr%C3%A9l%C3%A8vement%20sur%20le%20terrain%2C%20analyse%20au%20laboratoire%20et%20bilan%2Fvalorisation%20des%20donn%C3%A9es.%0A%0A%21%5B%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fimg%2Fstartups%2Fpspc_phases.png%29%0A%0A%23%23%20Probl%C3%A8me%0A%0ALe%20probl%C3%A8me%20actuel%20est%20majoritairement%20un%20probl%C3%A8me%20d%27outil%20num%C3%A9rique%2C%20non%20efficient%20%C3%A0%20ce%20jour%2C%20pour%20programmer%2C%20interfacer%20avec%20les%20parties%20prenantes%20et%20valoriser%20les%20donn%C3%A9es.%0A%0ATrois%20dimensions%20du%20dispositif%20sont%20impact%C3%A9es%20par%20les%20dysfonctionnements%20des%20syst%C3%A8mes%20existants%20%3A%0A%0A-%20%2A%2Ales%20agents%20du%20BGIR%2A%2A%20perdent%2050%25%20de%20leur%20temps%20%C3%A0%20organiser%20la%20programmation%20et%20g%C3%A9rer%20les%20probl%C3%A8mes%20relatifs%20aux%20syst%C3%A8mes%20d%27informations%20au%20d%C3%A9triment%20de%20l%27analyse%20de%20risque.%20De%20plus%2C%20ils%20n%27arrivent%20pas%20%C3%A0%20r%C3%A9cup%C3%A9rer%20des%20donn%C3%A9es%20fiables%20valorisables%20en%20bout%20de%20cha%C3%AEne.%0A%0AL%27%C3%A9quipe%20est%20en%20compensation%20maximum%20et%20cela%20met%20en%20danger%20le%20fonctionnement%20du%20dispositif.%0A-%20%2A%2Ales%20services%20d%C3%A9concentr%C3%A9s%2A%2A%20n%27ont%20pas%20les%20moyens%20de%20r%C3%A9aliser%20les%20pr%C3%A9l%C3%A8vements%20terrain%20de%20mani%C3%A8re%20efficace.%20En%20outre%2C%20les%20d%C3%A9l%C3%A9gataires%20qui%20constituent%20un%20nouveau%20type%20d%27acteur%20dans%20le%20dispositif%20n%27ont%20pas%20d%27acc%C3%A8s%20au%20syst%C3%A8me%20d%27information%20en%20place.%0A-%20%2A%2Ales%20laboratoires%2A%2A%20perdent%20un%20temps%20majeur%20%C3%A0%20param%C3%A9trer%20leurs%20SI%20pour%20pouvoir%20restituer%20leurs%20analyses%20via%20les%20%C3%89changes%20de%20Donn%C3%A9es%20Informatis%C3%A9s%20%28EDI%29%20vers%20le%20SI%20actuel.%0A%0ACertains%20domaines%20du%20dispositif%20ne%20b%C3%A9n%C3%A9ficient%20que%20d%27un%20syst%C3%A8me%20d%27information%20%C3%A0%20plat%20%28excel%29%20avec%20ce%20que%20cela%20entraine%20de%20manque%20d%27efficience%20et%20de%20qualit%C3%A9%20des%20donn%C3%A9es.%0A%0A%23%23%20Solution%0A%0AL%27investigation%20a%20eu%20pour%20but%20d%27identifier%20comment%20beta.gouv%20pouvait%20participer%20%C3%A0%20la%20transition%20num%C3%A9rique%20du%20SI%20en%20place.%20L%27%C3%A9quipe%20beta%20accompagn%C3%A9e%20de%20deux%20intrapreneuses%20du%20BGIR%20ont%20donc%20investigu%C3%A9%20les%20angles%20d%27attaque%20possible%20pour%20amorcer%20un%20changement%20dans%20le%20respect%20de%20la%20m%C3%A9thode%20beta.%0A%0ALa%20solution%20consiste%20%C3%A0%20%2A%2Aoutiller%20un%20p%C3%A9rim%C3%A8tre%20restreint%20mais%20repr%C3%A9sentatif%20des%20actions%20du%20dispositif%20PSPC%20%3A%20la%20Production%20Primaire%20V%C3%A9g%C3%A9tale%2A%2A%2C%20qui%20est%20en%20demande%20d%27un%20support%20num%C3%A9rique.%20%0A%0A%0A%23%23%20Strat%C3%A9gie%0ALanc%C3%A9e%20en%20f%C3%A9vrier%202024%2C%20la%20SE%20maestro%20a%20pour%20objectif%20%C3%A0%206%20mois%20de%20d%C3%A9terminer%20si%20le%20processus%20peut%20%C3%AAtre%20%2A%2Asoutenu%20de%20bout%20en%20bout%2A%2A%20par%20un%20outil%20num%C3%A9rique%20de%20mani%C3%A8re%20simple%20et%20efficace.%0A%0AFin%20septembre%202024%2C%20nous%20aurons%20r%C3%A9ussi%20si%20%3A%0A%0A-%20nous%20arrivons%20%C3%A0%20r%C3%A9aliser%20une%20boucle%20programmation%20%2F%20pr%C3%A9l%C3%A8vement%20%2F%20analyse%20entre%20les%20diff%C3%A9rents%20acteurs%20au%20cours%20d%27un%20pilote%20en%20conditions%20r%C3%A9elles%3B%0A-%20nous%20obtenons%20une%20donn%C3%A9e%20de%20qualit%C3%A9%20en%20sortie.%0A%0A%0ANous%20contacter%20%3A%20diane.cuzzucoli%40agriculture.gouv.fr%20%3B%20jerome.rivals%40beta.gouv.fr%3B%20laure.de-valon%40beta.gouv.fr%20%0A", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2023-05-12", + "end": "" + }, + { + "name": "construction", + "start": "2024-02-26", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-10-21", + "end": "" + } + ], + "sponsors": [ + "dgal" + ], + "thematiques": [], + "accessibility_status": "totalement conforme" + }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "agriculture" + } + } + } + }, "ecoindex": [ { "width": 1920, "height": 1080, - "url": "https://dev.precontentieux.app.cc.anje-justice.fr/", - "size": 2579.195, - "nodes": 244, - "requests": 28, + "url": "https://maestro.beta.gouv.fr", + "size": 1517.135, + "nodes": 137, + "requests": 26, "grade": "B", - "score": 72, - "ges": 1.56, - "water": 2.34, + "score": 79, + "ges": 1.42, + "water": 2.13, "ecoindex_version": "5.4.2", - "date": "2024-11-24 18:59:10.669878", + "date": "2024-12-01 19:06:10.654334", "page_type": null } ], @@ -520510,33 +518254,33 @@ "detected": true }, "summary": { - "httpGrade": "D-", - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "F", + "apdex": 0.967, + "apdexGrade": "D", "uptime": 100, "uptimeGrade": "A", - "nmapGrade": "B", - "nmapOpenPortsCount": 14, - "nmapOpenPortsGrade": "F", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2025-02-03T23:23:00.000Z", - "testsslGrade": "A", + "testsslExpireDate": "2025-01-27T14:19:00.000Z", + "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.71, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.7, "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 0.98, + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", - "lighthouse_pwa": 0.4, - "lighthouse_pwaGrade": "D", + "lighthouse_best-practices": null, + "lighthouse_best-practicesGrade": "F", + "lighthouse_seo": 0.92, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.6, + "lighthouse_pwaGrade": "C", "statsGrade": "F", - "githubRepositoryGrade": "F", + "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "D", "declaration-rgpd-ml": "F", @@ -520547,38 +518291,36 @@ }, { "404": null, - "url": "https://maestro.beta.gouv.fr", - "category": "dinum", - "betaId": "maestro", - "repositories": [ - "betagouv/maestro" - ], + "url": "https://budget.databretagne.fr/", + "title": "Data Etat Bretagne", + "betaId": "data.etat", "http": { - "url": "https://maestro.beta.gouv.fr", + "url": "https://budget.databretagne.fr/", "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 15:13:47 GMT", - "grade": "F", + "end_time": "Sun, 20 Oct 2024 15:09:28 GMT", + "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "cache-control": "no-store, no-cache, must-revalidate", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf8", - "date": "Sun, 20 Oct 2024 15:13:46 GMT", - "pragma": "no-cache", - "server": "nginx", - "set-cookie": "SERVERID77446=200172|ZxUeL|ZxUeL; path=/; HttpOnly", - "transfer-encoding": "chunked", - "x-iplb-instance": "52193", - "x-iplb-request-id": "68C607D5:8C00_D5BA2105:0050_67151E2A_A27ED88:737F" + "Accept-Ranges": "bytes", + "Cache-Control": "max-age=0, no-cache", + "Connection": "keep-alive", + "Content-Length": "54465", + "Content-Type": "text/html", + "Date": "Sun, 20 Oct 2024 15:09:26 GMT", + "Etag": "\"66fa81b2-d4c1\"", + "Expires": "Sun, 20 Oct 2024 15:09:26 GMT", + "Last-Modified": "Mon, 30 Sep 2024 10:47:14 GMT", + "Server": "nginx", + "Vary": "Origin" }, - "scan_id": 57068627, - "score": 0, - "start_time": "Sun, 20 Oct 2024 15:13:45 GMT", + "scan_id": 57068144, + "score": 30, + "start_time": "Sun, 20 Oct 2024 15:09:25 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 6, - "tests_passed": 4, + "tests_failed": 4, + "tests_passed": 6, "tests_quantity": 10, "details": { "content-security-policy": { @@ -520600,24 +518342,13 @@ "expectation": "cookies-secure-with-httponly-sessions", "name": "cookies", "output": { - "data": { - "SERVERID77446": { - "domain": "maestro.beta.gouv.fr", - "expires": null, - "httponly": true, - "max-age": null, - "path": "/", - "port": null, - "samesite": false, - "secure": false - } - }, + "data": null, "sameSite": null }, - "pass": false, - "result": "cookies-without-secure-flag", - "score_description": "Cookies set without using the Secure flag or set over HTTP", - "score_modifier": -20 + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -520638,17 +518369,18 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "http://maestro.beta.gouv.fr/", - "redirects": false, + "destination": "https://budget.databretagne.fr/", + "redirects": true, "route": [ - "http://maestro.beta.gouv.fr/" + "http://budget.databretagne.fr/", + "https://budget.databretagne.fr/" ], "status_code": 200 }, - "pass": false, - "result": "redirection-missing", - "score_description": "Does not redirect to an HTTPS site", - "score_modifier": -20 + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -520674,8 +518406,8 @@ "preloaded": false }, "pass": false, - "result": "hsts-not-implemented-no-https", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set for sites not available over HTTPS", + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", "score_modifier": -20 }, "subresource-integrity": { @@ -520725,14 +518457,14 @@ } }, "updownio": { - "token": "umtm", - "url": "https://maestro.beta.gouv.fr", - "alias": "", + "token": "ndho", + "url": "https://budget.databretagne.fr/", + "alias": null, "last_status": 200, "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-11-17T16:40:38Z", + "up_since": "2024-11-29T14:09:42Z", "error": null, "period": 60, "apdex_t": 0.5, @@ -520744,49 +518476,51 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-11-17T17:02:37Z", - "next_check_at": "2024-11-17T17:03:36Z", - "created_at": "2024-07-02T13:30:22Z", + "last_check_at": "2024-12-01T19:14:30Z", + "next_check_at": "2024-12-01T19:15:29Z", + "created_at": "2024-10-06T01:38:25Z", "mute_until": null, - "favicon_url": "https://maestro.beta.gouv.fr/dsfr/favicon/favicon.ico?v=1.12.1", + "favicon_url": "https://budget-bretagne.dataregion.fr/@gouvfr/favicon/apple-touch-icon.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-11-17T16:54:37Z", - "expires_at": "2025-01-27T14:19:47Z", + "tested_at": "2024-12-01T19:14:34Z", + "expires_at": "2024-12-25T13:27:46Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.969, + "apdex": 0.937, "timings": { - "redirect": 0, - "namelookup": 497, - "connection": 0, - "handshake": 129, - "response": 127, - "total": 903 + "redirect": 659, + "namelookup": 156, + "connection": 132, + "handshake": 137, + "response": 297, + "total": 1380 } }, "uptimeGrade": "A", - "apdexGrade": "D" + "apdexGrade": "F" }, "nmap": { - "host": "maestro.beta.gouv.fr", + "host": "budget.databretagne.fr", "protocol": "tcp", "closed_ports": "998", "open_ports": [ { "service": { "name": "http", + "product": "nginx", "id": "80", "vulnerabilities": [] } }, { "service": { - "name": "https", + "name": "http", + "product": "nginx", "id": "443", "vulnerabilities": [] } @@ -520797,86 +518531,72 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "scanProblem", - "ip": "maestro.beta.gouv.fr/213.186.33.5", - "port": "443", - "severity": "FATAL", - "finding": "Couldn't connect to 213.186.33.5:443, proceeding with next IP (if any)" - }, { "id": "service", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520884,7 +518604,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520892,7 +518612,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520900,7 +518620,7 @@ }, { "id": "cipherlist_LOW", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520908,7 +518628,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -520916,505 +518636,582 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "INFO", + "severity": "LOW", "cwe": "CWE-310", - "finding": "not offered" + "finding": "offered" }, { "id": "cipherlist_STRONG_NOFS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "INFO", - "finding": "not offered" + "severity": "OK", + "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", - "finding": "server" + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { - "id": "cipherorder_TLSv1_2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "id": "cipher-tls1_2_xc028", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc028 ECDHE-RSA-AES256-SHA384 ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384" + }, + { + "id": "cipher-tls1_2_xc014", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc014 ECDHE-RSA-AES256-SHA ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc077", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc077 ECDHE-RSA-CAMELLIA256-SHA384 ECDH 521 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384" + }, + { + "id": "cipher-tls1_2_x9d", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9d AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_x3d", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x3d AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x35", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x35 AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc0", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc0 CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x84", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x84 CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_xc027", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc027 ECDHE-RSA-AES128-SHA256 ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_xc013", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc013 ECDHE-RSA-AES128-SHA ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xc076", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xc076 ECDHE-RSA-CAMELLIA128-SHA256 ECDH 521 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x9c", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9c AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "cipher-tls1_2_x3c", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x3c AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x2f", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x2f AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA" + }, + { + "id": "cipher-tls1_2_xba", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 xba CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256" + }, + { + "id": "cipher-tls1_2_x41", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "LOW", + "finding": "TLSv1.2 x41 CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA256-SHA384 AES256-GCM-SHA384 AES256-SHA256 AES256-SHA CAMELLIA256-SHA256 CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-CAMELLIA128-SHA256 AES128-GCM-SHA256 AES128-SHA256 AES128-SHA CAMELLIA128-SHA256 CAMELLIA128-SHA" }, { "id": "cipher_order", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "OK", - "finding": "server" + "severity": "INFO", + "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (23)" }, { "id": "cert_notBefore", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "2024-10-29 14:19" + "finding": "2024-09-26 13:27" }, { "id": "cert_notAfter", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "OK", - "finding": "2025-01-27 14:19" + "severity": "MEDIUM", + "finding": "2024-12-25 13:27" }, { "id": "cert_extlifeSpan", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "200 OK ('/')" + "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "1731862614" - }, - { - "id": "HSTS_time", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1733080418" }, { - "id": "HSTS_preload", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "id": "HSTS", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "No Server banner line in header, interesting!" + "finding": "nginx" }, { "id": "banner_application", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "Expect-CT", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "max-age=0" - }, - { - "id": "X-XSS-Protection", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -521422,7 +519219,7 @@ }, { "id": "heartbleed", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -521431,7 +519228,7 @@ }, { "id": "CCS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -521440,7 +519237,7 @@ }, { "id": "ticketbleed", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -521449,16 +519246,16 @@ }, { "id": "ROBOT", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" + "finding": "not vulnerable" }, { "id": "secure_renego", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -521466,7 +519263,7 @@ }, { "id": "secure_client_renego", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -521475,7 +519272,7 @@ }, { "id": "CRIME_TLS", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -521484,16 +519281,16 @@ }, { "id": "BREACH", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -521502,14 +519299,14 @@ }, { "id": "fallback_SCSV", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -521518,7 +519315,7 @@ }, { "id": "FREAK", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -521527,7 +519324,7 @@ }, { "id": "DROWN", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -521536,16 +519333,16 @@ }, { "id": "DROWN_hint", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F777434B567DA270F5C26F6552D5E2BEA61DAAFE40EAD97184F03B48C2B0DF3C" }, { "id": "LOGJAM", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -521554,16 +519351,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "--" + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -521572,16 +519369,16 @@ }, { "id": "LUCKY13", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", - "severity": "OK", + "severity": "LOW", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "potentially vulnerable, uses TLS CBC ciphers" }, { "id": "winshock", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -521590,7 +519387,7 @@ }, { "id": "RC4", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -521599,392 +519396,1182 @@ }, { "id": "clientsimulation-android_60", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "No connection" + "finding": "TLSv1.2 AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.12.255", + "ip": "budget.databretagne.fr/185.150.255.31", "port": "443", "severity": "INFO", "finding": "30" }, - { - "id": "key_exchange_score", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" + { + "id": "key_exchange_score", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "scanTime", + "ip": "budget.databretagne.fr/185.150.255.31", + "port": "443", + "severity": "INFO", + "finding": "144" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/dsfr.min.css" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/utility/icons/icons.css" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/styles-ZOBE4C3R.css" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-ATWGX5KS.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-W3WN6O6J.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-LQ2L4BBU.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-SIPC5TOP.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-F7TG6LXN.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-WUXKUMYE.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/polyfills-MH5IBZ74.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/main-GKUHKEH6.js" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/assets/settings.json" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/chunk-WUXKUMYE.js.map" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=7e548f37-c708-4225-8c78-b5bdde6270e0&response_mode=fragment&response_type=code&scope=openid&nonce=a5a7e71b-673e-4e10-8df5-8a219151adce&code_challenge=kspyBzYZx9RnJC-YxeuyKO7sOdvFrFkehjGODf1nmUc&code_challenge_method=S256" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/assets/img/BudgetEtat.svg" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/icons/system/fr--info-fill.svg" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/nocode.css" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/dsfr.min.css" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/dsfr.module.min.js" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_infradonnee.png" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_france_relance.png" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_geobretagne.png" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/icons/system/external-link-line.svg" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff" + }, + { + "type": "unknown", + "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff" + } + ], + "cookies": [], + "headers": { + "accept-ranges": "bytes", + "cache-control": "max-age=0\nno-cache", + "connection": "keep-alive", + "content-length": "54634", + "content-security-policy": "default-src 'none'; connect-src 'self' https://*.databretagne.fr https://stats.beta.gouv.fr/matomo.php https://geo.api.gouv.fr; font-src 'self' https://fonts.gstatic.com; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js; style-src 'self' 'unsafe-inline'", + "content-type": "text/html", + "date": "Sun, 01 Dec 2024 19:12:00 GMT", + "etag": "\"674444f3-d56a\"", + "expires": "Sun, 01 Dec 2024 19:12:00 GMT", + "last-modified": "Mon, 25 Nov 2024 09:35:47 GMT", + "server": "nginx", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "vary": "Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" + }, + "endpoints": [ + { + "hostname": "budget.databretagne.fr", + "ip": "185.150.255.31", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "budget-bretagne.dataregion.fr", + "ip": "185.150.255.31", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "auth.databretagne.fr", + "ip": "185.150.255.31", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://budget.databretagne.fr/": { + "status": 301, + "error": "net::ERR_BLOCKED_BY_CLIENT at https://budget.databretagne.fr/ (https://budget.databretagne.fr/)" + } }, + "technologies": [ + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": null, + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" + } + ], + "rootPath": true + } + ] + }, + "zap": null, + "nuclei": [], + "lhr": [ { - "id": "key_exchange_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, + "requestedUrl": "https://budget.databretagne.fr/", + "finalUrl": "https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=fba80f3d-9019-4bac-8c38-f0e8186f3219&response_mode=fragment&response_type=code&scope=openid&nonce=a7fde78a-16c5-4e6d-9afc-ab9774bcd8ba&code_challenge=KatMMXtMTLjfto0guvZv0x4tNHaPlZZaKNLnlNYYc60&code_challenge_method=S256", + "fetchTime": "2024-12-01T19:10:48.632Z", + "runWarnings": [ + "The page loaded too slowly to finish within the time limit. Results may be incomplete.", + "The page may not be loading as expected because your test URL (https://budget.databretagne.fr/) was redirected to https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=fba80f3d-9019-4bac-8c38-f0e8186f3219&response_mode=fragment&response_type=code&scope=openid&nonce=a7fde78a-16c5-4e6d-9afc-ab9774bcd8ba&code_challenge=KatMMXtMTLjfto0guvZv0x4tNHaPlZZaKNLnlNYYc60&code_challenge_method=S256. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.43 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.99 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 18879, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 16363, + "firstMeaningfulPaint": 18502, + "largestContentfulPaint": 20366, + "interactive": 18879, + "speedIndex": 16363, + "totalBlockingTime": 187, + "maxPotentialFID": 237, + "cumulativeLayoutShift": 0.014363299899631077, + "cumulativeLayoutShiftMainFrame": 0.014363299899631077, + "totalCumulativeLayoutShift": 0.014363299899631077, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 379817361, + "observedNavigationStart": 0, + "observedNavigationStartTs": 379817361, + "observedFirstPaint": 21, + "observedFirstPaintTs": 379838347, + "observedFirstContentfulPaint": 21, + "observedFirstContentfulPaintTs": 379838347, + "observedFirstContentfulPaintAllFrames": 21, + "observedFirstContentfulPaintAllFramesTs": 379838347, + "observedFirstMeaningfulPaint": 1122, + "observedFirstMeaningfulPaintTs": 380939757, + "observedLargestContentfulPaint": 1122, + "observedLargestContentfulPaintTs": 380939757, + "observedLargestContentfulPaintAllFrames": 1122, + "observedLargestContentfulPaintAllFramesTs": 380939757, + "observedTraceEnd": 40384, + "observedTraceEndTs": 420200963, + "observedLoad": 1433, + "observedLoadTs": 381249952, + "observedDomContentLoaded": 1119, + "observedDomContentLoadedTs": 380936203, + "observedCumulativeLayoutShift": 0.014363299899631077, + "observedCumulativeLayoutShiftMainFrame": 0.014363299899631077, + "observedTotalCumulativeLayoutShift": 0.014363299899631077, + "observedFirstVisualChange": 34, + "observedFirstVisualChangeTs": 379851361, + "observedLastVisualChange": 1250, + "observedLastVisualChangeTs": 381067361, + "observedSpeedIndex": 986, + "observedSpeedIndexTs": 380803434 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 42, + "numScripts": 10, + "numStylesheets": 5, + "numFonts": 8, + "numTasks": 726, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 147.801, + "throughput": 10072978.671889238, + "maxRtt": 147.93, + "maxServerLatency": 20.86699999999999, + "totalByteWeight": 3361680, + "totalTaskTime": 243.97999999999954, + "mainDocumentTransferSize": 55417 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": { + "grade": "A" + }, + "github_repository": { + "grade": "A" + }, + "budget_page": { + "grade": "A" + }, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": [ { - "id": "cipher_strength_score", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" + "slug": "ml", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] }, { - "id": "cipher_strength_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" + "slug": "pc", + "mention": null, + "maxScore": 0, + "score": 0, + "missingWords": [], + "missingTrackers": [] + } + ], + "betagouv": { + "id": "data.etat", + "type": "startup", + "attributes": { + "name": "Data-État", + "pitch": "Partager, visualiser et réutiliser la donnée financière de l’État et ses opérateurs pour mieux piloter les politiques publiques", + "stats_url": "https://superset.databretagne.fr/superset/dashboard/9/?standalone=3&native_filters_key=T0NMSR7Ujfy_ztcp9MgFYpk4KULKnvyg98bd3rXBPjDtMELnkBWvzE4z7Hgn2cjR", + "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#", + "link": "https://www.dataregion.fr/", + "repository": "https://github.com/dataregion", + "contact": "julien.kounowski@bretagne.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALanc%C3%A9%20suite%20au%20plan%20de%20Relance%20avec%20l%27enjeu%20de%20ne%20plus%20avoir%20%C3%A0%20utiliser%20AirTable%20et%20collecter%20%C3%A0%20un%20prix%20tr%C3%A8s%20co%C3%BBteux%20des%20formats%20de%20donn%C3%A9es%20financi%C3%A8res%20de%20l%27Etat%20et%20de%20ses%20op%C3%A9rateurs%20parfois%20non%20fiables%20et%20souvent%20non%20interop%C3%A9rables...%20%0A%0A%23%23%20Probl%C3%A8me%0A%0AComment%20rendre%20les%20donn%C3%A9es%20comptables%20de%20l%27Etat%20%28exemple%20CHORUS%29%20et%20de%20ses%20op%C3%A9rateurs%20intelligibles%20et%20r%C3%A9utilisables%20pour%20les%20agents%20m%C3%A9tiers%20et%20leur%20donner%20enfin%20une%20vision%20compl%C3%A8te%20des%20financements%20publics%20sur%20les%20territoires%20%28jusqu%27%C3%A0%20un%20niveau%20Quartier%20Politique%20de%20la%20Ville%20%28QPV%29%20pour%20mieux%20piloter%20les%20politiques%20publiques%20en%20toute%20interminist%C3%A9rialit%C3%A9%20%3F%0A%0A%23%23%20Solution%0A%0AData-%C3%89tat%20est%20la%20cr%C3%A9ation%20par%20l%27administration%20territoriale%20de%20l%27Etat%20d%27une%20nouvelle%20infrastructure%20de%20partage%20et%20de%20r%C3%A9utilisation%20de%20la%20donn%C3%A9e%20de%20l%27Etat%20et%20ses%20op%C3%A9rateurs.%20Via%20diff%C3%A9rentes%20solutions%20%3A%20tableaux%20dynamiques%2C%20graphiques%2F%20data%20viz%2C%20cartographique...%20via%20des%20outils%20libres%2C%20souverains%20et%20no%20code%2C%20mettre%20%C3%A0%20la%20main%20de%20tous%20les%20agents%20m%C3%A9tiers%20la%20possibilit%C3%A9%20d%27acc%C3%A9der%20aux%20donn%C3%A9es%20et%20de%20les%20r%C3%A9utiliser%20pour%20am%C3%A9liorer%20l%27action%20publique.%0A%0A%2A-%20DATA%20QPV%20fait%20partie%20des%20solutions%20propuls%C3%A9es%20par%20DATA-ETAT.%20Laur%C3%A9at%20du%20TechMiup%202024%2C%20cette%20solution%20vise%20%C3%A0%20l%27acc%C3%A8s%20aux%20donn%C3%A9es%20les%20plus%20fines%20dont%20financi%C3%A8res%20de%20l%E2%80%99%C3%89tat%20et%20ses%20op%C3%A9rateur%20concernant%20les%20QPV%20en%20France%2A%0A%0A%23%23%20Strat%C3%A9gie%0A%0AD%C3%A9ploiement%20en%20Bretagne%20%28SGAR%20avec%20l%27appui%20technique%20de%20la%20DREAL%20sur%20l%27ATE%20%2B%20%C3%A9ducation%20nationale%20et%20Justice%29%20puis%20d%C3%A9ploiement%20aux%20op%C3%A9rateurs%20publics%20et%20autres%20SGARs%20de%20France%20pour%20nationalisation%20et%20p%C3%A9rennisation%20de%20la%20solution%20avec%20l%27appui%20d%27un%20financement%20national%20DINUM.%20%0ALe%20d%C3%A9veloppement%20du%20projet%20et%20des%20solutions%20%28dont%20DATA%20QPV%29%20est%20assur%C3%A9%20via%20le%20GIP%20SIB%20dont%20l%E2%80%99%C3%89tat%20est%20membre.", + "events": [], + "phases": [ + { + "name": "investigation", + "start": "2022-11-01", + "end": "" + }, + { + "name": "construction", + "start": "2023-03-01", + "end": "" + }, + { + "name": "acceleration", + "start": "2024-05-01", + "end": "" + } + ], + "sponsors": [ + "interieur", + "mefsin" + ], + "thematiques": [ + "Open-Data", + "Administratif", + "Outil technique", + "Territoires", + "Démocratie" + ], + "dashlord_url": "https://dashlord.incubateur.net/url/budget-databretagne-fr/", + "accessibility_status": "partiellement conforme" }, + "relationships": { + "incubator": { + "data": { + "type": "incubator", + "id": "dinum" + } + } + } + }, + "ecoindex": [ { - "id": "final_score", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" + "width": 1920, + "height": 1080, + "url": "https://budget.databretagne.fr/", + "size": 3384.993, + "nodes": 97, + "requests": 33, + "grade": "B", + "score": 75, + "ges": 1.5, + "water": 2.25, + "ecoindex_version": "5.4.2", + "date": "2024-12-01 19:07:45.382899", + "page_type": null + } + ], + "sonarcloud": null, + "dsfr": { + "detected": true + }, + "summary": { + "httpGrade": "D", + "apdex": 0.937, + "apdexGrade": "F", + "uptime": 100, + "uptimeGrade": "A", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", + "testsslExpireSoon": true, + "testsslExpireDate": "2024-12-25T13:27:00.000Z", + "testsslGrade": "A", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 40, + "lighthouse_performance": 0.43, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.99, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", + "statsGrade": "A", + "githubRepositoryGrade": "A", + "budgetPageGrade": "A", + "declaration-a11y": "F", + "declaration-rgpd-ml": "F", + "declaration-rgpd-pc": "F", + "ecoindexGrade": "B", + "dsfrGrade": "A" + } + }, + { + "404": null, + "url": "https://mesaidesreno.beta.gouv.fr", + "title": "Mes Aides Réno", + "betaId": "mesaidesreno", + "category": "rénovation", + "tags": [ + "rénovation thermique", + "environnement", + "logement", + "aides" + ], + "repositories": [ + "betagouv/reno" + ], + "http": null, + "updownio": { + "token": "1jnj", + "url": "https://mesaidesreno.beta.gouv.fr", + "alias": null, + "last_status": 200, + "uptime": 100, + "down": false, + "down_since": null, + "up_since": "2024-12-01T01:53:47Z", + "error": null, + "period": 60, + "apdex_t": 0.5, + "string_match": "", + "enabled": true, + "published": true, + "disabled_locations": [], + "recipients": [ + "email:3896582286", + "slack_compatible:4124784183" + ], + "last_check_at": "2024-12-01T19:26:11Z", + "next_check_at": "2024-12-01T19:27:11Z", + "created_at": "2024-12-01T01:53:41Z", + "mute_until": null, + "favicon_url": null, + "custom_headers": {}, + "http_verb": "GET/HEAD", + "http_body": "", + "ssl": { + "tested_at": "2024-12-01T19:20:14Z", + "expires_at": "2025-01-09T15:47:39Z", + "valid": true, + "error": null }, - { - "id": "overall_grade", - "ip": "maestro.beta.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" + "metrics": { + "apdex": 0.995, + "timings": { + "redirect": 0, + "namelookup": 146, + "connection": 126, + "handshake": 136, + "response": 141, + "total": 548 + } }, + "uptimeGrade": "A", + "apdexGrade": "A" + }, + "nmap": { + "host": "mesaidesreno.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, + "dependabot": null, + "codescan": null, + "testssl": [ { "id": "service", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -521992,7 +520579,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522000,7 +520587,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522008,7 +520595,7 @@ }, { "id": "cipherlist_LOW", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522016,7 +520603,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -522024,7 +520611,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -522032,497 +520619,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2024-10-29 14:19" + "finding": "2024-10-11 15:47" }, { "id": "cert_notAfter", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2025-01-27 14:19" + "finding": "2025-01-09 15:47" }, { "id": "cert_extlifeSpan", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1731862712" + "finding": "1733080994" }, { "id": "HSTS_time", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "Expect-CT", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "max-age=0" - }, - { - "id": "X-XSS-Protection", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "maestro.beta.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" - }, { "id": "Cache-Control", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "public, max-age=0" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -522530,7 +521075,7 @@ }, { "id": "heartbleed", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -522539,7 +521084,7 @@ }, { "id": "CCS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -522548,7 +521093,7 @@ }, { "id": "ticketbleed", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -522557,7 +521102,7 @@ }, { "id": "ROBOT", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -522566,7 +521111,7 @@ }, { "id": "secure_renego", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -522574,7 +521119,7 @@ }, { "id": "secure_client_renego", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -522583,7 +521128,7 @@ }, { "id": "CRIME_TLS", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -522592,16 +521137,16 @@ }, { "id": "BREACH", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -522610,14 +521155,14 @@ }, { "id": "fallback_SCSV", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -522626,7 +521171,7 @@ }, { "id": "FREAK", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -522635,7 +521180,7 @@ }, { "id": "DROWN", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -522644,16 +521189,16 @@ }, { "id": "DROWN_hint", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B8C84915B238B2A750EFCC75DAFCC2570ABBA87688B550E0D37ABBC35B6EB31E" }, { "id": "LOGJAM", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -522662,7 +521207,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -522671,7 +521216,7 @@ }, { "id": "BEAST", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -522680,7 +521225,7 @@ }, { "id": "LUCKY13", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -522689,7 +521234,7 @@ }, { "id": "winshock", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -522698,7 +521243,7 @@ }, { "id": "RC4", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -522707,392 +521252,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "maestro.beta.gouv.fr/185.21.194.105", + "ip": "mesaidesreno.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -523100,7 +521645,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -523108,7 +521653,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -523116,7 +521661,7 @@ }, { "id": "cipherlist_LOW", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -523124,7 +521669,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -523132,7 +521677,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -523140,497 +521685,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2024-10-29 14:19" + "finding": "2024-10-11 15:47" }, { "id": "cert_notAfter", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2025-01-27 14:19" + "finding": "2025-01-09 15:47" }, { "id": "cert_extlifeSpan", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1731862810" + "finding": "1733081048" }, { "id": "HSTS_time", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "Expect-CT", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "max-age=0" - }, - { - "id": "X-XSS-Protection", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "maestro.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" - }, { "id": "Cache-Control", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "public, max-age=0" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -523638,7 +522141,7 @@ }, { "id": "heartbleed", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -523647,7 +522150,7 @@ }, { "id": "CCS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -523656,7 +522159,7 @@ }, { "id": "ticketbleed", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -523665,7 +522168,7 @@ }, { "id": "ROBOT", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -523674,7 +522177,7 @@ }, { "id": "secure_renego", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -523682,7 +522185,7 @@ }, { "id": "secure_client_renego", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -523691,7 +522194,7 @@ }, { "id": "CRIME_TLS", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -523700,16 +522203,16 @@ }, { "id": "BREACH", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -523718,14 +522221,14 @@ }, { "id": "fallback_SCSV", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -523734,7 +522237,7 @@ }, { "id": "FREAK", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -523743,7 +522246,7 @@ }, { "id": "DROWN", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -523752,16 +522255,16 @@ }, { "id": "DROWN_hint", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B8C84915B238B2A750EFCC75DAFCC2570ABBA87688B550E0D37ABBC35B6EB31E" }, { "id": "LOGJAM", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -523770,7 +522273,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -523779,7 +522282,7 @@ }, { "id": "BEAST", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -523788,7 +522291,7 @@ }, { "id": "LUCKY13", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -523797,7 +522300,7 @@ }, { "id": "winshock", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -523806,7 +522309,7 @@ }, { "id": "RC4", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -523815,392 +522318,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "maestro.beta.gouv.fr/80.247.13.145", + "ip": "mesaidesreno.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -524208,7 +522711,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -524216,7 +522719,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -524224,7 +522727,7 @@ }, { "id": "cipherlist_LOW", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -524232,7 +522735,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -524240,7 +522743,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -524248,497 +522751,455 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2024-10-29 14:19" + "finding": "2024-10-11 15:47" }, { "id": "cert_notAfter", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2025-01-27 14:19" + "finding": "2025-01-09 15:47" }, { "id": "cert_extlifeSpan", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "http://r10.o.lencr.org" + "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R10 (Let's Encrypt from US)" + "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "9D7C3F1AA6AD2B2EC0D5CF1E246F8D9AE6CBC9FD0755AD37BB974B1F2FB603F3" + "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "R10 <-- ISRG Root X1" + "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1731862907" + "finding": "1733081101" }, { "id": "HSTS_time", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "180 days (=15552000 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "severity": "INFO", + "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, - { - "id": "X-Frame-Options", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" - }, - { - "id": "Expect-CT", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "max-age=0" - }, - { - "id": "X-XSS-Protection", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" - }, { "id": "Cache-Control", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "public, max-age=0" + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -524746,7 +523207,7 @@ }, { "id": "heartbleed", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -524755,7 +523216,7 @@ }, { "id": "CCS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -524764,7 +523225,7 @@ }, { "id": "ticketbleed", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -524773,7 +523234,7 @@ }, { "id": "ROBOT", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -524782,7 +523243,7 @@ }, { "id": "secure_renego", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -524790,7 +523251,7 @@ }, { "id": "secure_client_renego", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -524799,7 +523260,7 @@ }, { "id": "CRIME_TLS", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -524808,16 +523269,16 @@ }, { "id": "BREACH", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -524826,14 +523287,14 @@ }, { "id": "fallback_SCSV", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -524842,7 +523303,7 @@ }, { "id": "FREAK", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -524851,7 +523312,7 @@ }, { "id": "DROWN", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -524860,16 +523321,16 @@ }, { "id": "DROWN_hint", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=4C01EF1A8C4A428B669B93ECC4C76AAE1F09D2AF4CA2B020AD90D159973BFD96" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B8C84915B238B2A750EFCC75DAFCC2570ABBA87688B550E0D37ABBC35B6EB31E" }, { "id": "LOGJAM", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -524878,7 +523339,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -524887,7 +523348,7 @@ }, { "id": "BEAST", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -524896,7 +523357,7 @@ }, { "id": "LUCKY13", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -524905,7 +523366,7 @@ }, { "id": "winshock", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -524914,7 +523375,7 @@ }, { "id": "RC4", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -524923,1687 +523384,888 @@ }, { "id": "clientsimulation-android_60", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "maestro.beta.gouv.fr/148.253.96.193", + "ip": "mesaidesreno.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, - { - "id": "scanTime", - "ip": "maestro.beta.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "397" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unpkg", - "url": "https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css", - "details": { - "id": "unpkg", - "message": "Host files locally" - } - } - ], - "cookies": [], - "headers": { - "cache-control": "public, max-age=0", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr;frame-src;style-src 'self' 'unsafe-inline' https://unpkg.com/maplibre-gl@4.1.2/dist/maplibre-gl.css;img-src 'self' https://stats.beta.gouv.fr data:;font-src 'self' data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://openmaptiles.data.gouv.fr https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://api.maptiler.com https://maestro-prod.s3.fr-par.scw.cloud;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests", - "content-type": "text/html; charset=UTF-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Nov 2024 16:55:28 GMT", - "etag": "W/\"542-19302740838\"", - "expect-ct": "max-age=0", - "last-modified": "Wed, 06 Nov 2024 17:09:39 GMT", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", - "strict-transport-security": "max-age=15552000; includeSubDomains", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-ratelimit-limit": "10000", - "x-ratelimit-remaining": "9887", - "x-ratelimit-reset": "1731862746", - "x-request-id": "591ff0e8-0bd0-47d6-92a5-0d1384d0d587", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "maestro.beta.gouv.fr", - "ip": "80.247.12.255", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "unpkg.com", - "ip": "104.17.248.203", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "USA", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://maestro.beta.gouv.fr/": { - "status": 0, - "error": "net::ERR_CONNECTION_RESET at https://maestro.beta.gouv.fr/ (https://maestro.beta.gouv.fr/)" - } - }, - "technologies": [ - { - "slug": "ovhcloud", - "name": "OVHcloud", - "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", - "confidence": 100, - "version": null, - "icon": "OVHcloud.svg", - "website": "https://www.ovhcloud.com", - "cpe": null, - "categories": [ - { - "id": 62, - "slug": "paas", - "name": "PaaS" - }, - { - "id": 88, - "slug": "hosting", - "name": "Hosting" - } - ], - "rootPath": true - } - ] - }, - "zap": null, - "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://maestro.beta.gouv.fr/", - "finalUrl": "https://maestro.beta.gouv.fr/", - "fetchTime": "2024-11-17T16:55:01.830Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.69 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 1 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": null - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.6 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 2715, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 2715, - "firstMeaningfulPaint": 2715, - "largestContentfulPaint": 9326, - "interactive": 2715, - "speedIndex": 4183, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.015061679416232638, - "cumulativeLayoutShiftMainFrame": 0.015061679416232638, - "totalCumulativeLayoutShift": 0.015061679416232638, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 459704783, - "observedNavigationStart": 0, - "observedNavigationStartTs": 459704783, - "observedFirstPaint": 1790, - "observedFirstPaintTs": 461494739, - "observedFirstContentfulPaint": 1790, - "observedFirstContentfulPaintTs": 461494739, - "observedFirstContentfulPaintAllFrames": 1790, - "observedFirstContentfulPaintAllFramesTs": 461494739, - "observedFirstMeaningfulPaint": 1790, - "observedFirstMeaningfulPaintTs": 461494739, - "observedLargestContentfulPaint": 2097, - "observedLargestContentfulPaintTs": 461801497, - "observedLargestContentfulPaintAllFrames": 2097, - "observedLargestContentfulPaintAllFramesTs": 461801497, - "observedTraceEnd": 5142, - "observedTraceEndTs": 464846877, - "observedLoad": 2061, - "observedLoadTs": 461765473, - "observedDomContentLoaded": 1730, - "observedDomContentLoadedTs": 461434651, - "observedCumulativeLayoutShift": 0.015061679416232638, - "observedCumulativeLayoutShiftMainFrame": 0.015061679416232638, - "observedTotalCumulativeLayoutShift": 0.015061679416232638, - "observedFirstVisualChange": 1793, - "observedFirstVisualChangeTs": 461497783, - "observedLastVisualChange": 2110, - "observedLastVisualChangeTs": 461814783, - "observedSpeedIndex": 1906, - "observedSpeedIndexTs": 461610368 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 30, - "numScripts": 2, - "numStylesheets": 4, - "numFonts": 6, - "numTasks": 36, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 1.6679999999999997, - "throughput": 15457249.337430285, - "maxRtt": 152.15099999999995, - "maxServerLatency": 15.68, - "totalByteWeight": 1507646, - "totalTaskTime": 3.4599999999999995, - "mainDocumentTransferSize": 1672 - } - ] - } - } - } - } - ], - "screenshot": true, - "stats": { - "grade": "F" - }, - "github_repository": { - "grade": "A" - }, - "budget_page": { - "grade": "F" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "maestro", - "type": "startup", - "attributes": { - "name": "Maestro", - "pitch": "Faciliter le processus de contrôle et surveillance des denrées alimentaires en permettant la circulation et l'accès en temps réel d'une donnée de qualité entre les différents acteurs.", - "stats_url": "", - "repository": "https://github.com/betagouv/maestro", - "contact": "diane.cuzzucoli@agriculture.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0AChaque%20ann%C3%A9e%2C%20dans%20le%20cadre%20du%20dispositif%20de%20s%C3%A9curisation%20sanitaire%20de%20la%20cha%C3%AEne%20alimentaire%2C%20la%20direction%20g%C3%A9n%C3%A9rale%20de%20l%27alimentation%20%28DGAl%29%2C%20au%20sein%20du%20Minist%C3%A8re%20de%20l%27Agriculture%20et%20de%20la%20Souverainet%C3%A9%20Alimentaire%20pilote%20et%20coordonne%20un%20dispositif%20de%20plans%20de%20surveillance%20et%20de%20plans%20de%20contr%C3%B4le%20%28PSPC%29.%20Ces%20plans%20visent%20%C3%A0%20surveiller%2Fcontr%C3%B4ler%20la%20contamination%20des%20productions%20primaires%20animales%20et%20v%C3%A9g%C3%A9tales%2C%20des%20denr%C3%A9es%20alimentaires%20d%27origine%20animale%20et%20de%20l%27alimentation%20animale.%0A%0ALe%20dispositif%20s%27articule%20autour%20de%204%20grandes%20phases%20prises%20en%20charge%20par%20diff%C3%A9rents%20acteurs%20%3A%20programmation%2C%20pr%C3%A9l%C3%A8vement%20sur%20le%20terrain%2C%20analyse%20au%20laboratoire%20et%20bilan%2Fvalorisation%20des%20donn%C3%A9es.%0A%0A%21%5B%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fimg%2Fstartups%2Fpspc_phases.png%29%0A%0A%23%23%20Probl%C3%A8me%0A%0ALe%20probl%C3%A8me%20actuel%20est%20majoritairement%20un%20probl%C3%A8me%20d%27outil%20num%C3%A9rique%2C%20non%20efficient%20%C3%A0%20ce%20jour%2C%20pour%20programmer%2C%20interfacer%20avec%20les%20parties%20prenantes%20et%20valoriser%20les%20donn%C3%A9es.%0A%0ATrois%20dimensions%20du%20dispositif%20sont%20impact%C3%A9es%20par%20les%20dysfonctionnements%20des%20syst%C3%A8mes%20existants%20%3A%0A%0A-%20%2A%2Ales%20agents%20du%20BGIR%2A%2A%20perdent%2050%25%20de%20leur%20temps%20%C3%A0%20organiser%20la%20programmation%20et%20g%C3%A9rer%20les%20probl%C3%A8mes%20relatifs%20aux%20syst%C3%A8mes%20d%27informations%20au%20d%C3%A9triment%20de%20l%27analyse%20de%20risque.%20De%20plus%2C%20ils%20n%27arrivent%20pas%20%C3%A0%20r%C3%A9cup%C3%A9rer%20des%20donn%C3%A9es%20fiables%20valorisables%20en%20bout%20de%20cha%C3%AEne.%0A%0AL%27%C3%A9quipe%20est%20en%20compensation%20maximum%20et%20cela%20met%20en%20danger%20le%20fonctionnement%20du%20dispositif.%0A-%20%2A%2Ales%20services%20d%C3%A9concentr%C3%A9s%2A%2A%20n%27ont%20pas%20les%20moyens%20de%20r%C3%A9aliser%20les%20pr%C3%A9l%C3%A8vements%20terrain%20de%20mani%C3%A8re%20efficace.%20En%20outre%2C%20les%20d%C3%A9l%C3%A9gataires%20qui%20constituent%20un%20nouveau%20type%20d%27acteur%20dans%20le%20dispositif%20n%27ont%20pas%20d%27acc%C3%A8s%20au%20syst%C3%A8me%20d%27information%20en%20place.%0A-%20%2A%2Ales%20laboratoires%2A%2A%20perdent%20un%20temps%20majeur%20%C3%A0%20param%C3%A9trer%20leurs%20SI%20pour%20pouvoir%20restituer%20leurs%20analyses%20via%20les%20%C3%89changes%20de%20Donn%C3%A9es%20Informatis%C3%A9s%20%28EDI%29%20vers%20le%20SI%20actuel.%0A%0ACertains%20domaines%20du%20dispositif%20ne%20b%C3%A9n%C3%A9ficient%20que%20d%27un%20syst%C3%A8me%20d%27information%20%C3%A0%20plat%20%28excel%29%20avec%20ce%20que%20cela%20entraine%20de%20manque%20d%27efficience%20et%20de%20qualit%C3%A9%20des%20donn%C3%A9es.%0A%0A%23%23%20Solution%0A%0AL%27investigation%20a%20eu%20pour%20but%20d%27identifier%20comment%20beta.gouv%20pouvait%20participer%20%C3%A0%20la%20transition%20num%C3%A9rique%20du%20SI%20en%20place.%20L%27%C3%A9quipe%20beta%20accompagn%C3%A9e%20de%20deux%20intrapreneuses%20du%20BGIR%20ont%20donc%20investigu%C3%A9%20les%20angles%20d%27attaque%20possible%20pour%20amorcer%20un%20changement%20dans%20le%20respect%20de%20la%20m%C3%A9thode%20beta.%0A%0ALa%20solution%20consiste%20%C3%A0%20%2A%2Aoutiller%20un%20p%C3%A9rim%C3%A8tre%20restreint%20mais%20repr%C3%A9sentatif%20des%20actions%20du%20dispositif%20PSPC%20%3A%20la%20Production%20Primaire%20V%C3%A9g%C3%A9tale%2A%2A%2C%20qui%20est%20en%20demande%20d%27un%20support%20num%C3%A9rique.%20%0A%0A%0A%23%23%20Strat%C3%A9gie%0ALanc%C3%A9e%20en%20f%C3%A9vrier%202024%2C%20la%20SE%20maestro%20a%20pour%20objectif%20%C3%A0%206%20mois%20de%20d%C3%A9terminer%20si%20le%20processus%20peut%20%C3%AAtre%20%2A%2Asoutenu%20de%20bout%20en%20bout%2A%2A%20par%20un%20outil%20num%C3%A9rique%20de%20mani%C3%A8re%20simple%20et%20efficace.%0A%0AFin%20septembre%202024%2C%20nous%20aurons%20r%C3%A9ussi%20si%20%3A%0A%0A-%20nous%20arrivons%20%C3%A0%20r%C3%A9aliser%20une%20boucle%20programmation%20%2F%20pr%C3%A9l%C3%A8vement%20%2F%20analyse%20entre%20les%20diff%C3%A9rents%20acteurs%20au%20cours%20d%27un%20pilote%20en%20conditions%20r%C3%A9elles%3B%0A-%20nous%20obtenons%20une%20donn%C3%A9e%20de%20qualit%C3%A9%20en%20sortie.%0A%0A%0ANous%20contacter%20%3A%20diane.cuzzucoli%40agriculture.gouv.fr%20%3B%20jerome.rivals%40beta.gouv.fr%3B%20laure.de-valon%40beta.gouv.fr%20%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2023-05-12", - "end": "" - }, - { - "name": "construction", - "start": "2024-02-26", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-10-21", - "end": "" - } - ], - "sponsors": [ - "dgal" - ], - "thematiques": [], - "accessibility_status": "totalement conforme" - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "agriculture" - } - } - } - }, - "ecoindex": [ - { - "width": 1920, - "height": 1080, - "url": "https://maestro.beta.gouv.fr", - "size": 1516.673, - "nodes": 137, - "requests": 26, - "grade": "B", - "score": 79, - "ges": 1.42, - "water": 2.13, - "ecoindex_version": "5.4.2", - "date": "2024-11-17 16:52:04.918705", - "page_type": null - } - ], - "sonarcloud": null, - "dsfr": { - "detected": true - }, - "summary": { - "httpGrade": "F", - "apdex": 0.969, - "apdexGrade": "D", - "uptime": 100, - "uptimeGrade": "A", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2025-01-27T14:19:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.69, - "lighthouse_performanceGrade": "B", - "lighthouse_accessibility": 1, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": null, - "lighthouse_best-practicesGrade": "F", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.6, - "lighthouse_pwaGrade": "C", - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "D", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "A" - } - }, - { - "404": null, - "url": "https://budget.databretagne.fr/", - "title": "Data Etat Bretagne", - "betaId": "data.etat", - "http": { - "url": "https://budget.databretagne.fr/", - "algorithm_version": 3, - "end_time": "Sun, 20 Oct 2024 15:09:28 GMT", - "grade": "D", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Accept-Ranges": "bytes", - "Cache-Control": "max-age=0, no-cache", - "Connection": "keep-alive", - "Content-Length": "54465", - "Content-Type": "text/html", - "Date": "Sun, 20 Oct 2024 15:09:26 GMT", - "Etag": "\"66fa81b2-d4c1\"", - "Expires": "Sun, 20 Oct 2024 15:09:26 GMT", - "Last-Modified": "Mon, 30 Sep 2024 10:47:14 GMT", - "Server": "nginx", - "Vary": "Origin" - }, - "scan_id": 57068144, - "score": 30, - "start_time": "Sun, 20 Oct 2024 15:09:25 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 6, - "tests_quantity": 10, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://budget.databretagne.fr/", - "redirects": true, - "route": [ - "http://budget.databretagne.fr/", - "https://budget.databretagne.fr/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "preload": false, - "preloaded": false - }, - "pass": false, - "result": "hsts-not-implemented", - "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", - "score_modifier": -20 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-disabled", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": true, - "result": "x-xss-protection-not-implemented", - "score_description": "Deprecated X-XSS-Protection header not implemented", - "score_modifier": 0 - } - } - }, - "updownio": { - "token": "ndho", - "url": "https://budget.databretagne.fr/", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "up_since": "2024-11-24T18:21:56Z", - "error": null, - "period": 60, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": true, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2024-11-24T19:10:52Z", - "next_check_at": "2024-11-24T19:11:52Z", - "created_at": "2024-10-06T01:38:25Z", - "mute_until": null, - "favicon_url": "https://budget-bretagne.dataregion.fr/@gouvfr/favicon/apple-touch-icon.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2024-11-24T19:01:51Z", - "expires_at": "2024-12-25T13:27:46Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.933, - "timings": { - "redirect": 654, - "namelookup": 178, - "connection": 263, - "handshake": 0, - "response": 625, - "total": 1853 - } - }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, - "nmap": { - "host": "budget.databretagne.fr", - "protocol": "tcp", - "closed_ports": "998", - "open_ports": [ - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "vulnerabilities": [] - } - } - ], - "grade": "A" - }, - "dependabot": null, - "codescan": null, - "testssl": [ { "id": "service", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { - "id": "pre_128cipher", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "LOW", - "cwe": "CWE-310", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "pre_128cipher", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "NOT a cipher order configured" + "finding": "No 128 cipher limit bug" }, { - "id": "cipher-tls1_2_xc030", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "SSLv2", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc028", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "SSLv3", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc028 ECDHE-RSA-AES256-SHA384 ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384" + "severity": "OK", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc014", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "TLS1", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc014 ECDHE-RSA-AES256-SHA ECDH 521 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA" + "severity": "INFO", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc077", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "TLS1_1", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc077 ECDHE-RSA-CAMELLIA256-SHA384 ECDH 521 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384" + "severity": "INFO", + "finding": "not offered" }, { - "id": "cipher-tls1_2_x9d", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "TLS1_2", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "TLSv1.2 x9d AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x3d", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x3d AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256" + "finding": "offered" }, { - "id": "cipher-tls1_2_x35", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "TLS1_3", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x35 AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA" + "severity": "OK", + "finding": "offered with final" }, { - "id": "cipher-tls1_2_xc0", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "ALPN_HTTP2", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc0 CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256" + "severity": "OK", + "finding": "h2" }, { - "id": "cipher-tls1_2_x84", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "ALPN", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x84 CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA" + "severity": "INFO", + "finding": "http/1.1" }, { - "id": "cipher-tls1_2_xc02f", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_NULL", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc027", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_aNULL", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc027 ECDHE-RSA-AES128-SHA256 ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc013", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_EXPORT", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc013 ECDHE-RSA-AES128-SHA ECDH 521 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xc076", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_LOW", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xc076 ECDHE-RSA-CAMELLIA128-SHA256 ECDH 521 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256" + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" }, { - "id": "cipher-tls1_2_x9c", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_3DES_IDEA", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9c AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256" + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cipher-tls1_2_x3c", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_OBSOLETED", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x3c AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256" + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" }, { - "id": "cipher-tls1_2_x2f", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_STRONG_NOFS", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x2f AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA" + "severity": "INFO", + "finding": "not offered" }, { - "id": "cipher-tls1_2_xba", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherlist_STRONG_FS", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 xba CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256" + "severity": "OK", + "finding": "offered" }, { - "id": "cipher-tls1_2_x41", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipher_order-tls1_2", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "TLSv1.2 x41 CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA" + "severity": "OK", + "finding": "server" }, { - "id": "supportedciphers_TLSv1_2", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "cipherorder_TLSv1_2", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA256-SHA384 AES256-GCM-SHA384 AES256-SHA256 AES256-SHA CAMELLIA256-SHA256 CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-CAMELLIA128-SHA256 AES128-GCM-SHA256 AES128-SHA256 AES128-SHA CAMELLIA128-SHA256 CAMELLIA128-SHA" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" + "severity": "OK", + "finding": "server" }, { "id": "FS", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2024-09-26 13:27" + "finding": "2024-10-11 15:47" }, { "id": "cert_notAfter", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2024-12-25 13:27" + "finding": "2025-01-09 15:47" }, { "id": "cert_extlifeSpan", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r11.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "591E9CE6C863D3A079E9FABE1478C7339A26B21269DDE795211361024AE31A44" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-03-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2027-03-12 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R11 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "301 Moved Permanently ('/')" + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1732475405" + "finding": "1733081155" }, { - "id": "HSTS", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "HSTS_time", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "nginx" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "No application banner found" + "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "budget.databretagne.fr/185.150.255.31", + "id": "Cache-Control", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -526611,7 +524273,7 @@ }, { "id": "heartbleed", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -526620,7 +524282,7 @@ }, { "id": "CCS", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -526629,7 +524291,7 @@ }, { "id": "ticketbleed", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -526638,16 +524300,16 @@ }, { "id": "ROBOT", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", "cwe": "CWE-203", - "finding": "not vulnerable" + "finding": "not vulnerable, no RSA key transport cipher" }, { "id": "secure_renego", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -526655,7 +524317,7 @@ }, { "id": "secure_client_renego", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -526664,7 +524326,7 @@ }, { "id": "CRIME_TLS", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -526673,16 +524335,16 @@ }, { "id": "BREACH", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -526691,14 +524353,14 @@ }, { "id": "fallback_SCSV", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -526707,7 +524369,7 @@ }, { "id": "FREAK", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -526716,7 +524378,7 @@ }, { "id": "DROWN", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -526725,16 +524387,16 @@ }, { "id": "DROWN_hint", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F777434B567DA270F5C26F6552D5E2BEA61DAAFE40EAD97184F03B48C2B0DF3C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B8C84915B238B2A750EFCC75DAFCC2570ABBA87688B550E0D37ABBC35B6EB31E" }, { "id": "LOGJAM", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -526743,16 +524405,16 @@ }, { "id": "LOGJAM-common_primes", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" + "finding": "--" }, { "id": "BEAST", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -526761,16 +524423,16 @@ }, { "id": "LUCKY13", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "LOW", + "severity": "OK", "cve": "CVE-2013-0169", "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" + "finding": "not vulnerable" }, { "id": "winshock", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -526779,7 +524441,7 @@ }, { "id": "RC4", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -526788,643 +524450,346 @@ }, { "id": "clientsimulation-android_60", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 AES128-SHA256" + "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "24" }, { "id": "final_score", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "81" }, { "id": "overall_grade", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "budget.databretagne.fr/185.150.255.31", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" + "finding": "A+" }, { "id": "scanTime", - "ip": "budget.databretagne.fr/185.150.255.31", + "ip": "mesaidesreno.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "78" + "finding": "217" } ], "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/dsfr.min.css" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/utility/icons/icons.css" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/styles-ZOBE4C3R.css" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-OKOXUIHI.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-JN3CUGD6.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-T4WZRHBA.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-S32LQHAG.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-MT73HTCU.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-YRCRE6A6.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/polyfills-MH5IBZ74.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/main-3QW2A2IS.js" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/assets/settings.json" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-YRCRE6A6.js.map" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=bb374bba-ab73-4cff-8b81-3cda62319ab0&response_mode=fragment&response_type=code&scope=openid&nonce=a3fab403-0726-496b-889a-6e6c024881e5&code_challenge=y5AU4Axy-NnDMB52GAsXYgj2vFEN-G2O4TVKnN3xgrw&code_challenge_method=S256" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/assets/img/BudgetEtat.svg" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/icons/system/fr--info-fill.svg" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Bold.woff2" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Regular.woff2" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Bold.woff2" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/@gouvfr/fonts/Marianne-Regular.woff2" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-YRCRE6A6.js.map" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-YRCRE6A6.js.map" - }, - { - "type": "unknown", - "url": "https://budget-bretagne.dataregion.fr/chunk-YRCRE6A6.js.map" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/nocode.css" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/dsfr.min.css" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/dsfr.module.min.js" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_infradonnee.png" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_france_relance.png" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/img/logo_geobretagne.png" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/icons/system/external-link-line.svg" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff2" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Regular.woff" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Bold.woff" - }, - { - "type": "unknown", - "url": "https://auth.databretagne.fr/resources/rvzwc/login/nocode/dsfr/fonts/Marianne-Medium.woff" - } - ], + "trackers": [], "cookies": [], "headers": { - "accept-ranges": "bytes", - "cache-control": "max-age=0\nno-cache", - "connection": "keep-alive", - "content-length": "54634", - "content-security-policy": "default-src 'none'; connect-src 'self' https://*.databretagne.fr https://stats.beta.gouv.fr/matomo.php https://geo.api.gouv.fr; font-src 'self' https://fonts.gstatic.com; img-src 'self' data:; script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr/matomo.js; style-src 'self' 'unsafe-inline'", - "content-type": "text/html", - "date": "Sun, 24 Nov 2024 19:09:06 GMT", - "etag": "\"671f8e0e-d56a\"", - "expires": "Sun, 24 Nov 2024 19:09:06 GMT", - "last-modified": "Mon, 28 Oct 2024 13:13:50 GMT", - "server": "nginx", - "strict-transport-security": "max-age=31536000; includeSubDomains", - "vary": "Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 01 Dec 2024 19:22:29 GMT", + "etag": "\"rofqa548ky10zx\"", + "strict-transport-security": "max-age=31536000", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-nextjs-cache": "HIT", + "x-powered-by": "Next.js", + "x-request-id": "38144b6d-8ca5-49cc-b38e-4583f72c3957" }, "endpoints": [ { - "hostname": "budget.databretagne.fr", - "ip": "185.150.255.31", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "budget-bretagne.dataregion.fr", - "ip": "185.150.255.31", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "auth.databretagne.fr", - "ip": "185.150.255.31", + "hostname": "mesaidesreno.beta.gouv.fr", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -527482,34 +524847,229 @@ }, "wappalyzer": { "urls": { - "https://budget.databretagne.fr/": { - "status": 301, - "error": "net::ERR_BLOCKED_BY_CLIENT at https://budget.databretagne.fr/ (https://budget.databretagne.fr/)" + "https://mesaidesreno.beta.gouv.fr/": { + "status": 200 } }, "technologies": [ { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "styled-components", + "name": "styled-components", + "description": "Styled components is a CSS-in-JS styling framework that uses tagged template literals in JavaScript.", + "confidence": 100, + "version": "6.1.13", + "icon": "styled-components.svg", + "website": "https://styled-components.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.2.15", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, { "id": 22, "slug": "web-servers", "name": "Web servers" }, { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", + "confidence": 100, + "version": null, + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "ovhcloud", + "name": "OVHcloud", + "description": "OVHcloud is a global, cloud provider delivering hosted private cloud, public cloud, and dedicated server solutions.", + "confidence": 100, + "version": null, + "icon": "OVHcloud.svg", + "website": "https://www.ovhcloud.com", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 88, + "slug": "hosting", + "name": "Hosting" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" } ], "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, @@ -527517,12 +525077,10 @@ "nuclei": [], "lhr": [ { - "requestedUrl": "https://budget.databretagne.fr/", - "finalUrl": "https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=b632b3bc-c900-4c61-854f-aeea196845d4&response_mode=fragment&response_type=code&scope=openid&nonce=f986a8fc-bf79-4e98-b209-0e31de1ff717&code_challenge=jxbGIgzEbhNCrsn6eZWl_PC8dYQ24o9dCFg-0R8BjgM&code_challenge_method=S256", - "fetchTime": "2024-11-24T19:08:37.878Z", - "runWarnings": [ - "The page may not be loading as expected because your test URL (https://budget.databretagne.fr/) was redirected to https://auth.databretagne.fr/realms/nocode/protocol/openid-connect/auth?client_id=bretagne.budget&redirect_uri=https%3A%2F%2Fbudget-bretagne.dataregion.fr%2F&state=b632b3bc-c900-4c61-854f-aeea196845d4&response_mode=fragment&response_type=code&scope=openid&nonce=f986a8fc-bf79-4e98-b209-0e31de1ff717&code_challenge=jxbGIgzEbhNCrsn6eZWl_PC8dYQ24o9dCFg-0R8BjgM&code_challenge_method=S256. Try testing the second URL directly." - ], + "requestedUrl": "https://mesaidesreno.beta.gouv.fr/", + "finalUrl": "https://mesaidesreno.beta.gouv.fr/", + "fetchTime": "2024-12-01T19:22:05.249Z", + "runWarnings": [], "categories": { "performance": { "title": "Performance", @@ -527532,7 +525090,7 @@ "snapshot" ], "id": "performance", - "score": 0.44 + "score": 0.9 }, "accessibility": { "title": "Accessibility", @@ -527543,7 +525101,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.99 + "score": 0.95 }, "best-practices": { "title": "Best Practices", @@ -527553,7 +525111,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.83 + "score": 1 }, "seo": { "title": "SEO", @@ -527564,7 +525122,7 @@ "snapshot" ], "id": "seo", - "score": 0.83 + "score": 1 }, "pwa": { "title": "PWA", @@ -527584,53 +525142,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 18881, + "numericValue": 5425, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 16736, - "firstMeaningfulPaint": 18881, - "largestContentfulPaint": 20168, - "interactive": 18881, - "speedIndex": 16736, - "totalBlockingTime": 148, - "maxPotentialFID": 202, - "cumulativeLayoutShift": 0.013865546332465277, - "cumulativeLayoutShiftMainFrame": 0.013865546332465277, - "totalCumulativeLayoutShift": 0.013865546332465277, + "firstContentfulPaint": 827, + "firstMeaningfulPaint": 827, + "largestContentfulPaint": 1906, + "interactive": 5425, + "speedIndex": 1262, + "totalBlockingTime": 300, + "maxPotentialFID": 294, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 461140489, + "observedTimeOriginTs": 322793971, "observedNavigationStart": 0, - "observedNavigationStartTs": 461140489, - "observedFirstPaint": 19, - "observedFirstPaintTs": 461159756, - "observedFirstContentfulPaint": 19, - "observedFirstContentfulPaintTs": 461159756, - "observedFirstContentfulPaintAllFrames": 19, - "observedFirstContentfulPaintAllFramesTs": 461159756, - "observedFirstMeaningfulPaint": 646, - "observedFirstMeaningfulPaintTs": 461786155, - "observedLargestContentfulPaint": 646, - "observedLargestContentfulPaintTs": 461786155, - "observedLargestContentfulPaintAllFrames": 646, - "observedLargestContentfulPaintAllFramesTs": 461786155, - "observedTraceEnd": 3238, - "observedTraceEndTs": 464378158, - "observedLoad": 824, - "observedLoadTs": 461964223, - "observedDomContentLoaded": 604, - "observedDomContentLoadedTs": 461744717, - "observedCumulativeLayoutShift": 0.013865546332465277, - "observedCumulativeLayoutShiftMainFrame": 0.013865546332465277, - "observedTotalCumulativeLayoutShift": 0.013865546332465277, - "observedFirstVisualChange": 24, - "observedFirstVisualChangeTs": 461164489, - "observedLastVisualChange": 1257, - "observedLastVisualChangeTs": 462397489, - "observedSpeedIndex": 581, - "observedSpeedIndexTs": 461721864 + "observedNavigationStartTs": 322793971, + "observedFirstPaint": 650, + "observedFirstPaintTs": 323443735, + "observedFirstContentfulPaint": 650, + "observedFirstContentfulPaintTs": 323443735, + "observedFirstContentfulPaintAllFrames": 650, + "observedFirstContentfulPaintAllFramesTs": 323443735, + "observedFirstMeaningfulPaint": 650, + "observedFirstMeaningfulPaintTs": 323443735, + "observedLargestContentfulPaint": 650, + "observedLargestContentfulPaintTs": 323443735, + "observedLargestContentfulPaintAllFrames": 650, + "observedLargestContentfulPaintAllFramesTs": 323443735, + "observedTraceEnd": 3347, + "observedTraceEndTs": 326141412, + "observedLoad": 795, + "observedLoadTs": 323588826, + "observedDomContentLoaded": 540, + "observedDomContentLoadedTs": 323334097, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 659, + "observedFirstVisualChangeTs": 323452971, + "observedLastVisualChange": 776, + "observedLastVisualChangeTs": 323569971, + "observedSpeedIndex": 674, + "observedSpeedIndexTs": 323467727 }, { "lcpInvalidated": false @@ -527648,23 +525206,23 @@ "type": "debugdata", "items": [ { - "numRequests": 43, - "numScripts": 10, - "numStylesheets": 5, - "numFonts": 8, - "numTasks": 655, - "numTasksOver10ms": 6, + "numRequests": 48, + "numScripts": 28, + "numStylesheets": 1, + "numFonts": 6, + "numTasks": 751, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 88.62, - "throughput": 20894963.961301517, - "maxRtt": 89.977, - "maxServerLatency": 17.96799999999999, - "totalByteWeight": 3455214, - "totalTaskTime": 237.79699999999906, - "mainDocumentTransferSize": 55417 + "rtt": 82.482, + "throughput": 10445824.425037533, + "maxRtt": 87.243, + "maxServerLatency": 30.933000000000007, + "totalByteWeight": 844635, + "totalTaskTime": 312.03499999999923, + "mainDocumentTransferSize": 11197 } ] } @@ -527674,16 +525232,17 @@ ], "screenshot": true, "stats": { - "grade": "A" + "grade": "F" }, "github_repository": { "grade": "A" }, "budget_page": { - "grade": "A" + "grade": "F" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://mesaidesreno.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -527704,48 +525263,36 @@ } ], "betagouv": { - "id": "data.etat", + "id": "mesaidesreno", "type": "startup", "attributes": { - "name": "Data-État", - "pitch": "Partager, visualiser et réutiliser la donnée financière de l’État et ses opérateurs pour mieux piloter les politiques publiques", - "stats_url": "https://superset.databretagne.fr/superset/dashboard/9/?standalone=3&native_filters_key=T0NMSR7Ujfy_ztcp9MgFYpk4KULKnvyg98bd3rXBPjDtMELnkBWvzE4z7Hgn2cjR", - "budget_url": "https://pad.numerique.gouv.fr/rHMnemklQm6Sww5yVCI9ow?view#", - "link": "https://www.dataregion.fr/", - "repository": "https://github.com/dataregion", - "contact": "julien.kounowski@bretagne.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALanc%C3%A9%20suite%20au%20plan%20de%20Relance%20avec%20l%27enjeu%20de%20ne%20plus%20avoir%20%C3%A0%20utiliser%20AirTable%20et%20collecter%20%C3%A0%20un%20prix%20tr%C3%A8s%20co%C3%BBteux%20des%20formats%20de%20donn%C3%A9es%20financi%C3%A8res%20de%20l%27Etat%20et%20de%20ses%20op%C3%A9rateurs%20parfois%20non%20fiables%20et%20souvent%20non%20interop%C3%A9rables...%20%0A%0A%23%23%20Probl%C3%A8me%0A%0AComment%20rendre%20les%20donn%C3%A9es%20comptables%20de%20l%27Etat%20%28exemple%20CHORUS%29%20et%20de%20ses%20op%C3%A9rateurs%20intelligibles%20et%20r%C3%A9utilisables%20pour%20les%20agents%20m%C3%A9tiers%20et%20leur%20donner%20enfin%20une%20vision%20compl%C3%A8te%20des%20financements%20publics%20sur%20les%20territoires%20%28jusqu%27%C3%A0%20un%20niveau%20Quartier%20Politique%20de%20la%20Ville%20%28QPV%29%20pour%20mieux%20piloter%20les%20politiques%20publiques%20en%20toute%20interminist%C3%A9rialit%C3%A9%20%3F%0A%0A%23%23%20Solution%0A%0AData-%C3%89tat%20est%20la%20cr%C3%A9ation%20par%20l%27administration%20territoriale%20de%20l%27Etat%20d%27une%20nouvelle%20infrastructure%20de%20partage%20et%20de%20r%C3%A9utilisation%20de%20la%20donn%C3%A9e%20de%20l%27Etat%20et%20ses%20op%C3%A9rateurs.%20Via%20diff%C3%A9rentes%20solutions%20%3A%20tableaux%20dynamiques%2C%20graphiques%2F%20data%20viz%2C%20cartographique...%20via%20des%20outils%20libres%2C%20souverains%20et%20no%20code%2C%20mettre%20%C3%A0%20la%20main%20de%20tous%20les%20agents%20m%C3%A9tiers%20la%20possibilit%C3%A9%20d%27acc%C3%A9der%20aux%20donn%C3%A9es%20et%20de%20les%20r%C3%A9utiliser%20pour%20am%C3%A9liorer%20l%27action%20publique.%0A%0A%2A-%20DATA%20QPV%20fait%20partie%20des%20solutions%20propuls%C3%A9es%20par%20DATA-ETAT.%20Laur%C3%A9at%20du%20TechMiup%202024%2C%20cette%20solution%20vise%20%C3%A0%20l%27acc%C3%A8s%20aux%20donn%C3%A9es%20les%20plus%20fines%20dont%20financi%C3%A8res%20de%20l%E2%80%99%C3%89tat%20et%20ses%20op%C3%A9rateur%20concernant%20les%20QPV%20en%20France%2A%0A%0A%23%23%20Strat%C3%A9gie%0A%0AD%C3%A9ploiement%20en%20Bretagne%20%28SGAR%20avec%20l%27appui%20technique%20de%20la%20DREAL%20sur%20l%27ATE%20%2B%20%C3%A9ducation%20nationale%20et%20Justice%29%20puis%20d%C3%A9ploiement%20aux%20op%C3%A9rateurs%20publics%20et%20autres%20SGARs%20de%20France%20pour%20nationalisation%20et%20p%C3%A9rennisation%20de%20la%20solution%20avec%20l%27appui%20d%27un%20financement%20national%20DINUM.%20%0ALe%20d%C3%A9veloppement%20du%20projet%20et%20des%20solutions%20%28dont%20DATA%20QPV%29%20est%20assur%C3%A9%20via%20le%20GIP%20SIB%20dont%20l%E2%80%99%C3%89tat%20est%20membre.", + "name": "Mes aides Réno", + "pitch": "Évaluez vos aides à la rénovation en 5 minutes en fonction de votre situation et de votre projet", + "stats_url": "", + "link": "https://mesaidesreno.beta.gouv.fr", + "repository": "https://github.com/betagouv/reno", + "contact": "mael.inizan@beta.gouv.fr", + "content_url_encoded_markdown": "%23%23%20Contexte%0A%0A%2A%2ALe%20logement%20repr%C3%A9sente%2011%20%25%20de%20nos%20%C3%A9missions%20de%20gaz%20%C3%A0%20effet%20de%20serre%20%28GES%29.%2A%2A%C2%A0Il%20s%E2%80%99agit%20du%20deuxi%C3%A8me%20plus%20gros%20poste%20d%E2%80%99%C3%A9mission%20apr%C3%A8s%20les%20transports.%20Le%20gouvernement%20s%E2%80%99est%20d%C3%A8s%20lors%20fix%C3%A9%20des%20ambitions%20importantes%20en%20mati%C3%A8re%20de%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%20des%20b%C3%A2timents.%0A%0A-%20%E2%80%9C%2AEn%20finir%20avec%20les%20passoires%20thermiques%20et%20renforcer%20la%20performance%20%C3%A9nerg%C3%A9tique%20des%20b%C3%A2timents%2A.%E2%80%9D%0A-%20%E2%80%9C%2AAcc%C3%A9l%C3%A9rer%20la%20r%C3%A9novation%20et%20am%C3%A9liorer%20le%20niveau%20de%20performance%20%C3%A9nerg%C3%A9tique%20des%20b%C3%A2timents%20publics%20et%20des%20logements%2C%20en%20tenant%20l%E2%80%99objectif%20de%20700%20000%20r%C3%A9novations%20par%20an%20%28MaPrimeR%C3%A9nov%E2%80%99%29.%2A%E2%80%9D%20Feuille%20de%20route%20du%20MTE%0A%0AAvec%20un%20objectif%20de%20%2A%2A700%20000%20r%C3%A9novations%20par%20an%2A%2A%2C%20les%20moyens%20accord%C3%A9s%20par%20l%E2%80%99%C3%89tat%20pour%20la%20r%C3%A9novation%20du%20parc%20priv%C3%A9%20sont%20in%C3%A9dits%20en%202024%20%3A%20%2A%2A4%20milliards%20d%E2%80%99euros%20sont%20d%C3%A9di%C3%A9s%20%C3%A0%20l%E2%80%99aide%20au%20financement%20des%20m%C3%A9nages%2A%2A%20dans%20le%20cadre%20de%20MaPrimeR%C3%A9nov%E2%80%99%20%28ANAH%29%2C%20auxquels%20s%E2%80%99ajoutent%20des%20aides%20locales%20et%20d%E2%80%99autres%20dispositifs.%20%0A%0ALa%20plupart%20des%20m%C3%A9nages%20propri%C3%A9taires%20%28occupants%20ou%20bailleurs%29%20sont%20d%C3%A9sormais%20%C3%A9ligible%20%C3%A0%20une%20aide%20substentiel%20de%20l%E2%80%99%C3%A9tat.%20Pourtant%2C%20l%E2%80%99incitation%20financi%C3%A8re%20ne%20semble%20pas%20jouer%20pleinement%20son%20r%C3%B4le.%20La%20barri%C3%A8re%20financi%C3%A8re%20reste%20encore%20l%E2%80%99un%20des%20principaux%20freins%20%C3%A0%20la%20construction%20d%E2%80%99un%20projet%20de%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique.%0A%0A%2A%2ADans%20ce%20contexte%2C%20l%E2%80%99ANAH%2C%20le%20SGPE%20et%20la%20DINUM%2A%2A%C2%A0ont%20d%C3%A9cid%C3%A9%20d%E2%80%99associer%20leurs%20efforts%20pour%20simplifier%20et%20diffuser%20plus%20largement%20l%E2%80%99information%20sur%20les%20aides%20%C3%A0%20la%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique.%0A%0A%23%23%20Les%20probl%C3%A8mes%20des%20usagers%0A%0AEn%20d%C3%A9cembre%202023%2C%20l%E2%80%99Agence%20nationale%20pour%20l%E2%80%99information%20sur%20le%20logement%20%28ANIL%29%20a%20r%C3%A9alis%C3%A9%20une%20enqu%C3%AAte%20aupr%C3%A8s%20d%E2%80%99un%20panel%20de%203000%20m%C3%A9nages.%20Si%20plus%20de%20la%20moit%C3%A9%20d%E2%80%99entre-eux%20a%20r%C3%A9alis%C3%A9%20ou%20envisage%20de%20r%C3%A9aliser%20%C3%A0%20court%20terme%20des%20travaux%20de%20r%C3%A9novation%20%C3%A9nerg%C3%A9tiques%2C%20%2A%2A69%20%25%20des%20participants%20%C3%A0%20l%E2%80%99enqu%C3%AAte%20jugent%20l%E2%80%99acc%C3%A8s%20%C3%A0%20l%E2%80%99information%20sur%20les%20aides%20%C3%A0%20la%20r%C3%A9novation%20trop%20compliqu%C3%A9.%2A%2A%0A%0AParmi%20les%20principaux%20griefs%20remont%C3%A9s%20lors%20de%20nos%20%C3%A9changes%20avec%20des%20usagers%3A%0A%0A-%20Des%20%C3%A9volutions%20r%C3%A9guli%C3%A8res%20des%20crit%C3%A8res%20d%E2%80%99%C3%A9ligibilit%C3%A9%20et%20des%20bar%C3%A8mes%3B%0A-%20Une%20superposition%20de%20dispositifs%20%C3%A0%20l%E2%80%99%C3%A9chelle%20locale%20et%20nationale%3B%0A-%20Une%20%C3%A9ligibilit%C3%A9%20aux%20aides%20bas%C3%A9e%20sur%20de%20multiples%20crit%C3%A8res%2C%20qui%20compliquent%20la%20lisibilit%C3%A9%20des%20dispositifs%2C%20notamment%20%C3%A0%20travers%20les%20notions%20de%20performance%20de%20la%20r%C3%A9novation%3B%0A-%20La%20craintes%20des%20%E2%80%9Carnaques%E2%80%9D%20et%20la%20d%C3%A9fiance%20vis-%C3%A0-vis%20de%20nombreuses%20d%C3%A9marches%20frauduleuse%3B%0A-%20La%20n%C3%A9c%C3%A9ssit%C3%A9%20avec%20la%20r%C3%A9forme%20de%202024%20de%20faire%20un%20choix%20entre%20deux%20parcours%20d%E2%80%99accompagnement%3B%0A-%20Une%20abondance%20d%E2%80%99informations%20g%C3%A9n%C3%A9riques%20et%20une%20difficult%C3%A9s%20%C3%A0%20trouver%20les%20informations%20pertinentes%20par%20rapport%20%C3%A0%20ma%20propre%20situation%20et%20celle%20de%20mon%20logement%3B%0A-%20La%20difficult%C3%A9%20%C3%A0%20%C3%A9valuer%20le%20reste%20%C3%A0%20charge%2C%20une%20fois%20les%20aides%20d%C3%A9duites%3B%0A-%20Et%20parfois%2C%20la%20difficult%C3%A9%20%C3%A0%20identifier%20les%20bons%20interlocuteurs%20succeptibles%20de%20les%20accompagner%0A%28%E2%80%A6%29%0A%0A%23%23%20La%20solution%0A%0A%2A%2AMes%20Aides%20R%C3%A9no%20aide%20les%20usagers%20%C3%A0%20construire%20le%20projet%20de%20r%C3%A9novation%20%C3%A9nerg%C3%A9tique%20de%20leur%20logement%20en%20adressant%20deux%20questions%20r%C3%A9currentes%20%3A%2A%2A%0A%0A1.%20Quels%20montants%20d%E2%80%99aide%20%28nationales%20et%20locales%29%20puis-je%20mobiliser%20pour%20mon%20projet%20%3F%20%0A%0A2.%20Quel%20budget%20envisager%20%3F%20Et%20surtout%2C%20quel%20sera%20mon%20reste%20%C3%A0%20charge%20%3F%20%2A%2A%28%C3%A0%20venir%29%2A%2A%0A%0A%2A%2AL%E2%80%99objectif%20du%20produit%20est%20triple%3A%2A%2A%0A%0A-%20Fournir%20aux%20usagers%20une%20estimation%20fiable%20et%20pr%C3%A9cise%20pour%20encourager%20les%20projets%20de%20r%C3%A9novation%0A-%20Ouvrir%20et%20diffuser%20le%20plus%20largement%20possible%20les%20calculs%20d%E2%80%99%C3%A9ligibilit%C3%A9%20des%20aides%20%C3%A0%20la%20r%C3%A9novation%20sur%20les%20parcours%20usagers%20%28interface%20web%20et%20API%29%0A-%20Informer%20les%20usagers%20sur%20les%20co%C3%BBts%20des%20principaux%20gestes%20de%20r%C3%A9novation%2C%20en%20exploitant%20les%20donn%C3%A9es%20MaprimeR%C3%A9nov%E2%80%99%20%20%2A%2A%28%C3%A0%20venir%29%2A%2A%0A%0A%2A%2AEn%20fin%20de%20simulation%2C%20les%20usagers%20sont%20dirig%C3%A9s%20vers%20un%20conseiller%20France%20R%C3%A9nov%E2%80%99.%2A%2A%20Mes%20Aides%20R%C3%A9no%20s%E2%80%99inscrit%20directement%20dans%20la%20strat%C3%A9gie%20de%20l%E2%80%99accompagnement%20%E2%80%9Cpas%20%C3%A0%20pas%E2%80%9D%20fix%C3%A9%20par%20l%E2%80%99ANAH%20dans%20la%20feuille%20Num%C3%A9rique%20et%20donn%C3%A9es%20pour%20la%20planification%20%C3%A9cologique.%0A%0A%23%23%20Notre%20strat%C3%A9gie%20de%20d%C3%A9ploiement%0A%0A%2A%2AL%E2%80%99objectif%20de%20Mes%20Aides%20R%C3%A9no%20est%20de%20fournir%20une%20information%20aux%20usagers%20au%20bon%20moment%20de%20leur%20parcours%2C%20quelque%20soient%20leurs%20portes%20d%E2%80%99entr%C3%A9e.%2A%2A%0A%0ALe%20service%20est%20disponible%20sur%20un%20plateforme%20d%C3%A9di%C3%A9%20%28https%3A%2F%2Fmesaidesreno.beta.gouv.fr%2F%29%2C%20mais%20est%20%C3%A9galement%20con%C3%A7u%20pour%20%C3%AAtre%20une%20solution%20distribu%C3%A9e.%20La%20strat%C3%A9gie%20de%20d%C3%A9ploiement%20de%20Mes%20Aides%20R%C3%A9no%20reposera%20en%20partie%20sur%20des%20partenariats%20avec%20des%20services%20existants%20et%20disposant%20d%C3%A9j%C3%A0%20d%E2%80%99une%20audience%20aupr%C3%A8s%20des%20usagers%20vis%C3%A9s.%20L%E2%80%99objectif%20des%206%20prochains%20mois%20est%20de%20valider%20le%20mod%C3%A8les%20et%20l%E2%80%99impact%20du%20produit%20dans%20la%20perspectives%20d%E2%80%99une%20pleine%20r%C3%A9int%C3%A9gration%20%C3%A0%20l%E2%80%99%C3%A9cosyst%C3%A8me%20France%20R%C3%A9nov%E2%80%99%20d%C3%A9but%202025.%0A%0A%23%23%20Nos%20Indicateurs%20d%E2%80%99impact%0A%0A%C3%80%20horizon%20fin%202024%20%3A%0A%0A%20%F0%9F%91%89%20Nombre%20de%20simulations%20termin%C3%A9es%20au%20total%20%3A%20%2A%2A50k%20simulation%20%2F%20mois%2A%2A%0A%0A%F0%9F%91%89%20%20Nombre%20d%E2%80%99int%C3%A9grations%20des%20donn%C3%A9es%20par%20des%20services%20tiers%20%3A%20%2A%2A5%20int%C3%A9grations%20par%20des%20services%20tiers%2A%2A%20%28publics%20ou%20priv%C3%A9s%29%0A%20%0A%F0%9F%91%89%20%20Conversion%20%3A%20%2A%2A10%25%20de%20prise%20de%20rdv%2A%2A%20avec%20un%20conseiller%20France%20R%C3%A9nov%E2%80%99%20suite%20%C3%A0%20une%20simulation", "events": [], "phases": [ { "name": "investigation", - "start": "2022-11-01", + "start": "2023-12-15", "end": "" }, { "name": "construction", - "start": "2023-03-01", - "end": "" - }, - { - "name": "acceleration", - "start": "2024-05-01", + "start": "2024-02-15", "end": "" } ], "sponsors": [ - "interieur", - "mefsin" + "dinum" ], "thematiques": [ - "Open-Data", - "Administratif", - "Outil technique", - "Territoires", - "Démocratie" + "Écologie" ], - "dashlord_url": "https://dashlord.incubateur.net/url/budget-databretagne-fr/", - "accessibility_status": "partiellement conforme" + "accessibility_status": "non conforme" }, "relationships": { "incubator": { @@ -527760,57 +525307,56 @@ { "width": 1920, "height": 1080, - "url": "https://budget.databretagne.fr/", - "size": 3472.925, - "nodes": 95, - "requests": 33, - "grade": "B", - "score": 75, - "ges": 1.5, - "water": 2.25, + "url": "https://mesaidesreno.beta.gouv.fr", + "size": 1088.843, + "nodes": 247, + "requests": 79, + "grade": "C", + "score": 66, + "ges": 1.68, + "water": 2.52, "ecoindex_version": "5.4.2", - "date": "2024-11-24 19:05:38.987642", + "date": "2024-12-01 19:19:08.239331", "page_type": null } ], "sonarcloud": null, "dsfr": { - "detected": true + "detected": false }, "summary": { - "httpGrade": "D", - "apdex": 0.933, - "apdexGrade": "F", + "apdex": 0.995, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-12-25T13:27:00.000Z", - "testsslGrade": "A", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-09T15:47:00.000Z", + "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, - "trackersGrade": "F", - "trackersCount": 43, - "lighthouse_performance": 0.44, - "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 0.99, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.9, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", - "lighthouse_seo": 0.83, - "lighthouse_seoGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", - "statsGrade": "A", + "statsGrade": "F", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", - "declaration-a11y": "F", + "budgetPageGrade": "F", + "declaration-a11y": "C", "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F", - "ecoindexGrade": "B", - "dsfrGrade": "A" + "ecoindexGrade": "C", + "dsfrGrade": "F" } } ] \ No newline at end of file